· 6 years ago · Feb 10, 2020, 02:46 AM
1#####################################################################################################################################
2======================================================================================================================================
3Hostname forum.schicksal-und-herausforderung.de ISP Host Europe GmbH
4Continent Europe Flag
5DE
6Country Germany Country Code DE
7Region North Rhine-Westphalia Local time 10 Feb 2020 02:30 CET
8City Unknown Postal Code Unknown
9IP Address 85.25.208.92 Latitude 51.448
10 Longitude 7.012
11======================================================================================================================================
12####################################################################################################################################
13> forum.schicksal-und-herausforderung.de
14Server: 38.132.106.139
15Address: 38.132.106.139#53
16
17Non-authoritative answer:
18Name: forum.schicksal-und-herausforderung.de
19Address: 85.25.208.92
20>
21#####################################################################################################################################
22[+] Target : forum.schicksal-und-herausforderung.de
23
24[+] IP Address : 85.25.208.92
25
26[+] Headers :
27
28[+] Accept-Ranges : bytes
29[+] Content-Encoding : gzip
30[+] Content-Type : text/html
31[+] Date : Mon, 10 Feb 2020 01:34:39 GMT
32[+] Etag : "5e136fac-cf0"
33[+] Last-Modified : Mon, 06 Jan 2020 17:34:36 GMT
34[+] Server : nginx/1.17.1
35[+] Vary : Accept-Encoding
36[+] Content-Length : 1689
37
38[+] SSL Certificate Information :
39
40[+] commonName : gsa-forum.de
41[+] countryName : US
42[+] organizationName : Let's Encrypt
43[+] commonName : Let's Encrypt Authority X3
44[+] Version : 3
45[+] Serial Number : 03D025F32942AEBCA1132CAC9B4B3F407180
46[+] Not Before : Dec 24 15:13:51 2019 GMT
47[+] Not After : Mar 23 15:13:51 2020 GMT
48[+] OCSP : ('http://ocsp.int-x3.letsencrypt.org',)
49[+] subject Alt Name : (('DNS', 'forum.schicksal-und-herausforderung.de'), ('DNS', 'gsa-forum.de'), ('DNS', 'www.gsa-forum.de'))
50[+] CA Issuers : ('http://cert.int-x3.letsencrypt.org/',)
51
52[+] Whois Lookup :
53
54[+] NIR : None
55[+] ASN Registry : ripencc
56[+] ASN : 8972
57[+] ASN CIDR : 85.25.208.0/22
58[+] ASN Country Code : DE
59[+] ASN Date : 2005-12-05
60[+] ASN Description : GD-EMEA-DC-SXB1, DE
61[+] cidr : 85.25.176.0/20, 85.25.192.0/20, 85.25.208.0/22
62[+] name : DE-GODADDY-20050301
63[+] handle : GDDY
64[+] range : 85.25.176.0 - 85.25.211.255
65[+] description : GoDaddy
66[+] country : DE
67[+] state : None
68[+] city : None
69[+] address : Hansestrasse 79
7051149
71Cologne
72GERMANY
73[+] postal_code : None
74[+] emails : None
75[+] created : 2019-03-11T13:53:36Z
76[+] updated : 2019-06-04T10:47:59Z
77
78[+] Crawling Target...
79
80[+] Looking for robots.txt........[ Found ]
81[+] Extracting robots Links.......[ 0 ]
82[+] Looking for sitemap.xml.......[ Found ]
83[+] Extracting sitemap Links......[ 0 ]
84[+] Extracting CSS Links..........[ 0 ]
85[+] Extracting Javascript Links...[ 0 ]
86[+] Extracting Internal Links.....[ 0 ]
87[+] Extracting External Links.....[ 1 ]
88[+] Extracting Images.............[ 2 ]
89
90[+] Total Links Extracted : 3
91
92[+] Dumping Links in /opt/FinalRecon/dumps/forum.schicksal-und-herausforderung.de.dump
93[+] Completed!
94####################################################################################################################################
95[i] Scanning Site: https://forum.schicksal-und-herausforderung.de
96
97
98
99B A S I C I N F O
100====================
101
102
103[+] Site Title: Gemeinsam statt allein
104[+] IP address: 85.25.208.92
105[+] Web Server: nginx/1.17.1
106[+] CMS: Could Not Detect
107[+] Cloudflare: Not Detected
108[+] Robots File: Found
109
110-------------[ contents ]----------------
111<!DOCTYPE html>
112
113<html>
114<head>
115<title>Gemeinsam statt allein</title>
116<meta charset="UTF-8">
117</head>
118
119<body>
120
121<style>
122body {
123 background-color: rgb(238, 243, 236);
124}
125
126p {
127 color: #333333;
128 line-height: 1.4em;
129 font-family: "Lucida Grande", "Trebuchet MS", Verdana, Helvetica, Arial, sans-serif;
130}
131
132a {
133 color: #4b7126;
134}
135
136a:hover {
137 color: #1811d3
138}
139
140h1 {
141 color: #4b7126;
142 margin-top: .5em;
143}
144
145.wrapper {
146 max-width: 950px;
147 padding: 10px 20px;
148 border-radius: 10px;
149 margin: auto;
150 background-color: white;
151}
152
153.center {
154 text-align: center;
155}
156
157.wrapper p {
158 text-align: justify;
159 margin: 2rem 0;
160}
161
162.item {
163 background-color: rgb(238, 243, 236);
164 padding: .5rem 2rem;
165 border-radius: 10px;
166 margin: 10px 0;
167}
168
169.header {
170 text-align: right;
171 color: #4b7126;
172 text-decoration: underline;
173}
174</style>
175
176<div class="wrapper">
177<img src="/banner.jpg" style="width: 100%">
178<div class="item">
179
180 <div class="header">
181 <time>25.11.2019</time>
182 </div>
183
184 <div class="center">
185 <h1>GSA wegen Umbauarbeiten geschlossen</h1>
186 <img src="https://upload.wikimedia.org/wikipedia/commons/f/f4/Baustelle.svg" width="274" height="240" class="center">
187 </div>
188
189 <p>
190 Liebe GSA-Nutzer,
191 </p>
192
193 <p>
194 wir haben uns nach einer Teambesprechung dazu entschlossen, das Forum erst einmal <strong>bis auf weiteres zu schließen</strong>. Wir hoffen, GSA zu Beginn des nächsten Jahres wieder zu öffnen.
195 </p>
196 <p>
197 Wie bereits bekannt gab es Differenzen innerhalb des Teams, die wir in den nächsten Wochen ausräumen wollen. Dazu wollen wir uns außerden über die grundsätzliche Ausrichtung des Forums Gedanken machen und diese ebenfalls umsetzen, während das Forum für die Öffentlichkeit geschlossen ist. In letzter Zeit sind die Diskussionen im Forum zum Teil sehr hitzig geworden, und mit der Schließung des Forum möchten wir jetzt einen Cut machen und die Gerüchteküche abkühlen lassen.
198 </p>
199
200 <p>
201 Wir wollen euch in der Zeit aber auch nicht ganz alleine lassen. In akuten Fällen könnt ihr euch weiterhin per Mail an die Adresse <a href="mailto:mail@gsa-forum.de">mail@gsa-forum.de</a> wenden. Außerdem steht euch weiterhin der <a href="https://suh-ev.de/selbsthilfechat/index.html">Selbsthilfechat "Die Pädobären-Bande"</a> jeden Montag, Freitag und Samstag ab 20 Uhr für den Austausch offen.
202 </p>
203
204 <p>
205 Wir halten euch auf dieser Seite über Neuigkeiten auf dem Laufenden. Außerdem werden wir alle im Forum registrierten Nutzer per Mail informieren, sobald wir das Forum wieder eröffnen.
206 </p>
207
208 <p>
209 Viele Grüße und frohe Weihnachten,<br/>
210 Euer GSA-Team
211 </p>
212 </div>
213
214<div class="item">
215<div class="header"><time>06.01.2020</time></div>
216
217<div class="center">
218<h1>Update</h1>
219</div>
220
221<p>
222Wie versprochen ein Update von uns. Den Dezember über waren wir schon fleißig und haben einiges geklärt und die Struktur und Regeln des Forums komplett überarbeitet. Die Regeln sind jetzt klarer und vor allem übersichtlicher gestaltet. Der Aufbau unseres Teams wird in Zukunft klarer kommuniziert werden und wir haben Strukturen geschaffen, die die bisherigen Probleme lösen helfen sollten.
223</p>
224
225<p>
226Aktuell arbeiten wir an klaren Absprachen wie genau wir künftig moderieren wollen, damit das in Zukunft konsistenter abläuft, und räumen das Forum ein bisschen auf.
227</p>
228
229</div>
230</div>
231
232
233
234</body>
235
236</html>
237
238-----------[end of contents]-------------
239
240
241
242W H O I S L O O K U P
243========================
244
245 error check your api query
246
247
248
249G E O I P L O O K U P
250=========================
251
252[i] IP Address: 85.25.208.92
253[i] Country: Germany
254[i] State: North Rhine-Westphalia
255[i] City:
256[i] Latitude: 51.4476
257[i] Longitude: 7.0122
258
259
260
261
262H T T P H E A D E R S
263=======================
264
265
266[i] HTTP/1.0 200 OK
267[i] Accept-Ranges: bytes
268[i] Content-Length: 3312
269[i] Content-Type: text/html
270[i] Date: Mon, 10 Feb 2020 01:35:10 GMT
271[i] Etag: "5e136fac-cf0"
272[i] Last-Modified: Mon, 06 Jan 2020 17:34:36 GMT
273[i] Server: nginx/1.17.1
274[i] Vary: Accept-Encoding
275
276
277
278
279D N S L O O K U P
280===================
281
282forum.schicksal-und-herausforderung.de. 21599 IN A 85.25.208.92
283
284
285
286
287S U B N E T C A L C U L A T I O N
288====================================
289
290Address = 85.25.208.92
291Network = 85.25.208.92 / 32
292Netmask = 255.255.255.255
293Broadcast = not needed on Point-to-Point links
294Wildcard Mask = 0.0.0.0
295Hosts Bits = 0
296Max. Hosts = 1 (2^0 - 0)
297Host Range = { 85.25.208.92 - 85.25.208.92 }
298
299
300
301N M A P P O R T S C A N
302============================
303
304Starting Nmap 7.70 ( https://nmap.org ) at 2020-02-10 01:35 UTC
305Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
306Host is up (0.088s latency).
307rDNS record for 85.25.208.92: mail.suh-ev.de
308
309PORT STATE SERVICE
31021/tcp closed ftp
31122/tcp open ssh
31223/tcp closed telnet
31380/tcp open http
314110/tcp open pop3
315143/tcp open imap
316443/tcp open https
3173389/tcp closed ms-wbt-server
318
319Nmap done: 1 IP address (1 host up) scanned in 0.74 seconds
320###################################################################################################################################
321[+] Starting At 2020-02-09 20:36:47.750203
322[+] Collecting Information On: https://forum.schicksal-und-herausforderung.de/
323[#] Status: 200
324--------------------------------------------------
325[#] Web Server Detected: nginx/1.17.1
326[!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
327- Accept-Ranges: bytes
328- Content-Encoding: gzip
329- Content-Type: text/html
330- Date: Mon, 10 Feb 2020 01:36:38 GMT
331- Etag: "5e136fac-cf0"
332- Last-Modified: Mon, 06 Jan 2020 17:34:36 GMT
333- Server: nginx/1.17.1
334- Vary: Accept-Encoding
335- Content-Length: 1689
336--------------------------------------------------
337[#] Finding Location..!
338[#] status: success
339[#] country: Germany
340[#] countryCode: DE
341[#] region: NW
342[#] regionName: North Rhine-Westphalia
343[#] city: Cologne
344[#] zip: 51149
345[#] lat: 50.9126
346[#] lon: 7.05755
347[#] timezone: Europe/Berlin
348[#] isp: Host Europe GmbH
349[#] org: Host Europe GmbH
350[#] as: AS8972 GD-EMEA-DC-SXB1
351[#] query: 85.25.208.92
352--------------------------------------------------
353[x] Didn't Detect WAF Presence on: https://forum.schicksal-und-herausforderung.de/
354--------------------------------------------------
355[#] Starting Reverse DNS
356[-] Failed ! Fail
357--------------------------------------------------
358[!] Scanning Open Port
359[#] 22/tcp open ssh
360[#] 80/tcp open http
361[#] 110/tcp open pop3
362[#] 143/tcp open imap
363[#] 443/tcp open https
364[#] 465/tcp open smtps
365[#] 587/tcp open submission
366[#] 993/tcp open imaps
367[#] 995/tcp open pop3s
368[#] 2222/tcp open EtherNetIP-1
369--------------------------------------------------
370[+] Getting SSL Info
371{'OCSP': ('http://ocsp.int-x3.letsencrypt.org',),
372 'caIssuers': ('http://cert.int-x3.letsencrypt.org/',),
373 'issuer': ((('countryName', 'US'),),
374 (('organizationName', "Let's Encrypt"),),
375 (('commonName', "Let's Encrypt Authority X3"),)),
376 'notAfter': 'Mar 23 15:14:41 2020 GMT',
377 'notBefore': 'Dec 24 15:14:41 2019 GMT',
378 'serialNumber': '035F0E9E0213CC5291B836D281EFA05BF712',
379 'subject': ((('commonName', 'schicksal-und-herausforderung.de'),),),
380 'subjectAltName': (('DNS', 'schicksal-und-herausforderung.de'),
381 ('DNS', 'www.schicksal-und-herausforderung.de')),
382 'version': 3}
383-----BEGIN CERTIFICATE-----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402-----END CERTIFICATE-----
403
404--------------------------------------------------
405[+] Collecting Information Disclosure!
406[#] Detecting sitemap.xml file
407[-] sitemap.xml file not Found!?
408[#] Detecting robots.txt file
409[-] robots.txt file not Found!?
410[#] Detecting GNU Mailman
411[-] GNU Mailman App Not Detected!?
412--------------------------------------------------
413[+] Crawling Url Parameter On: https://forum.schicksal-und-herausforderung.de/
414--------------------------------------------------
415[#] Searching Html Form !
416[-] No Html Form Found!?
417--------------------------------------------------
418[-] No DOM Paramter Found!?
419--------------------------------------------------
420[-] No internal Dynamic Parameter Found!?
421--------------------------------------------------
422[-] No external Dynamic Paramter Found!?
423--------------------------------------------------
424[!] 1 Internal links Discovered
425[+] https://forum.schicksal-und-herausforderung.de//mailto:mail@gsa-forum.de
426--------------------------------------------------
427[!] 1 External links Discovered
428[#] https://suh-ev.de/selbsthilfechat/index.html
429--------------------------------------------------
430[#] Mapping Subdomain..
431[!] Found 8 Subdomain
432- www2.schicksal-und-herausforderung.de
433- mail.schicksal-und-herausforderung.de
434- webmail.schicksal-und-herausforderung.de
435- forum.schicksal-und-herausforderung.de
436- git.schicksal-und-herausforderung.de
437- test.schicksal-und-herausforderung.de
438- srv.schicksal-und-herausforderung.de
439- www.schicksal-und-herausforderung.de
440--------------------------------------------------
441[!] Done At 2020-02-09 20:37:09.935340
442#####################################################################################################################################
443[INFO] ------TARGET info------
444[*] TARGET: https://forum.schicksal-und-herausforderung.de/
445[*] TARGET IP: 85.25.208.92
446[INFO] NO load balancer detected for forum.schicksal-und-herausforderung.de...
447[*] DNS servers: ns1.domainoffensive.de.
448[*] TARGET server:
449[*] CC: DE
450[*] Country: Germany
451[*] RegionCode: NW
452[*] RegionName: North Rhine-Westphalia
453[*] City: Cologne
454[*] ASN: AS8972
455[*] BGP_PREFIX: 85.25.208.0/22
456[*] ISP: GD-EMEA-DC-SXB1 Host Europe GmbH, DE
457[INFO] SSL/HTTPS certificate detected
458[*] Issuer: issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
459[*] Subject: subject=CN = gsa-forum.de
460[ALERT] Let's Encrypt is commonly used for Phishing
461[INFO] DNS enumeration:
462[*] ad.schicksal-und-herausforderung.de 85.25.208.92
463[*] admin.schicksal-und-herausforderung.de 85.25.208.92
464[*] ads.schicksal-und-herausforderung.de 85.25.208.92
465[*] alpha.schicksal-und-herausforderung.de 85.25.208.92
466[*] api.schicksal-und-herausforderung.de 85.25.208.92
467[*] api-online.schicksal-und-herausforderung.de 85.25.208.92
468[*] apolo.schicksal-und-herausforderung.de 85.25.208.92
469[*] app.schicksal-und-herausforderung.de 85.25.208.92
470[*] beta.schicksal-und-herausforderung.de 85.25.208.92
471[*] bi.schicksal-und-herausforderung.de 85.25.208.92
472[*] blog.schicksal-und-herausforderung.de 85.25.208.92
473[*] cdn.schicksal-und-herausforderung.de 85.25.208.92
474[*] events.schicksal-und-herausforderung.de 85.25.208.92
475[*] ex.schicksal-und-herausforderung.de 85.25.208.92
476[*] files.schicksal-und-herausforderung.de 85.25.208.92
477[*] ftp.schicksal-und-herausforderung.de 85.25.208.92
478[*] gateway.schicksal-und-herausforderung.de 85.25.208.92
479[*] go.schicksal-und-herausforderung.de 85.25.208.92
480[*] help.schicksal-und-herausforderung.de 85.25.208.92
481[*] ib.schicksal-und-herausforderung.de 85.25.208.92
482[*] images.schicksal-und-herausforderung.de 85.25.208.92
483[*] internetbanking.schicksal-und-herausforderung.de 85.25.208.92
484[*] intranet.schicksal-und-herausforderung.de 85.25.208.92
485[*] jobs.schicksal-und-herausforderung.de 85.25.208.92
486[*] join.schicksal-und-herausforderung.de 85.25.208.92
487[*] live.schicksal-und-herausforderung.de 85.25.208.92
488[*] login.schicksal-und-herausforderung.de 85.25.208.92
489[*] m.schicksal-und-herausforderung.de 85.25.208.92
490[*] mail.schicksal-und-herausforderung.de 85.25.208.92
491[*] mail2.schicksal-und-herausforderung.de 85.25.208.92
492[*] mobile.schicksal-und-herausforderung.de 85.25.208.92
493[*] moodle.schicksal-und-herausforderung.de 85.25.208.92
494[*] mx.schicksal-und-herausforderung.de 85.25.208.92
495[*] mx2.schicksal-und-herausforderung.de 85.25.208.92
496[*] mx3.schicksal-und-herausforderung.de 85.25.208.92
497[*] my.schicksal-und-herausforderung.de 85.25.208.92
498[*] new.schicksal-und-herausforderung.de 85.25.208.92
499[*] news.schicksal-und-herausforderung.de 85.25.208.92
500[*] ns1.schicksal-und-herausforderung.de 85.25.208.92
501[*] ns2.schicksal-und-herausforderung.de 85.25.208.92
502[*] ns3.schicksal-und-herausforderung.de 85.25.208.92
503[*] oauth.schicksal-und-herausforderung.de 85.25.208.92
504[*] old.schicksal-und-herausforderung.de 85.25.208.92
505[*] one.schicksal-und-herausforderung.de 85.25.208.92
506[*] open.schicksal-und-herausforderung.de 85.25.208.92
507[*] out.schicksal-und-herausforderung.de 85.25.208.92
508[*] outlook.schicksal-und-herausforderung.de 85.25.208.92
509[*] portfolio.schicksal-und-herausforderung.de 85.25.208.92
510[*] raw.schicksal-und-herausforderung.de 85.25.208.92
511[*] repo.schicksal-und-herausforderung.de 85.25.208.92
512[*] router.schicksal-und-herausforderung.de 85.25.208.92
513[*] search.schicksal-und-herausforderung.de 85.25.208.92
514[*] siem.schicksal-und-herausforderung.de 85.25.208.92
515[*] slack.schicksal-und-herausforderung.de 85.25.208.92
516[*] slackbot.schicksal-und-herausforderung.de 85.25.208.92
517[*] snmp.schicksal-und-herausforderung.de 85.25.208.92
518[*] stream.schicksal-und-herausforderung.de 85.25.208.92
519[*] support.schicksal-und-herausforderung.de 85.25.208.92
520[*] syslog.schicksal-und-herausforderung.de 85.25.208.92
521[*] tags.schicksal-und-herausforderung.de 85.25.208.92
522[*] test.schicksal-und-herausforderung.de 85.25.208.92
523[*] upload.schicksal-und-herausforderung.de 85.25.208.92
524[*] video.schicksal-und-herausforderung.de 85.25.208.92
525[*] vpn.schicksal-und-herausforderung.de 85.25.208.92
526[*] webconf.schicksal-und-herausforderung.de 85.25.208.92
527[*] webmail.schicksal-und-herausforderung.de 85.25.208.92
528[*] webportal.schicksal-und-herausforderung.de 85.25.208.92
529[*] wiki.schicksal-und-herausforderung.de 85.25.208.92
530[*] www2.schicksal-und-herausforderung.de 85.25.208.92
531[*] www3.schicksal-und-herausforderung.de 85.25.208.92
532[*] zendesk.schicksal-und-herausforderung.de 85.25.208.92
533[INFO] Possible abuse mails are:
534[*] abuse@forum.schicksal-und-herausforderung.de
535[*] abuse@hosteurope.de
536[*] abuse@schicksal-und-herausforderung.de
537[INFO] NO PAC (Proxy Auto Configuration) file FOUND
538[ALERT] robots.txt file FOUND in http://forum.schicksal-und-herausforderung.de/robots.txt
539[INFO] Checking for HTTP status codes recursively from http://forum.schicksal-und-herausforderung.de/robots.txt
540[INFO] Status code Folders
541[INFO] Starting FUZZing in http://forum.schicksal-und-herausforderung.de/FUzZzZzZzZz...
542[INFO] Status code Folders
543[*] 200 http://forum.schicksal-und-herausforderung.de/index
544[*] 200 http://forum.schicksal-und-herausforderung.de/images
545[*] 200 http://forum.schicksal-und-herausforderung.de/download
546[*] 200 http://forum.schicksal-und-herausforderung.de/2006
547[*] 200 http://forum.schicksal-und-herausforderung.de/news
548[*] 200 http://forum.schicksal-und-herausforderung.de/crack
549[*] 200 http://forum.schicksal-und-herausforderung.de/serial
550[*] 200 http://forum.schicksal-und-herausforderung.de/warez
551[*] 200 http://forum.schicksal-und-herausforderung.de/full
552[*] 200 http://forum.schicksal-und-herausforderung.de/12
553[ALERT] Look in the source code. It may contain passwords
554[ALERT] Content in http://forum.schicksal-und-herausforderung.de/ AND http://www.forum.schicksal-und-herausforderung.de/ is different
555[INFO] MD5 for http://forum.schicksal-und-herausforderung.de/ is: 5de6e25acb31a21567a4a27e3e81518b
556[INFO] MD5 for http://www.forum.schicksal-und-herausforderung.de/ is: d41d8cd98f00b204e9800998ecf8427e
557[INFO] http://forum.schicksal-und-herausforderung.de/ redirects to https://forum.schicksal-und-herausforderung.de:443/
558[INFO] http://www.forum.schicksal-und-herausforderung.de/ redirects to https://www.forum.schicksal-und-herausforderung.de:443/
559
560Recherche 85.25.208.92
561Connexion HTTP à 85.25.208.92
562Envoi de la requête HTTP.
563Requête HTTP envoyée. Attente de réponse.
564HTTP/1.0 302 Found
565Transfert de données terminé
566HTTP/1.0 302 Found
567Utilisation de https://85.25.208.92:443/
568Recherche 85.25.208.92
569Connexion HTTPS à 85.25.208.92
570
571lynx : accès impossible au fichier de départ http://85.25.208.92/
572[INFO] Links found from https://forum.schicksal-und-herausforderung.de/ http://85.25.208.92/:
573[*] https://suh-ev.de/selbsthilfechat/index.html
574cut: intervalle de champ incorrecte
575Saisissez « cut --help » pour plus d'informations.
576[INFO] Shodan detected the following opened ports on 85.25.208.92:
577[*] 1
578[*] 123
579[*] 143
580[*] 22
581[*] 2222
582[*] 25
583[*] 25565
584[*] 27015
585[*] 4
586[*] 443
587[*] 80
588[*] 993
589[*] 995
590[INFO] ------VirusTotal SECTION------
591[INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
592[INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
593[INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
594[INFO] ------Alexa Rank SECTION------
595[INFO] Percent of Visitors Rank in Country:
596[INFO] Percent of Search Traffic:
597[INFO] Percent of Unique Visits:
598[INFO] Total Sites Linking In:
599[*] Total Sites
600[INFO] Useful links related to forum.schicksal-und-herausforderung.de - 85.25.208.92:
601[*] https://www.virustotal.com/pt/ip-address/85.25.208.92/information/
602[*] https://www.hybrid-analysis.com/search?host=85.25.208.92
603[*] https://www.shodan.io/host/85.25.208.92
604[*] https://www.senderbase.org/lookup/?search_string=85.25.208.92
605[*] https://www.alienvault.com/open-threat-exchange/ip/85.25.208.92
606[*] http://pastebin.com/search?q=85.25.208.92
607[*] http://urlquery.net/search.php?q=85.25.208.92
608[*] http://www.alexa.com/siteinfo/forum.schicksal-und-herausforderung.de
609[*] http://www.google.com/safebrowsing/diagnostic?site=forum.schicksal-und-herausforderung.de
610[*] https://censys.io/ipv4/85.25.208.92
611[*] https://www.abuseipdb.com/check/85.25.208.92
612[*] https://urlscan.io/search/#85.25.208.92
613[*] https://github.com/search?q=85.25.208.92&type=Code
614[INFO] Useful links related to AS8972 - 85.25.208.0/22:
615[*] http://www.google.com/safebrowsing/diagnostic?site=AS:8972
616[*] https://www.senderbase.org/lookup/?search_string=85.25.208.0/22
617[*] http://bgp.he.net/AS8972
618[*] https://stat.ripe.net/AS8972
619[INFO] Date: 09/02/20 | Time: 20:38:37
620[INFO] Total time: 1 minute(s) and 46 second(s)
621#####################################################################################################################################
622Trying "forum.schicksal-und-herausforderung.de"
623;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45086
624;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 0
625
626;; QUESTION SECTION:
627;forum.schicksal-und-herausforderung.de. IN ANY
628
629;; ANSWER SECTION:
630forum.schicksal-und-herausforderung.de. 43200 IN A 85.25.208.92
631
632;; AUTHORITY SECTION:
633schicksal-und-herausforderung.de. 43200 IN NS ns2.domainoffensive.eu.
634schicksal-und-herausforderung.de. 43200 IN NS ns3.domainoffensive.net.
635schicksal-und-herausforderung.de. 43200 IN NS ns1.domainoffensive.de.
636
637Received 179 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 381 ms
638####################################################################################################################################
639; <<>> DiG 9.11.14-3-Debian <<>> +trace forum.schicksal-und-herausforderung.de any
640;; global options: +cmd
641. 85111 IN NS d.root-servers.net.
642. 85111 IN NS f.root-servers.net.
643. 85111 IN NS b.root-servers.net.
644. 85111 IN NS e.root-servers.net.
645. 85111 IN NS a.root-servers.net.
646. 85111 IN NS i.root-servers.net.
647. 85111 IN NS g.root-servers.net.
648. 85111 IN NS c.root-servers.net.
649. 85111 IN NS h.root-servers.net.
650. 85111 IN NS l.root-servers.net.
651. 85111 IN NS j.root-servers.net.
652. 85111 IN NS m.root-servers.net.
653. 85111 IN NS k.root-servers.net.
654. 85111 IN RRSIG NS 8 0 518400 20200222170000 20200209160000 33853 . kvTWx2TW/FGVJ3mHOUSypsdNwk5pCr5xW5CpRx07sl+WV850+5v9rRW9 ouo0+sb8GXuWIhQTF+7FkOYIOjYHe14xzb0N1O3lGbpx03jTsB+y8M9o 157y7MRONL1ki04SvZUou1Hj13MqgqG39+RmWIEzGL+X7M5/zn/fp9i9 TxczFvrrL9L8c+aR8/9bi13s5fVRznWIpiKv9BgxaGCeuqMYc5ZxvpKT HQn+nsciTPxxP5cUS3kmBxpBhHDRkkmqvb0EOMtcx26CzPOpaRydGnnN THmbFz7iQjddZjPXPTh9iFqaIy+0c0W7Nx/fqxDDfUaotRu5/AH5ct4y UkSyNw==
655;; Received 525 bytes from 38.132.106.139#53(38.132.106.139) in 261 ms
656
657de. 172800 IN NS s.de.net.
658de. 172800 IN NS n.de.net.
659de. 172800 IN NS a.nic.de.
660de. 172800 IN NS f.nic.de.
661de. 172800 IN NS l.de.net.
662de. 172800 IN NS z.nic.de.
663de. 86400 IN DS 45580 8 2 918C32E2F12211766BE6226674F447458F2259B9A0D87B44D29D55AF ECA6B2E1
664de. 86400 IN RRSIG DS 8 1 86400 20200222170000 20200209160000 33853 . RuDTqNErfQcS2Xy//DhEb1wb2nL4F0ArFj/uvovbLFEbi6A9ckE6saH9 v/JymXfg0u8nzecAQ1WiGCVlLvdU1TFfKCPpaTRfT+QVOPsDt+0El6Bd C3QP/SW1+iSmXHP2eux0g98wFvigvcuwRzNpH5FV+hmzwC3D00u2P/qe ZhXM1yyBEm9K5q/Wd6+wXIcddXKxU5TWmzoTEiGjGtxzIADegBwqCkYO WatwPrQBjfkTpxNMo4CoDkGUa11cUgRL+iyB/Wu3uIQ1SRah12WOotQU K8T9secFGlBZ6LkXnhVaRraM83dMXmv3uB/pZJd11WOWzdngVxnxZ41r ktvdkQ==
665;; Received 744 bytes from 2001:503:ba3e::2:30#53(a.root-servers.net) in 50 ms
666
667schicksal-und-herausforderung.de. 86400 IN NS ns1.domainoffensive.de.
668schicksal-und-herausforderung.de. 86400 IN NS ns2.domainoffensive.eu.
669schicksal-und-herausforderung.de. 86400 IN NS ns3.domainoffensive.net.
