· 5 years ago · May 11, 2020, 04:42 PM
1
2Scan date: 11-5-2020 15:26:1
3===================================================================================================
4| Domain: https://ligmar.ru/
5| Server: nginx/1.4.6 (Ubuntu)
6| IP: 185.87.193.242
7===================================================================================================
8===================================================================================================
9| Looking for Drupal plugins/modules
10|
11===================================================================================================
12| WEB SERVICES
13|
14===================================================================================================
15| FAVICON.ICO
16|
17===================================================================================================
18| ERROR INFORMATION
19|
20===================================================================================================
21| TYPE ERROR
22|
23| http://ligmar.ru/{[@TKj+pvnPPIG|Wlu:.php responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .php doesn't exist! any results from this server may be void
24| http://ligmar.ru/s`+"KLN{d)5RW4A{(-.html responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .html doesn't exist! any results from this server may be void
25| http://ligmar.ru/oW+qrnEab^a.w.[s9*2.htm responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .htm doesn't exist! any results from this server may be void
26| http://ligmar.ru/a^lM6dl>OQobzj:Hvf2[.asp responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .asp doesn't exist! any results from this server may be void
27| http://ligmar.ru/`mU;(O[6RI/|=3|+@Rvg.jsp responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .jsp doesn't exist! any results from this server may be void
28| http://ligmar.ru/z8)Ty^JL$H:7_Fv:_Uw5.cgi responded with code: 200 the server might just responde with this code even when the dir, file, or Extention: .cgi doesn't exist! any results from this server may be void
29===================================================================================================
30| SERVER MOBILE
31|
32===================================================================================================
33| LANGUAGE
34|
35| lang="en"
36===================================================================================================
37| INTERESTING STRINGS IN HTML
38|
39| style> @keyframes blink{0%{opacity:0}50%{opacity:1}100%{opacity:0}}@keyframes open-jaws{0%{transform: translateY(8px)}50%{transform: translateY(0)}100%{transform: translateY(8px)}}.preloader-main{overflow:hidden;font-size:16px;position:fixed;z-index:9999;left:0;right:0;top:0;bottom:0; background-color: #0E1221;}.preloader-main:before{background-image:url("data:image/svg+xml;charset=UTF-8,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 27 49'%3e%3cpath fill='%23131727' d='M0 3l1 3 6 3 5 2a24 24 0 0 0-4-3 25 25 0 0 1-5-4H2L1 