670tjlb7qbojvmlf1s6gdriru7vsms1lg16.de. 7200 IN NSEC3 1 1 15 CA12B74ADB90591A TJLG9BE83U1BLVBVCTP8RIQP60D6ATDP NS SOA RRSIG DNSKEY NSEC3PARAM
671iqa81cu7uigtthhn8ofp4qv1llsdt5t3.de. 7200 IN NSEC3 1 1 15 CA12B74ADB90591A IQAA3M53DJIU9B783BIMU6H9U0C7CJ5C A MX RRSIG
672tjlb7qbojvmlf1s6gdriru7vsms1lg16.de. 7200 IN RRSIG NSEC3 8 2 7200 20200218121150 20200204104150 15771 de. rN4bx538Dx8/5avOjzA8bA/vgLxMRaUYWO5xXe7SuhSjOLDSgSGlJLqI +ISAf1rOykYtVuKH9pwIeaIghwpxfaIGLC7xG3sCcrm/Tmv6ZsXC6fbM 1vgYV0egmPAxXpZPUCK6pxNKm9SsR5qI5Z97z8CWM4VwUd+oonvOloXd 3wo=
673iqa81cu7uigtthhn8ofp4qv1llsdt5t3.de. 7200 IN RRSIG NSEC3 8 2 7200 20200218121150 20200204104150 15771 de. VZ7bQnE1P00uPiDOE40A2y4CIvCTbGJsGvlJCYsk6nMUqZsZlLUjip4S BIRAewAxnHP7OggfRVRZ8YRNSfkOmcpCW8vDMuASK6LNRXbee+QKG1a3 O8SAVnI3FQrKF5KLtRu1A1164BvlFQGZKaho/5Ph+tBhnRmw4DQYcrNJ 4Zo=
674;; Received 673 bytes from 81.91.164.5#53(f.nic.de) in 365 ms
675
676forum.schicksal-und-herausforderung.de. 86400 IN A 85.25.208.92
677;; Received 83 bytes from 2a02:2940:0:c005::138#53(ns3.domainoffensive.net) in 129 ms
678####################################################################################################################################
679e
680[*] Processing domain forum.schicksal-und-herausforderung.de
681[*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a', '192.168.0.1']
682[+] Getting nameservers
683[-] Getting nameservers failed
684[-] Zone transfer failed
685
686[+] Wildcard domain found - 85.25.208.92
687[*] Scanning forum.schicksal-und-herausforderung.de for A records
688administrator.forum.schicksal-und-herausforderung.de autodiscover.forum.schicksal-und-herausforderung.de broadcast-ip.forum.schicksal-und-herausforderung.de cloudflare-resolve-to.forum.schicksal-und-herausforderung.de controlpanel.forum.schicksal-und-herausforderung.de demostration.forum.schicksal-und-herausforderung.de domain-controller.forum.schicksal-und-herausforderung.de domaincontrol.forum.schicksal-und-herausforderung.de domaincontroller.forum.schicksal-und-herausforderung.de domaincontrolpanel.forum.schicksal-und-herausforderung.de domainmanagement.forum.schicksal-und-herausforderung.de enterpriseenrollment.forum.schicksal-und-herausforderung.de enterpriseregistration.forum.schicksal-und-herausforderung.de laboratories.forum.schicksal-und-herausforderung.de lyncdiscover.forum.schicksal-und-herausforderung.de pre-production.forum.schicksal-und-herausforderung.de squirrelmail.forum.schicksal-und-herausforderung.de ng.de
689####################################################################################################################################
690
691 AVAILABLE PLUGINS
692 -----------------
693
694 SessionResumptionPlugin
695 OpenSslCcsInjectionPlugin
696 FallbackScsvPlugin
697 SessionRenegotiationPlugin
698 HeartbleedPlugin
699 CertificateInfoPlugin
700 EarlyDataPlugin
701 HttpHeadersPlugin
702 CompressionPlugin
703 RobotPlugin
704 OpenSslCipherSuitesPlugin
705
706
707
708 CHECKING HOST(S) AVAILABILITY
709 -----------------------------
710
711 85.25.208.92:443 => 85.25.208.92
712
713
714
715
716 SCAN RESULTS FOR 85.25.208.92:443 - 85.25.208.92
717 ------------------------------------------------
718
719 * OpenSSL CCS Injection:
720 OK - Not vulnerable to OpenSSL CCS injection
721
722 * TLS 1.2 Session Resumption Support:
723 With Session IDs: NOT SUPPORTED (0 successful, 5 failed, 0 errors, 5 total attempts).
724 With TLS Tickets: OK - Supported
725
726 * TLSV1 Cipher Suites:
727 Forward Secrecy OK - Supported
728 RC4 OK - Not Supported
729
730 Preferred:
731 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
732 Accepted:
733 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits Error sending HTTP GET
734 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
735 TLS_RSA_WITH_3DES_EDE_CBC_SHA 112 bits HTTP 404 Not Found
736 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 404 Not Found
737 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits Error sending HTTP GET
738 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA 112 bits Error sending HTTP GET
739
740 * TLSV1_1 Cipher Suites:
741 Forward Secrecy OK - Supported
742 RC4 OK - Not Supported
743
744 Preferred:
745 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
746 Accepted:
747 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 404 Not Found
748 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
749 TLS_RSA_WITH_3DES_EDE_CBC_SHA 112 bits HTTP 404 Not Found
750 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 404 Not Found
751 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
752 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA 112 bits HTTP 404 Not Found
753
754 * Downgrade Attacks:
755 TLS_FALLBACK_SCSV: OK - Supported
756
757 * Session Renegotiation:
758Unhandled exception while running --reneg:
759OpenSSLError - error:140943F2:SSL routines:ssl3_read_bytes:sslv3 alert unexpected message
760
761
762 * OpenSSL Heartbleed:
763 OK - Not vulnerable to Heartbleed
764
765 * SSLV2 Cipher Suites:
766 Server rejected all cipher suites.
767
768 * Deflate Compression:
769 OK - Compression disabled
770
771 * TLSV1_3 Cipher Suites:
772 Server rejected all cipher suites.
773
774 * Certificate Information:
775 Content
776 SHA1 Fingerprint: f29a26af1f808db3226f818abf69af55f4106232
777 Common Name: TRAEFIK DEFAULT CERT
778 Issuer: TRAEFIK DEFAULT CERT
779 Serial Number: 282469914453425981854625436225831598631
780 Not Before: 2020-02-09 14:33:00
781 Not After: 2021-02-08 14:33:00
782 Signature Algorithm: sha256
783 Public Key Algorithm: RSA
784 Key Size: 2048
785 Exponent: 65537 (0x10001)
786 DNS Subject Alternative Names: ['43a98fcd952ff8035ed99439e6210afd.cf717dcab368446e71581df28303e76d.traefik.default']
787
788 Trust
789 Hostname Validation: FAILED - Certificate does NOT match 85.25.208.92
790 Android CA Store (9.0.0_r9): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
791 Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
792 Java CA Store (jdk-12.0.1): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
793 Mozilla CA Store (2019-03-14): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
794 Windows CA Store (2019-05-27): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
795 Symantec 2018 Deprecation: OK - Not a Symantec-issued certificate
796 Received Chain: TRAEFIK DEFAULT CERT
797 Verified Chain: ERROR - Could not build verified chain (certificate untrusted?)
798 Received Chain Contains Anchor: ERROR - Could not build verified chain (certificate untrusted?)
799 Received Chain Order: OK - Order is valid
800 Verified Chain contains SHA1: ERROR - Could not build verified chain (certificate untrusted?)
801
802 Extensions
803 OCSP Must-Staple: NOT SUPPORTED - Extension not found
804 Certificate Transparency: NOT SUPPORTED - Extension not found
805
806 OCSP Stapling
807 NOT SUPPORTED - Server did not send back an OCSP response
808
809 * SSLV3 Cipher Suites:
810 Server rejected all cipher suites.
811
812 * ROBOT Attack:
813 OK - Not vulnerable
814
815 * TLSV1_2 Cipher Suites:
816 Forward Secrecy OK - Supported
817 RC4 OK - Not Supported
818
819 Preferred:
820 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 404 Not Found
821 Accepted:
822 TLS_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 404 Not Found
823 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 404 Not Found
824 TLS_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 404 Not Found
825 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
826 TLS_RSA_WITH_3DES_EDE_CBC_SHA 112 bits HTTP 404 Not Found
827 TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 256 bits HTTP 404 Not Found
828 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 404 Not Found
829 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 404 Not Found
830 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 404 Not Found
831 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 404 Not Found
832 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA 112 bits HTTP 404 Not Found
833
834
835 SCAN COMPLETED IN 29.74 S
836 -------------------------
837#####################################################################################################################################
838
839Domains still to check: 1
840 Checking if the hostname schicksal-und-herausforderung.de. given is in fact a domain...
841
842Analyzing domain: schicksal-und-herausforderung.de.
843 Checking NameServers using system default resolver...
844 IP: 95.130.22.138 (Germany)
845 HostName: ns3.domainoffensive.net Type: NS
846 HostName: mainns.ch Type: PTR
847 IP: 217.146.22.66 (Germany)
848 HostName: ns2.domainoffensive.eu Type: NS
849 HostName: mainns.eu Type: PTR
850 IP: 95.130.22.130 (Germany)
851 HostName: ns1.domainoffensive.de Type: NS
852 HostName: mainns.de Type: PTR
853
854 Checking MailServers using system default resolver...
855 IP: 85.25.208.92 (Germany)
856 HostName: mail.suh-ev.de Type: MX
857 HostName: mail.suh-ev.de Type: PTR
858 WARNING!! This domain has wildcards activated for hostnames resolution. We are checking "www" anyway, but perhaps it doesn't exists!
859
860 Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
861 No zone transfer found on nameserver 95.130.22.138
862 No zone transfer found on nameserver 217.146.22.66
863 No zone transfer found on nameserver 95.130.22.130
864
865 Checking SPF record...
866
867 Checking 1 most common hostnames using system default resolver...
868 IP: 85.25.208.92 (Germany)
869 HostName: mail.suh-ev.de Type: MX
870 HostName: mail.suh-ev.de Type: PTR
871 HostName: www.schicksal-und-herausforderung.de. Type: A
872
873 Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
874 Checking netblock 95.130.22.0
875 Checking netblock 85.25.208.0
876 Checking netblock 217.146.22.0
877
878 Searching for schicksal-und-herausforderung.de. emails in Google
879
880 Checking 4 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
881 Host 95.130.22.138 is up (reset ttl 64)
882 Host 85.25.208.92 is up (reset ttl 64)
883 Host 217.146.22.66 is up (reset ttl 64)
884 Host 95.130.22.130 is up (reset ttl 64)
885
886 Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
887 Scanning ip 95.130.22.138 (mainns.ch (PTR)):
888 53/tcp open domain? syn-ack ttl 51
889 | dns-nsid:
890 | NSID: dns3.greenmark-it.de (646e73332e677265656e6d61726b2d69742e6465)
891 |_ id.server: dns3.greenmark-it.de
892 | fingerprint-strings:
893 | DNSVersionBindReqTCP:
894 | version
895 |_ bind
896 8081/tcp open tcpwrapped syn-ack ttl 51
897 Scanning ip 85.25.208.92 (www.schicksal-und-herausforderung.de.):
898 80/tcp open http syn-ack ttl 49
899 | fingerprint-strings:
900 | FourOhFourRequest:
901 | HTTP/1.0 302 Found
902 | Location: https://http:443:///nice%20ports%2C/Tri%6Eity.txt%2ebak
903 | Date: Mon, 10 Feb 2020 01:51:40 GMT
904 | Content-Length: 5
905 | Content-Type: text/plain; charset=utf-8
906 | Found
907 | GenericLines, Help, Kerberos, LDAPSearchReq, LPDString, RTSPRequest, SSLSessionReq, TLSSessionReq, TerminalServerCookie:
908 | HTTP/1.1 400 Bad Request
909 | Content-Type: text/plain; charset=utf-8
910 | Connection: close
911 | Request
912 | GetRequest:
913 | HTTP/1.0 302 Found
914 | Location: https://http:443:///
915 | Date: Mon, 10 Feb 2020 01:51:34 GMT
916 | Content-Length: 5
917 | Content-Type: text/plain; charset=utf-8
918 | Found
919 | HTTPOptions:
920 | HTTP/1.0 307 Temporary Redirect
921 | Location: https://http:443:///
922 | Date: Mon, 10 Feb 2020 01:51:34 GMT
923 | Content-Length: 18
924 | Content-Type: text/plain; charset=utf-8
925 |_ Temporary Redirect
926 | http-methods:
927 |_ Supported Methods: GET HEAD POST OPTIONS
928 |_http-title: Did not follow redirect to https://85.25.208.92:443/
929 110/tcp open pop3 syn-ack ttl 49 Dovecot pop3d
930 |_pop3-capabilities: RESP-CODES TOP CAPA SASL AUTH-RESP-CODE STLS PIPELINING UIDL
931 | ssl-cert: Subject: commonName=mail.suh-ev.de
932 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
933 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
934 | Public Key type: rsa
935 | Public Key bits: 4096
936 | Signature Algorithm: sha256WithRSAEncryption
937 | Not valid before: 2019-12-24T15:15:20
938 | Not valid after: 2020-03-23T15:15:20
939 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
940 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
941 143/tcp open imap syn-ack ttl 49 Dovecot imapd
942 |_imap-capabilities: more have LOGINDISABLEDA0001 IDLE capabilities listed post-login SASL-IR OK ENABLE STARTTLS LITERAL+ ID LOGIN-REFERRALS Pre-login IMAP4rev1
943 | ssl-cert: Subject: commonName=mail.suh-ev.de
944 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
945 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
946 | Public Key type: rsa
947 | Public Key bits: 4096
948 | Signature Algorithm: sha256WithRSAEncryption
949 | Not valid before: 2019-12-24T15:15:20
950 | Not valid after: 2020-03-23T15:15:20
951 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
952 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
953 443/tcp open ssl/http syn-ack ttl 49 Gophish httpd
954 |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
955 | ssl-cert: Subject: commonName=TRAEFIK DEFAULT CERT
956 | Subject Alternative Name: DNS:43a98fcd952ff8035ed99439e6210afd.cf717dcab368446e71581df28303e76d.traefik.default
957 | Issuer: commonName=TRAEFIK DEFAULT CERT
958 | Public Key type: rsa
959 | Public Key bits: 2048
960 | Signature Algorithm: sha256WithRSAEncryption
961 | Not valid before: 2020-02-09T14:33:00
962 | Not valid after: 2021-02-08T14:33:00
963 | MD5: 70d3 1566 1dd9 ff2e 638a a8fa 9ba3 3f17
964 |_SHA-1: f29a 26af 1f80 8db3 226f 818a bf69 af55 f410 6232
965 |_ssl-date: TLS randomness does not represent time
966 | tls-alpn:
967 | h2
968 |_ http/1.1
969 | tls-nextprotoneg:
970 | h2
971 | http/1.1
972 |_ acme-tls/1
973 465/tcp open ssl/smtp syn-ack ttl 49 Postfix smtpd
974 |_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, AUTH PLAIN LOGIN, AUTH=PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
975 | ssl-cert: Subject: commonName=mail.suh-ev.de
976 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
977 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
978 | Public Key type: rsa
979 | Public Key bits: 4096
980 | Signature Algorithm: sha256WithRSAEncryption
981 | Not valid before: 2019-12-24T15:15:20
982 | Not valid after: 2020-03-23T15:15:20
983 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
984 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
985 |_ssl-date: TLS randomness does not represent time
986 587/tcp open smtp syn-ack ttl 49 Postfix smtpd
987 |_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
988 | ssl-cert: Subject: commonName=mail.suh-ev.de
989 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
990 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
991 | Public Key type: rsa
992 | Public Key bits: 4096
993 | Signature Algorithm: sha256WithRSAEncryption
994 | Not valid before: 2019-12-24T15:15:20
995 | Not valid after: 2020-03-23T15:15:20
996 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
997 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
998 |_ssl-date: TLS randomness does not represent time
999 993/tcp open imaps? syn-ack ttl 49
1000 |_imap-capabilities: more have capabilities IDLE listed AUTH=PLAIN post-login SASL-IR OK ENABLE AUTH=LOGINA0001 LITERAL+ ID LOGIN-REFERRALS Pre-login IMAP4rev1
1001 | ssl-cert: Subject: commonName=mail.suh-ev.de
1002 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1003 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1004 | Public Key type: rsa
1005 | Public Key bits: 4096
1006 | Signature Algorithm: sha256WithRSAEncryption
1007 | Not valid before: 2019-12-24T15:15:20
1008 | Not valid after: 2020-03-23T15:15:20
1009 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1010 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1011 995/tcp open pop3s? syn-ack ttl 49
1012 | ssl-cert: Subject: commonName=mail.suh-ev.de
1013 | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1014 | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1015 | Public Key type: rsa
1016 | Public Key bits: 4096
1017 | Signature Algorithm: sha256WithRSAEncryption
1018 | Not valid before: 2019-12-24T15:15:20
1019 | Not valid after: 2020-03-23T15:15:20
1020 | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1021 |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1022 OS Info: Service Info: Host: mail.suh-ev.de
1023 Scanning ip 217.146.22.66 (mainns.eu (PTR)):
1024 53/tcp open domain? syn-ack ttl 52
1025 | dns-nsid:
1026 | NSID: dns2.greenmark-it.de (646e73322e677265656e6d61726b2d69742e6465)
1027 |_ id.server: dns2.greenmark-it.de
1028 | fingerprint-strings:
1029 | DNSVersionBindReqTCP:
1030 | version
1031 |_ bind
1032 8081/tcp open tcpwrapped syn-ack ttl 52
1033 Scanning ip 95.130.22.130 (mainns.de (PTR)):
1034 53/tcp open domain? syn-ack ttl 51
1035 | dns-nsid:
1036 | NSID: dns1.greenmark-it.de (646e73312e677265656e6d61726b2d69742e6465)
1037 |_ id.server: dns1.greenmark-it.de
1038 | fingerprint-strings:
1039 | DNSVersionBindReqTCP:
1040 | version
1041 |_ bind
1042 8081/tcp open tcpwrapped syn-ack ttl 51
1043 WebCrawling domain's web servers... up to 50 max links.
1044
1045 + URL to crawl: http://mail.suh-ev.de
1046 + Date: 2020-02-09
1047
1048 + Crawling URL: http://mail.suh-ev.de:
1049 + Links:
1050 + Crawling http://mail.suh-ev.de
1051 + Crawling http://mail.suh-ev.de/img/cow_mailcow.svg (File! Not crawling it.)
1052 + Crawling http://mail.suh-ev.de/?lang=cs
1053 + Crawling http://mail.suh-ev.de/?lang=de
1054 + Crawling http://mail.suh-ev.de/?lang=en
1055 + Crawling http://mail.suh-ev.de/?lang=es
1056 + Crawling http://mail.suh-ev.de/?lang=fr
1057 + Crawling http://mail.suh-ev.de/?lang=lv
1058 + Crawling http://mail.suh-ev.de/?lang=nl
1059 + Crawling http://mail.suh-ev.de/?lang=pl
1060 + Crawling http://mail.suh-ev.de/?lang=pt
1061 + Crawling http://mail.suh-ev.de/?lang=ru
1062 + Crawling http://mail.suh-ev.de/?lang=it
1063 + Crawling http://mail.suh-ev.de/?lang=ca
1064 + Crawling http://mail.suh-ev.de/SOGo/
1065 + Crawling http://mail.suh-ev.de/webmail/
1066 + Crawling http://mail.suh-ev.de/{3} (404 Not Found)
1067 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=cs
1068 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=de
1069 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=en
1070 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=es
1071 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=fr
1072 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=lv
1073 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=nl
1074 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=pl
1075 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=pt
1076 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=ru
1077 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=it
1078 + Crawling http://mail.suh-ev.de/?lang=cs/?lang=ca
1079 + Crawling http://mail.suh-ev.de/?lang=cs/{3}
1080 + Crawling http://mail.suh-ev.de/?lang=de/?lang=cs
1081 + Crawling http://mail.suh-ev.de/?lang=de/?lang=de
1082 + Crawling http://mail.suh-ev.de/?lang=de/?lang=en
1083 + Crawling http://mail.suh-ev.de/?lang=de/?lang=es
1084 + Crawling http://mail.suh-ev.de/?lang=de/?lang=fr
1085 + Crawling http://mail.suh-ev.de/?lang=de/?lang=lv
1086 + Crawling http://mail.suh-ev.de/?lang=de/?lang=nl
1087 + Crawling http://mail.suh-ev.de/?lang=de/?lang=pl
1088 + Crawling http://mail.suh-ev.de/?lang=de/?lang=pt
1089 + Crawling http://mail.suh-ev.de/?lang=de/?lang=ru
1090 + Crawling http://mail.suh-ev.de/?lang=de/?lang=it
1091 + Crawling http://mail.suh-ev.de/?lang=de/?lang=ca
1092 + Crawling http://mail.suh-ev.de/?lang=de/{3}
1093 + Crawling http://mail.suh-ev.de/?lang=en/?lang=cs
1094 + Crawling http://mail.suh-ev.de/?lang=en/?lang=de
1095 + Crawling http://mail.suh-ev.de/?lang=en/?lang=en
1096 + Crawling http://mail.suh-ev.de/?lang=en/?lang=es
1097 + Crawling http://mail.suh-ev.de/?lang=en/?lang=fr
1098 + Crawling http://mail.suh-ev.de/?lang=en/?lang=lv
1099 + Crawling http://mail.suh-ev.de/?lang=en/?lang=nl
1100 + Crawling http://mail.suh-ev.de/?lang=en/?lang=pl
1101 + Searching for directories...
1102 - Found: http://mail.suh-ev.de/SOGo/
1103 - Found: http://mail.suh-ev.de/webmail/
1104 - Found: http://mail.suh-ev.de/?lang=cs/
1105 - Found: http://mail.suh-ev.de/?lang=de/
1106 - Found: http://mail.suh-ev.de/?lang=en/
1107 - Found: http://mail.suh-ev.de/img/
1108 - Found: http://mail.suh-ev.de/SOGo.woa/
1109 - Found: http://mail.suh-ev.de/SOGo.woa/WebServerResources/
1110 - Found: http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/
1111 - Found: http://mail.suh-ev.de/webmail/skins/
1112 - Found: http://mail.suh-ev.de/webmail/skins/larry/
1113 - Found: http://mail.suh-ev.de/webmail/skins/larry/images/
1114 + Searching open folders...
1115 - http://mail.suh-ev.de/SOGo/ (No Open Folder)
1116 - http://mail.suh-ev.de/webmail/ (No Open Folder)
1117 - http://mail.suh-ev.de/?lang=cs/ (No Open Folder)
1118 - http://mail.suh-ev.de/?lang=de/ (No Open Folder)
1119 - http://mail.suh-ev.de/?lang=en/ (No Open Folder)
1120 - http://mail.suh-ev.de/img/ (403 Forbidden)
1121 - http://mail.suh-ev.de/SOGo.woa/ (No Open Folder)
1122 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/ (403 Forbidden)
1123 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/ (403 Forbidden)
1124 - http://mail.suh-ev.de/webmail/skins/ (403 Forbidden)
1125 - http://mail.suh-ev.de/webmail/skins/larry/ (403 Forbidden)
1126 - http://mail.suh-ev.de/webmail/skins/larry/images/ (403 Forbidden)
1127 + Crawl finished successfully.
1128----------------------------------------------------------------------
1129Summary of http://http://mail.suh-ev.de
1130----------------------------------------------------------------------
1131+ Links crawled:
1132 - http://mail.suh-ev.de
1133 - http://mail.suh-ev.de/?lang=ca
1134 - http://mail.suh-ev.de/?lang=cs
1135 - http://mail.suh-ev.de/?lang=cs/?lang=ca
1136 - http://mail.suh-ev.de/?lang=cs/?lang=cs
1137 - http://mail.suh-ev.de/?lang=cs/?lang=de
1138 - http://mail.suh-ev.de/?lang=cs/?lang=en
1139 - http://mail.suh-ev.de/?lang=cs/?lang=es
1140 - http://mail.suh-ev.de/?lang=cs/?lang=fr
1141 - http://mail.suh-ev.de/?lang=cs/?lang=it
1142 - http://mail.suh-ev.de/?lang=cs/?lang=lv
1143 - http://mail.suh-ev.de/?lang=cs/?lang=nl
1144 - http://mail.suh-ev.de/?lang=cs/?lang=pl
1145 - http://mail.suh-ev.de/?lang=cs/?lang=pt
1146 - http://mail.suh-ev.de/?lang=cs/?lang=ru
1147 - http://mail.suh-ev.de/?lang=cs/{3}
1148 - http://mail.suh-ev.de/?lang=de
1149 - http://mail.suh-ev.de/?lang=de/?lang=ca
1150 - http://mail.suh-ev.de/?lang=de/?lang=cs
1151 - http://mail.suh-ev.de/?lang=de/?lang=de
1152 - http://mail.suh-ev.de/?lang=de/?lang=en
1153 - http://mail.suh-ev.de/?lang=de/?lang=es
1154 - http://mail.suh-ev.de/?lang=de/?lang=fr
1155 - http://mail.suh-ev.de/?lang=de/?lang=it
1156 - http://mail.suh-ev.de/?lang=de/?lang=lv
1157 - http://mail.suh-ev.de/?lang=de/?lang=nl
1158 - http://mail.suh-ev.de/?lang=de/?lang=pl
1159 - http://mail.suh-ev.de/?lang=de/?lang=pt
1160 - http://mail.suh-ev.de/?lang=de/?lang=ru
1161 - http://mail.suh-ev.de/?lang=de/{3}
1162 - http://mail.suh-ev.de/?lang=en
1163 - http://mail.suh-ev.de/?lang=en/?lang=cs
1164 - http://mail.suh-ev.de/?lang=en/?lang=de
1165 - http://mail.suh-ev.de/?lang=en/?lang=en
1166 - http://mail.suh-ev.de/?lang=en/?lang=es
1167 - http://mail.suh-ev.de/?lang=en/?lang=fr
1168 - http://mail.suh-ev.de/?lang=en/?lang=lv
1169 - http://mail.suh-ev.de/?lang=en/?lang=nl
1170 - http://mail.suh-ev.de/?lang=en/?lang=pl
1171 - http://mail.suh-ev.de/?lang=es
1172 - http://mail.suh-ev.de/?lang=fr
1173 - http://mail.suh-ev.de/?lang=it
1174 - http://mail.suh-ev.de/?lang=lv
1175 - http://mail.suh-ev.de/?lang=nl
1176 - http://mail.suh-ev.de/?lang=pl
1177 - http://mail.suh-ev.de/?lang=pt
1178 - http://mail.suh-ev.de/?lang=ru
1179 - http://mail.suh-ev.de/SOGo/
1180 - http://mail.suh-ev.de/webmail/
1181 - http://mail.suh-ev.de/{3} (404 Not Found)
1182 Total links crawled: 50
1183
1184+ Links to files found:
1185 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/no-animation.css
1186 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/styles.css
1187 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/theme-default.css
1188 - http://mail.suh-ev.de/favicon.png
1189 - http://mail.suh-ev.de/img/cow_mailcow.svg
1190 - http://mail.suh-ev.de/webmail/skins/larry/images/favicon.ico
1191 - http://mail.suh-ev.de/webmail/skins/larry/images/roundcube_logo.png
1192 Total links to files: 7
1193
1194+ Externals links found:
1195 - http://www.apple.com/safari/download/
1196 - http://www.getfirefox.com/
1197 - http://www.google.com/chrome/
1198 Total external links: 3
1199
1200+ Email addresses found:
1201 Total email address found: 0
1202
1203+ Directories found:
1204 - http://mail.suh-ev.de/?lang=cs/ (No open folder)
1205 - http://mail.suh-ev.de/?lang=de/ (No open folder)
1206 - http://mail.suh-ev.de/?lang=en/ (No open folder)
1207 - http://mail.suh-ev.de/SOGo.woa/ (No open folder)
1208 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/ (403 Forbidden)
1209 - http://mail.suh-ev.de/SOGo.woa/WebServerResources/css/ (403 Forbidden)
1210 - http://mail.suh-ev.de/SOGo/ (No open folder)
1211 - http://mail.suh-ev.de/img/ (403 Forbidden)
1212 - http://mail.suh-ev.de/webmail/ (No open folder)
1213 - http://mail.suh-ev.de/webmail/skins/ (403 Forbidden)
1214 - http://mail.suh-ev.de/webmail/skins/larry/ (403 Forbidden)
1215 - http://mail.suh-ev.de/webmail/skins/larry/images/ (403 Forbidden)
1216 Total directories: 12
1217
1218+ Directory indexing found:
1219 Total directories with indexing: 0
1220
1221----------------------------------------------------------------------
1222
1223
1224 + URL to crawl: http://www.schicksal-und-herausforderung.de.
1225 + Date: 2020-02-09
1226
1227 + Crawling URL: http://www.schicksal-und-herausforderung.de.:
1228 + Links:
1229 + Crawling http://www.schicksal-und-herausforderung.de. ([SSL: SSLV3_ALERT_UNEXPECTED_MESSAGE] sslv3 alert unexpected message (_ssl.c:727))
1230 + Searching for directories...
1231 + Searching open folders...
1232
1233
1234 + URL to crawl: https://mail.suh-ev.de
1235 + Date: 2020-02-09
1236
1237 + Crawling URL: https://mail.suh-ev.de:
1238 + Links:
1239 + Crawling https://mail.suh-ev.de
1240 + Crawling https://mail.suh-ev.de/img/cow_mailcow.svg (File! Not crawling it.)
1241 + Crawling https://mail.suh-ev.de/?lang=cs
1242 + Crawling https://mail.suh-ev.de/?lang=de
1243 + Crawling https://mail.suh-ev.de/?lang=en
1244 + Crawling https://mail.suh-ev.de/?lang=es
1245 + Crawling https://mail.suh-ev.de/?lang=fr
1246 + Crawling https://mail.suh-ev.de/?lang=lv
1247 + Crawling https://mail.suh-ev.de/?lang=nl
1248 + Crawling https://mail.suh-ev.de/?lang=pl
1249 + Crawling https://mail.suh-ev.de/?lang=pt
1250 + Crawling https://mail.suh-ev.de/?lang=ru
1251 + Crawling https://mail.suh-ev.de/?lang=it
1252 + Crawling https://mail.suh-ev.de/?lang=ca
1253 + Crawling https://mail.suh-ev.de/SOGo/
1254 + Crawling https://mail.suh-ev.de/webmail/
1255 + Crawling https://mail.suh-ev.de/{3} (404 Not Found)
1256 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=cs
1257 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=de
1258 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=en
1259 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=es
1260 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=fr
1261 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=lv
1262 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=nl
1263 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=pl
1264 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=pt
1265 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=ru
1266 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=it
1267 + Crawling https://mail.suh-ev.de/?lang=cs/?lang=ca
1268 + Crawling https://mail.suh-ev.de/?lang=cs/{3}
1269 + Crawling https://mail.suh-ev.de/?lang=de/?lang=cs
1270 + Crawling https://mail.suh-ev.de/?lang=de/?lang=de
1271 + Crawling https://mail.suh-ev.de/?lang=de/?lang=en
1272 + Crawling https://mail.suh-ev.de/?lang=de/?lang=es
1273 + Crawling https://mail.suh-ev.de/?lang=de/?lang=fr
1274 + Crawling https://mail.suh-ev.de/?lang=de/?lang=lv
1275 + Crawling https://mail.suh-ev.de/?lang=de/?lang=nl
1276 + Crawling https://mail.suh-ev.de/?lang=de/?lang=pl
1277 + Crawling https://mail.suh-ev.de/?lang=de/?lang=pt
1278 + Crawling https://mail.suh-ev.de/?lang=de/?lang=ru
1279 + Crawling https://mail.suh-ev.de/?lang=de/?lang=it
1280 + Crawling https://mail.suh-ev.de/?lang=de/?lang=ca
1281 + Crawling https://mail.suh-ev.de/?lang=de/{3}
1282 + Crawling https://mail.suh-ev.de/?lang=en/?lang=cs
1283 + Crawling https://mail.suh-ev.de/?lang=en/?lang=de
1284 + Crawling https://mail.suh-ev.de/?lang=en/?lang=en
1285 + Crawling https://mail.suh-ev.de/?lang=en/?lang=es
1286 + Crawling https://mail.suh-ev.de/?lang=en/?lang=fr
1287 + Crawling https://mail.suh-ev.de/?lang=en/?lang=lv
1288 + Crawling https://mail.suh-ev.de/?lang=en/?lang=nl
1289 + Crawling https://mail.suh-ev.de/?lang=en/?lang=pl
1290 + Searching for directories...
1291 - Found: https://mail.suh-ev.de/SOGo/
1292 - Found: https://mail.suh-ev.de/webmail/
1293 - Found: https://mail.suh-ev.de/?lang=cs/
1294 - Found: https://mail.suh-ev.de/?lang=de/
1295 - Found: https://mail.suh-ev.de/?lang=en/
1296 - Found: https://mail.suh-ev.de/img/
1297 - Found: https://mail.suh-ev.de/SOGo.woa/
1298 - Found: https://mail.suh-ev.de/SOGo.woa/WebServerResources/
1299 - Found: https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/
1300 - Found: https://mail.suh-ev.de/webmail/skins/
1301 - Found: https://mail.suh-ev.de/webmail/skins/larry/
1302 - Found: https://mail.suh-ev.de/webmail/skins/larry/images/
1303 + Searching open folders...
1304 - https://mail.suh-ev.de/SOGo/ (No Open Folder)
1305 - https://mail.suh-ev.de/webmail/ (No Open Folder)
1306 - https://mail.suh-ev.de/?lang=cs/ (No Open Folder)
1307 - https://mail.suh-ev.de/?lang=de/ (No Open Folder)
1308 - https://mail.suh-ev.de/?lang=en/ (No Open Folder)
1309 - https://mail.suh-ev.de/img/ (403 Forbidden)
1310 - https://mail.suh-ev.de/SOGo.woa/ (No Open Folder)
1311 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/ (403 Forbidden)
1312 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/ (403 Forbidden)
1313 - https://mail.suh-ev.de/webmail/skins/ (403 Forbidden)
1314 - https://mail.suh-ev.de/webmail/skins/larry/ (403 Forbidden)
1315 - https://mail.suh-ev.de/webmail/skins/larry/images/ (403 Forbidden)
1316 + Crawl finished successfully.
1317----------------------------------------------------------------------
1318Summary of https://https://mail.suh-ev.de
1319----------------------------------------------------------------------
1320+ Links crawled:
1321 - https://mail.suh-ev.de
1322 - https://mail.suh-ev.de/?lang=ca
1323 - https://mail.suh-ev.de/?lang=cs
1324 - https://mail.suh-ev.de/?lang=cs/?lang=ca
1325 - https://mail.suh-ev.de/?lang=cs/?lang=cs
1326 - https://mail.suh-ev.de/?lang=cs/?lang=de
1327 - https://mail.suh-ev.de/?lang=cs/?lang=en
1328 - https://mail.suh-ev.de/?lang=cs/?lang=es
1329 - https://mail.suh-ev.de/?lang=cs/?lang=fr
1330 - https://mail.suh-ev.de/?lang=cs/?lang=it
1331 - https://mail.suh-ev.de/?lang=cs/?lang=lv
1332 - https://mail.suh-ev.de/?lang=cs/?lang=nl
1333 - https://mail.suh-ev.de/?lang=cs/?lang=pl
1334 - https://mail.suh-ev.de/?lang=cs/?lang=pt
1335 - https://mail.suh-ev.de/?lang=cs/?lang=ru
1336 - https://mail.suh-ev.de/?lang=cs/{3}
1337 - https://mail.suh-ev.de/?lang=de
1338 - https://mail.suh-ev.de/?lang=de/?lang=ca
1339 - https://mail.suh-ev.de/?lang=de/?lang=cs
1340 - https://mail.suh-ev.de/?lang=de/?lang=de
1341 - https://mail.suh-ev.de/?lang=de/?lang=en
1342 - https://mail.suh-ev.de/?lang=de/?lang=es
1343 - https://mail.suh-ev.de/?lang=de/?lang=fr
1344 - https://mail.suh-ev.de/?lang=de/?lang=it
1345 - https://mail.suh-ev.de/?lang=de/?lang=lv
1346 - https://mail.suh-ev.de/?lang=de/?lang=nl
1347 - https://mail.suh-ev.de/?lang=de/?lang=pl
1348 - https://mail.suh-ev.de/?lang=de/?lang=pt
1349 - https://mail.suh-ev.de/?lang=de/?lang=ru
1350 - https://mail.suh-ev.de/?lang=de/{3}
1351 - https://mail.suh-ev.de/?lang=en
1352 - https://mail.suh-ev.de/?lang=en/?lang=cs
1353 - https://mail.suh-ev.de/?lang=en/?lang=de
1354 - https://mail.suh-ev.de/?lang=en/?lang=en
1355 - https://mail.suh-ev.de/?lang=en/?lang=es
1356 - https://mail.suh-ev.de/?lang=en/?lang=fr
1357 - https://mail.suh-ev.de/?lang=en/?lang=lv
1358 - https://mail.suh-ev.de/?lang=en/?lang=nl
1359 - https://mail.suh-ev.de/?lang=en/?lang=pl
1360 - https://mail.suh-ev.de/?lang=es
1361 - https://mail.suh-ev.de/?lang=fr
1362 - https://mail.suh-ev.de/?lang=it
1363 - https://mail.suh-ev.de/?lang=lv
1364 - https://mail.suh-ev.de/?lang=nl
1365 - https://mail.suh-ev.de/?lang=pl
1366 - https://mail.suh-ev.de/?lang=pt
1367 - https://mail.suh-ev.de/?lang=ru
1368 - https://mail.suh-ev.de/SOGo/
1369 - https://mail.suh-ev.de/webmail/
1370 - https://mail.suh-ev.de/{3} (404 Not Found)
1371 Total links crawled: 50
1372
1373+ Links to files found:
1374 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/no-animation.css
1375 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/styles.css
1376 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/theme-default.css
1377 - https://mail.suh-ev.de/favicon.png
1378 - https://mail.suh-ev.de/img/cow_mailcow.svg
1379 - https://mail.suh-ev.de/webmail/skins/larry/images/favicon.ico
1380 - https://mail.suh-ev.de/webmail/skins/larry/images/roundcube_logo.png
1381 Total links to files: 7
1382
1383+ Externals links found:
1384 - http://www.apple.com/safari/download/
1385 - http://www.getfirefox.com/
1386 - http://www.google.com/chrome/
1387 Total external links: 3
1388
1389+ Email addresses found:
1390 Total email address found: 0
1391
1392+ Directories found:
1393 - https://mail.suh-ev.de/?lang=cs/ (No open folder)
1394 - https://mail.suh-ev.de/?lang=de/ (No open folder)
1395 - https://mail.suh-ev.de/?lang=en/ (No open folder)
1396 - https://mail.suh-ev.de/SOGo.woa/ (No open folder)
1397 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/ (403 Forbidden)
1398 - https://mail.suh-ev.de/SOGo.woa/WebServerResources/css/ (403 Forbidden)
1399 - https://mail.suh-ev.de/SOGo/ (No open folder)
1400 - https://mail.suh-ev.de/img/ (403 Forbidden)
1401 - https://mail.suh-ev.de/webmail/ (No open folder)
1402 - https://mail.suh-ev.de/webmail/skins/ (403 Forbidden)
1403 - https://mail.suh-ev.de/webmail/skins/larry/ (403 Forbidden)
1404 - https://mail.suh-ev.de/webmail/skins/larry/images/ (403 Forbidden)
1405 Total directories: 12
1406
1407+ Directory indexing found:
1408 Total directories with indexing: 0
1409
1410----------------------------------------------------------------------
1411
1412
1413 + URL to crawl: https://www.schicksal-und-herausforderung.de.