3a3 3 0 0 0 0-2C0 0 0 0 0 3zm27-3l-1 1a3 3 0 0 0 0 2l-1 1h-1a18 18 0 0 1-4 3l-5 3-1 1 2-1 5-2a21 21 0 0 1 4-2 1 1 0 0 0 1-1h1zM13 18l-1 7v2h-1a23 23 0 0 1-4 3l-5 4-1 1 2-1 5-3a30 30 0 0 1 4-2 1 1 0 0 0 1 0h1a2 2 0 0 0 1 0 57 57 0 0 1 6 3 27 27 0 0 0 5 2 21 21 0 0 0-4-3l-5-3a4 4 0 0 0-2-1l-1-1v-7c0-7-1-7-1-1zm14 19l-1 4v7a3 3 0 0 1 0 1h1zM1 49v-1a3 3 0 0 1 0-2 30 30 0 0 0-1-5v8z'/%3e%3c/svg%3e");background-size:24px;content:'';position:fixed;left:0;right:0;top:0;bottom:0;z-index:-1}.preloader-main .logo{width:90%;position:absolute;max-width:400px;top:0;bottom:0;left:0;right:0;margin:auto;filter:drop-shadow(0 0 10px #000)}.preloader-main .load{position:absolute;bottom:60px;width:100%;height:80px;display:flex;justify-content:center;flex-direction:column;align-items:center}.preloader-main .load .text{font-family: Arial, sans-serif;text-align:center;font-weight:700;color:#d1ccb4;text-shadow:0 0 10px #000}.preloader-main .load .text span{animation-play-state:running;animation-name:blink;animation-duration:1s;animation-iteration-count:infinite;animation-fill-mode:both}.preloader-main .load .text span:nth-of-type(2){animation-delay:.2s}.preloader-main .load .text span:nth-of-type(3){animation-delay:.4s}.preloader-main .load .img{position:relative;width:100%;height:100%; min-height: 62px}.preloader-main .bottom,.preloader-main .top{width:100%;height:100%;display:block;background-repeat:no-repeat;background-position:center}.preloader-main .top{position:inherit;z-index:2;background-image:url("data:image/svg+xml;charset=UTF-8,%3csvg xmlns='http://www.w3.org/2000/svg' fill='none' viewBox='0 0 150 150'%3e%3cpath fill='%2316162B' stroke='%2316162B' stroke-linecap='round' stroke-linejoin='round' d='M108 95l6-3 3-10-2-9 1-9 2-15-5-19-15-14-21-4-23 5-16 13-6 15 1 17 5 9-4 11 4 13 6 3 5 1 6 2 2 2-2 2 1 1-1 1 2 5h2l2 5 2-3h2v-1h1l-1 4 3 1 4-3 1-2h1l2 1v-1l1 1h2l1 3h3l1-3 2 2 3 1 2-3 1-2h2l2-8v-2l3-3 9-4z'/%3e%3cpath fill='%23D1CCB4' d='M35 62l-2-8v-9l2-6-1 9 2 9-1-1v6zM39 56l-3-5 1-1v-3l3 6-1 3z'/%3e%3cpath fill='%23D1CCB4' d='M36 49l-1-3 1-9 4-7 6-6-5 7-3 4v7l1 5-2-2-1 4z'/%3e%3cpath fill='%23D1CCB4' d='M115 64l-5-10 1-3-1-4v-8l-3-5 3 3 1 5 1-4-2-7 3 6v5l2 3v-2l-3-12-14-13-18-4 11 1-13-2-21 3-7 6 7-4 9-2-5 3-7 7-1-1-5 2-2 4-6 7 1 5-1 6 4 5-6 11 1 12 1 2 1-1-1-4 2-9 4-4 7-1 3-1-7-2 4-1 12 2 5 1 1-1-7-2-8-6 15 7 1 2h2l4-4-3 6 4 1 3-7 8-3-6 4-2 3 11-5h5v-1l5-4-4-5-1-2-8-4-2-1-7-5-3-2-1 2v-3l11 8h3l9 5 1 2 4 5-5 4v1h4l5 3h-4l-1 3 4 1 4 3v7l-1-5v6l-5 7 5-4-5 7-11-1 1 2h-6l7 3h12l1 3 2-1 1-2 2-2v-6l-2-4 2-10zm-69-6h2l-2 1-2-4 3-1v-3l1 3-2 1v3zm10-15l-3-2 3-1 4 1-4 2zm22 8l-3 5-9-5 9 4 3-5-1-6 1 7zm-6-26l-4 5-7 3v3l-1-4 8-4 3-4 7-4v-1l-6 1-18 11 18-12 6-1 3 1-9 6z'/%3e%3cpath fill='%23D1CCB4' d='M113 43l2 4 1-2v3l-2 2-1 3v-4l-2-3 2-3zm0 12l3-3 1-4-2 2-2 5zM42 79l-2 1-2-2 1 3v4l2 2 2-1v2l6-1-5-1-2-3 7 4 13-1v2l9-8 2-5-4 4-9 5 8-6 3-6-6 5 3-1-2 3-7 1-8 4-6-4 2 4-5-5z'/%3e%3cpath fill='%23D1CCB4' d='M73 82l2-4 2 1 1-5-1-6-1-2 2-2-5 1-2 2h4l-1 4 2 2-3-1v-3l-1 4-1 2 2-1v8z'/%3e%3cpath fill='%23D1CCB4' d='M81 79l-3 1 1-6-1-6 2 1 1 7v-4l2 6 3 3-2-5 4 5 1 2h-2v1l-2-2v4l-3-4v1l-1-4zm-3-12l2 1 1 2 1-1v3l1-5h-2l-3-2v2zm-10 3l1-2 2-3-4-3-9-3 10 5 1 2-4-3-5-2 7 6 1 3zm14-5l3 3 4-6 6-3h-5l-8 6zm3 9l1-4 4-6-6 6-1 3 1-1 1 2zM66 60l6 5 2-1h7l1 1 8-7-6 2 2-1-5 4v-2l-2 2h-4l-4-2 2 2-5-3h-2zm-8 41l-2-1-7-3-3-3 2 3h-3l-6-4v-1h3l4 3-3-3-5-1-1-4v-1l-1-4h1l1 4-1-4 1-3 1 2v4l2 3 1-1-1 3 2 2-1-3 6-1v2l-3 1 1 3v-3l3-1v-2l11-2v2l-5 4-1-2 3-2-5 3 2-2-4 5-1-1 3-3-4 2 1 2 3-2v4h-2l5 2-2-2v-2l2 3 4-3v2l-2 4 2-1v1l-1 1zm36 0l4-3 8-3 4-2 3-3v-2l-3 4h-1l-1 1 1-2h1l1-1-2-1-1-2v4h-1l-1 1 2 1-2 1h-2l2-1-3 1-4 3 2-2 5-3 2-4-3 1-3 4 1-2 4-4h-2l-4 3-1 1h3l-2 1v1l-2 1-3 5 3-5 1-1v-1l-2 1h-3l-2 4 3-2h1l-3 1-1 3 1 2z'/%3e%3cpath fill='%23D1CCB4' d='M95 92l2-2 4-2-3 1-4 3-1 1 3-3-1-3 1-1v2l1-1 3 1-1-1 5-1-2 2-3 3 1-1-2 2h-3zm-30 14l1-2v-5l-4 5 3-3-3 7 2-1 1 4 2-1-1-3-1-1z'/%3e%3cpath fill='%23D1CCB4' d='M94 87l1-1-6-3 1 2 1 1-3-2v2l4 3-4-1-2-3-1 3-2-4v3l2 2 1 6-3 3h-4l-1-3-1 3v4l-1-3v-1l-1-2-2 3-4-2-2-5 6-8-1-3-6 5-3 3h-2l-6 3-2-1h-1l3 4 5-2v3l-1 2 2 1-4 6h1v2l4-3v-1l5-5-1 6 2 1 2-3-1 4h-2v4l2-2 1-1 3-5-2 6-2 1 1 1h1l2-5 2 1-2 2-1 4 1-1 3 1v-3l1 1v3h2v-4l2-2 2 3 1 2v-5l1 5 1-1v-4l1-5v9l3-1-2-5 1-4 1 3 1-1v2h2v-3l-2-2h1l-1-3 2-3-2-1 4-4-1-2zm-28 6l-3 8 1-5-1-3 6-7-4 7h1zm19 10v-4l-1 1-1 5v-5l2-2v5z'/%3e%3cpath fill='%23D1CCB4' d='M68 111l-1 2-1 3 2 1 3-2v-3l-2 1v-2h-1zm-6-2l-2 3 1 3 2-2h1v-2l-1-1v-1h-1zm-5-2v2l1 2 2-3-1 3h1l1-3v-2l-2 2-2-1zm22 2l1 5 1 2h1l2-3-1-4-2-2-2 2zm12-3l1 4 2 1v-9l-1 3-2 1zm-6 7l2-2h3v2l-2 3-1-1-2-2z'/%3e%3c/svg%3e")}.preloader-main .bottom{animation-play-state:running;animation-name:open-jaws;animation-duration:.35s;animation-iteration-count:infinite;animation-fill-mode:both;background-image:url("data:image/svg+xml;charset=UTF-8,%3csvg xmlns='http://www.w3.org/2000/svg' fill='none' viewBox='0 0 150 150'%3e%3cpath fill='%2316162B' stroke='%2316162B' stroke-linecap='round' stroke-linejoin='round' d='M108 95l5-26-23-17-47 6-4 7 7 36v7l-3 10 30 22 8 1 26-28-2-10 3-8z'/%3e%3cpath fill='%23D1CCB4' d='M103 100l-2 6v3l-3 7 6-10v3l-3 7-3 2v3l-2 2 3-2v-2l4-6h2l-1-2 1-3v3l1 2-4 4-1 1-2 3-10 12-1-1 6-7v-2l3-3-3 1 1-1 2-2-4 2v5l-5 6-1-1h-2v2l-1 1-2-2 1-2-3-1 2-4 3 4 3-4v4-5l3 1 1-1-2-2h2v-4l3-1 3-13 5-3z'/%3e%3cpath fill='%23D1CCB4' d='M83 123l2 2 3-3v-4h-4l-1 5zm1 11l2-2v-2h1v3h1l-4 4-4 3-2-2-1 1h-3l-7-5h2l4 3-3-3 2-1 2 2v-3h1l2 2h3l1-1 3 1z'/%3e%3cpath fill='%23D1CCB4' d='M77 132l1 1 1 1 1-2 2 1-1-2v-2h-2v-1l-1 1 1 2-2-2 2-2v-1l-2 2v4z'/%3e%3cpath fill='%23D1CCB4' d='M80 125l-3 2-1 4h-1v-1l-2 1 1 2-2-1-2 1v-2h-1l-1-3-2-1 1-3 1 3 1-3 2 1 1 2 3-1v2l1-3h4z'/%3e%3cpath fill='%23D1CCB4' d='M47 101l2 12v6l3 5-2-6v-4l2 5 1 2 2-1 4 5-4-4h-1l-2-1 3 5h2l4 4h2l1 1-1 1h3l1 2h3l-1-1h-1v-4l-3-2-3 1v-5l1 4 1-1-1-4-1 1v-1l-2 1v1h1l-1 1-1-2-3-5v-5l-3-3 1-3-5-4 3 8 3 4-3-3v5l2 3-2-2-1-8-3-7-1-1zM63 116v4l2 2 1-5-1-1h-2zm4 2l-1 4h1l1 2 2-1v-6l-2 1h-1zm4 2v3l1 2v1l3-1v-3h-2l-2-2zm-24-11v4l-1-1 1-3zm-2 