1414 + Date: 2020-02-09
1415
1416 + Crawling URL: https://www.schicksal-und-herausforderung.de.:
1417 + Links:
1418 + Crawling https://www.schicksal-und-herausforderung.de. ([SSL: SSLV3_ALERT_UNEXPECTED_MESSAGE] sslv3 alert unexpected message (_ssl.c:727))
1419 + Searching for directories...
1420 + Searching open folders...
1421
1422--Finished--
1423Summary information for domain schicksal-und-herausforderung.de.
1424-----------------------------------------
1425
1426 Domain Ips Information:
1427 IP: 95.130.22.138
1428 HostName: ns3.domainoffensive.net Type: NS
1429 HostName: mainns.ch Type: PTR
1430 Country: Germany
1431 Is Active: True (reset ttl 64)
1432 Port: 53/tcp open domain? syn-ack ttl 51
1433 Script Info: | dns-nsid:
1434 Script Info: | NSID: dns3.greenmark-it.de (646e73332e677265656e6d61726b2d69742e6465)
1435 Script Info: |_ id.server: dns3.greenmark-it.de
1436 Script Info: | fingerprint-strings:
1437 Script Info: | DNSVersionBindReqTCP:
1438 Script Info: | version
1439 Script Info: |_ bind
1440 Port: 8081/tcp open tcpwrapped syn-ack ttl 51
1441 IP: 85.25.208.92
1442 HostName: mail.suh-ev.de Type: MX
1443 HostName: mail.suh-ev.de Type: PTR
1444 HostName: www.schicksal-und-herausforderung.de. Type: A
1445 Country: Germany
1446 Is Active: True (reset ttl 64)
1447 Port: 80/tcp open http syn-ack ttl 49
1448 Script Info: | fingerprint-strings:
1449 Script Info: | FourOhFourRequest:
1450 Script Info: | HTTP/1.0 302 Found
1451 Script Info: | Location: https://http:443:///nice%20ports%2C/Tri%6Eity.txt%2ebak
1452 Script Info: | Date: Mon, 10 Feb 2020 01:51:40 GMT
1453 Script Info: | Content-Length: 5
1454 Script Info: | Content-Type: text/plain; charset=utf-8
1455 Script Info: | Found
1456 Script Info: | GenericLines, Help, Kerberos, LDAPSearchReq, LPDString, RTSPRequest, SSLSessionReq, TLSSessionReq, TerminalServerCookie:
1457 Script Info: | HTTP/1.1 400 Bad Request
1458 Script Info: | Content-Type: text/plain; charset=utf-8
1459 Script Info: | Connection: close
1460 Script Info: | Request
1461 Script Info: | GetRequest:
1462 Script Info: | HTTP/1.0 302 Found
1463 Script Info: | Location: https://http:443:///
1464 Script Info: | Date: Mon, 10 Feb 2020 01:51:34 GMT
1465 Script Info: | Content-Length: 5
1466 Script Info: | Content-Type: text/plain; charset=utf-8
1467 Script Info: | Found
1468 Script Info: | HTTPOptions:
1469 Script Info: | HTTP/1.0 307 Temporary Redirect
1470 Script Info: | Location: https://http:443:///
1471 Script Info: | Date: Mon, 10 Feb 2020 01:51:34 GMT
1472 Script Info: | Content-Length: 18
1473 Script Info: | Content-Type: text/plain; charset=utf-8
1474 Script Info: |_ Temporary Redirect
1475 Script Info: | http-methods:
1476 Script Info: |_ Supported Methods: GET HEAD POST OPTIONS
1477 Script Info: |_http-title: Did not follow redirect to https://85.25.208.92:443/
1478 Port: 110/tcp open pop3 syn-ack ttl 49 Dovecot pop3d
1479 Script Info: |_pop3-capabilities: RESP-CODES TOP CAPA SASL AUTH-RESP-CODE STLS PIPELINING UIDL
1480 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1481 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1482 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1483 Script Info: | Public Key type: rsa
1484 Script Info: | Public Key bits: 4096
1485 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1486 Script Info: | Not valid before: 2019-12-24T15:15:20
1487 Script Info: | Not valid after: 2020-03-23T15:15:20
1488 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1489 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1490 Port: 143/tcp open imap syn-ack ttl 49 Dovecot imapd
1491 Script Info: |_imap-capabilities: more have LOGINDISABLEDA0001 IDLE capabilities listed post-login SASL-IR OK ENABLE STARTTLS LITERAL+ ID LOGIN-REFERRALS Pre-login IMAP4rev1
1492 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1493 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1494 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1495 Script Info: | Public Key type: rsa
1496 Script Info: | Public Key bits: 4096
1497 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1498 Script Info: | Not valid before: 2019-12-24T15:15:20
1499 Script Info: | Not valid after: 2020-03-23T15:15:20
1500 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1501 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1502 Port: 443/tcp open ssl/http syn-ack ttl 49 Gophish httpd
1503 Script Info: |_http-title: Site doesn't have a title (text/plain; charset=utf-8).
1504 Script Info: | ssl-cert: Subject: commonName=TRAEFIK DEFAULT CERT
1505 Script Info: | Subject Alternative Name: DNS:43a98fcd952ff8035ed99439e6210afd.cf717dcab368446e71581df28303e76d.traefik.default
1506 Script Info: | Issuer: commonName=TRAEFIK DEFAULT CERT
1507 Script Info: | Public Key type: rsa
1508 Script Info: | Public Key bits: 2048
1509 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1510 Script Info: | Not valid before: 2020-02-09T14:33:00
1511 Script Info: | Not valid after: 2021-02-08T14:33:00
1512 Script Info: | MD5: 70d3 1566 1dd9 ff2e 638a a8fa 9ba3 3f17
1513 Script Info: |_SHA-1: f29a 26af 1f80 8db3 226f 818a bf69 af55 f410 6232
1514 Script Info: |_ssl-date: TLS randomness does not represent time
1515 Script Info: | tls-alpn:
1516 Script Info: | h2
1517 Script Info: |_ http/1.1
1518 Script Info: | tls-nextprotoneg:
1519 Script Info: | h2
1520 Script Info: | http/1.1
1521 Script Info: |_ acme-tls/1
1522 Port: 465/tcp open ssl/smtp syn-ack ttl 49 Postfix smtpd
1523 Script Info: |_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, AUTH PLAIN LOGIN, AUTH=PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
1524 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1525 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1526 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1527 Script Info: | Public Key type: rsa
1528 Script Info: | Public Key bits: 4096
1529 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1530 Script Info: | Not valid before: 2019-12-24T15:15:20
1531 Script Info: | Not valid after: 2020-03-23T15:15:20
1532 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1533 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1534 Script Info: |_ssl-date: TLS randomness does not represent time
1535 Port: 587/tcp open smtp syn-ack ttl 49 Postfix smtpd
1536 Script Info: |_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
1537 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1538 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1539 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1540 Script Info: | Public Key type: rsa
1541 Script Info: | Public Key bits: 4096
1542 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1543 Script Info: | Not valid before: 2019-12-24T15:15:20
1544 Script Info: | Not valid after: 2020-03-23T15:15:20
1545 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1546 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1547 Script Info: |_ssl-date: TLS randomness does not represent time
1548 Port: 993/tcp open imaps? syn-ack ttl 49
1549 Script Info: |_imap-capabilities: more have capabilities IDLE listed AUTH=PLAIN post-login SASL-IR OK ENABLE AUTH=LOGINA0001 LITERAL+ ID LOGIN-REFERRALS Pre-login IMAP4rev1
1550 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1551 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1552 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1553 Script Info: | Public Key type: rsa
1554 Script Info: | Public Key bits: 4096
1555 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1556 Script Info: | Not valid before: 2019-12-24T15:15:20
1557 Script Info: | Not valid after: 2020-03-23T15:15:20
1558 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1559 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1560 Port: 995/tcp open pop3s? syn-ack ttl 49
1561 Script Info: | ssl-cert: Subject: commonName=mail.suh-ev.de
1562 Script Info: | Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
1563 Script Info: | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1564 Script Info: | Public Key type: rsa
1565 Script Info: | Public Key bits: 4096
1566 Script Info: | Signature Algorithm: sha256WithRSAEncryption
1567 Script Info: | Not valid before: 2019-12-24T15:15:20
1568 Script Info: | Not valid after: 2020-03-23T15:15:20
1569 Script Info: | MD5: d58e a334 620a a7be 1535 b4c7 4fb8 2c1c
1570 Script Info: |_SHA-1: 6166 c8cc 0fa9 cedd dcb3 0e5a 506c 3ea3 d2cc 472d
1571 Os Info: Host: mail.suh-ev.de
1572 IP: 217.146.22.66
1573 HostName: ns2.domainoffensive.eu Type: NS
1574 HostName: mainns.eu Type: PTR
1575 Country: Germany
1576 Is Active: True (reset ttl 64)
1577 Port: 53/tcp open domain? syn-ack ttl 52
1578 Script Info: | dns-nsid:
1579 Script Info: | NSID: dns2.greenmark-it.de (646e73322e677265656e6d61726b2d69742e6465)
1580 Script Info: |_ id.server: dns2.greenmark-it.de
1581 Script Info: | fingerprint-strings:
1582 Script Info: | DNSVersionBindReqTCP:
1583 Script Info: | version
1584 Script Info: |_ bind
1585 Port: 8081/tcp open tcpwrapped syn-ack ttl 52
1586 IP: 95.130.22.130
1587 HostName: ns1.domainoffensive.de Type: NS
1588 HostName: mainns.de Type: PTR
1589 Country: Germany
1590 Is Active: True (reset ttl 64)
1591 Port: 53/tcp open domain? syn-ack ttl 51
1592 Script Info: | dns-nsid:
1593 Script Info: | NSID: dns1.greenmark-it.de (646e73312e677265656e6d61726b2d69742e6465)
1594 Script Info: |_ id.server: dns1.greenmark-it.de
1595 Script Info: | fingerprint-strings:
1596 Script Info: | DNSVersionBindReqTCP:
1597 Script Info: | version
1598 Script Info: |_ bind
1599 Port: 8081/tcp open tcpwrapped syn-ack ttl 51
1600
1601--------------End Summary --------------
1602-----------------------------------------
1603####################################################################################################################################
1604traceroute to schicksal-und-herausforderung.de (85.25.208.92), 30 hops max, 60 byte packets
1605 1 10.248.204.1 (10.248.204.1) 111.447 ms 111.433 ms 111.418 ms
1606 2 R43.static.amanah.com (104.245.144.129) 111.403 ms 111.419 ms 111.402 ms
1607 3 te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9) 111.399 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113) 111.381 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9) 111.361 ms
1608 4 te0-0-0-1.agr14.yyz02.atlas.cogentco.com (154.24.54.41) 111.359 ms 208.548 ms 208.548 ms
1609 5 be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165) 208.564 ms te0-9-1-9.ccr32.yyz02.atlas.cogentco.com (154.54.43.169) 111.170 ms te0-9-1-9.ccr31.yyz02.atlas.cogentco.com (154.54.43.161) 111.191 ms
1610 6 be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70) 208.479 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90) 204.951 ms be3259.ccr21.ymq01.atlas.cogentco.com (154.54.41.206) 204.877 ms
1611 7 be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142) 204.964 ms 204.924 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165) 204.854 ms
1612 8 be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134) 307.296 ms be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70) 204.831 ms be2182.ccr41.ams03.atlas.cogentco.com (154.54.77.245) 204.791 ms
1613 9 be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142) 204.833 ms be2780.nr13.b015623-2.sxb01.atlas.cogentco.com (154.25.5.242) 307.225 ms be2813.ccr41.fra03.atlas.cogentco.com (130.117.0.122) 204.767 ms
161410 * be3546.rcr21.sxb01.atlas.cogentco.com (154.54.59.34) 381.431 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134) 381.437 ms
161511 ae0-v100.sr-sol.sxb1.mass.systems (87.230.112.3) 286.641 ms ae0-v100.sr-helios.sxb1.mass.systems (87.230.112.5) 286.634 ms be2781.nr14.b015623-2.sxb01.atlas.cogentco.com (154.25.8.234) 347.258 ms
161612 92.204.12.11 (92.204.12.11) 347.145 ms * 347.102 ms
161713 92.204.12.11 (92.204.12.11) 347.079 ms ae0-v100.sr-sol.sxb1.mass.systems (87.230.112.3) 347.071 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140) 347.057 ms
161814 static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140) 347.035 ms mail.suh-ev.de (85.25.208.92) 346.972 ms 62.138.129.2 (62.138.129.2) 346.964 ms
1619####################################################################################################################################
1620----- schicksal-und-herausforderung.de -----
1621
1622
1623Host's addresses:
1624__________________
1625
1626schicksal-und-herausforderung.de. 85635 IN A 85.25.208.92
1627
1628
1629Wildcard detection using: ddiglsgtenpu
1630_______________________________________
1631
1632ddiglsgtenpu.schicksal-und-herausforderung.de. 86400 IN A 85.25.208.92
1633
1634
1635!!!!!!!!!!!!!!!!!!!!!!!!!!!!
1636
1637 Wildcards detected, all subdomains will point to the same IP address
1638 Omitting results containing 85.25.208.92.
1639 Maybe you are using OpenDNS servers.
1640
1641!!!!!!!!!!!!!!!!!!!!!!!!!!!!
1642
1643
1644Name Servers:
1645______________
1646
1647ns1.domainoffensive.de. 1680 IN A 95.130.22.130
1648ns2.domainoffensive.eu. 784 IN A 217.146.22.66
1649ns3.domainoffensive.net. 76747 IN A 95.130.22.138
1650
1651
1652Mail (MX) Servers:
1653___________________
1654
1655
1656Brute forcing with /usr/share/dnsenum/dns.txt:
1657_______________________________________________
1658
1659
1660
1661Launching Whois Queries:
1662_________________________
1663
1664 whois ip result: 85.25.208.0 -> 85.25.208.0/26
1665
1666
1667schicksal-und-herausforderung.de________________________________
1668
1669 85.25.208.0/26
1670###################################################################################################################################
1671dnsenum VERSION:1.2.6
1672
1673----- forum.schicksal-und-herausforderung.de -----
1674
1675
1676Host's addresses:
1677__________________
1678
1679forum.schicksal-und-herausforderung.de. 84579 IN A 85.25.208.92
1680
1681
1682Wildcard detection using: fzmnnpmgviwg
1683_______________________________________
1684
1685fzmnnpmgviwg.forum.schicksal-und-herausforderung.de. 86400 IN A (
1686
1687
1688!!!!!!!!!!!!!!!!!!!!!!!!!!!!
1689
1690 Wildcards detected, all subdomains will point to the same IP address
1691 Omitting results containing (.
1692 Maybe you are using OpenDNS servers.
1693
1694!!!!!!!!!!!!!!!!!!!!!!!!!!!!
1695
1696
1697Name Servers:
1698______________
1699#####################################################################################################################################
1700URLCrazy Domain Report
1701Domain : forum.schicksal-und-herausforderung.de
1702Keyboard : qwerty
1703At : 2020-02-09 20:44:41 -0500
1704
1705# Please wait. 421 hostnames to process
1706
1707Typo Type Typo DNS-A CC-A DNS-MX Extn
1708-------------------------------------------------------------------------------------------------------------------------
1709Character Omission form.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1710Character Omission foru.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1711Character Omission forum.chicksal-und-herausforderung.de ? de
1712Character Omission forum.schcksal-und-herausforderung.de ? de
1713Character Omission forum.schickal-und-herausforderung.de ? de
1714Character Omission forum.schicksa-und-herausforderung.de ? de
1715Character Omission forum.schicksal-nd-herausforderung.de ? de
1716Character Omission forum.schicksal-ud-herausforderung.de ? de
1717Character Omission forum.schicksal-un-herausforderung.de ? de
1718Character Omission forum.schicksal-und-erausforderung.de ? de
1719Character Omission forum.schicksal-und-heausforderung.de ? de
1720Character Omission forum.schicksal-und-herasforderung.de ? de
1721Character Omission forum.schicksal-und-herauforderung.de ? de
1722Character Omission forum.schicksal-und-herausfoderung.de ? de
1723Character Omission forum.schicksal-und-herausforderng.de ? de
1724Character Omission forum.schicksal-und-herausforderug.de ? de
1725Character Omission forum.schicksal-und-herausforderun.de ? de
1726Character Omission forum.schicksal-und-herausfordeung.de ? de
1727Character Omission forum.schicksal-und-herausfordrung.de ? de
1728Character Omission forum.schicksal-und-herausforerung.de ? de
1729Character Omission forum.schicksal-und-herausfrderung.de ? de
1730Character Omission forum.schicksal-und-herausorderung.de ? de
1731Character Omission forum.schicksal-und-herusforderung.de ? de
1732Character Omission forum.schicksal-und-hrausforderung.de ? de
1733Character Omission forum.schicksal-undherausforderung.de ? de
1734Character Omission forum.schicksalund-herausforderung.de ? de
1735Character Omission forum.schicksl-und-herausforderung.de ? de
1736Character Omission forum.schicsal-und-herausforderung.de ? de
1737Character Omission forum.schiksal-und-herausforderung.de ? de
1738Character Omission forum.scicksal-und-herausforderung.de ? de
1739Character Omission forum.shicksal-und-herausforderung.de ? de
1740Character Omission forumschicksal-und-herausforderung.de ? de
1741Character Omission foum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1742Character Omission frum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1743Character Repeat fforum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1744Character Repeat foorum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1745Character Repeat forrum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1746Character Repeat forum.scchicksal-und-herausforderung.de ? de
1747Character Repeat forum.schhicksal-und-herausforderung.de ? de
1748Character Repeat forum.schiccksal-und-herausforderung.de ? de
1749Character Repeat forum.schickksal-und-herausforderung.de ? de
1750Character Repeat forum.schicksaal-und-herausforderung.de ? de
1751Character Repeat forum.schicksal--und-herausforderung.de ? de
1752Character Repeat forum.schicksal-und--herausforderung.de ? de
1753Character Repeat forum.schicksal-und-heerausforderung.de ? de
1754Character Repeat forum.schicksal-und-heraausforderung.de ? de
1755Character Repeat forum.schicksal-und-herausfforderung.de ? de
1756Character Repeat forum.schicksal-und-herausfoorderung.de ? de
1757Character Repeat forum.schicksal-und-herausfordderung.de ? de
1758Character Repeat forum.schicksal-und-herausfordeerung.de ? de
1759Character Repeat forum.schicksal-und-herausforderrung.de ? de
1760Character Repeat forum.schicksal-und-herausforderungg.de ? de
1761Character Repeat forum.schicksal-und-herausforderunng.de ? de
1762Character Repeat forum.schicksal-und-herausforderuung.de ? de
1763Character Repeat forum.schicksal-und-herausforrderung.de ? de
1764Character Repeat forum.schicksal-und-heraussforderung.de ? de
1765Character Repeat forum.schicksal-und-herauusforderung.de ? de
1766Character Repeat forum.schicksal-und-herrausforderung.de ? de
1767Character Repeat forum.schicksal-und-hherausforderung.de ? de
1768Character Repeat forum.schicksal-undd-herausforderung.de ? de
1769Character Repeat forum.schicksal-unnd-herausforderung.de ? de
1770Character Repeat forum.schicksal-uund-herausforderung.de ? de
1771Character Repeat forum.schicksall-und-herausforderung.de ? de
1772Character Repeat forum.schickssal-und-herausforderung.de ? de
1773Character Repeat forum.schiicksal-und-herausforderung.de ? de
1774Character Repeat forum.sschicksal-und-herausforderung.de ? de
1775Character Repeat forumm.schicksal-und-herausforderung.de 85.25.208.92 U�, de
1776Character Repeat foruum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1777Character Swap formu.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1778Character Swap foru.mschicksal-und-herausforderung.de ? de
1779Character Swap forum.cshicksal-und-herausforderung.de ? de
1780Character Swap forum.schciksal-und-herausforderung.de ? de
1781Character Swap forum.schickasl-und-herausforderung.de ? de
1782Character Swap forum.schicksa-lund-herausforderung.de ? de
1783Character Swap forum.schicksal-nud-herausforderung.de ? de
1784Character Swap forum.schicksal-udn-herausforderung.de ? de
1785Character Swap forum.schicksal-un-dherausforderung.de ? de
1786Character Swap forum.schicksal-und-ehrausforderung.de ? de
1787Character Swap forum.schicksal-und-hearusforderung.de ? de
1788Character Swap forum.schicksal-und-herasuforderung.de ? de
1789Character Swap forum.schicksal-und-heraufsorderung.de ? de
1790Character Swap forum.schicksal-und-herausfodrerung.de ? de
1791Character Swap forum.schicksal-und-herausfordernug.de ? de
1792Character Swap forum.schicksal-und-herausforderugn.de ? de
1793Character Swap forum.schicksal-und-herausfordeurng.de ? de
1794Character Swap forum.schicksal-und-herausfordreung.de ? de
1795Character Swap forum.schicksal-und-herausforedrung.de ? de
1796Character Swap forum.schicksal-und-herausfroderung.de ? de
1797Character Swap forum.schicksal-und-herausofrderung.de ? de
1798Character Swap forum.schicksal-und-heruasforderung.de ? de
1799Character Swap forum.schicksal-und-hreausforderung.de ? de
1800Character Swap forum.schicksal-undh-erausforderung.de ? de
1801Character Swap forum.schicksalu-nd-herausforderung.de ? de
1802Character Swap forum.schicksla-und-herausforderung.de ? de
1803Character Swap forum.schicskal-und-herausforderung.de ? de
1804Character Swap forum.schikcsal-und-herausforderung.de ? de
1805Character Swap forum.scihcksal-und-herausforderung.de ? de
1806Character Swap forum.shcicksal-und-herausforderung.de ? de
1807Character Swap forums.chicksal-und-herausforderung.de ? de
1808Character Swap fourm.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1809Character Swap froum.schicksal-und-herausforderung.de 85.25.208.92 U�, de
1810Character Swap ofrum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1811Character Replacement dorum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1812Character Replacement firum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1813Character Replacement foeum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1814Character Replacement forim.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1815Character Replacement forum.achicksal-und-herausforderung.de ? de
1816Character Replacement forum.dchicksal-und-herausforderung.de ? de
1817Character Replacement forum.scgicksal-und-herausforderung.de ? de
1818Character Replacement forum.schicjsal-und-herausforderung.de ? de
1819Character Replacement forum.schickaal-und-herausforderung.de ? de
1820Character Replacement forum.schickdal-und-herausforderung.de ? de
1821Character Replacement forum.schicksak-und-herausforderung.de ? de
1822Character Replacement forum.schicksal-ind-herausforderung.de ? de
1823Character Replacement forum.schicksal-ubd-herausforderung.de ? de
1824Character Replacement forum.schicksal-umd-herausforderung.de ? de
1825Character Replacement forum.schicksal-und-gerausforderung.de ? de
1826Character Replacement forum.schicksal-und-heeausforderung.de ? de
1827Character Replacement forum.schicksal-und-heraisforderung.de ? de
1828Character Replacement forum.schicksal-und-herauaforderung.de ? de
1829Character Replacement forum.schicksal-und-heraudforderung.de ? de
1830Character Replacement forum.schicksal-und-herausdorderung.de ? de
1831Character Replacement forum.schicksal-und-herausfirderung.de ? de
1832Character Replacement forum.schicksal-und-herausfoederung.de ? de
1833Character Replacement forum.schicksal-und-herausfordeeung.de ? de
1834Character Replacement forum.schicksal-und-herausfordering.de ? de
1835Character Replacement forum.schicksal-und-herausforderubg.de ? de
1836Character Replacement forum.schicksal-und-herausforderumg.de ? de
1837Character Replacement forum.schicksal-und-herausforderunf.de ? de
1838Character Replacement forum.schicksal-und-herausforderung.se ? se
1839Character Replacement forum.schicksal-und-herausforderunh.de ? de
1840Character Replacement forum.schicksal-und-herausforderyng.de ? de
1841Character Replacement forum.schicksal-und-herausfordetung.de ? de
1842Character Replacement forum.schicksal-und-herausfordrrung.de ? de
1843Character Replacement forum.schicksal-und-herausfordwrung.de ? de
1844Character Replacement forum.schicksal-und-herausforferung.de ? de
1845Character Replacement forum.schicksal-und-herausforserung.de ? de
1846Character Replacement forum.schicksal-und-herausfotderung.de ? de
1847Character Replacement forum.schicksal-und-herausfprderung.de ? de
1848Character Replacement forum.schicksal-und-herausgorderung.de ? de
1849Character Replacement forum.schicksal-und-heraysforderung.de ? de
1850Character Replacement forum.schicksal-und-hersusforderung.de ? de
1851Character Replacement forum.schicksal-und-hetausforderung.de ? de
1852Character Replacement forum.schicksal-und-hrrausforderung.de ? de
1853Character Replacement forum.schicksal-und-hwrausforderung.de ? de
1854Character Replacement forum.schicksal-und-jerausforderung.de ? de
1855Character Replacement forum.schicksal-und0herausforderung.de ? de
1856Character Replacement forum.schicksal-unf-herausforderung.de ? de
1857Character Replacement forum.schicksal-uns-herausforderung.de ? de
1858Character Replacement forum.schicksal-ynd-herausforderung.de ? de
1859Character Replacement forum.schicksal0und-herausforderung.de ? de
1860Character Replacement forum.schickssl-und-herausforderung.de ? de
1861Character Replacement forum.schiclsal-und-herausforderung.de ? de
1862Character Replacement forum.schivksal-und-herausforderung.de ? de
1863Character Replacement forum.schixksal-und-herausforderung.de ? de
1864Character Replacement forum.schocksal-und-herausforderung.de ? de
1865Character Replacement forum.schucksal-und-herausforderung.de ? de
1866Character Replacement forum.scjicksal-und-herausforderung.de ? de
1867Character Replacement forum.svhicksal-und-herausforderung.de ? de
1868Character Replacement forum.sxhicksal-und-herausforderung.de ? de
1869Character Replacement forun.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1870Character Replacement forym.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1871Character Replacement fotum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1872Character Replacement fprum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1873Character Replacement gorum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1874Character Insertion fdorum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1875Character Insertion fgorum.schicksal-und-herausforderung.de 85.25.208.92 U�, de
1876Character Insertion foirum.schicksal-und-herausforderung.de 85.25.208.92 T�, de
1877Character Insertion foprum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1878Character Insertion foreum.schicksal-und-herausforderung.de 85.25.208.92 GB,UNITED KINGDOM de
1879Character Insertion fortum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1880Character Insertion foruim.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1881Character Insertion forum.sachicksal-und-herausforderung.de ? de
1882Character Insertion forum.schgicksal-und-herausforderung.de ? de
1883Character Insertion forum.schickjsal-und-herausforderung.de ? de
1884Character Insertion forum.schicklsal-und-herausforderung.de ? de
1885Character Insertion forum.schicksal-0und-herausforderung.de ? de
1886Character Insertion forum.schicksal-uind-herausforderung.de ? de
1887Character Insertion forum.schicksal-unbd-herausforderung.de ? de
1888Character Insertion forum.schicksal-und-0herausforderung.de ? de
1889Character Insertion forum.schicksal-und-herasusforderung.de ? de
1890Character Insertion forum.schicksal-und-herauisforderung.de ? de
1891Character Insertion forum.schicksal-und-herausaforderung.de ? de
1892Character Insertion forum.schicksal-und-herausdforderung.de ? de
1893Character Insertion forum.schicksal-und-herausfdorderung.de ? de
1894Character Insertion forum.schicksal-und-herausfgorderung.de ? de
1895Character Insertion forum.schicksal-und-herausfoirderung.de ? de
1896Character Insertion forum.schicksal-und-herausfoprderung.de ? de
1897Character Insertion forum.schicksal-und-herausfordereung.de ? de
1898Character Insertion forum.schicksal-und-herausfordertung.de ? de
1899Character Insertion forum.schicksal-und-herausforderuing.de ? de
1900Character Insertion forum.schicksal-und-herausforderunbg.de ? de
1901Character Insertion forum.schicksal-und-herausforderungf.de ? de
1902Character Insertion forum.schicksal-und-herausforderungh.de ? de
1903Character Insertion forum.schicksal-und-herausforderunmg.de ? de
1904Character Insertion forum.schicksal-und-herausforderuyng.de ? de
1905Character Insertion forum.schicksal-und-herausfordewrung.de ? de
1906Character Insertion forum.schicksal-und-herausfordferung.de ? de
1907Character Insertion forum.schicksal-und-herausfordserung.de ? de
1908Character Insertion forum.schicksal-und-herausforederung.de ? de
1909Character Insertion forum.schicksal-und-herausfortderung.de ? de
1910Character Insertion forum.schicksal-und-herauysforderung.de ? de
1911Character Insertion forum.schicksal-und-hereausforderung.de ? de
1912Character Insertion forum.schicksal-und-hertausforderung.de ? de
1913Character Insertion forum.schicksal-und-hewrausforderung.de ? de
1914Character Insertion forum.schicksal-und-hgerausforderung.de ? de
1915Character Insertion forum.schicksal-und-hjerausforderung.de ? de
1916Character Insertion forum.schicksal-undf-herausforderung.de ? de
1917Character Insertion forum.schicksal-unds-herausforderung.de ? de
1918Character Insertion forum.schicksal-unmd-herausforderung.de ? de
1919Character Insertion forum.schicksal-uynd-herausforderung.de ? de
1920Character Insertion forum.schicksalk-und-herausforderung.de ? de
1921Character Insertion forum.schicksasl-und-herausforderung.de ? de
1922Character Insertion forum.schicksdal-und-herausforderung.de ? de
1923Character Insertion forum.schicvksal-und-herausforderung.de ? de
1924Character Insertion forum.schicxksal-und-herausforderung.de ? de
1925Character Insertion forum.schiocksal-und-herausforderung.de ? de
1926Character Insertion forum.schiucksal-und-herausforderung.de ? de
1927Character Insertion forum.schjicksal-und-herausforderung.de ? de
1928Character Insertion forum.scvhicksal-und-herausforderung.de ? de
1929Character Insertion forum.scxhicksal-und-herausforderung.de ? de
1930Character Insertion forum.sdchicksal-und-herausforderung.de ? de
1931Character Insertion forumn.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1932Character Insertion foruym.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1933Missing Dot wwwforum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1934Strip Dashes forum.schicksalundherausforderung.de ? de
1935Singular or Pluralise schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY mail.suh-ev.de de
1936Singular or Pluralise schicksal-und-herausforderungs.de ? de
1937Vowel Swap farum.schicksal-und-herausfarderung.de ? de
1938Vowel Swap ferum.schicksal-und-herausferderung.de ? de
1939Vowel Swap firum.schicksal-und-herausfirderung.de ? de
1940Vowel Swap foram.schicksal-and-heraasforderang.de ? de
1941Vowel Swap forem.schicksal-end-heraesfordereng.de ? de
1942Vowel Swap forim.schicksal-ind-heraisfordering.de ? de
1943Vowel Swap forom.schicksal-ond-heraosforderong.de ? de
1944Vowel Swap forum.schacksal-und-herausforderung.de ? de
1945Vowel Swap forum.schecksal-und-herausforderung.de ? de
1946Vowel Swap forum.schicksel-und-hereusforderung.de ? de
1947Vowel Swap forum.schicksil-und-heriusforderung.de ? de
1948Vowel Swap forum.schicksol-und-herousforderung.de ? de
1949Vowel Swap forum.schicksul-und-heruusforderung.de ? de
1950Vowel Swap furum.schicksal-und-herausfurderung.de ? de
1951Homophones foarum.schicksal-und-herausfoarderung.de ? de
1952Homophones foreum.schicksal-und-herausforederung.de ? de
1953Homophones forum.schayecksal-und-herausforderung.de ? de
1954Homophones forum.scheyecksal-und-herausforderung.de ? de
1955Homophones forum.schighcksal-und-herausforderung.de ? de
1956Homophones forum.ssheikksal-und-herausforderung.de ? de
1957Homophones fourum.schicksal-und-herausfourderung.de ? de
1958Bit Flipping borum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1959Bit Flipping fgrum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1960Bit Flipping fkrum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1961Bit Flipping fmrum.schicksal-und-herausforderung.de 85.25.208.92 de