4l2 1v3l1 1-1 1-3-2 1-2v-2z'/%3e%3c/svg%3e");position:absolute;top:0;right:0;bottom:0;left:0;z-index:1}.preloader-main.hidden{-webkit-animation-name:the-end;animation-name:the-end;-webkit-animation-duration:1s;animation-duration:1s;-webkit-animation-fill-mode:forwards;animation-fill-mode:forwards}.preloader-main.hidden .bottom{animation-play-state:paused;}.preloader-main.hidden .load .text span{animation-play-state:paused;}@keyframes start{100%{opacity:1}}@keyframes the-end{100%{opacity:0;z-index:-1}} .reconnect,.blur{overflow:hidden;}.blur{filter:blur(5px)} .reconnect.reconnect-block {display: block} .reconnect-block{ display: none; z-index:8888;overflow:hidden;font-size:16px;position:fixed;left:0;right:0;top:0;bottom:0}.reconnect-block::before{content:'';position:absolute;left:0;right:0;top:0;bottom:0;background-color: #16162b;background-image: linear-gradient(to bottom,rgb(14, 18, 33) 0%,rgb(22, 22, 43) 0%);opacity:.5}
40===================================================================================================
41| WHOIS
42|
43===================================================================================================
44| BANNER GRABBING:
45===================================================================================================
46===================================================================================================
47| PING
48|
49| PING ligmar.ru (185.87.193.242) 56(84) bytes of data.
50| 64 bytes from hosted-by.ihc.ru (185.87.193.242): icmp_seq=1 ttl=56 time=22.1 ms
51| 64 bytes from hosted-by.ihc.ru (185.87.193.242): icmp_seq=2 ttl=56 time=19.9 ms
52| 64 bytes from hosted-by.ihc.ru (185.87.193.242): icmp_seq=3 ttl=56 time=25.6 ms
53| 64 bytes from hosted-by.ihc.ru (185.87.193.242): icmp_seq=4 ttl=56 time=21.0 ms
54|
55| --- ligmar.ru ping statistics ---
56| 4 packets transmitted, 4 received, 0% packet loss, time 3006ms
57| rtt min/avg/max/mdev = 19.941/22.159/25.645/2.150 ms
58===================================================================================================
59| TRACEROUTE
60|
61| traceroute to ligmar.ru (185.87.193.242), 30 hops max, 60 byte packets
62| 1 192.168.0.1 (192.168.0.1) 1.124 ms 2.381 ms 2.299 ms
63| 2 254.255.57.37.triolan.net (37.57.255.254) 5.852 ms 6.410 ms 7.205 ms
64| 3 10.38.100.254 (10.38.100.254) 4.154 ms 4.297 ms 4.306 ms
65| 4 178.18.230.251.dataix (178.18.230.251) 20.196 ms 20.547 ms 25.208 ms
66| 5 * * *
67| 6 10.0.92.141 (10.0.92.141) 22.885 ms 10.0.92.145 (10.0.92.145) 20.758 ms 19.857 ms
68| 7 ddos-guard.net (185.129.103.17) 20.443 ms 19.661 ms 20.274 ms
69| 8 10.254.1.2 (10.254.1.2) 21.691 ms 20.022 ms 19.749 ms
70| 9 hosted-by.ihc.ru (185.87.193.242) 19.366 ms 18.992 ms 19.935 ms
71===================================================================================================
72| NSLOOKUP
73|
74| Server: 109.86.2.2
75| Address: 109.86.2.2#53
76|
77| Non-authoritative answer:
78| ligmar.ru mail exchanger = 10 mail.ligmar.ru.
79| Authoritative answers can be found from:
80| mail.ligmar.ru internet address = 185.87.193.242
81| *** Can't find ligmar.ru: No answer
82| ligmar.ru
83| origin = ns1.ihc.ru
84| mail addr = info.ihc.ru
85| serial = 2017061001
86| refresh = 10800
87| retry = 3600
88| expire = 604800
89| minimum = 3600
90| ligmar.ru nameserver = ns1.ihc.ru.
91| ligmar.ru nameserver = ns2.ihc.ru.
92| Name: ligmar.ru
93| Address: 185.87.193.242
94===================================================================================================
95| NMAP
96|
97| Starting Nmap 7.80 ( https://nmap.org ) at 2020-05-11 15:26 EDT
98| NSE: Loaded 151 scripts for scanning.
99| NSE: Script Pre-scanning.
100| Initiating NSE at 15:26
101| Completed NSE at 15:26, 0.00s elapsed
102| Initiating NSE at 15:26
103| Completed NSE at 15:26, 0.00s elapsed
104| Initiating NSE at 15:26
105| Completed NSE at 15:26, 0.00s elapsed
106| Initiating Ping Scan at 15:26
107| Scanning ligmar.ru (185.87.193.242) [4 ports]
108| Completed Ping Scan at 15:26, 0.09s elapsed (1 total hosts)
109| Initiating Parallel DNS resolution of 1 host. at 15:26
110| Completed Parallel DNS resolution of 1 host. at 15:26, 0.00s elapsed
111| Initiating SYN Stealth Scan at 15:26
112| Scanning ligmar.ru (185.87.193.242) [1000 ports]
113| Discovered open port 80/tcp on 185.87.193.242
114| Discovered open port 443/tcp on 185.87.193.242
115| Discovered open port 8080/tcp on 185.87.193.242
116| Discovered open port 22/tcp on 185.87.193.242
117| Discovered open port 8093/tcp on 185.87.193.242
118| Discovered open port 9101/tcp on 185.87.193.242
119| Discovered open port 3030/tcp on 185.87.193.242
120| Discovered open port 3351/tcp on 185.87.193.242
121| Discovered open port 9100/tcp on 185.87.193.242
122| Discovered open port 9102/tcp on 185.87.193.242
123| Discovered open port 3000/tcp on 185.87.193.242
124| Discovered open port 9999/tcp on 185.87.193.242
125| Completed SYN Stealth Scan at 15:26, 3.94s elapsed (1000 total ports)
126| Initiating Service scan at 15:26
127| Scanning 9 services on ligmar.ru (185.87.193.242)
128| Completed Service scan at 15:26, 12.24s elapsed (12 services on 1 host)
129| Initiating OS detection (try #1) against ligmar.ru (185.87.193.242)
130| Retrying OS detection (try #2) against ligmar.ru (185.87.193.242)
131| Initiating Traceroute at 15:26
132| Completed Traceroute at 15:26, 3.03s elapsed
133| Initiating Parallel DNS resolution of 8 hosts. at 15:26
134| Completed Parallel DNS resolution of 8 hosts. at 15:26, 0.00s elapsed
135| NSE: Script scanning 185.87.193.242.
136| Initiating NSE at 15:26
137| Completed NSE at 15:26, 15.08s elapsed
138| Initiating NSE at 15:26
139| Completed NSE at 15:26, 0.28s elapsed
140| Initiating NSE at 15:26
141| Completed NSE at 15:26, 0.00s elapsed
142| Nmap scan report for ligmar.ru (185.87.193.242)
143| Host is up (0.022s latency).