1962Bit Flipping fnrum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1963Bit Flipping fo2um.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1964Bit Flipping fobum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1965Bit Flipping fopum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1966Bit Flipping for5m.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1967Bit Flipping forem.schicksal-und-herausforderung.de 85.25.208.92 U�, de
1968Bit Flipping forqm.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1969Bit Flipping fortm.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1970Bit Flipping foru-.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1971Bit Flipping forue.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1972Bit Flipping forui.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1973Bit Flipping forul.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
1974Bit Flipping forum.3chicksal-und-herausforderung.de ? de
1975Bit Flipping forum.cchicksal-und-herausforderung.de ? de
1976Bit Flipping forum.qchicksal-und-herausforderung.de ? de
1977Bit Flipping forum.rchicksal-und-herausforderung.de ? de
1978Bit Flipping forum.sahicksal-und-herausforderung.de ? de
1979Bit Flipping forum.sbhicksal-und-herausforderung.de ? de
1980Bit Flipping forum.schhcksal-und-herausforderung.de ? de
1981Bit Flipping forum.schiaksal-und-herausforderung.de ? de
1982Bit Flipping forum.schibksal-und-herausforderung.de ? de
1983Bit Flipping forum.schiccsal-und-herausforderung.de ? de
1984Bit Flipping forum.schicisal-und-herausforderung.de ? de
1985Bit Flipping forum.schick3al-und-herausforderung.de ? de
1986Bit Flipping forum.schickcal-und-herausforderung.de ? de
1987Bit Flipping forum.schickqal-und-herausforderung.de ? de
1988Bit Flipping forum.schickral-und-herausforderung.de ? de
1989Bit Flipping forum.schicksad-und-herausforderung.de ? de
1990Bit Flipping forum.schicksah-und-herausforderung.de ? de
1991Bit Flipping forum.schicksal-5nd-herausforderung.de ? de
1992Bit Flipping forum.schicksal-end-herausforderung.de ? de
1993Bit Flipping forum.schicksal-qnd-herausforderung.de ? de
1994Bit Flipping forum.schicksal-tnd-herausforderung.de ? de
1995Bit Flipping forum.schicksal-u.d-herausforderung.de ? de
1996Bit Flipping forum.schicksal-ufd-herausforderung.de ? de
1997Bit Flipping forum.schicksal-ujd-herausforderung.de ? de
1998Bit Flipping forum.schicksal-uld-herausforderung.de ? de
1999Bit Flipping forum.schicksal-und-harausforderung.de ? de
2000Bit Flipping forum.schicksal-und-hdrausforderung.de ? de
2001Bit Flipping forum.schicksal-und-he2ausforderung.de ? de
2002Bit Flipping forum.schicksal-und-hebausforderung.de ? de
2003Bit Flipping forum.schicksal-und-hepausforderung.de ? de
2004Bit Flipping forum.schicksal-und-hera5sforderung.de ? de
2005Bit Flipping forum.schicksal-und-heraesforderung.de ? de
2006Bit Flipping forum.schicksal-und-heraqsforderung.de ? de
2007Bit Flipping forum.schicksal-und-heratsforderung.de ? de
2008Bit Flipping forum.schicksal-und-herau3forderung.de ? de
2009Bit Flipping forum.schicksal-und-heraucforderung.de ? de
2010Bit Flipping forum.schicksal-und-herauqforderung.de ? de
2011Bit Flipping forum.schicksal-und-heraurforderung.de ? de
2012Bit Flipping forum.schicksal-und-herausborderung.de ? de
2013Bit Flipping forum.schicksal-und-herausfgrderung.de ? de
2014Bit Flipping forum.schicksal-und-herausfkrderung.de ? de
2015Bit Flipping forum.schicksal-und-herausfmrderung.de ? de
2016Bit Flipping forum.schicksal-und-herausfnrderung.de ? de
2017Bit Flipping forum.schicksal-und-herausfo2derung.de ? de
2018Bit Flipping forum.schicksal-und-herausfobderung.de ? de
2019Bit Flipping forum.schicksal-und-herausfopderung.de ? de
2020Bit Flipping forum.schicksal-und-herausfordarung.de ? de
2021Bit Flipping forum.schicksal-und-herausforddrung.de ? de
2022Bit Flipping forum.schicksal-und-herausforde2ung.de ? de
2023Bit Flipping forum.schicksal-und-herausfordebung.de ? de
2024Bit Flipping forum.schicksal-und-herausfordepung.de ? de
2025Bit Flipping forum.schicksal-und-herausforder5ng.de ? de
2026Bit Flipping forum.schicksal-und-herausfordereng.de ? de
2027Bit Flipping forum.schicksal-und-herausforderqng.de ? de
2028Bit Flipping forum.schicksal-und-herausfordertng.de ? de
2029Bit Flipping forum.schicksal-und-herausforderu.g.de 88.99.192.80 GB,UNITED KINGDOM de
2030Bit Flipping forum.schicksal-und-herausforderufg.de ? de
2031Bit Flipping forum.schicksal-und-herausforderujg.de ? de
2032Bit Flipping forum.schicksal-und-herausforderulg.de ? de
2033Bit Flipping forum.schicksal-und-herausforderunc.de ? de
2034Bit Flipping forum.schicksal-und-herausforderune.de ? de
2035Bit Flipping forum.schicksal-und-herausforderung.dm ? dm
2036Bit Flipping forum.schicksal-und-herausforderung.ee ? ee
2037Bit Flipping forum.schicksal-und-herausforderuno.de ? de
2038Bit Flipping forum.schicksal-und-herausforderunw.de ? de
2039Bit Flipping forum.schicksal-und-herausforderuog.de ? de
2040Bit Flipping forum.schicksal-und-herausforderwng.de ? de
2041Bit Flipping forum.schicksal-und-herausfordesung.de ? de
2042Bit Flipping forum.schicksal-und-herausfordevung.de ? de
2043Bit Flipping forum.schicksal-und-herausfordezung.de ? de
2044Bit Flipping forum.schicksal-und-herausfordgrung.de ? de
2045Bit Flipping forum.schicksal-und-herausfordmrung.de ? de
2046Bit Flipping forum.schicksal-und-herausfordurung.de ? de
2047Bit Flipping forum.schicksal-und-herausforeerung.de ? de
2048Bit Flipping forum.schicksal-und-herausforlerung.de ? de
2049Bit Flipping forum.schicksal-und-herausforterung.de ? de
2050Bit Flipping forum.schicksal-und-herausfosderung.de ? de
2051Bit Flipping forum.schicksal-und-herausfovderung.de ? de
2052Bit Flipping forum.schicksal-und-herausfozderung.de ? de
2053Bit Flipping forum.schicksal-und-herausnorderung.de ? de
2054Bit Flipping forum.schicksal-und-herausvorderung.de ? de
2055Bit Flipping forum.schicksal-und-herauwforderung.de ? de
2056Bit Flipping forum.schicksal-und-herawsforderung.de ? de
2057Bit Flipping forum.schicksal-und-hercusforderung.de ? de
2058Bit Flipping forum.schicksal-und-hereusforderung.de ? de
2059Bit Flipping forum.schicksal-und-heriusforderung.de ? de
2060Bit Flipping forum.schicksal-und-herqusforderung.de ? de
2061Bit Flipping forum.schicksal-und-hesausforderung.de ? de
2062Bit Flipping forum.schicksal-und-hevausforderung.de ? de
2063Bit Flipping forum.schicksal-und-hezausforderung.de ? de
2064Bit Flipping forum.schicksal-und-hgrausforderung.de ? de
2065Bit Flipping forum.schicksal-und-hmrausforderung.de ? de
2066Bit Flipping forum.schicksal-und-hurausforderung.de ? de
2067Bit Flipping forum.schicksal-und-ierausforderung.de ? de
2068Bit Flipping forum.schicksal-und-lerausforderung.de ? de
2069Bit Flipping forum.schicksal-und-xerausforderung.de ? de
2070Bit Flipping forum.schicksal-undmherausforderung.de ? de
2071Bit Flipping forum.schicksal-une-herausforderung.de ? de
2072Bit Flipping forum.schicksal-unl-herausforderung.de ? de
2073Bit Flipping forum.schicksal-unt-herausforderung.de ? de
2074Bit Flipping forum.schicksal-uod-herausforderung.de ? de
2075Bit Flipping forum.schicksal-wnd-herausforderung.de ? de
2076Bit Flipping forum.schicksalmund-herausforderung.de ? de
2077Bit Flipping forum.schicksam-und-herausforderung.de ? de
2078Bit Flipping forum.schicksan-und-herausforderung.de ? de
2079Bit Flipping forum.schickscl-und-herausforderung.de ? de
2080Bit Flipping forum.schicksel-und-herausforderung.de ? de
2081Bit Flipping forum.schicksil-und-herausforderung.de ? de
2082Bit Flipping forum.schicksql-und-herausforderung.de ? de
2083Bit Flipping forum.schickwal-und-herausforderung.de ? de
2084Bit Flipping forum.schicosal-und-herausforderung.de ? de
2085Bit Flipping forum.schigksal-und-herausforderung.de ? de
2086Bit Flipping forum.schikksal-und-herausforderung.de ? de
2087Bit Flipping forum.schisksal-und-herausforderung.de ? de
2088Bit Flipping forum.schkcksal-und-herausforderung.de ? de
2089Bit Flipping forum.schmcksal-und-herausforderung.de ? de
2090Bit Flipping forum.schycksal-und-herausforderung.de ? de
2091Bit Flipping forum.sciicksal-und-herausforderung.de ? de
2092Bit Flipping forum.sclicksal-und-herausforderung.de ? de
2093Bit Flipping forum.scxicksal-und-herausforderung.de ? de
2094Bit Flipping forum.sghicksal-und-herausforderung.de ? de
2095Bit Flipping forum.skhicksal-und-herausforderung.de ? de
2096Bit Flipping forum.sshicksal-und-herausforderung.de ? de
2097Bit Flipping forum.wchicksal-und-herausforderung.de ? de
2098Bit Flipping forumnschicksal-und-herausforderung.de ? de
2099Bit Flipping foruo.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2100Bit Flipping forwm.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2101Bit Flipping fosum.schicksal-und-herausforderung.de 85.25.208.92 GB,UNITED KINGDOM de
2102Bit Flipping fovum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2103Bit Flipping fozum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2104Bit Flipping norum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2105Bit Flipping vorum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2106Homoglyphs f0rum.schicksal-und-herausf0rderung.de ? de
2107Homoglyphs f0rum.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2108Homoglyphs forum.schicksa1-und-herausforderung.de ? de
2109Homoglyphs forum.schicksal-uncl-herausforclerung.de ? de
2110Homoglyphs forum.schicksal-uncl-herausforderung.de ? de
2111Homoglyphs forum.schicksal-und-herausf0rderung.de ? de
2112Homoglyphs forum.schicksal-und-herausforclerung.de ? de
2113Homoglyphs forum.schlcksal-und-herausforderung.de ? de
2114Homoglyphs forurn.schicksal-und-herausforderung.de 85.25.208.92 DE,GERMANY de
2115Wrong TLD schicksal-und-herausforderung.ca ? ca
2116Wrong TLD schicksal-und-herausforderung.ch ? ch
2117Wrong TLD schicksal-und-herausforderung.com ? com
2118Wrong TLD schicksal-und-herausforderung.edu ? edu
2119Wrong TLD schicksal-und-herausforderung.es ? es
2120Wrong TLD schicksal-und-herausforderung.fr ? fr
2121Wrong TLD schicksal-und-herausforderung.it ? it
2122Wrong TLD schicksal-und-herausforderung.jp ? jp
2123Wrong TLD schicksal-und-herausforderung.net ? net
2124Wrong TLD schicksal-und-herausforderung.nl ? nl
2125Wrong TLD schicksal-und-herausforderung.no ? no
2126Wrong TLD schicksal-und-herausforderung.org ? org
2127Wrong TLD schicksal-und-herausforderung.ru ? ru
2128Wrong TLD schicksal-und-herausforderung.se ? se
2129Wrong TLD schicksal-und-herausforderung.us ? us
2130####################################################################################################################################
2131[*] Processing domain forum.schicksal-und-herausforderung.de
2132[*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a', '192.168.0.1']
2133[+] Getting nameservers
2134[-] Getting nameservers failed
2135[-] Zone transfer failed
2136
2137[+] Wildcard domain found - 85.25.208.92
2138[*] Scanning forum.schicksal-und-herausforderung.de for A records
2139####################################################################################################################################
2140[+] forum.schicksal-und-herausforderung.de has no SPF record!
2141[*] No DMARC record found. Looking for organizational record
2142[*] Found organizational DMARC record:
2143[*] v=DMARC1;p=reject;rua=mailto:admins@suh-ev.de
2144[*] No explicit organizational subdomain policy. Defaulting to organizational policy
2145[-] DMARC policy set to reject
2146[-] Spoofing not possible for forum.schicksal-und-herausforderung.de
2147####################################################################################################################################
2148WARNING: Duplicate port number(s) specified. Are you alert enough to be using Nmap? Have some coffee or Jolt(tm).
2149Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 20:49 EST
2150Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
2151Host is up (0.59s latency).
2152rDNS record for 85.25.208.92: mail.suh-ev.de
2153Not shown: 485 closed ports
2154PORT STATE SERVICE
215522/tcp open ssh
215680/tcp open http
2157110/tcp open pop3
2158143/tcp open imap
2159443/tcp open https
2160465/tcp open smtps
2161587/tcp open submission
2162993/tcp open imaps
2163995/tcp open pop3s
21642222/tcp open EtherNetIP-1
216527015/tcp open unknown
2166
2167Nmap done: 1 IP address (1 host up) scanned in 3.27 seconds
2168#####################################################################################################################################
2169Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 20:49 EST
2170Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
2171Host is up (0.23s latency).
2172rDNS record for 85.25.208.92: mail.suh-ev.de
2173Not shown: 12 closed ports, 2 filtered ports
2174PORT STATE SERVICE
2175123/udp open|filtered ntp
2176
2177Nmap done: 1 IP address (1 host up) scanned in 9.66 seconds
2178####################################################################################################################################
2179# general
2180(gen) banner: SSH-2.0-OpenSSH_7.4p1 Debian-10+deb9u7
2181(gen) software: OpenSSH 7.4p1
2182(gen) compatibility: OpenSSH 7.3+, Dropbear SSH 2016.73+
2183(gen) compression: enabled (zlib@openssh.com)
2184
2185# key exchange algorithms
2186(kex) curve25519-sha256 -- [warn] unknown algorithm
2187(kex) curve25519-sha256@libssh.org -- [info] available since OpenSSH 6.5, Dropbear SSH 2013.62
2188(kex) ecdh-sha2-nistp256 -- [fail] using weak elliptic curves
2189 `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
2190(kex) ecdh-sha2-nistp384 -- [fail] using weak elliptic curves
2191 `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
2192(kex) ecdh-sha2-nistp521 -- [fail] using weak elliptic curves
2193 `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
2194(kex) diffie-hellman-group-exchange-sha256 -- [warn] using custom size modulus (possibly weak)
2195 `- [info] available since OpenSSH 4.4
2196(kex) diffie-hellman-group16-sha512 -- [info] available since OpenSSH 7.3, Dropbear SSH 2016.73
2197(kex) diffie-hellman-group18-sha512 -- [info] available since OpenSSH 7.3
2198(kex) diffie-hellman-group14-sha256 -- [info] available since OpenSSH 7.3, Dropbear SSH 2016.73
2199(kex) diffie-hellman-group14-sha1 -- [warn] using weak hashing algorithm
2200 `- [info] available since OpenSSH 3.9, Dropbear SSH 0.53
2201
2202# host-key algorithms
2203(key) ssh-rsa -- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.28
2204(key) rsa-sha2-512 -- [info] available since OpenSSH 7.2
2205(key) rsa-sha2-256 -- [info] available since OpenSSH 7.2
2206(key) ecdsa-sha2-nistp256 -- [fail] using weak elliptic curves
2207 `- [warn] using weak random number generator could reveal the key
2208 `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
2209(key) ssh-ed25519 -- [info] available since OpenSSH 6.5
2210
2211# encryption algorithms (ciphers)
2212(enc) chacha20-poly1305@openssh.com -- [info] available since OpenSSH 6.5
2213 `- [info] default cipher since OpenSSH 6.9.
2214(enc) aes128-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
2215(enc) aes192-ctr -- [info] available since OpenSSH 3.7
2216(enc) aes256-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
2217(enc) aes128-gcm@openssh.com -- [info] available since OpenSSH 6.2
2218(enc) aes256-gcm@openssh.com -- [info] available since OpenSSH 6.2
2219
2220# message authentication code algorithms
2221(mac) umac-64-etm@openssh.com -- [warn] using small 64-bit tag size
2222 `- [info] available since OpenSSH 6.2
2223(mac) umac-128-etm@openssh.com -- [info] available since OpenSSH 6.2
2224(mac) hmac-sha2-256-etm@openssh.com -- [info] available since OpenSSH 6.2
2225(mac) hmac-sha2-512-etm@openssh.com -- [info] available since OpenSSH 6.2
2226(mac) hmac-sha1-etm@openssh.com -- [warn] using weak hashing algorithm
2227 `- [info] available since OpenSSH 6.2
2228(mac) umac-64@openssh.com -- [warn] using encrypt-and-MAC mode
2229 `- [warn] using small 64-bit tag size
2230 `- [info] available since OpenSSH 4.7
2231(mac) umac-128@openssh.com -- [warn] using encrypt-and-MAC mode
2232 `- [info] available since OpenSSH 6.2
2233(mac) hmac-sha2-256 -- [warn] using encrypt-and-MAC mode
2234 `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
2235(mac) hmac-sha2-512 -- [warn] using encrypt-and-MAC mode
2236 `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
2237(mac) hmac-sha1 -- [warn] using encrypt-and-MAC mode
2238 `- [warn] using weak hashing algorithm
2239 `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
2240
2241# algorithm recommendations (for OpenSSH 7.4)
2242(rec) -ecdh-sha2-nistp521 -- kex algorithm to remove
2243(rec) -ecdh-sha2-nistp384 -- kex algorithm to remove
2244(rec) -diffie-hellman-group14-sha1 -- kex algorithm to remove
2245(rec) -ecdh-sha2-nistp256 -- kex algorithm to remove
2246(rec) -diffie-hellman-group-exchange-sha256 -- kex algorithm to remove
2247(rec) -ecdsa-sha2-nistp256 -- key algorithm to remove
2248(rec) -hmac-sha2-512 -- mac algorithm to remove
2249(rec) -umac-128@openssh.com -- mac algorithm to remove
2250(rec) -hmac-sha2-256 -- mac algorithm to remove
2251(rec) -umac-64@openssh.com -- mac algorithm to remove
2252(rec) -hmac-sha1 -- mac algorithm to remove
2253(rec) -hmac-sha1-etm@openssh.com -- mac algorithm to remove
2254(rec) -umac-64-etm@openssh.com -- mac algorithm to remove
2255####################################################################################################################################
2256USER_FILE => /usr/share/brutex/wordlists/simple-users.txt
2257RHOSTS => forum.schicksal-und-herausforderung.de
2258RHOST => forum.schicksal-und-herausforderung.de
2259[*] 85.25.208.92:22 - SSH - Using malformed packet technique
2260[*] 85.25.208.92:22 - SSH - Starting scan
2261[+] 85.25.208.92:22 - SSH - User 'admin' found
2262[+] 85.25.208.92:22 - SSH - User 'administrator' found
2263[+] 85.25.208.92:22 - SSH - User 'anonymous' found
2264[+] 85.25.208.92:22 - SSH - User 'backup' found
2265[+] 85.25.208.92:22 - SSH - User 'bee' found
2266[+] 85.25.208.92:22 - SSH - User 'ftp' found
2267[-] 85.25.208.92:22 - SSH - User 'guest' not found
2268[-] 85.25.208.92:22 - SSH - User 'GUEST' on could not connect
2269[-] 85.25.208.92:22 - SSH - User 'info' on could not connect
2270[-] 85.25.208.92:22 - SSH - User 'mail' on could not connect
2271[-] 85.25.208.92:22 - SSH - User 'mailadmin' on could not connect
2272[-] 85.25.208.92:22 - SSH - User 'msfadmin' on could not connect
2273[-] 85.25.208.92:22 - SSH - User 'mysql' on could not connect
2274[-] 85.25.208.92:22 - SSH - User 'nobody' on could not connect
2275[-] 85.25.208.92:22 - SSH - User 'oracle' on could not connect
2276[-] 85.25.208.92:22 - SSH - User 'owaspbwa' on could not connect
2277[-] 85.25.208.92:22 - SSH - User 'postfix' on could not connect
2278[-] 85.25.208.92:22 - SSH - User 'postgres' on could not connect
2279[-] 85.25.208.92:22 - SSH - User 'private' on could not connect
2280[-] 85.25.208.92:22 - SSH - User 'proftpd' on could not connect
2281[-] 85.25.208.92:22 - SSH - User 'public' on could not connect
2282[-] 85.25.208.92:22 - SSH - User 'root' on could not connect
2283[-] 85.25.208.92:22 - SSH - User 'superadmin' on could not connect
2284[-] 85.25.208.92:22 - SSH - User 'support' on could not connect
2285[-] 85.25.208.92:22 - SSH - User 'sys' on could not connect
2286[-] 85.25.208.92:22 - SSH - User 'system' on could not connect
2287[-] 85.25.208.92:22 - SSH - User 'systemadmin' on could not connect
2288[-] 85.25.208.92:22 - SSH - User 'systemadministrator' on could not connect
2289[-] 85.25.208.92:22 - SSH - User 'test' on could not connect
2290[-] 85.25.208.92:22 - SSH - User 'tomcat' on could not connect
2291[-] 85.25.208.92:22 - SSH - User 'user' on could not connect
2292[-] 85.25.208.92:22 - SSH - User 'webmaster' on could not connect
2293[-] 85.25.208.92:22 - SSH - User 'www-data' on could not connect
2294[-] 85.25.208.92:22 - SSH - User 'Fortimanager_Access' on could not connect
2295[*] Scanned 1 of 1 hosts (100% complete)
2296[*] Auxiliary module execution completed
2297#####################################################################################################################################
2298http://forum.schicksal-und-herausforderung.de/ [302 Found] Country[GERMANY][DE], IP[85.25.208.92], RedirectLocation[https://forum.schicksal-und-herausforderung.de:443/]
2299https://forum.schicksal-und-herausforderung.de/ [200 OK] Country[GERMANY][DE], Email[mail@gsa-forum.de], HTML5, HTTPServer[nginx/1.17.1], IP[85.25.208.92], Title[Gemeinsam statt allein], nginx[1.17.1]
2300####################################################################################################################################
2301
2302wig - WebApp Information Gatherer
2303
2304
2305Scanning https://forum.schicksal-und-herausforderung.de:443...
2306__________________ SITE INFO __________________
2307IP Title
2308Unknown Gemeinsam statt allein
2309
2310___________________ VERSION ___________________
2311Name Versions Type
2312nginx 1.17.1 Platform
2313
2314_______________________________________________
2315Time: 146.1 sec Urls: 600 Fingerprints: 40401
2316####################################################################################################################################
2317Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 21:00 EST
2318NSE: Loaded 161 scripts for scanning.
2319NSE: Script Pre-scanning.
2320Initiating NSE at 21:00
2321Completed NSE at 21:00, 0.00s elapsed
2322Initiating NSE at 21:00
2323Completed NSE at 21:00, 0.00s elapsed
2324Initiating Parallel DNS resolution of 1 host. at 21:00
2325Completed Parallel DNS resolution of 1 host. at 21:00, 0.02s elapsed
2326Initiating SYN Stealth Scan at 21:00
2327Scanning forum.schicksal-und-herausforderung.de (85.25.208.92) [1 port]
2328Discovered open port 80/tcp on 85.25.208.92
2329Completed SYN Stealth Scan at 21:00, 0.22s elapsed (1 total ports)
2330Initiating Service scan at 21:00
2331Scanning 1 service on forum.schicksal-und-herausforderung.de (85.25.208.92)
2332Completed Service scan at 21:02, 94.49s elapsed (1 service on 1 host)
2333Initiating OS detection (try #1) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2334Retrying OS detection (try #2) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2335Initiating Traceroute at 21:02
2336Completed Traceroute at 21:02, 3.01s elapsed
2337Initiating Parallel DNS resolution of 14 hosts. at 21:02
2338Completed Parallel DNS resolution of 14 hosts. at 21:02, 0.30s elapsed
2339NSE: Script scanning 85.25.208.92.
2340Initiating NSE at 21:02
2341Completed NSE at 21:03, 58.91s elapsed
2342Initiating NSE at 21:03
2343Completed NSE at 21:03, 1.30s elapsed
2344Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
2345Host is up (0.20s latency).
2346rDNS record for 85.25.208.92: mail.suh-ev.de
2347
2348PORT STATE SERVICE VERSION
234980/tcp open http
2350| fingerprint-strings:
2351| FourOhFourRequest:
2352| HTTP/1.0 302 Found
2353| Location: https://http:443:///nice%20ports%2C/Tri%6Eity.txt%2ebak
2354| Date: Mon, 10 Feb 2020 02:00:31 GMT
2355| Content-Length: 5
2356| Content-Type: text/plain; charset=utf-8
2357| Found
2358| GenericLines, Help, Kerberos, LDAPSearchReq, LPDString, RTSPRequest, SSLSessionReq, TLSSessionReq, TerminalServerCookie:
2359| HTTP/1.1 400 Bad Request
2360| Content-Type: text/plain; charset=utf-8
2361| Connection: close
2362| Request
2363| GetRequest:
2364| HTTP/1.0 302 Found
2365| Location: https://http:443:///
2366| Date: Mon, 10 Feb 2020 02:00:24 GMT
2367| Content-Length: 5
2368| Content-Type: text/plain; charset=utf-8
2369| Found
2370| HTTPOptions:
2371| HTTP/1.0 307 Temporary Redirect
2372| Location: https://http:443:///
2373| Date: Mon, 10 Feb 2020 02:00:24 GMT
2374| Content-Length: 18
2375| Content-Type: text/plain; charset=utf-8
2376|_ Temporary Redirect
2377| http-brute:
2378|_ Path "/" does not require authentication
2379|_http-chrono: Request times for /; avg: 656.97ms; min: 578.16ms; max: 730.23ms
2380|_http-csrf: Couldn't find any CSRF vulnerabilities.
2381|_http-date: Mon, 10 Feb 2020 02:02:12 GMT; -11s from local time.
2382|_http-devframework: Couldn't determine the underlying framework or CMS. Try increasing 'httpspider.maxpagecount' value to spider more pages.
2383|_http-dombased-xss: Couldn't find any DOM based XSS.
2384|_http-drupal-enum: Nothing found amongst the top 100 resources,use --script-args number=<number|all> for deeper analysis)
2385|_http-errors: Couldn't find any error pages.
2386|_http-feed: Couldn't find any feeds.
2387|_http-fetch: Please enter the complete path of the directory to save data in.
2388| http-headers:
2389| Location: https://forum.schicksal-und-herausforderung.de:443/
2390| Date: Mon, 10 Feb 2020 02:02:20 GMT
2391| Content-Length: 5
2392| Content-Type: text/plain; charset=utf-8
2393| Connection: close
2394|
2395|_ (Request type: GET)
2396|_http-jsonp-detection: Couldn't find any JSONP endpoints.
2397| http-methods:
2398|_ Supported Methods: GET HEAD POST OPTIONS
2399|_http-mobileversion-checker: No mobile version detected.
2400|_http-passwd: ERROR: Script execution failed (use -d to debug)
2401|_http-security-headers:
2402| http-sitemap-generator:
2403| Directory structure:
2404| Longest directory structure:
2405| Depth: 0
2406| Dir: /
2407| Total files found (by extension):
2408|_
2409|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
2410|_http-title: Did not follow redirect to https://forum.schicksal-und-herausforderung.de:443/
2411| http-vhosts:
2412|_127 names had status 307
2413|_http-wordpress-enum: Nothing found amongst the top 100 resources,use --script-args search-limit=<number|all> for deeper analysis)
2414|_http-wordpress-users: [Error] Wordpress installation was not found. We couldn't find wp-login.php
2415|_http-xssed: No previously reported XSS vuln.
24161 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
2417SF-Port80-TCP:V=7.80%I=7%D=2/9%Time=5E40B943%P=x86_64-pc-linux-gnu%r(GetRe
2418SF:quest,9C,"HTTP/1\.0\x20302\x20Found\r\nLocation:\x20https://http:443://
2419SF:/\r\nDate:\x20Mon,\x2010\x20Feb\x202020\x2002:00:24\x20GMT\r\nContent-L
2420SF:ength:\x205\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\n\r\nFou
2421SF:nd")%r(HTTPOptions,B7,"HTTP/1\.0\x20307\x20Temporary\x20Redirect\r\nLoc
2422SF:ation:\x20https://http:443:///\r\nDate:\x20Mon,\x2010\x20Feb\x202020\x2
2423SF:002:00:24\x20GMT\r\nContent-Length:\x2018\r\nContent-Type:\x20text/plai
2424SF:n;\x20charset=utf-8\r\n\r\nTemporary\x20Redirect")%r(RTSPRequest,67,"HT
2425SF:TP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20cha
2426SF:rset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Fou
2427SF:rOhFourRequest,BF,"HTTP/1\.0\x20302\x20Found\r\nLocation:\x20https://ht
2428SF:tp:443:///nice%20ports%2C/Tri%6Eity\.txt%2ebak\r\nDate:\x20Mon,\x2010\x
2429SF:20Feb\x202020\x2002:00:31\x20GMT\r\nContent-Length:\x205\r\nContent-Typ
2430SF:e:\x20text/plain;\x20charset=utf-8\r\n\r\nFound")%r(GenericLines,67,"HT
2431SF:TP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20cha
2432SF:rset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Hel
2433SF:p,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain
2434SF:;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request
2435SF:")%r(SSLSessionReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Ty
2436SF:pe:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\
2437SF:x20Bad\x20Request")%r(TerminalServerCookie,67,"HTTP/1\.1\x20400\x20Bad\
2438SF:x20Request\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnecti
2439SF:on:\x20close\r\n\r\n400\x20Bad\x20Request")%r(TLSSessionReq,67,"HTTP/1\
2440SF:.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20charset=
2441SF:utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Kerberos
2442SF:,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;
2443SF:\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request"
2444SF:)%r(LPDString,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x
2445SF:20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Ba
2446SF:d\x20Request")%r(LDAPSearchReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r
2447SF:\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close
2448SF:\r\n\r\n400\x20Bad\x20Request");
2449Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
2450Aggressive OS guesses: Linux 3.2 - 4.9 (95%), Linux 3.16 - 4.6 (94%), Linux 3.1 (94%), Linux 3.2 (94%), AXIS 210A or 211 Network Camera (Linux 2.6.17) (94%), Linux 3.10 - 4.11 (94%), Linux 3.13 (94%), Linux 3.13 or 4.2 (94%), Linux 4.2 (94%), Linux 4.4 (94%)
2451No exact OS matches for host (test conditions non-ideal).
2452Uptime guess: 68.169 days (since Tue Dec 3 17:00:12 2019)
2453Network Distance: 16 hops
2454TCP Sequence Prediction: Difficulty=263 (Good luck!)
2455IP ID Sequence Generation: All zeros
2456
2457TRACEROUTE (using port 80/tcp)
2458HOP RTT ADDRESS
24591 120.69 ms 10.248.204.1
24602 120.75 ms R43.static.amanah.com (104.245.144.129)
24613 120.79 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
24624 154.46 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90)
24635 147.24 ms te0-9-0-9.ccr32.yyz02.atlas.cogentco.com (154.54.43.153)
24646 213.31 ms be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70)
24657 213.27 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
24668 213.45 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
24679 213.44 ms be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142)
246810 213.48 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
246911 213.51 ms be2781.nr14.b015623-2.sxb01.atlas.cogentco.com (154.25.8.234)
247012 ...
247113 213.54 ms 92.204.12.11
247214 213.41 ms 62.138.129.2
247315 178.21 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140)
247416 177.84 ms mail.suh-ev.de (85.25.208.92)
2475
2476NSE: Script Post-scanning.
2477Initiating NSE at 21:03
2478Completed NSE at 21:03, 0.00s elapsed
2479Initiating NSE at 21:03
2480Completed NSE at 21:03, 0.00s elapsed
2481Read data files from: /usr/bin/../share/nmap
2482OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
2483Nmap done: 1 IP address (1 host up) scanned in 164.79 seconds
2484 Raw packets sent: 76 (5.060KB) | Rcvd: 1698 (734.230KB)
2485####################################################################################################################################
2486-herausforderung.de-port110.txt: Aucun fichier ou dossier de ce type
2487Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 21:03 EST
2488NSE: Loaded 49 scripts for scanning.
2489NSE: Script Pre-scanning.
2490Initiating NSE at 21:03
2491Completed NSE at 21:03, 0.00s elapsed
2492Initiating NSE at 21:03
2493Completed NSE at 21:03, 0.00s elapsed
2494Initiating Ping Scan at 21:03
2495Scanning forum.schicksal-und-herausforderung.de (85.25.208.92) [4 ports]
2496Completed Ping Scan at 21:03, 0.28s elapsed (1 total hosts)
2497Initiating Parallel DNS resolution of 1 host. at 21:03
2498Completed Parallel DNS resolution of 1 host. at 21:03, 0.02s elapsed
2499Initiating SYN Stealth Scan at 21:03
2500Scanning forum.schicksal-und-herausforderung.de (85.25.208.92) [1 port]
2501Discovered open port 110/tcp on 85.25.208.92
2502Completed SYN Stealth Scan at 21:03, 0.39s elapsed (1 total ports)
2503Initiating Service scan at 21:03
2504Scanning 1 service on forum.schicksal-und-herausforderung.de (85.25.208.92)
2505Completed Service scan at 21:03, 0.50s elapsed (1 service on 1 host)
2506Initiating OS detection (try #1) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2507Retrying OS detection (try #2) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2508Initiating Traceroute at 21:03
2509Completed Traceroute at 21:04, 3.02s elapsed
2510Initiating Parallel DNS resolution of 11 hosts. at 21:04
2511Completed Parallel DNS resolution of 11 hosts. at 21:04, 0.37s elapsed
2512NSE: Script scanning 85.25.208.92.
2513Initiating NSE at 21:04
2514NSE Timing: About 68.66% done; ETC: 21:05 (0:00:30 remaining)
2515Completed NSE at 21:05, 90.55s elapsed
2516Initiating NSE at 21:05
2517Completed NSE at 21:05, 0.05s elapsed
2518Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
2519Host is up (0.28s latency).
2520rDNS record for 85.25.208.92: mail.suh-ev.de
2521
2522PORT STATE SERVICE VERSION
2523110/tcp open pop3 Dovecot pop3d
2524|_pop3-capabilities: SASL CAPA STLS TOP RESP-CODES AUTH-RESP-CODE PIPELINING UIDL
2525Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
2526Aggressive OS guesses: Linux 3.16 - 4.6 (95%), Linux 3.2 - 4.9 (95%), Linux 3.1 (94%), Linux 3.2 (94%), AXIS 210A or 211 Network Camera (Linux 2.6.17) (94%), Linux 3.10 - 4.11 (94%), Linux 3.13 (94%), Linux 3.16 (94%), Linux 3.18 (94%), Linux 4.2 (94%)
2527No exact OS matches for host (test conditions non-ideal).
2528Uptime guess: 73.505 days (since Thu Nov 28 08:57:48 2019)
2529Network Distance: 14 hops
2530TCP Sequence Prediction: Difficulty=254 (Good luck!)
2531IP ID Sequence Generation: All zeros
2532
2533TRACEROUTE (using port 110/tcp)
2534HOP RTT ADDRESS
25351 216.23 ms 10.248.204.1
25362 216.31 ms R43.static.amanah.com (104.245.144.129)
25373 225.65 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9)
25384 230.47 ms te0-0-0-1.agr13.yyz02.atlas.cogentco.com (154.24.54.37)
25395 208.50 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
25406 130.60 ms be3259.ccr21.ymq01.atlas.cogentco.com (154.54.41.206)
25417 285.55 ms be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142)
25428 285.57 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
25439 285.59 ms be2780.nr13.b015623-2.sxb01.atlas.cogentco.com (154.25.5.242)
254410 ...
254511 285.62 ms be2780.nr13.b015623-2.sxb01.atlas.cogentco.com (154.25.5.242)
254612 ...
254713 285.57 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140)
254814 285.54 ms mail.suh-ev.de (85.25.208.92)
2549
2550NSE: Script Post-scanning.
2551Initiating NSE at 21:05
2552Completed NSE at 21:05, 0.00s elapsed
2553Initiating NSE at 21:05
2554Completed NSE at 21:05, 0.00s elapsed
2555####################################################################################################################################
2556HTTP/2 200
2557accept-ranges: bytes
2558content-type: text/html
2559date: Mon, 10 Feb 2020 02:05:23 GMT
2560etag: "5e136fac-cf0"
2561last-modified: Mon, 06 Jan 2020 17:34:36 GMT
2562server: nginx/1.17.1
2563vary: Accept-Encoding
2564content-length: 3312
2565####################################################################################################################################
2566-herausforderung.de-port443: Aucun fichier ou dossier de ce type
2567Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 21:08 EST
2568NSE: Loaded 161 scripts for scanning.
2569NSE: Script Pre-scanning.
2570Initiating NSE at 21:08
2571Completed NSE at 21:08, 0.00s elapsed
2572Initiating NSE at 21:08
2573Completed NSE at 21:08, 0.00s elapsed
2574Initiating Parallel DNS resolution of 1 host. at 21:08
2575Completed Parallel DNS resolution of 1 host. at 21:08, 0.03s elapsed
2576Initiating SYN Stealth Scan at 21:08
2577Scanning forum.schicksal-und-herausforderung.de (85.25.208.92) [1 port]
2578Discovered open port 443/tcp on 85.25.208.92
2579Completed SYN Stealth Scan at 21:08, 0.32s elapsed (1 total ports)
2580Initiating Service scan at 21:08
2581Scanning 1 service on forum.schicksal-und-herausforderung.de (85.25.208.92)
2582Completed Service scan at 21:08, 13.33s elapsed (1 service on 1 host)
2583Initiating OS detection (try #1) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2584Retrying OS detection (try #2) against forum.schicksal-und-herausforderung.de (85.25.208.92)
2585Initiating Traceroute at 21:08
2586Completed Traceroute at 21:08, 3.01s elapsed
2587Initiating Parallel DNS resolution of 13 hosts. at 21:08
2588Completed Parallel DNS resolution of 13 hosts. at 21:08, 0.25s elapsed
2589NSE: Script scanning 85.25.208.92.
2590Initiating NSE at 21:08
2591Completed NSE at 21:10, 90.93s elapsed
2592Initiating NSE at 21:10
2593Completed NSE at 21:10, 2.03s elapsed
2594Nmap scan report for forum.schicksal-und-herausforderung.de (85.25.208.92)
2595Host is up (0.22s latency).
2596rDNS record for 85.25.208.92: mail.suh-ev.de
2597
2598PORT STATE SERVICE VERSION
2599443/tcp open ssl/http Gophish httpd
2600| http-brute:
2601|_ Path "/" does not require authentication
2602|_http-chrono: Request times for /; avg: 1174.97ms; min: 1118.01ms; max: 1237.16ms
2603|_http-csrf: Couldn't find any CSRF vulnerabilities.
2604|_http-date: Mon, 10 Feb 2020 02:08:50 GMT; -11s from local time.
2605|_http-devframework: Couldn't determine the underlying framework or CMS. Try increasing 'httpspider.maxpagecount' value to spider more pages.
2606|_http-dombased-xss: Couldn't find any DOM based XSS.
2607|_http-drupal-enum: Nothing found amongst the top 100 resources,use --script-args number=<number|all> for deeper analysis)
2608|_http-errors: Couldn't find any error pages.
2609|_http-feed: Couldn't find any feeds.
2610|_http-fetch: Please enter the complete path of the directory to save data in.
2611| http-grep:
2612| (1) https://forum.schicksal-und-herausforderung.de:443/:
2613| (1) email:
2614|_ + mail@gsa-forum.de
2615| http-headers:
2616| Accept-Ranges: bytes
2617| Content-Length: 3312
2618| Content-Type: text/html
2619| Date: Mon, 10 Feb 2020 02:08:36 GMT
2620| Etag: "5e136fac-cf0"
2621| Last-Modified: Mon, 06 Jan 2020 17:34:36 GMT
2622| Server: nginx/1.17.1
2623| Vary: Accept-Encoding
2624| Connection: close
2625|
2626|_ (Request type: HEAD)
2627|_http-jsonp-detection: Couldn't find any JSONP endpoints.
2628|_http-majordomo2-dir-traversal: ERROR: Script execution failed (use -d to debug)
2629| http-methods:
2630|_ Supported Methods: GET HEAD
2631|_http-mobileversion-checker: No mobile version detected.
2632| http-php-version: Logo query returned unknown hash 5de6e25acb31a21567a4a27e3e81518b
2633|_Credits query returned unknown hash 5de6e25acb31a21567a4a27e3e81518b
2634| http-security-headers:
2635| Strict_Transport_Security:
2636|_ HSTS not configured in HTTPS Server
2637|_http-server-header: nginx/1.17.1
2638| http-sitemap-generator:
2639| Directory structure:
2640| /
2641| Other: 1; jpg: 1
2642| Longest directory structure:
2643| Depth: 0
2644| Dir: /
2645| Total files found (by extension):
2646|_ Other: 1; jpg: 1
2647|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
2648|_http-title: Gemeinsam statt allein
2649| http-vhosts:
2650| forum.schicksal-und-herausforderung.de : 200
2651| 125 names had status 404
2652|_www.schicksal-und-herausforderung.de : 308 -> https://schicksal-und-herausforderung.de/
2653| http-vuln-cve2011-3192:
2654| VULNERABLE:
2655| Apache byterange filter DoS
2656| State: VULNERABLE
2657| IDs: BID:49303 CVE:CVE-2011-3192
2658| The Apache web server is vulnerable to a denial of service attack when numerous
2659| overlapping byte ranges are requested.
2660| Disclosure date: 2011-08-19
2661| References:
2662| https://www.securityfocus.com/bid/49303
2663| https://seclists.org/fulldisclosure/2011/Aug/175
2664| https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192
2665|_ https://www.tenable.com/plugins/nessus/55976
2666|_http-vuln-cve2017-1001000: ERROR: Script execution failed (use -d to debug)
2667|_http-xssed: No previously reported XSS vuln.
2668Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
2669Aggressive OS guesses: Linux 3.16 - 4.6 (95%), Linux 3.2 - 4.9 (95%), Linux 3.1 (94%), Linux 3.2 (94%), AXIS 210A or 211 Network Camera (Linux 2.6.17) (94%), Linux 3.10 - 4.11 (94%), Linux 3.12 (94%), Linux 3.13 (94%), Linux 3.13 or 4.2 (94%), Linux 3.16 (94%)
2670No exact OS matches for host (test conditions non-ideal).
2671Uptime guess: 64.531 days (since Sat Dec 7 08:25:48 2019)
2672Network Distance: 15 hops
2673TCP Sequence Prediction: Difficulty=262 (Good luck!)
2674IP ID Sequence Generation: All zeros
2675
2676TRACEROUTE (using port 443/tcp)
2677HOP RTT ADDRESS
26781 201.00 ms 10.248.204.1
26792 201.05 ms R43.static.amanah.com (104.245.144.129)
26803 201.11 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9)
26814 221.35 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90)
26825 144.91 ms te0-9-1-9.ccr32.yyz02.atlas.cogentco.com (154.54.43.169)
26836 208.83 ms be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70)
26847 208.82 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
26858 228.53 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
26869 228.52 ms be2813.ccr41.fra03.atlas.cogentco.com (130.117.0.122)
268710 ...
268811 228.22 ms ae0-v100.sr-helios.sxb1.mass.systems (87.230.112.5)
268912 ...
269013 228.28 ms 92.204.12.11
269114 228.42 ms 62.138.129.2
269215 228.38 ms mail.suh-ev.de (85.25.208.92)
2693
2694NSE: Script Post-scanning.
2695Initiating NSE at 21:10
2696Completed NSE at 21:10, 0.00s elapsed
2697Initiating NSE at 21:10
2698Completed NSE at 21:10, 0.00s elapsed
2699#####################################################################################################################################
2700Version: 1.11.13-static
2701OpenSSL 1.0.2-chacha (1.0.2g-dev)
2702
2703Connected to 85.25.208.92
2704
2705Testing SSL server forum.schicksal-und-herausforderung.de on port 443 using SNI name forum.schicksal-und-herausforderung.de
2706
2707 TLS Fallback SCSV:
2708Server supports TLS Fallback SCSV
2709
2710 TLS renegotiation:
2711Secure session renegotiation supported
2712
2713 TLS Compression:
2714Compression disabled
2715
2716 Heartbleed:
2717TLS 1.2 not vulnerable to heartbleed
2718TLS 1.1 not vulnerable to heartbleed
2719TLS 1.0 not vulnerable to heartbleed
2720
2721 Supported Server Cipher(s):
2722Preferred TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
2723Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
2724Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
2725Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
2726Accepted TLSv1.2 128 bits AES128-GCM-SHA256
2727Accepted TLSv1.2 256 bits AES256-GCM-SHA384
2728Accepted TLSv1.2 128 bits AES128-SHA
2729Accepted TLSv1.2 256 bits AES256-SHA
2730Accepted TLSv1.2 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
2731Accepted TLSv1.2 112 bits DES-CBC3-SHA
2732Preferred TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
2733Accepted TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
2734Accepted TLSv1.1 128 bits AES128-SHA
2735Accepted TLSv1.1 256 bits AES256-SHA
2736Accepted TLSv1.1 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
2737Accepted TLSv1.1 112 bits DES-CBC3-SHA
2738Preferred TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
2739Accepted TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
2740Accepted TLSv1.0 128 bits AES128-SHA
2741Accepted TLSv1.0 256 bits AES256-SHA
2742Accepted TLSv1.0 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
2743Accepted TLSv1.0 112 bits DES-CBC3-SHA
2744
2745 SSL Certificate:
2746Signature Algorithm: sha256WithRSAEncryption
2747RSA Key Strength: 4096
2748
2749Subject: gsa-forum.de
2750Altnames: DNS:forum.schicksal-und-herausforderung.de, DNS:gsa-forum.de, DNS:www.gsa-forum.de
2751Issuer: Let's Encrypt Authority X3
2752
2753Not valid before: Dec 24 15:13:51 2019 GMT
2754Not valid after: Mar 23 15:13:51 2020 GMT
2755#####################################################################################################################################
2756dnsenum VERSION:1.2.6
2757
2758----- 85.25.208.92 -----
2759
2760
2761Host's addresses:
2762__________________
2763
2764
2765
2766Name Servers:
2767______________
2768
2769ptr1.intergenia.de. 798 IN A 217.172.191.251
2770ptr2.intergenia.de. 797 IN A 62.75.134.6
2771
2772
2773Mail (MX) Servers:
2774___________________
2775
2776
2777
2778Trying Zone Transfers and getting Bind Versions:
2779_________________________________________________
2780
2781
2782Trying Zone Transfer for 85.25.208.92 on ptr1.intergenia.de ...
2783
2784Trying Zone Transfer for 85.25.208.92 on ptr2.intergenia.de ...
2785
2786
2787Brute forcing with /usr/share/dnsenum/dns.txt:
2788_______________________________________________
2789
2790208.25.85.121.in-addr.arpa. 86400 IN PTR 121-85-25-208f1.kyt1.eonet.ne.jp.
2791208.25.85.134.in-addr.arpa. 86400 IN PTR nothing.attdns.com.
2792208.25.85.27.in-addr.arpa. 86400 IN PTR KD027085025208.ppp-bb.dion.ne.jp.
2793208.25.85.34.in-addr.arpa. 120 IN PTR (
2794208.25.85.46.in-addr.arpa. 86400 IN PTR p2E5519D0.dip0.t-ipconnect.de.
2795208.25.85.54.in-addr.arpa. 300 IN PTR (
2796208.25.85.67.in-addr.arpa. 86400 IN PTR ool-435519d0.dyn.optonline.net.
2797208.25.85.75.in-addr.arpa. 86400 IN PTR cpe-75-85-25-208.hawaii.res.rr.com.
2798208.25.85.79.in-addr.arpa. 43200 IN PTR 208.25.85.79.rev.sfr.net.
2799208.25.85.96.in-addr.arpa. 3600 IN PTR (
2800208.25.85.97.in-addr.arpa. 86400 IN PTR (
2801208.25.85.99.in-addr.arpa. 7200 IN PTR (
2802
2803
280485.25.208.92 class C netranges:
2805________________________________
2806
2807
2808
2809Performing reverse lookup on 0 ip addresses:
2810_____________________________________________
2811
2812
28130 results out of 0 IP addresses.
2814
2815
281685.25.208.92 ip blocks:
2817________________________
2818
2819
2820done.
2821####################################################################################################################################
2822Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 20:54 EST
2823Nmap scan report for mail.suh-ev.de (85.25.208.92)
2824Host is up (0.18s latency).
2825Not shown: 465 closed ports, 1 filtered port
2826Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
2827PORT STATE SERVICE VERSION
282880/tcp open http
2829| fingerprint-strings:
2830| FourOhFourRequest:
2831| HTTP/1.0 302 Found
2832| Location: https://http:443:///nice%20ports%2C/Tri%6Eity.txt%2ebak
2833| Date: Mon, 10 Feb 2020 01:54:24 GMT
2834| Content-Length: 5
2835| Content-Type: text/plain; charset=utf-8
2836| Found
2837| GenericLines, Help, Kerberos, LDAPSearchReq, LPDString, RTSPRequest, SSLSessionReq, TLSSessionReq, TerminalServerCookie:
2838| HTTP/1.1 400 Bad Request
2839| Content-Type: text/plain; charset=utf-8
2840| Connection: close
2841| Request
2842| GetRequest:
2843| HTTP/1.0 302 Found
2844| Location: https://http:443:///
2845| Date: Mon, 10 Feb 2020 01:54:17 GMT
2846| Content-Length: 5
2847| Content-Type: text/plain; charset=utf-8
2848| Found
2849| HTTPOptions:
2850| HTTP/1.0 307 Temporary Redirect
2851| Location: https://http:443:///
2852| Date: Mon, 10 Feb 2020 01:54:18 GMT
2853| Content-Length: 18
2854| Content-Type: text/plain; charset=utf-8
2855|_ Temporary Redirect
2856|_http-title: Did not follow redirect to https://mail.suh-ev.de:443/
2857110/tcp open pop3 Dovecot pop3d
2858|_pop3-capabilities: SASL RESP-CODES TOP STLS AUTH-RESP-CODE PIPELINING UIDL CAPA
2859| ssl-cert: Subject: commonName=mail.suh-ev.de
2860| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2861| Not valid before: 2019-12-24T15:15:20
2862|_Not valid after: 2020-03-23T15:15:20
2863143/tcp open imap Dovecot imapd
2864|_imap-capabilities: LITERAL+ SASL-IR ID OK more have IMAP4rev1 listed Pre-login post-login ENABLE capabilities LOGINDISABLEDA0001 LOGIN-REFERRALS STARTTLS IDLE
2865| ssl-cert: Subject: commonName=mail.suh-ev.de
2866| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2867| Not valid before: 2019-12-24T15:15:20
2868|_Not valid after: 2020-03-23T15:15:20
2869443/tcp open ssl/http Gophish httpd
2870| http-robots.txt: 1 disallowed entry
2871|_/
2872|_http-server-header: nginx
2873|_http-title: mailcow UI
2874| ssl-cert: Subject: commonName=TRAEFIK DEFAULT CERT
2875| Subject Alternative Name: DNS:43a98fcd952ff8035ed99439e6210afd.cf717dcab368446e71581df28303e76d.traefik.default
2876| Not valid before: 2020-02-09T14:33:00
2877|_Not valid after: 2021-02-08T14:33:00
2878|_ssl-date: TLS randomness does not represent time
2879| tls-alpn:
2880| h2
2881|_ http/1.1
2882| tls-nextprotoneg:
2883| h2
2884| http/1.1
2885|_ acme-tls/1
2886465/tcp open ssl/smtp Postfix smtpd
2887|_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, AUTH PLAIN LOGIN, AUTH=PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
2888| ssl-cert: Subject: commonName=mail.suh-ev.de
2889| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2890| Not valid before: 2019-12-24T15:15:20
2891|_Not valid after: 2020-03-23T15:15:20
2892|_ssl-date: TLS randomness does not represent time
2893587/tcp open smtp Postfix smtpd
2894|_smtp-commands: mail.suh-ev.de, PIPELINING, SIZE 104857600, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8,
2895| ssl-cert: Subject: commonName=mail.suh-ev.de
2896| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2897| Not valid before: 2019-12-24T15:15:20
2898|_Not valid after: 2020-03-23T15:15:20
2899|_ssl-date: TLS randomness does not represent time
2900993/tcp open imaps?
2901|_imap-capabilities: AUTH=PLAIN SASL-IR ID OK more have IMAP4rev1 listed AUTH=LOGINA0001 post-login ENABLE capabilities Pre-login LITERAL+ LOGIN-REFERRALS IDLE
2902| ssl-cert: Subject: commonName=mail.suh-ev.de
2903| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2904| Not valid before: 2019-12-24T15:15:20
2905|_Not valid after: 2020-03-23T15:15:20
2906995/tcp open pop3s?
2907|_pop3-capabilities: USER RESP-CODES TOP SASL(PLAIN LOGIN) AUTH-RESP-CODE PIPELINING UIDL CAPA
2908| ssl-cert: Subject: commonName=mail.suh-ev.de
2909| Subject Alternative Name: DNS:autoconfig.suh-ev.de, DNS:autodiscover.suh-ev.de, DNS:mail.suh-ev.de
2910| Not valid before: 2019-12-24T15:15:20
2911|_Not valid after: 2020-03-23T15:15:20
29122222/tcp open ssh OpenSSH 8.0 (protocol 2.0)
2913| ssh-hostkey:
2914| 2048 51:7d:16:8b:32:81:72:84:76:a2:4b:61:83:ca:b1:1f (RSA)
2915| 256 c6:60:a2:af:84:48:29:7a:9a:40:bd:ee:48:10:3f:e3 (ECDSA)
2916|_ 256 f8:dd:d8:6f:a4:72:09:1f:13:82:dc:9e:44:da:77:96 (ED25519)
2917| vulners:
2918| cpe:/a:openbsd:openssh:8.0:
2919|_ CVE-2019-16905 4.4 https://vulners.com/cve/CVE-2019-16905
292027015/tcp open unknown
29211 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
2922SF-Port80-TCP:V=7.80%I=7%D=2/9%Time=5E40B7D4%P=x86_64-pc-linux-gnu%r(GetRe
2923SF:quest,9C,"HTTP/1\.0\x20302\x20Found\r\nLocation:\x20https://http:443://
2924SF:/\r\nDate:\x20Mon,\x2010\x20Feb\x202020\x2001:54:17\x20GMT\r\nContent-L
2925SF:ength:\x205\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\n\r\nFou
2926SF:nd")%r(HTTPOptions,B7,"HTTP/1\.0\x20307\x20Temporary\x20Redirect\r\nLoc
2927SF:ation:\x20https://http:443:///\r\nDate:\x20Mon,\x2010\x20Feb\x202020\x2
2928SF:001:54:18\x20GMT\r\nContent-Length:\x2018\r\nContent-Type:\x20text/plai
2929SF:n;\x20charset=utf-8\r\n\r\nTemporary\x20Redirect")%r(RTSPRequest,67,"HT
2930SF:TP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20cha
2931SF:rset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Fou
2932SF:rOhFourRequest,BF,"HTTP/1\.0\x20302\x20Found\r\nLocation:\x20https://ht
2933SF:tp:443:///nice%20ports%2C/Tri%6Eity\.txt%2ebak\r\nDate:\x20Mon,\x2010\x
2934SF:20Feb\x202020\x2001:54:24\x20GMT\r\nContent-Length:\x205\r\nContent-Typ
2935SF:e:\x20text/plain;\x20charset=utf-8\r\n\r\nFound")%r(GenericLines,67,"HT
2936SF:TP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20cha
2937SF:rset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Hel
2938SF:p,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain
2939SF:;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request
2940SF:")%r(SSLSessionReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Ty
2941SF:pe:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\
2942SF:x20Bad\x20Request")%r(TerminalServerCookie,67,"HTTP/1\.1\x20400\x20Bad\
2943SF:x20Request\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnecti
2944SF:on:\x20close\r\n\r\n400\x20Bad\x20Request")%r(TLSSessionReq,67,"HTTP/1\
2945SF:.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20charset=
2946SF:utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Kerberos
2947SF:,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;
2948SF:\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request"
2949SF:)%r(LPDString,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x
2950SF:20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Ba
2951SF:d\x20Request")%r(LDAPSearchReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r
2952SF:\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close
2953SF:\r\n\r\n400\x20Bad\x20Request");
2954Aggressive OS guesses: Linux 3.16 - 4.6 (95%), Linux 3.10 - 4.11 (94%), Linux 3.13 (94%), Linux 3.13 or 4.2 (94%), Linux 4.2 (94%), Linux 4.4 (94%), Linux 3.18 (93%), HP P2000 G3 NAS device (93%), Linux 3.2 - 4.9 (93%), Linux 3.16 (92%)
2955No exact OS matches for host (test conditions non-ideal).
2956Network Distance: 15 hops
2957
2958TRACEROUTE (using port 443/tcp)
2959HOP RTT ADDRESS
29601 188.37 ms 10.248.204.1
29612 188.45 ms R43.static.amanah.com (104.245.144.129)
29623 155.96 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
29634 104.38 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90)
29645 165.26 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
29656 205.43 ms be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70)
29667 205.40 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
29678 265.43 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
29689 265.42 ms be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142)
296910 ... 12
297013 265.48 ms 92.204.12.11
297114 265.42 ms 62.138.129.2
297215 148.41 ms mail.suh-ev.de (85.25.208.92)
2973###################################################################################################################################
2974http://85.25.208.92 [302 Found] Country[GERMANY][DE], IP[85.25.208.92], RedirectLocation[https://85.25.208.92:443/]
2975https://85.25.208.92/ [404 Not Found] Country[GERMANY][DE], IP[85.25.208.92], UncommonHeaders[x-content-type-options]
2976###################################################################################################################################
2977HTTP/1.1 307 Temporary Redirect
2978Location: https://85.25.208.92:443/
2979Date: Mon, 10 Feb 2020 01:58:39 GMT
2980Content-Length: 18
2981Content-Type: text/plain; charset=utf-8
2982
2983HTTP/1.1 307 Temporary Redirect
2984Location: https://85.25.208.92:443/
2985Date: Mon, 10 Feb 2020 01:58:39 GMT
2986Content-Length: 18
2987Content-Type: text/plain; charset=utf-8
2988####################################################################################################################################
2989Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 20:58 EST
2990NSE: [pop3-brute] usernames: Time limit 3m00s exceeded.
2991NSE: [pop3-brute] usernames: Time limit 3m00s exceeded.
2992NSE: [pop3-brute] passwords: Time limit 3m00s exceeded.
2993Nmap scan report for mail.suh-ev.de (85.25.208.92)
2994Host is up (0.23s latency).
2995
2996PORT STATE SERVICE VERSION
2997110/tcp open pop3 Dovecot pop3d
2998| pop3-brute:
2999| Accounts: No valid accounts found
3000|_ Statistics: Performed 5184 guesses in 180 seconds, average tps: 28.9
3001|_pop3-capabilities: STLS SASL AUTH-RESP-CODE CAPA RESP-CODES UIDL PIPELINING TOP
3002Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
3003Aggressive OS guesses: Linux 3.16 - 4.6 (95%), Linux 3.2 - 4.9 (95%), Linux 3.1 (94%), Linux 3.2 (94%), AXIS 210A or 211 Network Camera (Linux 2.6.17) (94%), Linux 3.10 - 4.11 (94%), Linux 3.12 (94%), Linux 3.13 (94%), Linux 3.13 or 4.2 (94%), Linux 3.8 - 3.11 (94%)
3004No exact OS matches for host (test conditions non-ideal).
3005Network Distance: 16 hops
3006
3007TRACEROUTE (using port 110/tcp)
3008HOP RTT ADDRESS
30091 100.43 ms 10.248.204.1
30102 100.49 ms R43.static.amanah.com (104.245.144.129)
30113 73.06 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
30124 140.97 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90)
30135 166.39 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
30146 157.80 ms be3259.ccr21.ymq01.atlas.cogentco.com (154.54.41.206)
30157 200.23 ms be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142)
30168 200.30 ms be3548.rcr21.sxb01.atlas.cogentco.com (154.54.59.134)
30179 200.30 ms be2813.ccr41.fra03.atlas.cogentco.com (130.117.0.122)
301810 ...
301911 200.30 ms ae0-v100.sr-helios.sxb1.mass.systems (87.230.112.5)
302012 200.17 ms 92.204.12.11
302113 200.23 ms ae0-v100.sr-helios.sxb1.mass.systems (87.230.112.5)
302214 161.11 ms 62.138.129.2
302315 161.09 ms 92.204.12.11
302416 163.41 ms mail.suh-ev.de (85.25.208.92)
3025####################################################################################################################################
3026Version: 1.11.13-static
3027OpenSSL 1.0.2-chacha (1.0.2g-dev)
3028
3029Connected to 85.25.208.92
3030
3031Testing SSL server 85.25.208.92 on port 443 using SNI name 85.25.208.92
3032
3033 TLS Fallback SCSV:
3034Server supports TLS Fallback SCSV
3035
3036 TLS renegotiation:
3037Secure session renegotiation supported
3038
3039 TLS Compression:
3040Compression disabled
3041
3042 Heartbleed:
3043TLS 1.2 not vulnerable to heartbleed
3044TLS 1.1 not vulnerable to heartbleed
3045TLS 1.0 not vulnerable to heartbleed
3046
3047 Supported Server Cipher(s):
3048Preferred TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
3049Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
3050Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
3051Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
3052Accepted TLSv1.2 128 bits AES128-GCM-SHA256
3053Accepted TLSv1.2 256 bits AES256-GCM-SHA384
3054Accepted TLSv1.2 128 bits AES128-SHA
3055Accepted TLSv1.2 256 bits AES256-SHA
3056Accepted TLSv1.2 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
3057Accepted TLSv1.2 112 bits DES-CBC3-SHA
3058Preferred TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
3059Accepted TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
3060Accepted TLSv1.1 128 bits AES128-SHA
3061Accepted TLSv1.1 256 bits AES256-SHA
3062Accepted TLSv1.1 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
3063Accepted TLSv1.1 112 bits DES-CBC3-SHA
3064Preferred TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
3065Accepted TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
3066Accepted TLSv1.0 128 bits AES128-SHA
3067Accepted TLSv1.0 256 bits AES256-SHA
3068Accepted TLSv1.0 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
3069Accepted TLSv1.0 112 bits DES-CBC3-SHA
3070
3071 SSL Certificate:
3072Signature Algorithm: sha256WithRSAEncryption
3073RSA Key Strength: 2048
3074
3075Subject: TRAEFIK DEFAULT CERT
3076Altnames: DNS:43a98fcd952ff8035ed99439e6210afd.cf717dcab368446e71581df28303e76d.traefik.default
3077Issuer: TRAEFIK DEFAULT CERT
3078
3079Not valid before: Feb 9 14:33:00 2020 GMT
3080Not valid after: Feb 8 14:33:00 2021 GMT
3081####################################################################################################################################
3082Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 21:22 EST
3083Warning: 85.25.208.92 giving up on port because retransmission cap hit (2).
3084Nmap scan report for mail.suh-ev.de (85.25.208.92)
3085Host is up (0.21s latency).
3086
3087PORT STATE SERVICE VERSION
308853/tcp closed domain
308967/tcp closed dhcps
309068/tcp closed dhcpc
309169/tcp closed tftp
309288/tcp closed kerberos-sec
3093123/tcp closed ntp
3094137/tcp closed netbios-ns
3095138/tcp closed netbios-dgm
3096139/tcp closed netbios-ssn
3097161/tcp closed snmp
3098162/tcp closed snmptrap
3099389/tcp closed ldap
3100520/tcp closed efs
31012049/tcp closed nfs
310253/udp closed domain
310367/udp closed dhcps
310468/udp closed dhcpc
310569/udp open|filtered tftp
310688/udp open|filtered kerberos-sec
3107123/udp open ntp?