144| rDNS record for 185.87.193.242: hosted-by.ihc.ru
145| Not shown: 986 closed ports
146| PORT STATE SERVICE VERSION
147| 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.13 (Ubuntu Linux; protocol 2.0)
148| | ssh-hostkey:
149| | 1024 c3:c8:0e:7a:51:47:ba:b4:dc:df:54:83:9f:34:c2:69 (DSA)
150| | 2048 d4:5c:da:05:00:57:35:39:e3:9c:8f:c0:a7:a2:bd:28 (RSA)
151| | 256 fc:2d:b2:12:65:19:74:af:dc:30:e0:3e:29:a7:f9:b4 (ECDSA)
152| |_ 256 ef:9e:e2:d3:f0:a1:11:03:72:a1:18:a6:a0:6a:36:fa (ED25519)
153| 80/tcp open http nginx 1.4.6 (Ubuntu)
154| | http-methods:
155| |_ Supported Methods: GET HEAD POST OPTIONS
156| |_http-server-header: nginx/1.4.6 (Ubuntu)
157| |_http-title: Did not follow redirect to https://ligmar.ru/
158| 111/tcp filtered rpcbind
159| 443/tcp open ssl/http nginx 1.4.6 (Ubuntu)
160| |_http-favicon: Unknown favicon MD5: ADF34C36756EA8836036A6DD4C84D438
161| | http-methods:
162| |_ Supported Methods: GET HEAD
163| |_http-server-header: nginx/1.4.6 (Ubuntu)
164| |_http-title: Ligmar
165| | ssl-cert: Subject: commonName=ligmar.ru
166| | Subject Alternative Name: DNS:ligmar.ru, DNS:www.ligmar.ru
167| | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
168| | Public Key type: rsa
169| | Public Key bits: 2048
170| | Signature Algorithm: sha256WithRSAEncryption
171| | Not valid before: 2020-05-01T14:00:39
172| | Not valid after: 2020-07-30T14:00:39
173| | MD5: 0562 944e 1e65 9ca2 8429 f3b7 43b3 1c55
174| |_SHA-1: 6dae 5e31 fbb7 fb05 32d1 d039 f742 6de2 36f0 0de1
175| |_ssl-date: TLS randomness does not represent time
176| | tls-nextprotoneg:
177| |_ http/1.1
178| 445/tcp filtered microsoft-ds
179| 3000/tcp open http Node.js Express framework
180| |_http-favicon: Unknown favicon MD5: B9AA7C338693424AAE99599BEC875B5F
181| | http-methods:
182| |_ Supported Methods: GET HEAD POST OPTIONS
183| |_http-title: Arenda
184| 3030/tcp open arepa-cas?
185| | fingerprint-strings:
186| | DNSStatusRequestTCP, DNSVersionBindReqTCP, Help, Kerberos, RPCCheck, RTSPRequest, SSLSessionReq, TLSSessionReq, TerminalServerCookie:
187| | HTTP/1.1 400 Bad Request
188| | GetRequest:
189| | HTTP/1.1 200 OK
190| | Accept-Ranges: bytes
191| | Cache-Control: public, max-age=0
192| | Last-Modified: Thu, 02 Apr 2020 17:36:38 GMT
193| | ETag: W/"513-1713bf758f2"
194| | Content-Type: text/html; charset=UTF-8
195| | Content-Length: 1299
196| | Vary: Accept-Encoding
197| | Date: Mon, 11 May 2020 16:26:25 GMT
198| | Connection: close
199| | <!doctype html>
200| | <html lang="en">
201| | <head>
202| | <meta charset="utf-8">
203| | <title>LigmarChat</title>
204| | <base href="/">
205| | <meta name="viewport" content="width=device-width, initial-scale=1">
206| | <link rel="icon" type="image/x-icon" href="favicon.ico">
207| | <link href="https://fonts.googleapis.com/css?family=Roboto:300,400,500" rel="stylesheet">
208| | <link href="https://fonts.googleapis.com/icon?family=Material+Icons" rel="stylesheet">
209| | <script src="https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js"></script>
210| | <link rel="stylesheet" href="https://cdn.jsdelivr.net/gh/fancyapps/fancybox@3.5.7/dist/jquery.fancy
211| | HTTPOptions:
212| | HTTP/1.1 200 OK
213| | Allow: GET,HEAD
214| | Content-Type: text/html; charset=utf-8
215| | Content-Length: 8
216| | ETag: W/"8-ZRAf8oNBS3Bjb/SU2GYZCmbtmXg"
217| | Vary: Accept-Encoding
218| | Date: Mon, 11 May 2020 16:26:25 GMT
219| | Connection: close
220| |_ GET,HEAD
221| 3351/tcp open http Golang net/http server (Go-IPFS json-rpc or InfluxDB API)
222| |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
223| 8080/tcp open http Golang net/http server (Go-IPFS json-rpc or InfluxDB API)
224| |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
225| 8093/tcp open http Golang net/http server (Go-IPFS json-rpc or InfluxDB API)
226| |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
227| 9100/tcp open jetdirect?
228| 9101/tcp open jetdirect?
229| 9102/tcp open jetdirect?