3108| ntp-info:
3109|_
3110137/udp filtered netbios-ns
3111138/udp filtered netbios-dgm
3112139/udp closed netbios-ssn
3113161/udp closed snmp
3114162/udp closed snmptrap
3115389/udp open|filtered ldap
3116520/udp closed route
31172049/udp closed nfs
3118Too many fingerprints match this host to give specific OS details
3119Network Distance: 17 hops
3120
3121Host script results:
3122|_clock-skew: -5s
3123
3124TRACEROUTE (using port 53/tcp)
3125HOP RTT ADDRESS
31261 135.43 ms 10.248.204.1
31272 135.50 ms R43.static.amanah.com (104.245.144.129)
31283 135.54 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9)
31294 135.62 ms be3260.ccr22.ymq01.atlas.cogentco.com (154.54.42.90)
31305 206.65 ms be3043.ccr22.lpl01.atlas.cogentco.com (154.54.44.165)
31316 205.10 ms be2183.ccr42.ams03.atlas.cogentco.com (154.54.58.70)
31327 293.84 ms be2814.ccr42.fra03.atlas.cogentco.com (130.117.0.142)
31338 224.93 ms be2182.ccr41.ams03.atlas.cogentco.com (154.54.77.245)
31349 293.93 ms be2781.nr14.b015623-2.sxb01.atlas.cogentco.com (154.25.8.234)
313510 293.91 ms be3546.rcr21.sxb01.atlas.cogentco.com (154.54.59.34)
313611 ... 12
313713 293.90 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140)
313814 293.85 ms 92.204.12.11
313915 293.94 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140)
314016 159.39 ms static-ip-217-118-23-140.inaddr.ip-pool.com (217.118.23.140)
314117 206.34 ms mail.suh-ev.de (85.25.208.92)
3142####################################################################################################################################
3143Hosts
3144=====
3145
3146address mac name os_name os_flavor os_sp purpose info comments
3147------- --- ---- ------- --------- ----- ------- ---- --------
314823.194.8.156 a23-194-8-156.deploy.static.akamaitechnologies.com Unknown device
314923.201.103.9 a23-201-103-9.deploy.static.akamaitechnologies.com embedded 6.X device
315034.66.191.217 217.191.66.34.bc.googleusercontent.com Linux 2.4.X server
315134.210.57.231 ec2-34-210-57-231.us-west-2.compute.amazonaws.com Linux 3.X server
315245.60.80.235 Linux 3.X server
315352.11.234.150 ec2-52-11-234-150.us-west-2.compute.amazonaws.com Linux 3.X server
315452.35.54.14 ec2-52-35-54-14.us-west-2.compute.amazonaws.com Unknown device
315552.198.183.13 ec2-52-198-183-13.ap-northeast-1.compute.amazonaws.co embedded device
315654.73.84.17 ec2-54-73-84-17.eu-west-1.compute.amazonaws.com Unknown device
315772.47.224.85 agaacqmame.c03.gridserver.com embedded device
315880.82.79.116 no-reverse-dns-configured.com Linux 7.0 server
315980.209.242.81 muhajeer.com Linux 3.X server
316082.221.136.4 hekla.orangewebsite.com Unknown device
316182.221.139.217 Unknown device
316284.235.91.252 84-235-91-252.saudi.net.sa Unknown device
316385.25.208.92 mail.suh-ev.de Linux 9.0 server
316487.247.240.207 crayford.servers.prgn.misp.co.uk Android 5.X device
316589.221.213.22 hc1-wd12.wedos.net Linux 2.6.X server
316689.248.172.200 89-248-172-200.constellationservers.net Linux 8.0 server
316793.89.20.20 Unknown device
316893.95.228.158 vps-93-95-228-158.1984.is Linux 18.04 server
316993.113.37.250 adsla250.ch-clienti.ro Linux 2.6.X server
317093.174.93.84 Linux 3.X server
317193.191.156.197 Unknown device
317294.102.51.33 full-dark.net Linux 2.6.X server
3173104.154.60.12 12.60.154.104.bc.googleusercontent.com Linux 2.6.X server
3174104.218.232.66 Linux 3.X server
3175107.154.130.27 107.154.130.27.ip.incapdns.net Linux 3.X server
3176107.154.248.27 107.154.248.27.ip.incapdns.net Linux 3.X server
3177141.105.65.111 Linux 2.6.X server
3178147.237.0.206 embedded device
3179150.95.250.133 embedded device
3180151.139.243.11 Linux 4.X server
3181154.73.84.17 Unknown device
3182157.7.107.254 157-7-107-254.virt.lolipop.jp embedded device
3183159.89.0.72 Linux 16.04 server
3184160.153.72.166 ip-160-153-72-166.ip.secureserver.net Linux 3.X server
3185163.247.52.17 www.mtt.cl Linux 2.6.X server
3186163.247.96.10 Linux 2.6.X server
3187170.246.172.178 host-170-246-172-178.anacondaweb.com Linux 2.6.X server
3188180.222.81.193 bvdeuy193.secure.ne.jp Linux 2.6.X server
3189184.72.111.210 ec2-184-72-111-210.compute-1.amazonaws.com Linux 2.6.X server
3190185.2.4.98 lhcp1098.webapps.net embedded device
3191185.68.93.22 verbatim1981.example.com Unknown device
3192185.119.173.237 Linux 2.6.X server
3193186.67.91.110 ipj10-110.poderjudicial.cl Linux 2.6.X server
3194192.0.78.12 Linux 2.4.X server
3195192.0.78.13 Linux 2.6.X server
3196194.18.73.2 www.sakerhetspolisen.se Linux 2.6.X server
3197194.39.164.140 194.39.164.140.srvlist.ukfast.net Linux 3.X server
3198200.14.67.43 senado.cl Linux 2.6.X server
3199200.14.67.65 Linux 2.6.X server
3200200.35.157.77 srv77.talcaguia.cl Unknown device
3201201.131.38.40 Linux 2.6.X server
3202201.238.246.43 Unknown device
3203202.214.194.138 Linux 2.6.X server
3204202.238.130.103 Linux 2.6.X server
3205203.137.110.66 Unknown device
3206203.180.216.224 embedded device
3207203.183.218.244 Unknown device
3208208.113.216.185 apache2-rank.thomas-mckean.dreamhost.com Unknown device
3209208.113.220.218 apache2-xenon.accomack.dreamhost.com Unknown device
3210209.59.165.178 rabbit.ceilingsky.com Linux 2.6.X server
3211210.149.141.34 Unknown device
3212210.152.243.182 Unknown device
3213210.160.220.105 h105.sk3.estore.co.jp embedded device
3214210.160.220.113 h113.sk3.estore.co.jp embedded device
3215210.226.36.2 210-226-36-2.df.nttcomcloud.com Linux 2.6.X server
3216217.160.131.142 s18161039.onlinehome-server.info Linux 2.6.X server
3217####################################################################################################################################
3218Services
3219========
3220
3221host port proto name state info
3222---- ---- ----- ---- ----- ----
322323.194.8.156 53 tcp domain filtered
322423.194.8.156 53 udp domain unknown
322523.194.8.156 67 tcp dhcps filtered
322623.194.8.156 67 udp dhcps unknown
322723.194.8.156 68 tcp dhcpc filtered
322823.194.8.156 68 udp dhcpc unknown
322923.194.8.156 69 tcp tftp filtered
323023.194.8.156 69 udp tftp unknown
323123.194.8.156 88 tcp kerberos-sec filtered
323223.194.8.156 88 udp kerberos-sec unknown
323323.194.8.156 123 tcp ntp filtered
323423.194.8.156 123 udp ntp unknown
323523.194.8.156 137 tcp netbios-ns filtered
323623.194.8.156 137 udp netbios-ns filtered
323723.194.8.156 138 tcp netbios-dgm filtered
323823.194.8.156 138 udp netbios-dgm filtered
323923.194.8.156 139 tcp netbios-ssn closed
324023.194.8.156 139 udp netbios-ssn unknown
324123.194.8.156 161 tcp snmp filtered
324223.194.8.156 161 udp snmp unknown
324323.194.8.156 162 tcp snmptrap filtered
324423.194.8.156 162 udp snmptrap unknown
324523.194.8.156 389 tcp ldap filtered
324623.194.8.156 389 udp ldap unknown
324723.194.8.156 520 tcp efs filtered
324823.194.8.156 520 udp route unknown
324923.194.8.156 2049 tcp nfs filtered
325023.194.8.156 2049 udp nfs unknown
325123.201.103.9 25 tcp smtp closed
325223.201.103.9 53 tcp domain filtered
325323.201.103.9 53 udp domain unknown
325423.201.103.9 67 tcp dhcps filtered
325523.201.103.9 67 udp dhcps unknown
325623.201.103.9 68 tcp dhcpc filtered
325723.201.103.9 68 udp dhcpc unknown
325823.201.103.9 69 tcp tftp filtered
325923.201.103.9 69 udp tftp unknown
326023.201.103.9 80 tcp http open AkamaiGHost Akamai's HTTP Acceleration/Mirror service
326123.201.103.9 88 tcp kerberos-sec filtered
326223.201.103.9 88 udp kerberos-sec unknown
326323.201.103.9 123 tcp ntp filtered
326423.201.103.9 123 udp ntp unknown
326523.201.103.9 137 tcp netbios-ns filtered
326623.201.103.9 137 udp netbios-ns filtered
326723.201.103.9 138 tcp netbios-dgm filtered
326823.201.103.9 138 udp netbios-dgm filtered
326923.201.103.9 139 tcp netbios-ssn closed
327023.201.103.9 139 udp netbios-ssn unknown
327123.201.103.9 161 tcp snmp filtered
327223.201.103.9 161 udp snmp unknown
327323.201.103.9 162 tcp snmptrap filtered
327423.201.103.9 162 udp snmptrap unknown
327523.201.103.9 389 tcp ldap filtered
327623.201.103.9 389 udp ldap unknown
327723.201.103.9 443 tcp ssl/http open AkamaiGHost Akamai's HTTP Acceleration/Mirror service
327823.201.103.9 445 tcp microsoft-ds closed
327923.201.103.9 520 tcp efs filtered
328023.201.103.9 520 udp route unknown
328123.201.103.9 2049 tcp nfs filtered
328223.201.103.9 2049 udp nfs unknown
328323.201.103.9 8883 tcp secure-mqtt open
328434.66.191.217 25 tcp smtp closed
328534.66.191.217 53 tcp domain filtered
328634.66.191.217 53 udp domain unknown
328734.66.191.217 67 tcp dhcps filtered
328834.66.191.217 67 udp dhcps unknown
328934.66.191.217 68 tcp dhcpc filtered
329034.66.191.217 68 udp dhcpc unknown
329134.66.191.217 69 tcp tftp filtered
329234.66.191.217 69 udp tftp unknown
329334.66.191.217 80 tcp http open nginx
329434.66.191.217 88 tcp kerberos-sec filtered
329534.66.191.217 88 udp kerberos-sec unknown
329634.66.191.217 123 tcp ntp filtered
329734.66.191.217 123 udp ntp unknown
329834.66.191.217 137 tcp netbios-ns filtered
329934.66.191.217 137 udp netbios-ns filtered
330034.66.191.217 138 tcp netbios-dgm filtered
330134.66.191.217 138 udp netbios-dgm filtered
330234.66.191.217 139 tcp netbios-ssn closed
330334.66.191.217 139 udp netbios-ssn unknown
330434.66.191.217 161 tcp snmp filtered
330534.66.191.217 161 udp snmp unknown
330634.66.191.217 162 tcp snmptrap filtered
330734.66.191.217 162 udp snmptrap unknown
330834.66.191.217 389 tcp ldap filtered
330934.66.191.217 389 udp ldap unknown
331034.66.191.217 443 tcp ssl/http open nginx
331134.66.191.217 445 tcp microsoft-ds closed
331234.66.191.217 520 tcp efs filtered
331334.66.191.217 520 udp route unknown
331434.66.191.217 2049 tcp nfs filtered
331534.66.191.217 2049 udp nfs unknown
331634.66.191.217 2222 tcp ssh open ProFTPD mod_sftp 0.9.9 protocol 2.0
331734.210.57.231 25 tcp smtp closed
331834.210.57.231 53 tcp domain filtered
331934.210.57.231 53 udp domain unknown
332034.210.57.231 67 tcp dhcps filtered
332134.210.57.231 67 udp dhcps unknown
332234.210.57.231 68 tcp dhcpc filtered
332334.210.57.231 68 udp dhcpc unknown
332434.210.57.231 69 tcp tftp filtered
332534.210.57.231 69 udp tftp unknown
332634.210.57.231 80 tcp http open awselb/2.0
332734.210.57.231 88 tcp kerberos-sec filtered
332834.210.57.231 88 udp kerberos-sec unknown
332934.210.57.231 123 tcp ntp filtered
333034.210.57.231 123 udp ntp unknown
333134.210.57.231 137 tcp netbios-ns filtered
333234.210.57.231 137 udp netbios-ns filtered
333334.210.57.231 138 tcp netbios-dgm filtered
333434.210.57.231 138 udp netbios-dgm filtered
333534.210.57.231 139 tcp netbios-ssn closed
333634.210.57.231 139 udp netbios-ssn unknown
333734.210.57.231 161 tcp snmp filtered
333834.210.57.231 161 udp snmp unknown
333934.210.57.231 162 tcp snmptrap filtered
334034.210.57.231 162 udp snmptrap unknown
334134.210.57.231 389 tcp ldap filtered
334234.210.57.231 389 udp ldap unknown
334334.210.57.231 443 tcp ssl/http open nginx 1.10.3
334434.210.57.231 445 tcp microsoft-ds closed
334534.210.57.231 520 tcp efs filtered
334634.210.57.231 520 udp route unknown
334734.210.57.231 2049 tcp nfs filtered
334834.210.57.231 2049 udp nfs unknown
334945.60.80.235 53 tcp domain open
335045.60.80.235 53 udp domain open
335145.60.80.235 67 udp dhcps unknown
335245.60.80.235 68 udp dhcpc unknown
335345.60.80.235 69 udp tftp unknown
335445.60.80.235 80 tcp http open Incapsula CDN httpd
335545.60.80.235 81 tcp http open Incapsula CDN httpd
335645.60.80.235 85 tcp http open Incapsula CDN httpd
335745.60.80.235 88 tcp http open Incapsula CDN httpd
335845.60.80.235 88 udp kerberos-sec unknown
335945.60.80.235 123 udp ntp unknown
336045.60.80.235 139 udp netbios-ssn unknown
336145.60.80.235 161 udp snmp unknown
336245.60.80.235 162 udp snmptrap unknown
336345.60.80.235 389 tcp ssl/http open Incapsula CDN httpd
336445.60.80.235 389 udp ldap unknown
336545.60.80.235 443 tcp ssl/http open Incapsula CDN httpd
336645.60.80.235 444 tcp ssl/http open Incapsula CDN httpd
336745.60.80.235 446 tcp http open Incapsula CDN httpd
336845.60.80.235 520 udp route unknown
336945.60.80.235 587 tcp http open Incapsula CDN httpd
337045.60.80.235 631 tcp http open Incapsula CDN httpd
337145.60.80.235 888 tcp http open Incapsula CDN httpd
337245.60.80.235 995 tcp ssl/http open Incapsula CDN httpd
337345.60.80.235 998 tcp ssl/http open Incapsula CDN httpd
337445.60.80.235 999 tcp http open Incapsula CDN httpd
337545.60.80.235 1000 tcp http open Incapsula CDN httpd
337645.60.80.235 1024 tcp http open Incapsula CDN httpd
337745.60.80.235 1103 tcp http open Incapsula CDN httpd
337845.60.80.235 1234 tcp http open Incapsula CDN httpd
337945.60.80.235 1433 tcp http open Incapsula CDN httpd
338045.60.80.235 1494 tcp http open Incapsula CDN httpd
338145.60.80.235 2000 tcp ssl/http open Incapsula CDN httpd
338245.60.80.235 2001 tcp http open Incapsula CDN httpd
338345.60.80.235 2049 tcp http open Incapsula CDN httpd
338445.60.80.235 2049 udp nfs unknown
338545.60.80.235 2067 tcp http open Incapsula CDN httpd
338645.60.80.235 2100 tcp ssl/http open Incapsula CDN httpd
338745.60.80.235 2222 tcp http open Incapsula CDN httpd
338845.60.80.235 2598 tcp http open Incapsula CDN httpd
338945.60.80.235 3000 tcp http open Incapsula CDN httpd
339045.60.80.235 3050 tcp http open Incapsula CDN httpd
339145.60.80.235 3057 tcp http open Incapsula CDN httpd
339245.60.80.235 3299 tcp http open Incapsula CDN httpd
339345.60.80.235 3306 tcp ssl/http open Incapsula CDN httpd
339445.60.80.235 3333 tcp http open Incapsula CDN httpd
339545.60.80.235 3389 tcp ssl/http open Incapsula CDN httpd
339645.60.80.235 3500 tcp http open Incapsula CDN httpd
339745.60.80.235 3790 tcp http open Incapsula CDN httpd
339845.60.80.235 4000 tcp http open Incapsula CDN httpd
339945.60.80.235 4444 tcp ssl/http open Incapsula CDN httpd
340045.60.80.235 4445 tcp ssl/http open Incapsula CDN httpd
340145.60.80.235 5000 tcp http open Incapsula CDN httpd
340245.60.80.235 5009 tcp http open Incapsula CDN httpd
340345.60.80.235 5060 tcp ssl/http open Incapsula CDN httpd
340445.60.80.235 5061 tcp ssl/http open Incapsula CDN httpd
340545.60.80.235 5227 tcp ssl/http open Incapsula CDN httpd
340645.60.80.235 5247 tcp ssl/http open Incapsula CDN httpd
340745.60.80.235 5250 tcp ssl/http open Incapsula CDN httpd
340845.60.80.235 5555 tcp http open Incapsula CDN httpd
340945.60.80.235 5900 tcp http open Incapsula CDN httpd
341045.60.80.235 5901 tcp ssl/http open Incapsula CDN httpd
341145.60.80.235 5902 tcp ssl/http open Incapsula CDN httpd
341245.60.80.235 5903 tcp ssl/http open Incapsula CDN httpd
341345.60.80.235 5904 tcp ssl/http open Incapsula CDN httpd
341445.60.80.235 5905 tcp ssl/http open Incapsula CDN httpd
341545.60.80.235 5906 tcp ssl/http open Incapsula CDN httpd
341645.60.80.235 5907 tcp ssl/http open Incapsula CDN httpd
341745.60.80.235 5908 tcp ssl/http open Incapsula CDN httpd
341845.60.80.235 5909 tcp ssl/http open Incapsula CDN httpd
341945.60.80.235 5910 tcp ssl/http open Incapsula CDN httpd
342045.60.80.235 5920 tcp ssl/http open Incapsula CDN httpd
342145.60.80.235 5984 tcp ssl/http open Incapsula CDN httpd
342245.60.80.235 5985 tcp http open Incapsula CDN httpd
342345.60.80.235 5986 tcp ssl/http open Incapsula CDN httpd
342445.60.80.235 5999 tcp ssl/http open Incapsula CDN httpd
342545.60.80.235 6000 tcp http open Incapsula CDN httpd
342645.60.80.235 6060 tcp http open Incapsula CDN httpd
342745.60.80.235 6161 tcp http open Incapsula CDN httpd
342845.60.80.235 6379 tcp http open Incapsula CDN httpd
342945.60.80.235 6661 tcp ssl/http open Incapsula CDN httpd
343045.60.80.235 6789 tcp http open Incapsula CDN httpd
343145.60.80.235 7001 tcp http open Incapsula CDN httpd
343245.60.80.235 7021 tcp http open Incapsula CDN httpd
343345.60.80.235 7071 tcp ssl/http open Incapsula CDN httpd
343445.60.80.235 7080 tcp http open Incapsula CDN httpd
343545.60.80.235 7272 tcp ssl/http open Incapsula CDN httpd
343645.60.80.235 7443 tcp ssl/http open Incapsula CDN httpd
343745.60.80.235 7700 tcp http open Incapsula CDN httpd
343845.60.80.235 7777 tcp http open Incapsula CDN httpd
343945.60.80.235 7778 tcp http open Incapsula CDN httpd
344045.60.80.235 8000 tcp http open Incapsula CDN httpd
344145.60.80.235 8001 tcp http open Incapsula CDN httpd
344245.60.80.235 8008 tcp http open Incapsula CDN httpd
344345.60.80.235 8014 tcp http open Incapsula CDN httpd
344445.60.80.235 8020 tcp http open Incapsula CDN httpd
344545.60.80.235 8023 tcp http open Incapsula CDN httpd
344645.60.80.235 8028 tcp http open Incapsula CDN httpd
344745.60.80.235 8030 tcp http open Incapsula CDN httpd
344845.60.80.235 8050 tcp http open Incapsula CDN httpd
344945.60.80.235 8051 tcp http open Incapsula CDN httpd
345045.60.80.235 8080 tcp http open Incapsula CDN httpd
345145.60.80.235 8081 tcp http open Incapsula CDN httpd
345245.60.80.235 8082 tcp http open Incapsula CDN httpd
345345.60.80.235 8085 tcp http open Incapsula CDN httpd
345445.60.80.235 8086 tcp http open Incapsula CDN httpd
345545.60.80.235 8087 tcp http open Incapsula CDN httpd
345645.60.80.235 8088 tcp http open Incapsula CDN httpd
345745.60.80.235 8090 tcp http open Incapsula CDN httpd
345845.60.80.235 8091 tcp http open Incapsula CDN httpd
345945.60.80.235 8095 tcp http open Incapsula CDN httpd
346045.60.80.235 8101 tcp http open Incapsula CDN httpd
346145.60.80.235 8161 tcp http open Incapsula CDN httpd
346245.60.80.235 8180 tcp http open Incapsula CDN httpd
346345.60.80.235 8222 tcp http open Incapsula CDN httpd
346445.60.80.235 8333 tcp http open Incapsula CDN httpd
346545.60.80.235 8443 tcp ssl/http open Incapsula CDN httpd
346645.60.80.235 8444 tcp http open Incapsula CDN httpd
346745.60.80.235 8445 tcp http open Incapsula CDN httpd
346845.60.80.235 8503 tcp ssl/http open Incapsula CDN httpd
346945.60.80.235 8686 tcp http open Incapsula CDN httpd
347045.60.80.235 8787 tcp http open Incapsula CDN httpd
347145.60.80.235 8800 tcp http open Incapsula CDN httpd
347245.60.80.235 8812 tcp http open Incapsula CDN httpd
347345.60.80.235 8834 tcp http open Incapsula CDN httpd
347445.60.80.235 8880 tcp http open Incapsula CDN httpd
347545.60.80.235 8888 tcp http open Incapsula CDN httpd
347645.60.80.235 8890 tcp http open Incapsula CDN httpd
347745.60.80.235 8899 tcp http open Incapsula CDN httpd
347845.60.80.235 8901 tcp http open Incapsula CDN httpd
347945.60.80.235 8902 tcp http open Incapsula CDN httpd
348045.60.80.235 8999 tcp http open Incapsula CDN httpd
348145.60.80.235 9000 tcp http open Incapsula CDN httpd
348245.60.80.235 9001 tcp http open Incapsula CDN httpd
348345.60.80.235 9002 tcp http open Incapsula CDN httpd
348445.60.80.235 9003 tcp http open Incapsula CDN httpd
348545.60.80.235 9004 tcp http open Incapsula CDN httpd
348645.60.80.235 9005 tcp http open Incapsula CDN httpd
348745.60.80.235 9010 tcp http open Incapsula CDN httpd
348845.60.80.235 9050 tcp http open Incapsula CDN httpd
348945.60.80.235 9080 tcp http open Incapsula CDN httpd
349045.60.80.235 9081 tcp ssl/http open Incapsula CDN httpd
349145.60.80.235 9084 tcp http open Incapsula CDN httpd
349245.60.80.235 9090 tcp http open Incapsula CDN httpd
349345.60.80.235 9099 tcp http open Incapsula CDN httpd
349445.60.80.235 9100 tcp jetdirect open
349545.60.80.235 9111 tcp http open Incapsula CDN httpd
349645.60.80.235 9200 tcp http open Incapsula CDN httpd
349745.60.80.235 9300 tcp http open Incapsula CDN httpd
349845.60.80.235 9500 tcp http open Incapsula CDN httpd
349945.60.80.235 9711 tcp ssl/http open Incapsula CDN httpd
350045.60.80.235 9991 tcp http open Incapsula CDN httpd
350145.60.80.235 9999 tcp http open Incapsula CDN httpd
350245.60.80.235 10000 tcp http open Incapsula CDN httpd
350352.11.234.150 25 tcp smtp closed
350452.11.234.150 53 tcp domain filtered
350552.11.234.150 53 udp domain unknown
350652.11.234.150 67 tcp dhcps filtered
350752.11.234.150 67 udp dhcps unknown
350852.11.234.150 68 tcp dhcpc filtered
350952.11.234.150 68 udp dhcpc unknown
351052.11.234.150 69 tcp tftp filtered
351152.11.234.150 69 udp tftp unknown
351252.11.234.150 80 tcp http open awselb/2.0
351352.11.234.150 88 tcp kerberos-sec filtered
351452.11.234.150 88 udp kerberos-sec unknown
351552.11.234.150 123 tcp ntp filtered
351652.11.234.150 123 udp ntp unknown
351752.11.234.150 137 tcp netbios-ns filtered
351852.11.234.150 137 udp netbios-ns filtered
351952.11.234.150 138 tcp netbios-dgm filtered
352052.11.234.150 138 udp netbios-dgm filtered
352152.11.234.150 139 tcp netbios-ssn closed
352252.11.234.150 139 udp netbios-ssn unknown
352352.11.234.150 161 tcp snmp filtered
352452.11.234.150 161 udp snmp unknown
352552.11.234.150 162 tcp snmptrap filtered
352652.11.234.150 162 udp snmptrap unknown
352752.11.234.150 389 tcp ldap filtered
352852.11.234.150 389 udp ldap unknown
352952.11.234.150 443 tcp ssl/http open nginx 1.10.3
353052.11.234.150 445 tcp microsoft-ds closed
353152.11.234.150 520 tcp efs filtered
353252.11.234.150 520 udp route unknown
353352.11.234.150 2049 tcp nfs filtered
353452.11.234.150 2049 udp nfs unknown
353552.35.54.14 53 tcp domain filtered
353652.35.54.14 53 udp domain unknown
353752.35.54.14 67 tcp dhcps filtered
353852.35.54.14 67 udp dhcps unknown
353952.35.54.14 68 tcp dhcpc filtered
354052.35.54.14 68 udp dhcpc unknown
354152.35.54.14 69 tcp tftp filtered
354252.35.54.14 69 udp tftp unknown
354352.35.54.14 88 tcp kerberos-sec filtered
354452.35.54.14 88 udp kerberos-sec unknown
354552.35.54.14 123 tcp ntp filtered
354652.35.54.14 123 udp ntp unknown
354752.35.54.14 137 tcp netbios-ns filtered
354852.35.54.14 137 udp netbios-ns filtered
354952.35.54.14 138 tcp netbios-dgm filtered
355052.35.54.14 138 udp netbios-dgm filtered
355152.35.54.14 139 tcp netbios-ssn closed
355252.35.54.14 139 udp netbios-ssn unknown
355352.35.54.14 161 tcp snmp filtered
355452.35.54.14 161 udp snmp unknown
355552.35.54.14 162 tcp snmptrap filtered
355652.35.54.14 162 udp snmptrap unknown
355752.35.54.14 389 tcp ldap filtered
355852.35.54.14 389 udp ldap unknown
355952.35.54.14 520 tcp efs filtered
356052.35.54.14 520 udp route unknown
356152.35.54.14 2049 tcp nfs filtered
356252.35.54.14 2049 udp nfs unknown
356352.198.183.13 25 tcp smtp closed
356452.198.183.13 53 tcp domain filtered
356552.198.183.13 53 udp domain unknown
356652.198.183.13 67 tcp dhcps filtered
356752.198.183.13 67 udp dhcps unknown
356852.198.183.13 68 tcp dhcpc filtered
356952.198.183.13 68 udp dhcpc unknown
357052.198.183.13 69 tcp tftp filtered
357152.198.183.13 69 udp tftp unknown
357252.198.183.13 80 tcp http open nginx
357352.198.183.13 88 tcp kerberos-sec filtered
357452.198.183.13 88 udp kerberos-sec unknown
357552.198.183.13 123 tcp ntp filtered
357652.198.183.13 123 udp ntp unknown
357752.198.183.13 137 tcp netbios-ns filtered
357852.198.183.13 137 udp netbios-ns filtered
357952.198.183.13 138 tcp netbios-dgm filtered
358052.198.183.13 138 udp netbios-dgm filtered
358152.198.183.13 139 tcp netbios-ssn closed
358252.198.183.13 139 udp netbios-ssn unknown
358352.198.183.13 161 tcp snmp filtered
358452.198.183.13 161 udp snmp unknown
358552.198.183.13 162 tcp snmptrap filtered
358652.198.183.13 162 udp snmptrap unknown
358752.198.183.13 389 tcp ldap filtered
358852.198.183.13 389 udp ldap unknown
358952.198.183.13 443 tcp ssl/http open nginx
359052.198.183.13 445 tcp microsoft-ds closed
359152.198.183.13 520 tcp efs filtered
359252.198.183.13 520 udp route unknown
359352.198.183.13 2049 tcp nfs filtered
359452.198.183.13 2049 udp nfs unknown
359554.73.84.17 25 tcp smtp closed
359654.73.84.17 53 tcp domain filtered
359754.73.84.17 53 udp domain unknown
359854.73.84.17 67 tcp dhcps filtered
359954.73.84.17 67 udp dhcps unknown
360054.73.84.17 68 tcp dhcpc filtered
360154.73.84.17 68 udp dhcpc unknown
360254.73.84.17 69 tcp tftp filtered
360354.73.84.17 69 udp tftp unknown
360454.73.84.17 88 tcp kerberos-sec filtered
360554.73.84.17 88 udp kerberos-sec unknown
360654.73.84.17 123 tcp ntp filtered
360754.73.84.17 123 udp ntp unknown
360854.73.84.17 137 tcp netbios-ns filtered
360954.73.84.17 137 udp netbios-ns filtered
361054.73.84.17 138 tcp netbios-dgm filtered
361154.73.84.17 138 udp netbios-dgm filtered
361254.73.84.17 139 tcp netbios-ssn closed
361354.73.84.17 139 udp netbios-ssn unknown
361454.73.84.17 161 tcp snmp filtered
361554.73.84.17 161 udp snmp unknown
361654.73.84.17 162 tcp snmptrap filtered
361754.73.84.17 162 udp snmptrap unknown
361854.73.84.17 389 tcp ldap filtered
361954.73.84.17 389 udp ldap unknown
362054.73.84.17 445 tcp microsoft-ds closed
362154.73.84.17 520 tcp efs filtered
362254.73.84.17 520 udp route unknown
362354.73.84.17 2049 tcp nfs filtered
362454.73.84.17 2049 udp nfs unknown
362572.47.224.85 25 tcp smtp closed
362672.47.224.85 53 tcp domain filtered
362772.47.224.85 53 udp domain unknown
362872.47.224.85 67 tcp dhcps filtered
362972.47.224.85 67 udp dhcps unknown
363072.47.224.85 68 tcp dhcpc filtered
363172.47.224.85 68 udp dhcpc unknown
363272.47.224.85 69 tcp tftp filtered
363372.47.224.85 69 udp tftp unknown
363472.47.224.85 80 tcp http open Apache httpd 2.4.39
363572.47.224.85 88 tcp kerberos-sec filtered
363672.47.224.85 88 udp kerberos-sec unknown
363772.47.224.85 110 tcp pop3 open Dovecot pop3d
363872.47.224.85 123 tcp ntp filtered
363972.47.224.85 123 udp ntp unknown
364072.47.224.85 137 tcp netbios-ns filtered
364172.47.224.85 137 udp netbios-ns filtered
364272.47.224.85 138 tcp netbios-dgm filtered
364372.47.224.85 138 udp netbios-dgm filtered
364472.47.224.85 139 tcp netbios-ssn closed
364572.47.224.85 139 udp netbios-ssn unknown
364672.47.224.85 143 tcp imap open Dovecot imapd
364772.47.224.85 161 tcp snmp filtered
364872.47.224.85 161 udp snmp unknown
364972.47.224.85 162 tcp snmptrap filtered
365072.47.224.85 162 udp snmptrap unknown
365172.47.224.85 389 tcp ldap filtered
365272.47.224.85 389 udp ldap unknown
365372.47.224.85 443 tcp ssl/http open nginx 1.16.1
365472.47.224.85 445 tcp microsoft-ds closed
365572.47.224.85 465 tcp ssl/smtp open Exim smtpd 4.84_2
365672.47.224.85 520 tcp efs filtered
365772.47.224.85 520 udp route unknown
365872.47.224.85 587 tcp smtp open Exim smtpd 4.84_2
365972.47.224.85 993 tcp ssl/imaps open
366072.47.224.85 995 tcp ssl/pop3s open
366172.47.224.85 2049 tcp nfs filtered
366272.47.224.85 2049 udp nfs unknown
366380.82.79.116 21 tcp ftp open 220 (vsFTPd 3.0.2)\x0d\x0a
366480.82.79.116 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
366580.82.79.116 53 tcp domain open ISC BIND 9.8.4-rpz2+rl005.12-P1
366680.82.79.116 53 udp domain open ISC BIND 9.8.4-rpz2+rl005.12-P1
366780.82.79.116 67 tcp dhcps closed
366880.82.79.116 67 udp dhcps closed
366980.82.79.116 68 tcp dhcpc closed
367080.82.79.116 68 udp dhcpc closed
367180.82.79.116 69 tcp tftp closed
367280.82.79.116 69 udp tftp unknown
367380.82.79.116 88 tcp kerberos-sec closed
367480.82.79.116 88 udp kerberos-sec unknown
367580.82.79.116 123 tcp ntp closed
367680.82.79.116 123 udp ntp unknown
367780.82.79.116 137 tcp netbios-ns closed
367880.82.79.116 137 udp netbios-ns filtered
367980.82.79.116 138 tcp netbios-dgm closed
368080.82.79.116 138 udp netbios-dgm filtered
368180.82.79.116 139 tcp netbios-ssn closed
368280.82.79.116 139 udp netbios-ssn unknown
368380.82.79.116 161 tcp snmp closed
368480.82.79.116 161 udp snmp closed
368580.82.79.116 162 tcp snmptrap closed
368680.82.79.116 162 udp snmptrap closed
368780.82.79.116 389 tcp ldap closed
368880.82.79.116 389 udp ldap closed
368980.82.79.116 520 tcp efs closed
369080.82.79.116 520 udp route closed
369180.82.79.116 2049 tcp nfs closed