230| 9999/tcp open http Golang net/http server (Go-IPFS json-rpc or InfluxDB API)
231| |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
232| 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
233| SF-Port3030-TCP:V=7.80%I=7%D=5/11%Time=5EB9A6E1%P=x86_64-pc-linux-gnu%r(Ge
234| SF:tRequest,634,"HTTP/1\.1\x20200\x20OK\r\nAccept-Ranges:\x20bytes\r\nCach
235| SF:e-Control:\x20public,\x20max-age=0\r\nLast-Modified:\x20Thu,\x2002\x20A
236| SF:pr\x202020\x2017:36:38\x20GMT\r\nETag:\x20W/\"513-1713bf758f2\"\r\nCont
237| SF:ent-Type:\x20text/html;\x20charset=UTF-8\r\nContent-Length:\x201299\r\n
238| SF:Vary:\x20Accept-Encoding\r\nDate:\x20Mon,\x2011\x20May\x202020\x2016:26
239| SF::25\x20GMT\r\nConnection:\x20close\r\n\r\n<!doctype\x20html>\n<html\x20
240| SF:lang=\"en\">\n<head>\n\x20\x20<meta\x20charset=\"utf-8\">\n\x20\x20<tit
241| SF:le>LigmarChat</title>\n\x20\x20<base\x20href=\"/\">\n\n\x20\x20<meta\x2
242| SF:0name=\"viewport\"\x20content=\"width=device-width,\x20initial-scale=1\
243| SF:">\n\x20\x20<link\x20rel=\"icon\"\x20type=\"image/x-icon\"\x20href=\"fa
244| SF:vicon\.ico\">\n\x20\x20<link\x20href=\"https://fonts\.googleapis\.com/c
245| SF:ss\?family=Roboto:300,400,500\"\x20rel=\"stylesheet\">\n\x20\x20<link\x
246| SF:20href=\"https://fonts\.googleapis\.com/icon\?family=Material\+Icons\"\
247| SF:x20rel=\"stylesheet\">\n\x20\x20<script\x20src=\"https://cdn\.jsdelivr\
248| SF:.net/npm/jquery@3\.4\.1/dist/jquery\.min\.js\"></script>\n\x20\x20<link
249| SF:\x20rel=\"stylesheet\"\x20href=\"https://cdn\.jsdelivr\.net/gh/fancyapp
250| SF:s/fancybox@3\.5\.7/dist/jquery\.fancy")%r(HTTPOptions,DF,"HTTP/1\.1\x20
251| SF:200\x20OK\r\nAllow:\x20GET,HEAD\r\nContent-Type:\x20text/html;\x20chars
252| SF:et=utf-8\r\nContent-Length:\x208\r\nETag:\x20W/\"8-ZRAf8oNBS3Bjb/SU2GYZ
253| SF:CmbtmXg\"\r\nVary:\x20Accept-Encoding\r\nDate:\x20Mon,\x2011\x20May\x20
254| SF:2020\x2016:26:25\x20GMT\r\nConnection:\x20close\r\n\r\nGET,HEAD")%r(RTS
255| SF:PRequest,1C,"HTTP/1\.1\x20400\x20Bad\x20Request\r\n\r\n")%r(RPCCheck,1C
256| SF:,"HTTP/1\.1\x20400\x20Bad\x20Request\r\n\r\n")%r(DNSVersionBindReqTCP,1
257| SF:C,"HTTP/1\.1\x20400\x20Bad\x20Request\r\n\r\n")%r(DNSStatusRequestTCP,1
258| SF:C,"HTTP/1\.1\x20400\x20Bad\x20Request\r\n\r\n")%r(Help,1C,"HTTP/1\.1\x2
259| SF:0400\x20Bad\x20Request\r\n\r\n")%r(SSLSessionReq,1C,"HTTP/1\.1\x20400\x
260| SF:20Bad\x20Request\r\n\r\n")%r(TerminalServerCookie,1C,"HTTP/1\.1\x20400\
261| SF:x20Bad\x20Request\r\n\r\n")%r(TLSSessionReq,1C,"HTTP/1\.1\x20400\x20Bad
262| SF:\x20Request\r\n\r\n")%r(Kerberos,1C,"HTTP/1\.1\x20400\x20Bad\x20Request
263| SF:\r\n\r\n");
264| Aggressive OS guesses: Linux 3.10 - 4.11 (96%), Linux 3.11 - 4.1 (96%), Linux 2.6.18 - 2.6.22 (94%), Linux 3.16 - 4.6 (94%), Linux 3.2 - 4.9 (93%), Linux 3.16 (92%), Linux 4.10 (92%), Linux 3.13 (92%), Linux 3.2 - 3.8 (92%), Linux 4.0 (92%)
265| No exact OS matches for host (test conditions non-ideal).
266| Uptime guess: 102.823 days (since Wed Jan 29 18:41:19 2020)
267| Network Distance: 9 hops
268| TCP Sequence Prediction: Difficulty=263 (Good luck!)