369280.82.79.116 2049 udp nfs unknown
369380.209.242.81 21 tcp ftp open 220 FTP Server ready.\x0d\x0a
369480.209.242.81 22 tcp ssh open SSH-2.0-OpenSSH_7.4
369580.209.242.81 53 tcp domain open ISC BIND 9.11.4-P2 RedHat Enterprise Linux 7
369680.209.242.81 53 udp domain open ISC BIND 9.11.4-P2 RedHat Enterprise Linux 7
369780.209.242.81 67 tcp dhcps filtered
369880.209.242.81 67 udp dhcps unknown
369980.209.242.81 68 tcp dhcpc filtered
370080.209.242.81 68 udp dhcpc unknown
370180.209.242.81 69 tcp tftp filtered
370280.209.242.81 69 udp tftp unknown
370380.209.242.81 88 tcp kerberos-sec filtered
370480.209.242.81 88 udp kerberos-sec unknown
370580.209.242.81 123 tcp ntp filtered
370680.209.242.81 123 udp ntp unknown
370780.209.242.81 137 tcp netbios-ns filtered
370880.209.242.81 137 udp netbios-ns filtered
370980.209.242.81 138 tcp netbios-dgm filtered
371080.209.242.81 138 udp netbios-dgm filtered
371180.209.242.81 139 tcp netbios-ssn closed
371280.209.242.81 139 udp netbios-ssn unknown
371380.209.242.81 161 tcp snmp filtered
371480.209.242.81 161 udp snmp unknown
371580.209.242.81 162 tcp snmptrap filtered
371680.209.242.81 162 udp snmptrap unknown
371780.209.242.81 389 tcp ldap filtered
371880.209.242.81 389 udp ldap filtered
371980.209.242.81 520 tcp efs filtered
372080.209.242.81 520 udp route unknown
372180.209.242.81 2049 tcp nfs filtered
372280.209.242.81 2049 udp nfs unknown
372382.221.136.4 21 tcp ftp open Your connection to this server has been blocked in this server's firewall.\x0d\x0aYou need to contact the server owner for further information.\x0d\x0a
372482.221.136.4 53 tcp domain filtered
372582.221.136.4 53 udp domain unknown
372682.221.136.4 67 tcp dhcps filtered
372782.221.136.4 67 udp dhcps unknown
372882.221.136.4 68 tcp dhcpc filtered
372982.221.136.4 68 udp dhcpc unknown
373082.221.136.4 69 tcp tftp filtered
373182.221.136.4 69 udp tftp unknown
373282.221.136.4 88 tcp kerberos-sec filtered
373382.221.136.4 88 udp kerberos-sec unknown
373482.221.136.4 123 tcp ntp filtered
373582.221.136.4 123 udp ntp unknown
373682.221.136.4 137 tcp netbios-ns filtered
373782.221.136.4 137 udp netbios-ns filtered
373882.221.136.4 138 tcp netbios-dgm filtered
373982.221.136.4 138 udp netbios-dgm filtered
374082.221.136.4 139 tcp netbios-ssn closed
374182.221.136.4 139 udp netbios-ssn unknown
374282.221.136.4 161 tcp snmp filtered
374382.221.136.4 161 udp snmp unknown
374482.221.136.4 162 tcp snmptrap filtered
374582.221.136.4 162 udp snmptrap unknown
374682.221.136.4 389 tcp ldap filtered
374782.221.136.4 389 udp ldap unknown
374882.221.136.4 520 tcp efs filtered
374982.221.136.4 520 udp route unknown
375082.221.136.4 2049 tcp nfs filtered
375182.221.136.4 2049 udp nfs unknown
375282.221.139.217 22 tcp ssh open SSH-2.0-OpenSSH_5.3
375384.235.91.252 25 tcp smtp closed
375484.235.91.252 53 tcp domain filtered
375584.235.91.252 53 udp domain unknown
375684.235.91.252 67 tcp dhcps filtered
375784.235.91.252 67 udp dhcps unknown
375884.235.91.252 68 tcp dhcpc filtered
375984.235.91.252 68 udp dhcpc unknown
376084.235.91.252 69 tcp tftp filtered
376184.235.91.252 69 udp tftp unknown
376284.235.91.252 88 tcp kerberos-sec filtered
376384.235.91.252 88 udp kerberos-sec unknown
376484.235.91.252 123 tcp ntp filtered
376584.235.91.252 123 udp ntp unknown
376684.235.91.252 137 tcp netbios-ns filtered
376784.235.91.252 137 udp netbios-ns filtered
376884.235.91.252 138 tcp netbios-dgm filtered
376984.235.91.252 138 udp netbios-dgm filtered
377084.235.91.252 139 tcp netbios-ssn closed
377184.235.91.252 139 udp netbios-ssn unknown
377284.235.91.252 161 tcp snmp filtered
377384.235.91.252 161 udp snmp unknown
377484.235.91.252 162 tcp snmptrap filtered
377584.235.91.252 162 udp snmptrap unknown
377684.235.91.252 389 tcp ldap filtered
377784.235.91.252 389 udp ldap unknown
377884.235.91.252 445 tcp microsoft-ds closed
377984.235.91.252 520 tcp efs filtered
378084.235.91.252 520 udp route unknown
378184.235.91.252 2049 tcp nfs filtered
378284.235.91.252 2049 udp nfs unknown
378385.25.208.92 22 tcp ssh open SSH-2.0-OpenSSH_7.4p1 Debian-10+deb9u7
378485.25.208.92 53 tcp domain closed
378585.25.208.92 53 udp domain closed
378685.25.208.92 67 tcp dhcps closed
378785.25.208.92 67 udp dhcps closed
378885.25.208.92 68 tcp dhcpc closed
378985.25.208.92 68 udp dhcpc closed
379085.25.208.92 69 tcp tftp closed
379185.25.208.92 69 udp tftp unknown
379285.25.208.92 88 tcp kerberos-sec closed
379385.25.208.92 88 udp kerberos-sec unknown
379485.25.208.92 123 tcp ntp closed
379585.25.208.92 123 udp ntp open
379685.25.208.92 137 tcp netbios-ns closed
379785.25.208.92 137 udp netbios-ns filtered
379885.25.208.92 138 tcp netbios-dgm closed
379985.25.208.92 138 udp netbios-dgm filtered
380085.25.208.92 139 tcp netbios-ssn closed
380185.25.208.92 139 udp netbios-ssn closed
380285.25.208.92 161 tcp snmp closed
380385.25.208.92 161 udp snmp closed
380485.25.208.92 162 tcp snmptrap closed
380585.25.208.92 162 udp snmptrap closed
380685.25.208.92 389 tcp ldap closed
380785.25.208.92 389 udp ldap unknown
380885.25.208.92 520 tcp efs closed
380985.25.208.92 520 udp route closed
381085.25.208.92 2049 tcp nfs closed
381185.25.208.92 2049 udp nfs closed
381287.247.240.207 21 tcp ftp open ProFTPD
381387.247.240.207 22 tcp ssh open OpenSSH 7.4 protocol 2.0
381487.247.240.207 67 udp dhcps unknown
381587.247.240.207 68 udp dhcpc unknown
381687.247.240.207 69 udp tftp unknown
381787.247.240.207 80 tcp http open Apache httpd
381887.247.240.207 88 udp kerberos-sec unknown
381987.247.240.207 110 tcp pop3 open Dovecot pop3d
382087.247.240.207 123 udp ntp unknown
382187.247.240.207 139 udp netbios-ssn unknown
382287.247.240.207 143 tcp imap open Dovecot imapd
382387.247.240.207 161 udp snmp unknown
382487.247.240.207 162 udp snmptrap unknown
382587.247.240.207 389 udp ldap unknown
382687.247.240.207 443 tcp ssl/http open Apache httpd
382787.247.240.207 465 tcp ssl/smtp open Exim smtpd 4.92
382887.247.240.207 520 udp route unknown
382987.247.240.207 587 tcp smtp open Exim smtpd 4.92
383087.247.240.207 993 tcp ssl/imaps open
383187.247.240.207 995 tcp ssl/pop3s open
383287.247.240.207 2049 udp nfs unknown
383389.221.213.22 21 tcp ftp open vsftpd 3.0.2
383489.221.213.22 53 tcp domain filtered
383589.221.213.22 53 udp domain unknown
383689.221.213.22 67 tcp dhcps filtered
383789.221.213.22 67 udp dhcps unknown
383889.221.213.22 68 tcp dhcpc filtered
383989.221.213.22 68 udp dhcpc unknown
384089.221.213.22 69 tcp tftp filtered
384189.221.213.22 69 udp tftp unknown
384289.221.213.22 88 tcp kerberos-sec filtered
384389.221.213.22 88 udp kerberos-sec unknown
384489.221.213.22 123 tcp ntp filtered
384589.221.213.22 123 udp ntp unknown
384689.221.213.22 137 tcp netbios-ns filtered
384789.221.213.22 137 udp netbios-ns filtered
384889.221.213.22 138 tcp netbios-dgm filtered
384989.221.213.22 138 udp netbios-dgm filtered
385089.221.213.22 139 tcp netbios-ssn closed
385189.221.213.22 139 udp netbios-ssn unknown
385289.221.213.22 161 tcp snmp filtered
385389.221.213.22 161 udp snmp unknown
385489.221.213.22 162 tcp snmptrap filtered
385589.221.213.22 162 udp snmptrap unknown
385689.221.213.22 389 tcp ldap filtered
385789.221.213.22 389 udp ldap unknown
385889.221.213.22 520 tcp efs filtered
385989.221.213.22 520 udp route unknown
386089.221.213.22 2049 tcp nfs filtered
386189.221.213.22 2049 udp nfs unknown
386289.248.172.200 22 tcp ssh open SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3
386389.248.172.200 53 tcp domain closed
386489.248.172.200 53 udp domain closed
386589.248.172.200 67 tcp dhcps closed
386689.248.172.200 67 udp dhcps closed
386789.248.172.200 68 tcp dhcpc closed
386889.248.172.200 68 udp dhcpc closed
386989.248.172.200 69 tcp tftp closed
387089.248.172.200 69 udp tftp closed
387189.248.172.200 88 tcp kerberos-sec closed
387289.248.172.200 88 udp kerberos-sec unknown
387389.248.172.200 123 tcp ntp closed
387489.248.172.200 123 udp ntp unknown
387589.248.172.200 137 tcp netbios-ns closed
387689.248.172.200 137 udp netbios-ns filtered
387789.248.172.200 138 tcp netbios-dgm closed
387889.248.172.200 138 udp netbios-dgm filtered
387989.248.172.200 139 tcp netbios-ssn closed
388089.248.172.200 139 udp netbios-ssn closed
388189.248.172.200 161 tcp snmp closed
388289.248.172.200 161 udp snmp closed
388389.248.172.200 162 tcp snmptrap closed
388489.248.172.200 162 udp snmptrap unknown
388589.248.172.200 389 tcp ldap closed
388689.248.172.200 389 udp ldap closed
388789.248.172.200 520 tcp efs closed
388889.248.172.200 520 udp route closed
388989.248.172.200 2049 tcp nfs closed
389089.248.172.200 2049 udp nfs unknown
389193.89.20.20 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 2 of 50 allowed.\x0d\x0a220-Local time is now 21:36. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
389293.95.228.158 22 tcp ssh open SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
389393.95.228.158 53 tcp domain closed
389493.95.228.158 53 udp domain closed
389593.95.228.158 67 tcp dhcps closed
389693.95.228.158 67 udp dhcps closed
389793.95.228.158 68 tcp dhcpc closed
389893.95.228.158 68 udp dhcpc unknown
389993.95.228.158 69 tcp tftp closed
390093.95.228.158 69 udp tftp unknown
390193.95.228.158 88 tcp kerberos-sec closed
390293.95.228.158 88 udp kerberos-sec unknown
390393.95.228.158 123 tcp ntp closed
390493.95.228.158 123 udp ntp unknown
390593.95.228.158 137 tcp netbios-ns closed
390693.95.228.158 137 udp netbios-ns filtered
390793.95.228.158 138 tcp netbios-dgm closed
390893.95.228.158 138 udp netbios-dgm filtered
390993.95.228.158 139 tcp netbios-ssn closed
391093.95.228.158 139 udp netbios-ssn closed
391193.95.228.158 161 tcp snmp closed
391293.95.228.158 161 udp snmp unknown
391393.95.228.158 162 tcp snmptrap closed
391493.95.228.158 162 udp snmptrap unknown
391593.95.228.158 389 tcp ldap closed
391693.95.228.158 389 udp ldap closed
391793.95.228.158 520 tcp efs closed
391893.95.228.158 520 udp route unknown
391993.95.228.158 2049 tcp nfs closed
392093.95.228.158 2049 udp nfs unknown
392193.113.37.250 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 50 allowed.\x0d\x0a220-Local time is now 13:36. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
392293.113.37.250 53 tcp domain open PowerDNS Authoritative Server 4.1.10
392393.113.37.250 53 udp domain open PowerDNS Authoritative Server 4.1.10
392493.113.37.250 389 udp ldap unknown
392593.113.37.250 520 udp route unknown
392693.113.37.250 2049 udp nfs unknown
392793.174.93.84 21 tcp ftp open vsftpd 3.0.2
392893.174.93.84 25 tcp smtp closed
392993.174.93.84 53 tcp domain filtered
393093.174.93.84 53 udp domain filtered
393193.174.93.84 67 tcp dhcps filtered
393293.174.93.84 67 udp dhcps filtered
393393.174.93.84 68 tcp dhcpc filtered
393493.174.93.84 68 udp dhcpc unknown
393593.174.93.84 69 tcp tftp filtered
393693.174.93.84 69 udp tftp unknown
393793.174.93.84 80 tcp http open Apache httpd 2.4.6 (CentOS) PHP/5.4.16
393893.174.93.84 88 tcp kerberos-sec filtered
393993.174.93.84 88 udp kerberos-sec unknown
394093.174.93.84 123 tcp ntp filtered
394193.174.93.84 123 udp ntp filtered
394293.174.93.84 137 tcp netbios-ns filtered
394393.174.93.84 137 udp netbios-ns filtered
394493.174.93.84 138 tcp netbios-dgm filtered
394593.174.93.84 138 udp netbios-dgm filtered
394693.174.93.84 139 tcp netbios-ssn closed
394793.174.93.84 139 udp netbios-ssn unknown
394893.174.93.84 161 tcp snmp filtered
394993.174.93.84 161 udp snmp unknown
395093.174.93.84 162 tcp snmptrap filtered
395193.174.93.84 162 udp snmptrap unknown
395293.174.93.84 389 tcp ldap filtered
395393.174.93.84 389 udp ldap filtered
395493.174.93.84 445 tcp microsoft-ds closed
395593.174.93.84 520 tcp efs filtered
395693.174.93.84 520 udp route unknown
395793.174.93.84 2049 tcp nfs filtered
395893.174.93.84 2049 udp nfs unknown
395993.191.156.197 22 tcp ssh open SSH-2.0-OpenSSH_5.3
396094.102.51.33 22 tcp ssh open
396194.102.51.33 53 tcp domain open ISC BIND 9.9.4 RedHat Enterprise Linux 7
396294.102.51.33 53 udp domain open ISC BIND 9.9.4 RedHat Enterprise Linux 7
396394.102.51.33 67 tcp dhcps filtered
396494.102.51.33 67 udp dhcps unknown
396594.102.51.33 68 tcp dhcpc filtered
396694.102.51.33 68 udp dhcpc unknown
396794.102.51.33 69 tcp tftp filtered
396894.102.51.33 69 udp tftp unknown
396994.102.51.33 80 tcp http open nginx
397094.102.51.33 88 tcp kerberos-sec filtered
397194.102.51.33 88 udp kerberos-sec unknown
397294.102.51.33 110 tcp pop3 open Dovecot pop3d
397394.102.51.33 123 tcp ntp filtered
397494.102.51.33 123 udp ntp unknown
397594.102.51.33 137 tcp netbios-ns filtered
397694.102.51.33 137 udp netbios-ns filtered
397794.102.51.33 138 tcp netbios-dgm filtered
397894.102.51.33 138 udp netbios-dgm filtered
397994.102.51.33 139 tcp netbios-ssn closed
398094.102.51.33 139 udp netbios-ssn unknown
398194.102.51.33 143 tcp imap open Dovecot imapd
398294.102.51.33 161 tcp snmp filtered
398394.102.51.33 161 udp snmp unknown
398494.102.51.33 162 tcp snmptrap filtered
398594.102.51.33 162 udp snmptrap unknown
398694.102.51.33 389 tcp ldap filtered
398794.102.51.33 389 udp ldap unknown
398894.102.51.33 465 tcp ssl/smtp open Exim smtpd 4.89
398994.102.51.33 520 tcp efs filtered
399094.102.51.33 520 udp route unknown
399194.102.51.33 993 tcp ssl/imaps open
399294.102.51.33 995 tcp ssl/pop3s open
399394.102.51.33 2049 tcp nfs filtered
399494.102.51.33 2049 udp nfs unknown
3995104.154.60.12 25 tcp smtp closed
3996104.154.60.12 53 tcp domain filtered
3997104.154.60.12 53 udp domain unknown
3998104.154.60.12 67 tcp dhcps filtered
3999104.154.60.12 67 udp dhcps unknown
4000104.154.60.12 68 tcp dhcpc filtered
4001104.154.60.12 68 udp dhcpc unknown
4002104.154.60.12 69 tcp tftp filtered
4003104.154.60.12 69 udp tftp unknown
4004104.154.60.12 80 tcp http open nginx
4005104.154.60.12 88 tcp kerberos-sec filtered
4006104.154.60.12 88 udp kerberos-sec unknown
4007104.154.60.12 123 tcp ntp filtered
4008104.154.60.12 123 udp ntp unknown
4009104.154.60.12 137 tcp netbios-ns filtered
4010104.154.60.12 137 udp netbios-ns filtered
4011104.154.60.12 138 tcp netbios-dgm filtered
4012104.154.60.12 138 udp netbios-dgm filtered
4013104.154.60.12 139 tcp netbios-ssn closed
4014104.154.60.12 139 udp netbios-ssn unknown
4015104.154.60.12 161 tcp snmp filtered
4016104.154.60.12 161 udp snmp unknown
4017104.154.60.12 162 tcp snmptrap filtered
4018104.154.60.12 162 udp snmptrap unknown
4019104.154.60.12 389 tcp ldap filtered
4020104.154.60.12 389 udp ldap unknown
4021104.154.60.12 443 tcp ssl/http open nginx
4022104.154.60.12 445 tcp microsoft-ds closed
4023104.154.60.12 520 tcp efs filtered
4024104.154.60.12 520 udp route unknown
4025104.154.60.12 2049 tcp nfs filtered
4026104.154.60.12 2049 udp nfs unknown
4027104.154.60.12 2222 tcp ssh open ProFTPD mod_sftp 0.9.9 protocol 2.0
4028104.218.232.66 22 tcp ssh open OpenSSH 7.4p1 Debian 10+deb9u3 protocol 2.0
4029104.218.232.66 53 tcp domain closed
4030104.218.232.66 53 udp domain unknown
4031104.218.232.66 67 tcp dhcps closed
4032104.218.232.66 67 udp dhcps unknown
4033104.218.232.66 68 tcp dhcpc closed
4034104.218.232.66 68 udp dhcpc closed
4035104.218.232.66 69 tcp tftp closed
4036104.218.232.66 69 udp tftp closed
4037104.218.232.66 80 tcp http open ngjit
4038104.218.232.66 88 tcp kerberos-sec closed
4039104.218.232.66 88 udp kerberos-sec closed
4040104.218.232.66 123 tcp ntp closed
4041104.218.232.66 123 udp ntp closed
4042104.218.232.66 137 tcp netbios-ns closed
4043104.218.232.66 137 udp netbios-ns filtered
4044104.218.232.66 138 tcp netbios-dgm closed
4045104.218.232.66 138 udp netbios-dgm filtered
4046104.218.232.66 139 tcp netbios-ssn closed
4047104.218.232.66 139 udp netbios-ssn closed
4048104.218.232.66 161 tcp snmp closed
4049104.218.232.66 161 udp snmp unknown
4050104.218.232.66 162 tcp snmptrap closed
4051104.218.232.66 162 udp snmptrap closed
4052104.218.232.66 389 tcp ldap closed
4053104.218.232.66 389 udp ldap closed
4054104.218.232.66 443 tcp ssl/https open ngjit
4055104.218.232.66 520 tcp efs closed
4056104.218.232.66 520 udp route unknown
4057104.218.232.66 2049 tcp nfs closed
4058104.218.232.66 2049 udp nfs closed
4059107.154.130.27 53 tcp domain open
4060107.154.130.27 53 udp domain open
4061107.154.130.27 67 tcp dhcps filtered
4062107.154.130.27 67 udp dhcps unknown
4063107.154.130.27 68 tcp dhcpc filtered
4064107.154.130.27 68 udp dhcpc unknown
4065107.154.130.27 69 tcp tftp filtered
4066107.154.130.27 69 udp tftp unknown
4067107.154.130.27 88 tcp http open Incapsula CDN httpd
4068107.154.130.27 88 udp kerberos-sec unknown
4069107.154.130.27 123 tcp ntp filtered
4070107.154.130.27 123 udp ntp unknown
4071107.154.130.27 137 tcp netbios-ns filtered
4072107.154.130.27 137 udp netbios-ns filtered
4073107.154.130.27 138 tcp netbios-dgm filtered
4074107.154.130.27 138 udp netbios-dgm filtered
4075107.154.130.27 139 tcp netbios-ssn closed
4076107.154.130.27 139 udp netbios-ssn unknown
4077107.154.130.27 161 tcp snmp filtered
4078107.154.130.27 161 udp snmp unknown
4079107.154.130.27 162 tcp snmptrap filtered
4080107.154.130.27 162 udp snmptrap unknown
4081107.154.130.27 389 tcp ssl/http open Incapsula CDN httpd
4082107.154.130.27 389 udp ldap unknown
4083107.154.130.27 520 tcp efs filtered
4084107.154.130.27 520 udp route unknown
4085107.154.130.27 2049 tcp http open Incapsula CDN httpd
4086107.154.130.27 2049 udp nfs unknown
4087107.154.248.27 53 tcp domain open
4088107.154.248.27 80 tcp http open Incapsula CDN httpd
4089107.154.248.27 81 tcp http open Incapsula CDN httpd
4090107.154.248.27 85 tcp http open Incapsula CDN httpd
4091107.154.248.27 88 tcp http open Incapsula CDN httpd
4092107.154.248.27 389 tcp ssl/http open Incapsula CDN httpd
4093107.154.248.27 443 tcp ssl/http open Incapsula CDN httpd
4094107.154.248.27 444 tcp ssl/http open Incapsula CDN httpd
4095107.154.248.27 446 tcp http open Incapsula CDN httpd
4096107.154.248.27 587 tcp http open Incapsula CDN httpd
4097107.154.248.27 631 tcp http open Incapsula CDN httpd
4098107.154.248.27 888 tcp http open Incapsula CDN httpd
4099107.154.248.27 995 tcp ssl/http open Incapsula CDN httpd
4100107.154.248.27 998 tcp ssl/http open Incapsula CDN httpd
4101107.154.248.27 999 tcp http open Incapsula CDN httpd
4102107.154.248.27 1000 tcp http open Incapsula CDN httpd
4103107.154.248.27 1024 tcp http open Incapsula CDN httpd
4104107.154.248.27 1103 tcp http open Incapsula CDN httpd
4105107.154.248.27 1234 tcp http open Incapsula CDN httpd
4106107.154.248.27 1433 tcp http open Incapsula CDN httpd
4107107.154.248.27 1494 tcp http open Incapsula CDN httpd
4108107.154.248.27 2000 tcp ssl/http open Incapsula CDN httpd
4109107.154.248.27 2001 tcp http open Incapsula CDN httpd
4110107.154.248.27 2049 tcp http open Incapsula CDN httpd
4111107.154.248.27 2067 tcp http open Incapsula CDN httpd
4112107.154.248.27 2100 tcp ssl/http open Incapsula CDN httpd
4113107.154.248.27 2222 tcp http open Incapsula CDN httpd
4114107.154.248.27 2598 tcp http open Incapsula CDN httpd
4115107.154.248.27 3000 tcp http open Incapsula CDN httpd
4116107.154.248.27 3050 tcp http open Incapsula CDN httpd
4117107.154.248.27 3057 tcp http open Incapsula CDN httpd
4118107.154.248.27 3299 tcp http open Incapsula CDN httpd
4119107.154.248.27 3306 tcp ssl/http open Incapsula CDN httpd
4120107.154.248.27 3333 tcp http open Incapsula CDN httpd
4121107.154.248.27 3389 tcp ssl/http open Incapsula CDN httpd
4122107.154.248.27 3500 tcp http open Incapsula CDN httpd
4123107.154.248.27 3790 tcp http open Incapsula CDN httpd
4124107.154.248.27 4000 tcp http open Incapsula CDN httpd
4125107.154.248.27 4444 tcp ssl/http open Incapsula CDN httpd
4126107.154.248.27 4445 tcp ssl/http open Incapsula CDN httpd
4127107.154.248.27 5000 tcp http open Incapsula CDN httpd
4128107.154.248.27 5009 tcp http open Incapsula CDN httpd
4129107.154.248.27 5060 tcp ssl/http open Incapsula CDN httpd
4130107.154.248.27 5061 tcp ssl/http open Incapsula CDN httpd
4131107.154.248.27 5227 tcp ssl/http open Incapsula CDN httpd
4132107.154.248.27 5247 tcp ssl/http open Incapsula CDN httpd
4133107.154.248.27 5250 tcp ssl/http open Incapsula CDN httpd
4134107.154.248.27 5555 tcp http open Incapsula CDN httpd
4135107.154.248.27 5900 tcp http open Incapsula CDN httpd
4136107.154.248.27 5901 tcp ssl/http open Incapsula CDN httpd
4137107.154.248.27 5902 tcp ssl/http open Incapsula CDN httpd
4138107.154.248.27 5903 tcp ssl/http open Incapsula CDN httpd
4139107.154.248.27 5904 tcp ssl/http open Incapsula CDN httpd
4140107.154.248.27 5905 tcp ssl/http open Incapsula CDN httpd
4141107.154.248.27 5906 tcp ssl/http open Incapsula CDN httpd
4142107.154.248.27 5907 tcp ssl/http open Incapsula CDN httpd
4143107.154.248.27 5908 tcp ssl/http open Incapsula CDN httpd
4144107.154.248.27 5909 tcp ssl/http open Incapsula CDN httpd
4145107.154.248.27 5910 tcp ssl/http open Incapsula CDN httpd
4146107.154.248.27 5920 tcp ssl/http open Incapsula CDN httpd
4147107.154.248.27 5984 tcp ssl/http open Incapsula CDN httpd
4148107.154.248.27 5985 tcp http open Incapsula CDN httpd
4149107.154.248.27 5986 tcp ssl/http open Incapsula CDN httpd
4150107.154.248.27 5999 tcp ssl/http open Incapsula CDN httpd
4151107.154.248.27 6000 tcp http open Incapsula CDN httpd
4152107.154.248.27 6060 tcp http open Incapsula CDN httpd
4153107.154.248.27 6161 tcp http open Incapsula CDN httpd
4154107.154.248.27 6379 tcp http open Incapsula CDN httpd
4155107.154.248.27 6661 tcp ssl/http open Incapsula CDN httpd
4156107.154.248.27 6789 tcp http open Incapsula CDN httpd
4157107.154.248.27 7000 tcp ssl/http open Incapsula CDN httpd
4158107.154.248.27 7001 tcp http open Incapsula CDN httpd
4159107.154.248.27 7021 tcp http open Incapsula CDN httpd
4160107.154.248.27 7071 tcp ssl/http open Incapsula CDN httpd
4161107.154.248.27 7080 tcp http open Incapsula CDN httpd
4162107.154.248.27 7272 tcp ssl/http open Incapsula CDN httpd
4163107.154.248.27 7443 tcp ssl/http open Incapsula CDN httpd
4164107.154.248.27 7700 tcp http open Incapsula CDN httpd
4165107.154.248.27 7777 tcp http open Incapsula CDN httpd
4166107.154.248.27 7778 tcp http open Incapsula CDN httpd
4167107.154.248.27 8000 tcp http open Incapsula CDN httpd
4168107.154.248.27 8001 tcp http open Incapsula CDN httpd
4169107.154.248.27 8008 tcp http open Incapsula CDN httpd
4170107.154.248.27 8014 tcp http open Incapsula CDN httpd
4171107.154.248.27 8020 tcp http open Incapsula CDN httpd
4172107.154.248.27 8023 tcp http open Incapsula CDN httpd
4173107.154.248.27 8028 tcp http open Incapsula CDN httpd
4174107.154.248.27 8030 tcp http open Incapsula CDN httpd
4175107.154.248.27 8050 tcp http open Incapsula CDN httpd
4176107.154.248.27 8051 tcp http open Incapsula CDN httpd
4177107.154.248.27 8080 tcp http open Incapsula CDN httpd
4178107.154.248.27 8081 tcp http open Incapsula CDN httpd
4179107.154.248.27 8082 tcp http open Incapsula CDN httpd
4180107.154.248.27 8085 tcp http open Incapsula CDN httpd
4181107.154.248.27 8086 tcp http open Incapsula CDN httpd
4182107.154.248.27 8087 tcp http open Incapsula CDN httpd
4183107.154.248.27 8088 tcp http open Incapsula CDN httpd
4184107.154.248.27 8090 tcp http open Incapsula CDN httpd
4185107.154.248.27 8091 tcp http open Incapsula CDN httpd
4186107.154.248.27 8095 tcp http open Incapsula CDN httpd
4187107.154.248.27 8101 tcp http open Incapsula CDN httpd
4188107.154.248.27 8161 tcp http open Incapsula CDN httpd
4189107.154.248.27 8180 tcp http open Incapsula CDN httpd
4190107.154.248.27 8222 tcp http open Incapsula CDN httpd
4191107.154.248.27 8333 tcp http open Incapsula CDN httpd
4192107.154.248.27 8443 tcp ssl/http open Incapsula CDN httpd
4193107.154.248.27 8444 tcp http open Incapsula CDN httpd
4194107.154.248.27 8445 tcp http open Incapsula CDN httpd
4195107.154.248.27 8503 tcp ssl/http open Incapsula CDN httpd
4196107.154.248.27 8686 tcp http open Incapsula CDN httpd
4197107.154.248.27 8787 tcp http open Incapsula CDN httpd
4198107.154.248.27 8800 tcp http open Incapsula CDN httpd
4199107.154.248.27 8812 tcp http open Incapsula CDN httpd
4200107.154.248.27 8834 tcp http open Incapsula CDN httpd
4201107.154.248.27 8880 tcp http open Incapsula CDN httpd
4202107.154.248.27 8888 tcp http open Incapsula CDN httpd
4203107.154.248.27 8889 tcp http open Incapsula CDN httpd
4204107.154.248.27 8890 tcp http open Incapsula CDN httpd
4205107.154.248.27 8899 tcp http open Incapsula CDN httpd
4206107.154.248.27 9000 tcp http open Incapsula CDN httpd
4207107.154.248.27 9001 tcp http open Incapsula CDN httpd
4208107.154.248.27 9002 tcp http open Incapsula CDN httpd
4209107.154.248.27 9003 tcp http open Incapsula CDN httpd
4210107.154.248.27 9004 tcp http open Incapsula CDN httpd
4211107.154.248.27 9005 tcp http open Incapsula CDN httpd
4212107.154.248.27 9010 tcp http open Incapsula CDN httpd
4213107.154.248.27 9050 tcp http open Incapsula CDN httpd
4214107.154.248.27 9080 tcp http open Incapsula CDN httpd
4215107.154.248.27 9081 tcp ssl/http open Incapsula CDN httpd
4216107.154.248.27 9084 tcp http open Incapsula CDN httpd
4217107.154.248.27 9090 tcp http open Incapsula CDN httpd
4218107.154.248.27 9099 tcp http open Incapsula CDN httpd
4219107.154.248.27 9100 tcp jetdirect open
4220107.154.248.27 9111 tcp http open Incapsula CDN httpd
4221107.154.248.27 9200 tcp http open Incapsula CDN httpd
4222107.154.248.27 9300 tcp http open Incapsula CDN httpd
4223107.154.248.27 9500 tcp http open Incapsula CDN httpd
4224107.154.248.27 9711 tcp ssl/http open Incapsula CDN httpd
4225107.154.248.27 9991 tcp http open Incapsula CDN httpd
4226107.154.248.27 9999 tcp http open Incapsula CDN httpd
4227107.154.248.27 10000 tcp http open Incapsula CDN httpd
4228107.154.248.27 10001 tcp http open Incapsula CDN httpd
4229107.154.248.27 10008 tcp http open Incapsula CDN httpd
4230107.154.248.27 10443 tcp ssl/http open Incapsula CDN httpd
4231107.154.248.27 11001 tcp ssl/http open Incapsula CDN httpd
4232107.154.248.27 12174 tcp http open Incapsula CDN httpd
4233107.154.248.27 12203 tcp http open Incapsula CDN httpd
4234107.154.248.27 12221 tcp http open Incapsula CDN httpd
4235107.154.248.27 12345 tcp http open Incapsula CDN httpd
4236107.154.248.27 12397 tcp http open Incapsula CDN httpd
4237107.154.248.27 12401 tcp http open Incapsula CDN httpd
4238107.154.248.27 14330 tcp http open Incapsula CDN httpd
4239107.154.248.27 16000 tcp http open Incapsula CDN httpd
4240107.154.248.27 20000 tcp http open Incapsula CDN httpd
4241107.154.248.27 20010 tcp ssl/http open Incapsula CDN httpd
4242107.154.248.27 25000 tcp ssl/http open Incapsula CDN httpd
4243107.154.248.27 30000 tcp http open Incapsula CDN httpd
4244107.154.248.27 44334 tcp ssl/http open Incapsula CDN httpd
4245107.154.248.27 50000 tcp http open Incapsula CDN httpd
4246107.154.248.27 50001 tcp ssl/http open Incapsula CDN httpd
4247107.154.248.27 50050 tcp ssl/http open Incapsula CDN httpd
4248141.105.65.111 25 tcp smtp closed
4249141.105.65.111 53 tcp domain open ISC BIND 9.8.2rc1 RedHat Enterprise Linux 6
4250141.105.65.111 53 udp domain open ISC BIND 9.8.2rc1 RedHat Enterprise Linux 6
4251141.105.65.111 67 tcp dhcps filtered
4252141.105.65.111 67 udp dhcps unknown
4253141.105.65.111 68 tcp dhcpc filtered
4254141.105.65.111 68 udp dhcpc unknown
4255141.105.65.111 69 tcp tftp filtered
4256141.105.65.111 69 udp tftp unknown
4257141.105.65.111 88 tcp kerberos-sec filtered
4258141.105.65.111 88 udp kerberos-sec unknown
4259141.105.65.111 123 tcp ntp filtered
4260141.105.65.111 123 udp ntp unknown