269| IP ID Sequence Generation: All zeros
270| Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
271|
272| TRACEROUTE (using port 199/tcp)
273| HOP RTT ADDRESS
274| 1 9.66 ms 192.168.0.1
275| 2 7.85 ms 254.255.57.37.triolan.net (37.57.255.254)
276| 3 7.94 ms 10.38.100.254
277| 4 31.11 ms 178.18.230.251.dataix (178.18.230.251)
278| 5 ...
279| 6 21.38 ms 10.0.92.141
280| 7 24.16 ms ddos-guard.net (185.129.103.17)
281| 8 28.16 ms 10.254.1.2
282| 9 25.69 ms hosted-by.ihc.ru (185.87.193.242)
283|
284| NSE: Script Post-scanning.
285| Initiating NSE at 15:26
286| Completed NSE at 15:26, 0.00s elapsed
287| Initiating NSE at 15:26
288| Completed NSE at 15:26, 0.00s elapsed
289| Initiating NSE at 15:26
290| Completed NSE at 15:26, 0.00s elapsed
291| Read data files from: /usr/bin/../share/nmap
292| OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
293| Nmap done: 1 IP address (1 host up) scanned in 39.51 seconds
294| Raw packets sent: 1096 (50.636KB) | Rcvd: 1040 (43.008KB)
295===================================================================================================
296|
297| Directory check:
298| Skipped because https://ligmar.ru/uniscan410/ did not return the code 404
299===================================================================================================
300|
301| File check:
302| Skipped because https://ligmar.ru/uniscan109/ did not return the code 404
303===================================================================================================
304|
305| Check robots.txt:
306|
307| Check sitemap.xml:
308===================================================================================================
309|
310| Crawler Started:
311| Plugin name: External Host Detect v.1.2 Loaded.
312| Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
313| Plugin name: Upload Form Detect v.1.1 Loaded.
314| Plugin name: E-mail Detection v.1.1 Loaded.
315| Plugin name: phpinfo() Disclosure v.1 Loaded.
316| Plugin name: Code Disclosure v.1.1 Loaded.
317| Plugin name: FCKeditor upload test v.1 Loaded.
318| Plugin name: Web Backdoor Disclosure v.1.1 Loaded.
319| [+] Crawling finished, 5 URL's found!
320|
321| External hosts:
322|
323| Timthumb:
324|
325| File Upload Forms:
326|
327| E-mails:
328|
329| PHPinfo() Disclosure:
330|
331| Source Code Disclosure:
332|
333| FCKeditor File Upload:
334|
335| Web Backdoors:
336|
337| Ignored Files:
338===================================================================================================
339| Dynamic tests:
340| Plugin name: Learning New Directories v.1.2 Loaded.
341| Plugin name: FCKedior tests v.1.1 Loaded.
342| Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
343| Plugin name: Find Backup Files v.1.2 Loaded.
344| Plugin name: Blind SQL-injection tests v.1.3 Loaded.
345| Plugin name: Local File Include tests v.1.1 Loaded.
346| Plugin name: PHP CGI Argument Injection v.1.1 Loaded.
347| Plugin name: Remote Command Execution tests v.1.1 Loaded.
348| Plugin name: Remote File Include tests v.1.2 Loaded.
349| Plugin name: SQL-injection tests v.1.2 Loaded.
350| Plugin name: Cross-Site Scripting tests v.1.2 Loaded.
351| Plugin name: Web Shell Finder v.1.3 Loaded.
352| [+] 0 New directories added
353|
354|
355| FCKeditor tests:
356| Skipped because https://ligmar.ru/testing123 did not return the code 404
357|
358|
359| Timthumb < 1.33 vulnerability:
360|
361|
362| Backup Files:
363| Skipped because https://ligmar.ru/testing123 did not return the code 404
364|
365|
366| Blind SQL Injection:
367|
368|
369| Local File Include:
370|
371|
372| PHP CGI Argument Injection:
373|
374|
375| Remote Command Execution:
376|
377|
378| Remote File Include:
379|
380|
381| SQL Injection:
382|
383|
384| Cross-Site Scripting (XSS):
385|
386|
387| Web Shell Finder:
388===================================================================================================
389| Static tests:
390| Plugin name: Local File Include tests v.1.1 Loaded.
391| Plugin name: Remote Command Execution tests v.1.1 Loaded.
392| Plugin name: Remote File Include tests v.1.1 Loaded.
393|
394|
395| Local File Include:
396|
397|
398| Remote Command Execution:
399|
400|
401| Remote File Include:
402===================================================================================================
403Scan end date: 11-5-2020 15:27:47