4261141.105.65.111 137 tcp netbios-ns filtered
4262141.105.65.111 137 udp netbios-ns filtered
4263141.105.65.111 138 tcp netbios-dgm filtered
4264141.105.65.111 138 udp netbios-dgm filtered
4265141.105.65.111 139 tcp netbios-ssn closed
4266141.105.65.111 139 udp netbios-ssn unknown
4267141.105.65.111 161 tcp snmp filtered
4268141.105.65.111 161 udp snmp unknown
4269141.105.65.111 162 tcp snmptrap filtered
4270141.105.65.111 162 udp snmptrap unknown
4271141.105.65.111 389 tcp ldap filtered
4272141.105.65.111 389 udp ldap unknown
4273141.105.65.111 445 tcp microsoft-ds closed
4274141.105.65.111 520 tcp efs filtered
4275141.105.65.111 520 udp route unknown
4276141.105.65.111 2049 tcp nfs filtered
4277141.105.65.111 2049 udp nfs unknown
4278147.237.0.206 53 udp domain unknown
4279147.237.0.206 67 udp dhcps unknown
4280147.237.0.206 68 udp dhcpc unknown
4281147.237.0.206 69 udp tftp unknown
4282147.237.0.206 80 tcp http open
4283147.237.0.206 88 udp kerberos-sec unknown
4284147.237.0.206 123 udp ntp unknown
4285147.237.0.206 139 udp netbios-ssn unknown
4286147.237.0.206 161 udp snmp unknown
4287147.237.0.206 162 udp snmptrap unknown
4288147.237.0.206 389 udp ldap unknown
4289147.237.0.206 443 tcp ssl/https open
4290147.237.0.206 520 udp route unknown
4291147.237.0.206 2049 udp nfs unknown
4292150.95.250.133 25 tcp smtp closed
4293150.95.250.133 53 tcp domain filtered
4294150.95.250.133 53 udp domain unknown
4295150.95.250.133 67 tcp dhcps filtered
4296150.95.250.133 67 udp dhcps unknown
4297150.95.250.133 68 tcp dhcpc filtered
4298150.95.250.133 68 udp dhcpc unknown
4299150.95.250.133 69 tcp tftp filtered
4300150.95.250.133 69 udp tftp unknown
4301150.95.250.133 80 tcp http open nginx
4302150.95.250.133 88 tcp kerberos-sec filtered
4303150.95.250.133 88 udp kerberos-sec unknown
4304150.95.250.133 123 tcp ntp filtered
4305150.95.250.133 123 udp ntp unknown
4306150.95.250.133 137 tcp netbios-ns filtered
4307150.95.250.133 137 udp netbios-ns filtered
4308150.95.250.133 138 tcp netbios-dgm filtered
4309150.95.250.133 138 udp netbios-dgm filtered
4310150.95.250.133 139 tcp netbios-ssn closed
4311150.95.250.133 139 udp netbios-ssn unknown
4312150.95.250.133 161 tcp snmp filtered
4313150.95.250.133 161 udp snmp unknown
4314150.95.250.133 162 tcp snmptrap filtered
4315150.95.250.133 162 udp snmptrap unknown
4316150.95.250.133 389 tcp ldap filtered
4317150.95.250.133 389 udp ldap unknown
4318150.95.250.133 443 tcp ssl/http open nginx
4319150.95.250.133 445 tcp microsoft-ds closed
4320150.95.250.133 520 tcp efs filtered
4321150.95.250.133 520 udp route unknown
4322150.95.250.133 2049 tcp nfs filtered
4323150.95.250.133 2049 udp nfs unknown
4324151.139.243.11 25 tcp smtp closed
4325151.139.243.11 53 tcp domain filtered
4326151.139.243.11 53 udp domain unknown
4327151.139.243.11 67 tcp dhcps filtered
4328151.139.243.11 67 udp dhcps unknown
4329151.139.243.11 68 tcp dhcpc filtered
4330151.139.243.11 68 udp dhcpc unknown
4331151.139.243.11 69 tcp tftp filtered
4332151.139.243.11 69 udp tftp unknown
4333151.139.243.11 80 tcp http open Varnish
4334151.139.243.11 88 tcp kerberos-sec filtered
4335151.139.243.11 88 udp kerberos-sec unknown
4336151.139.243.11 123 tcp ntp filtered
4337151.139.243.11 123 udp ntp unknown
4338151.139.243.11 137 tcp netbios-ns filtered
4339151.139.243.11 137 udp netbios-ns filtered
4340151.139.243.11 138 tcp netbios-dgm filtered
4341151.139.243.11 138 udp netbios-dgm filtered
4342151.139.243.11 139 tcp netbios-ssn closed
4343151.139.243.11 139 udp netbios-ssn unknown
4344151.139.243.11 161 tcp snmp filtered
4345151.139.243.11 161 udp snmp unknown
4346151.139.243.11 162 tcp snmptrap filtered
4347151.139.243.11 162 udp snmptrap unknown
4348151.139.243.11 389 tcp ldap filtered
4349151.139.243.11 389 udp ldap unknown
4350151.139.243.11 443 tcp ssl/http open nginx
4351151.139.243.11 445 tcp microsoft-ds closed
4352151.139.243.11 520 tcp efs filtered
4353151.139.243.11 520 udp route unknown
4354151.139.243.11 2049 tcp nfs filtered
4355151.139.243.11 2049 udp nfs unknown
4356154.73.84.17 21 tcp ftp open 220 (vsFTPd 3.0.3)\x0d\x0a
4357157.7.107.254 25 tcp smtp closed
4358157.7.107.254 53 tcp domain filtered
4359157.7.107.254 53 udp domain unknown
4360157.7.107.254 67 tcp dhcps filtered
4361157.7.107.254 67 udp dhcps unknown
4362157.7.107.254 68 tcp dhcpc filtered
4363157.7.107.254 68 udp dhcpc filtered
4364157.7.107.254 69 tcp tftp filtered
4365157.7.107.254 69 udp tftp unknown
4366157.7.107.254 80 tcp http open Apache httpd
4367157.7.107.254 88 tcp kerberos-sec filtered
4368157.7.107.254 88 udp kerberos-sec unknown
4369157.7.107.254 123 tcp ntp filtered
4370157.7.107.254 123 udp ntp unknown
4371157.7.107.254 137 tcp netbios-ns filtered
4372157.7.107.254 137 udp netbios-ns filtered
4373157.7.107.254 138 tcp netbios-dgm filtered
4374157.7.107.254 138 udp netbios-dgm filtered
4375157.7.107.254 139 tcp netbios-ssn closed
4376157.7.107.254 139 udp netbios-ssn unknown
4377157.7.107.254 161 tcp snmp filtered
4378157.7.107.254 161 udp snmp unknown
4379157.7.107.254 162 tcp snmptrap filtered
4380157.7.107.254 162 udp snmptrap unknown
4381157.7.107.254 389 tcp ldap filtered
4382157.7.107.254 389 udp ldap filtered
4383157.7.107.254 443 tcp ssl/https open Apache
4384157.7.107.254 445 tcp microsoft-ds closed
4385157.7.107.254 520 tcp efs filtered
4386157.7.107.254 520 udp route unknown
4387157.7.107.254 2049 tcp nfs filtered
4388157.7.107.254 2049 udp nfs unknown
4389159.89.0.72 22 tcp ssh open SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.8
4390160.153.72.166 21 tcp ftp open Pure-FTPd
4391160.153.72.166 22 tcp ssh open OpenSSH 5.3 protocol 2.0
4392160.153.72.166 53 udp domain unknown
4393160.153.72.166 67 udp dhcps unknown
4394160.153.72.166 68 udp dhcpc unknown
4395160.153.72.166 69 udp tftp unknown
4396160.153.72.166 80 tcp http open Apache httpd
4397160.153.72.166 88 udp kerberos-sec unknown
4398160.153.72.166 110 tcp pop3 open Dovecot pop3d
4399160.153.72.166 123 udp ntp unknown
4400160.153.72.166 139 udp netbios-ssn unknown
4401160.153.72.166 143 tcp imap open Dovecot imapd
4402160.153.72.166 161 udp snmp unknown
4403160.153.72.166 162 udp snmptrap unknown
4404160.153.72.166 389 udp ldap unknown
4405160.153.72.166 443 tcp ssl/http open Apache httpd
4406160.153.72.166 465 tcp ssl/smtp open Exim smtpd 4.92
4407160.153.72.166 520 udp route unknown
4408160.153.72.166 587 tcp smtp open Exim smtpd 4.92
4409160.153.72.166 993 tcp ssl/imaps open
4410160.153.72.166 995 tcp ssl/pop3s open
4411160.153.72.166 2049 udp nfs unknown
4412160.153.72.166 3306 tcp mysql open MySQL 5.6.44-cll-lve
4413163.247.52.17 25 tcp smtp closed
4414163.247.52.17 53 tcp domain filtered
4415163.247.52.17 53 udp domain unknown
4416163.247.52.17 67 tcp dhcps filtered
4417163.247.52.17 67 udp dhcps unknown
4418163.247.52.17 68 tcp dhcpc filtered
4419163.247.52.17 68 udp dhcpc unknown
4420163.247.52.17 69 tcp tftp filtered
4421163.247.52.17 69 udp tftp unknown
4422163.247.52.17 80 tcp http open Apache httpd
4423163.247.52.17 88 tcp kerberos-sec filtered
4424163.247.52.17 88 udp kerberos-sec unknown
4425163.247.52.17 113 tcp ident closed
4426163.247.52.17 123 tcp ntp filtered
4427163.247.52.17 123 udp ntp unknown
4428163.247.52.17 137 tcp netbios-ns filtered
4429163.247.52.17 137 udp netbios-ns filtered
4430163.247.52.17 138 tcp netbios-dgm filtered
4431163.247.52.17 138 udp netbios-dgm filtered
4432163.247.52.17 139 tcp netbios-ssn closed
4433163.247.52.17 139 udp netbios-ssn unknown
4434163.247.52.17 161 tcp snmp filtered
4435163.247.52.17 161 udp snmp unknown
4436163.247.52.17 162 tcp snmptrap filtered
4437163.247.52.17 162 udp snmptrap unknown
4438163.247.52.17 389 tcp ldap filtered
4439163.247.52.17 389 udp ldap unknown
4440163.247.52.17 443 tcp ssl/https open
4441163.247.52.17 445 tcp microsoft-ds closed
4442163.247.52.17 520 tcp efs filtered
4443163.247.52.17 520 udp route unknown
4444163.247.52.17 2049 tcp nfs filtered
4445163.247.52.17 2049 udp nfs unknown
4446163.247.96.10 25 tcp smtp closed
4447163.247.96.10 53 tcp domain filtered
4448163.247.96.10 53 udp domain unknown
4449163.247.96.10 67 tcp dhcps filtered
4450163.247.96.10 67 udp dhcps unknown
4451163.247.96.10 68 tcp dhcpc filtered
4452163.247.96.10 68 udp dhcpc unknown
4453163.247.96.10 69 tcp tftp filtered
4454163.247.96.10 69 udp tftp unknown
4455163.247.96.10 80 tcp http open Apache httpd 2.2.22
4456163.247.96.10 88 tcp kerberos-sec filtered
4457163.247.96.10 88 udp kerberos-sec unknown
4458163.247.96.10 113 tcp ident closed
4459163.247.96.10 123 tcp ntp filtered
4460163.247.96.10 123 udp ntp unknown
4461163.247.96.10 137 tcp netbios-ns filtered
4462163.247.96.10 137 udp netbios-ns filtered
4463163.247.96.10 138 tcp netbios-dgm filtered
4464163.247.96.10 138 udp netbios-dgm filtered
4465163.247.96.10 139 tcp netbios-ssn closed
4466163.247.96.10 139 udp netbios-ssn unknown
4467163.247.96.10 161 tcp snmp filtered
4468163.247.96.10 161 udp snmp unknown
4469163.247.96.10 162 tcp snmptrap filtered
4470163.247.96.10 162 udp snmptrap unknown
4471163.247.96.10 389 tcp ldap filtered
4472163.247.96.10 389 udp ldap unknown
4473163.247.96.10 445 tcp microsoft-ds closed
4474163.247.96.10 465 tcp ssl/smtp open Exim smtpd 4.X
4475163.247.96.10 520 tcp efs filtered
4476163.247.96.10 520 udp route unknown
4477163.247.96.10 587 tcp smtp open Exim smtpd
4478163.247.96.10 2000 tcp cisco-sccp open
4479163.247.96.10 2049 tcp nfs filtered
4480163.247.96.10 2049 udp nfs unknown
4481163.247.96.10 4443 tcp http open Apache httpd
4482163.247.96.10 5060 tcp sip open
4483170.246.172.178 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 2 of 50 allowed.\x0d\x0a220-Local time is now 23:38. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
4484170.246.172.178 25 tcp smtp closed
4485170.246.172.178 53 tcp domain open PowerDNS Authoritative Server 4.1.10
4486170.246.172.178 53 udp domain open PowerDNS Authoritative Server 4.1.10
4487170.246.172.178 67 tcp dhcps filtered
4488170.246.172.178 67 udp dhcps unknown
4489170.246.172.178 68 tcp dhcpc filtered
4490170.246.172.178 68 udp dhcpc unknown
4491170.246.172.178 69 tcp tftp filtered
4492170.246.172.178 69 udp tftp unknown
4493170.246.172.178 88 tcp kerberos-sec filtered
4494170.246.172.178 88 udp kerberos-sec unknown
4495170.246.172.178 123 tcp ntp filtered
4496170.246.172.178 123 udp ntp unknown
4497170.246.172.178 137 tcp netbios-ns filtered
4498170.246.172.178 137 udp netbios-ns filtered
4499170.246.172.178 138 tcp netbios-dgm filtered
4500170.246.172.178 138 udp netbios-dgm filtered
4501170.246.172.178 139 tcp netbios-ssn closed
4502170.246.172.178 139 udp netbios-ssn unknown
4503170.246.172.178 161 tcp snmp filtered
4504170.246.172.178 161 udp snmp unknown
4505170.246.172.178 162 tcp snmptrap filtered
4506170.246.172.178 162 udp snmptrap unknown
4507170.246.172.178 389 tcp ldap filtered
4508170.246.172.178 389 udp ldap unknown
4509170.246.172.178 445 tcp microsoft-ds closed
4510170.246.172.178 520 tcp efs filtered
4511170.246.172.178 520 udp route unknown
4512170.246.172.178 2049 tcp nfs filtered
4513170.246.172.178 2049 udp nfs unknown
4514180.222.81.193 21 tcp ftp open ProFTPD or KnFTPD
4515180.222.81.193 25 tcp smtp closed
4516180.222.81.193 53 tcp domain filtered
4517180.222.81.193 53 udp domain unknown
4518180.222.81.193 67 tcp dhcps filtered
4519180.222.81.193 67 udp dhcps unknown
4520180.222.81.193 68 tcp dhcpc filtered
4521180.222.81.193 68 udp dhcpc unknown
4522180.222.81.193 69 tcp tftp filtered
4523180.222.81.193 69 udp tftp unknown
4524180.222.81.193 80 tcp http open Apache httpd PHP 5.2.8
4525180.222.81.193 88 tcp kerberos-sec filtered
4526180.222.81.193 88 udp kerberos-sec unknown
4527180.222.81.193 110 tcp pop3 open qmail pop3d
4528180.222.81.193 113 tcp ident closed
4529180.222.81.193 123 tcp ntp filtered
4530180.222.81.193 123 udp ntp unknown
4531180.222.81.193 137 tcp netbios-ns filtered
4532180.222.81.193 137 udp netbios-ns filtered
4533180.222.81.193 138 tcp netbios-dgm filtered
4534180.222.81.193 138 udp netbios-dgm filtered
4535180.222.81.193 139 tcp netbios-ssn closed
4536180.222.81.193 139 udp netbios-ssn unknown
4537180.222.81.193 143 tcp imap open Courier Imapd released 2005
4538180.222.81.193 161 tcp snmp filtered
4539180.222.81.193 161 udp snmp unknown
4540180.222.81.193 162 tcp snmptrap filtered
4541180.222.81.193 162 udp snmptrap unknown
4542180.222.81.193 389 tcp ldap filtered
4543180.222.81.193 389 udp ldap unknown
4544180.222.81.193 443 tcp ssl/http open Apache httpd PHP 5.2.8
4545180.222.81.193 445 tcp microsoft-ds closed
4546180.222.81.193 465 tcp ssl/smtps open
4547180.222.81.193 520 tcp efs filtered
4548180.222.81.193 520 udp route unknown
4549180.222.81.193 587 tcp smtp open Access Remote PC smtpd
4550180.222.81.193 993 tcp ssl/imaps open
4551180.222.81.193 995 tcp ssl/pop3s open
4552180.222.81.193 2049 tcp nfs filtered
4553180.222.81.193 2049 udp nfs unknown
4554180.222.81.193 8080 tcp ssl/http open Apache httpd
4555184.72.111.210 25 tcp smtp closed
4556184.72.111.210 53 tcp domain filtered
4557184.72.111.210 53 udp domain unknown
4558184.72.111.210 67 tcp dhcps filtered
4559184.72.111.210 67 udp dhcps unknown
4560184.72.111.210 68 tcp dhcpc filtered
4561184.72.111.210 68 udp dhcpc unknown
4562184.72.111.210 69 tcp tftp filtered
4563184.72.111.210 69 udp tftp unknown
4564184.72.111.210 80 tcp http open Microsoft HTTPAPI httpd 2.0 SSDP/UPnP
4565184.72.111.210 88 tcp kerberos-sec filtered
4566184.72.111.210 88 udp kerberos-sec unknown
4567184.72.111.210 123 tcp ntp filtered
4568184.72.111.210 123 udp ntp unknown
4569184.72.111.210 137 tcp netbios-ns filtered
4570184.72.111.210 137 udp netbios-ns filtered
4571184.72.111.210 138 tcp netbios-dgm filtered
4572184.72.111.210 138 udp netbios-dgm filtered
4573184.72.111.210 139 tcp netbios-ssn closed
4574184.72.111.210 139 udp netbios-ssn unknown
4575184.72.111.210 161 tcp snmp filtered
4576184.72.111.210 161 udp snmp unknown
4577184.72.111.210 162 tcp snmptrap filtered
4578184.72.111.210 162 udp snmptrap unknown
4579184.72.111.210 389 tcp ldap filtered
4580184.72.111.210 389 udp ldap unknown
4581184.72.111.210 443 tcp ssl/http open Microsoft HTTPAPI httpd 2.0 SSDP/UPnP
4582184.72.111.210 445 tcp microsoft-ds closed
4583184.72.111.210 520 tcp efs filtered
4584184.72.111.210 520 udp route unknown
4585184.72.111.210 2049 tcp nfs filtered
4586184.72.111.210 2049 udp nfs unknown
4587185.2.4.98 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 300 allowed.\x0d\x0a220-Local time is now 17:27. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 60 seconds of inactivity.\x0d\x0a
4588185.2.4.98 25 tcp smtp closed
4589185.2.4.98 53 tcp domain filtered
4590185.2.4.98 53 udp domain unknown
4591185.2.4.98 67 tcp dhcps filtered
4592185.2.4.98 67 udp dhcps unknown
4593185.2.4.98 68 tcp dhcpc filtered
4594185.2.4.98 68 udp dhcpc unknown
4595185.2.4.98 69 tcp tftp filtered
4596185.2.4.98 69 udp tftp unknown
4597185.2.4.98 88 tcp kerberos-sec filtered
4598185.2.4.98 88 udp kerberos-sec unknown
4599185.2.4.98 123 tcp ntp filtered
4600185.2.4.98 123 udp ntp unknown
4601185.2.4.98 137 tcp netbios-ns filtered
4602185.2.4.98 137 udp netbios-ns filtered
4603185.2.4.98 138 tcp netbios-dgm filtered
4604185.2.4.98 138 udp netbios-dgm filtered
4605185.2.4.98 139 tcp netbios-ssn closed
4606185.2.4.98 139 udp netbios-ssn unknown
4607185.2.4.98 161 tcp snmp filtered
4608185.2.4.98 161 udp snmp unknown
4609185.2.4.98 162 tcp snmptrap filtered
4610185.2.4.98 162 udp snmptrap unknown
4611185.2.4.98 389 tcp ldap filtered
4612185.2.4.98 389 udp ldap unknown
4613185.2.4.98 445 tcp microsoft-ds closed
4614185.2.4.98 520 tcp efs filtered
4615185.2.4.98 520 udp route unknown
4616185.2.4.98 2049 tcp nfs filtered
4617185.2.4.98 2049 udp nfs unknown
4618185.68.93.22 22 tcp ssh open SSH-2.0-OpenSSH_5.3
4619185.68.93.22 53 tcp domain closed
4620185.68.93.22 53 udp domain unknown
4621185.68.93.22 67 tcp dhcps closed
4622185.68.93.22 67 udp dhcps closed
4623185.68.93.22 68 tcp dhcpc closed
4624185.68.93.22 68 udp dhcpc closed
4625185.68.93.22 69 tcp tftp closed
4626185.68.93.22 69 udp tftp unknown
4627185.68.93.22 88 tcp kerberos-sec closed
4628185.68.93.22 88 udp kerberos-sec unknown
4629185.68.93.22 123 tcp ntp closed
4630185.68.93.22 123 udp ntp closed
4631185.68.93.22 137 tcp netbios-ns closed
4632185.68.93.22 137 udp netbios-ns filtered
4633185.68.93.22 138 tcp netbios-dgm closed
4634185.68.93.22 138 udp netbios-dgm filtered
4635185.68.93.22 139 tcp netbios-ssn closed
4636185.68.93.22 139 udp netbios-ssn closed
4637185.68.93.22 161 tcp snmp closed
4638185.68.93.22 161 udp snmp unknown
4639185.68.93.22 162 tcp snmptrap closed
4640185.68.93.22 162 udp snmptrap closed
4641185.68.93.22 389 tcp ldap closed
4642185.68.93.22 389 udp ldap unknown
4643185.68.93.22 520 tcp efs closed
4644185.68.93.22 520 udp route unknown
4645185.68.93.22 2049 tcp nfs closed
4646185.68.93.22 2049 udp nfs closed
4647185.119.173.237 25 tcp smtp closed
4648185.119.173.237 53 tcp domain filtered
4649185.119.173.237 53 udp domain unknown
4650185.119.173.237 67 tcp dhcps filtered
4651185.119.173.237 67 udp dhcps unknown
4652185.119.173.237 68 tcp dhcpc filtered
4653185.119.173.237 68 udp dhcpc unknown
4654185.119.173.237 69 tcp tftp filtered
4655185.119.173.237 69 udp tftp unknown
4656185.119.173.237 80 tcp http open Apache httpd
4657185.119.173.237 88 tcp kerberos-sec filtered
4658185.119.173.237 88 udp kerberos-sec unknown
4659185.119.173.237 123 tcp ntp filtered
4660185.119.173.237 123 udp ntp unknown
4661185.119.173.237 137 tcp netbios-ns filtered
4662185.119.173.237 137 udp netbios-ns filtered
4663185.119.173.237 138 tcp netbios-dgm filtered
4664185.119.173.237 138 udp netbios-dgm filtered
4665185.119.173.237 139 tcp netbios-ssn closed
4666185.119.173.237 139 udp netbios-ssn unknown
4667185.119.173.237 161 tcp snmp filtered
4668185.119.173.237 161 udp snmp unknown
4669185.119.173.237 162 tcp snmptrap filtered
4670185.119.173.237 162 udp snmptrap unknown
4671185.119.173.237 389 tcp ldap filtered
4672185.119.173.237 389 udp ldap unknown
4673185.119.173.237 443 tcp ssl/http open Apache httpd
4674185.119.173.237 445 tcp microsoft-ds closed
4675185.119.173.237 520 tcp efs filtered
4676185.119.173.237 520 udp route unknown
4677185.119.173.237 2049 tcp nfs filtered
4678185.119.173.237 2049 udp nfs unknown
4679186.67.91.110 25 tcp smtp closed
4680186.67.91.110 53 tcp domain filtered
4681186.67.91.110 53 udp domain unknown
4682186.67.91.110 67 tcp dhcps filtered
4683186.67.91.110 67 udp dhcps unknown
4684186.67.91.110 68 tcp dhcpc filtered
4685186.67.91.110 68 udp dhcpc unknown
4686186.67.91.110 69 tcp tftp filtered
4687186.67.91.110 69 udp tftp unknown
4688186.67.91.110 80 tcp http-proxy open F5 BIG-IP load balancer http proxy
4689186.67.91.110 88 tcp kerberos-sec filtered
4690186.67.91.110 88 udp kerberos-sec unknown
4691186.67.91.110 123 tcp ntp filtered
4692186.67.91.110 123 udp ntp unknown
4693186.67.91.110 137 tcp netbios-ns filtered
4694186.67.91.110 137 udp netbios-ns filtered
4695186.67.91.110 138 tcp netbios-dgm filtered
4696186.67.91.110 138 udp netbios-dgm filtered
4697186.67.91.110 139 tcp netbios-ssn closed
4698186.67.91.110 139 udp netbios-ssn unknown
4699186.67.91.110 161 tcp snmp filtered
4700186.67.91.110 161 udp snmp unknown
4701186.67.91.110 162 tcp snmptrap filtered
4702186.67.91.110 162 udp snmptrap unknown
4703186.67.91.110 389 tcp ldap filtered
4704186.67.91.110 389 udp ldap unknown
4705186.67.91.110 443 tcp ssl/https open
4706186.67.91.110 445 tcp microsoft-ds closed
4707186.67.91.110 520 tcp efs filtered
4708186.67.91.110 520 udp route unknown
4709186.67.91.110 2049 tcp nfs filtered
4710186.67.91.110 2049 udp nfs unknown
4711192.0.78.12 25 tcp smtp closed
4712192.0.78.12 53 tcp domain filtered
4713192.0.78.12 53 udp domain unknown
4714192.0.78.12 67 tcp dhcps filtered
4715192.0.78.12 67 udp dhcps unknown
4716192.0.78.12 68 tcp dhcpc filtered
4717192.0.78.12 68 udp dhcpc unknown
4718192.0.78.12 69 tcp tftp filtered
4719192.0.78.12 69 udp tftp unknown
4720192.0.78.12 80 tcp http open nginx
4721192.0.78.12 88 tcp kerberos-sec filtered
4722192.0.78.12 88 udp kerberos-sec unknown
4723192.0.78.12 123 tcp ntp filtered
4724192.0.78.12 123 udp ntp unknown
4725192.0.78.12 137 tcp netbios-ns filtered
4726192.0.78.12 137 udp netbios-ns filtered
4727192.0.78.12 138 tcp netbios-dgm filtered
4728192.0.78.12 138 udp netbios-dgm filtered
4729192.0.78.12 139 tcp netbios-ssn closed
4730192.0.78.12 139 udp netbios-ssn unknown
4731192.0.78.12 161 tcp snmp filtered
4732192.0.78.12 161 udp snmp unknown
4733192.0.78.12 162 tcp snmptrap filtered
4734192.0.78.12 162 udp snmptrap unknown
4735192.0.78.12 389 tcp ldap filtered
4736192.0.78.12 389 udp ldap unknown
4737192.0.78.12 443 tcp ssl/http open nginx
4738192.0.78.12 445 tcp microsoft-ds closed
4739192.0.78.12 520 tcp efs filtered
4740192.0.78.12 520 udp route unknown
4741192.0.78.12 2049 tcp nfs filtered
4742192.0.78.12 2049 udp nfs unknown
4743192.0.78.13 25 tcp smtp closed
4744192.0.78.13 53 tcp domain filtered
4745192.0.78.13 53 udp domain unknown
4746192.0.78.13 67 tcp dhcps filtered
4747192.0.78.13 67 udp dhcps unknown
4748192.0.78.13 68 tcp dhcpc filtered
4749192.0.78.13 68 udp dhcpc unknown
4750192.0.78.13 69 tcp tftp filtered
4751192.0.78.13 69 udp tftp unknown
4752192.0.78.13 80 tcp http open nginx
4753192.0.78.13 88 tcp kerberos-sec filtered
4754192.0.78.13 88 udp kerberos-sec unknown
4755192.0.78.13 123 tcp ntp filtered
4756192.0.78.13 123 udp ntp unknown
4757192.0.78.13 137 tcp netbios-ns filtered
4758192.0.78.13 137 udp netbios-ns filtered
4759192.0.78.13 138 tcp netbios-dgm filtered
4760192.0.78.13 138 udp netbios-dgm filtered
4761192.0.78.13 139 tcp netbios-ssn closed
4762192.0.78.13 139 udp netbios-ssn unknown
4763192.0.78.13 161 tcp snmp filtered
4764192.0.78.13 161 udp snmp unknown
4765192.0.78.13 162 tcp snmptrap filtered
4766192.0.78.13 162 udp snmptrap unknown
4767192.0.78.13 389 tcp ldap filtered
4768192.0.78.13 389 udp ldap unknown
4769192.0.78.13 443 tcp ssl/http open nginx
4770192.0.78.13 445 tcp microsoft-ds closed
4771192.0.78.13 520 tcp efs filtered
4772192.0.78.13 520 udp route unknown
4773192.0.78.13 2049 tcp nfs filtered
4774192.0.78.13 2049 udp nfs unknown
4775194.18.73.2 25 tcp smtp closed
4776194.18.73.2 53 tcp domain filtered
4777194.18.73.2 53 udp domain unknown
4778194.18.73.2 67 tcp dhcps filtered
4779194.18.73.2 67 udp dhcps unknown
4780194.18.73.2 68 tcp dhcpc filtered
4781194.18.73.2 68 udp dhcpc unknown
4782194.18.73.2 69 tcp tftp filtered
4783194.18.73.2 69 udp tftp unknown
4784194.18.73.2 80 tcp http-proxy open HAProxy http proxy 1.3.1 or later
4785194.18.73.2 88 tcp kerberos-sec filtered
4786194.18.73.2 88 udp kerberos-sec unknown
4787194.18.73.2 113 tcp ident closed
4788194.18.73.2 123 tcp ntp filtered
4789194.18.73.2 123 udp ntp unknown
4790194.18.73.2 137 tcp netbios-ns filtered
4791194.18.73.2 137 udp netbios-ns filtered
4792194.18.73.2 138 tcp netbios-dgm filtered
4793194.18.73.2 138 udp netbios-dgm filtered
4794194.18.73.2 139 tcp netbios-ssn closed
4795194.18.73.2 139 udp netbios-ssn unknown
4796194.18.73.2 161 tcp snmp filtered
4797194.18.73.2 161 udp snmp unknown
4798194.18.73.2 162 tcp snmptrap filtered
4799194.18.73.2 162 udp snmptrap unknown
4800194.18.73.2 389 tcp ldap filtered
4801194.18.73.2 389 udp ldap unknown
4802194.18.73.2 443 tcp ssl/http-proxy open HAProxy http proxy 1.3.1 or later
4803194.18.73.2 445 tcp microsoft-ds closed
4804194.18.73.2 520 tcp efs filtered
4805194.18.73.2 520 udp route closed
4806194.18.73.2 2049 tcp nfs filtered
4807194.18.73.2 2049 udp nfs unknown
4808194.39.164.140 21 tcp ftp open ProFTPD
4809194.39.164.140 53 tcp domain filtered
4810194.39.164.140 53 udp domain unknown
4811194.39.164.140 67 tcp dhcps filtered
4812194.39.164.140 67 udp dhcps unknown
4813194.39.164.140 68 tcp dhcpc filtered
4814194.39.164.140 68 udp dhcpc unknown
4815194.39.164.140 69 tcp tftp filtered
4816194.39.164.140 69 udp tftp unknown
4817194.39.164.140 80 tcp http open nginx
4818194.39.164.140 88 tcp kerberos-sec filtered
4819194.39.164.140 88 udp kerberos-sec unknown
4820194.39.164.140 110 tcp pop3 open Courier pop3d
4821194.39.164.140 123 tcp ntp filtered
4822194.39.164.140 123 udp ntp unknown
4823194.39.164.140 137 tcp netbios-ns filtered
4824194.39.164.140 137 udp netbios-ns filtered
4825194.39.164.140 138 tcp netbios-dgm filtered
4826194.39.164.140 138 udp netbios-dgm filtered
4827194.39.164.140 139 tcp netbios-ssn closed
4828194.39.164.140 139 udp netbios-ssn unknown
4829194.39.164.140 161 tcp snmp filtered
4830194.39.164.140 161 udp snmp unknown
4831194.39.164.140 162 tcp snmptrap filtered
4832194.39.164.140 162 udp snmptrap unknown
4833194.39.164.140 389 tcp ldap filtered
4834194.39.164.140 389 udp ldap unknown
4835194.39.164.140 443 tcp ssl/http open nginx
4836194.39.164.140 465 tcp ssl/smtps open
4837194.39.164.140 520 tcp efs filtered
4838194.39.164.140 520 udp route unknown
4839194.39.164.140 587 tcp smtp open Postfix smtpd
4840194.39.164.140 993 tcp ssl/imaps open
4841194.39.164.140 2020 tcp ssh open OpenSSH 7.4 protocol 2.0
4842194.39.164.140 2049 tcp nfs filtered
4843194.39.164.140 2049 udp nfs unknown
4844194.39.164.140 8443 tcp ssl/https-alt open sw-cp-server
4845194.39.164.140 8880 tcp http open sw-cp-server httpd Plesk Onyx 17.8.11
4846200.14.67.43 25 tcp smtp closed
4847200.14.67.43 53 tcp domain filtered
4848200.14.67.43 53 udp domain unknown
4849200.14.67.43 67 tcp dhcps filtered
4850200.14.67.43 67 udp dhcps unknown
4851200.14.67.43 68 tcp dhcpc filtered
4852200.14.67.43 68 udp dhcpc unknown
4853200.14.67.43 69 tcp tftp filtered
4854200.14.67.43 69 udp tftp unknown
4855200.14.67.43 80 tcp http open nginx 1.16.1 Ubuntu
4856200.14.67.43 88 tcp kerberos-sec filtered
4857200.14.67.43 88 udp kerberos-sec unknown
4858200.14.67.43 123 tcp ntp filtered
4859200.14.67.43 123 udp ntp unknown
4860200.14.67.43 137 tcp netbios-ns filtered
4861200.14.67.43 137 udp netbios-ns filtered
4862200.14.67.43 138 tcp netbios-dgm filtered
4863200.14.67.43 138 udp netbios-dgm filtered
4864200.14.67.43 139 tcp netbios-ssn closed
4865200.14.67.43 139 udp netbios-ssn unknown
4866200.14.67.43 161 tcp snmp filtered
4867200.14.67.43 161 udp snmp unknown
4868200.14.67.43 162 tcp snmptrap filtered
4869200.14.67.43 162 udp snmptrap unknown
4870200.14.67.43 389 tcp ldap filtered
4871200.14.67.43 389 udp ldap unknown
4872200.14.67.43 443 tcp ssl/http open nginx 1.16.1 Ubuntu
4873200.14.67.43 445 tcp microsoft-ds closed
4874200.14.67.43 520 tcp efs filtered
4875200.14.67.43 520 udp route unknown
4876200.14.67.43 2049 tcp nfs filtered
4877200.14.67.43 2049 udp nfs unknown
4878200.14.67.65 25 tcp smtp closed
4879200.14.67.65 53 tcp domain filtered
4880200.14.67.65 53 udp domain unknown
4881200.14.67.65 67 tcp dhcps filtered
4882200.14.67.65 67 udp dhcps unknown
4883200.14.67.65 68 tcp dhcpc filtered
4884200.14.67.65 68 udp dhcpc unknown
4885200.14.67.65 69 tcp tftp filtered
4886200.14.67.65 69 udp tftp unknown
4887200.14.67.65 80 tcp http open nginx 1.16.1 Ubuntu
4888200.14.67.65 88 tcp kerberos-sec filtered
4889200.14.67.65 88 udp kerberos-sec unknown
4890200.14.67.65 123 tcp ntp filtered
4891200.14.67.65 123 udp ntp unknown
4892200.14.67.65 137 tcp netbios-ns filtered
4893200.14.67.65 137 udp netbios-ns filtered
4894200.14.67.65 138 tcp netbios-dgm filtered
4895200.14.67.65 138 udp netbios-dgm filtered
4896200.14.67.65 139 tcp netbios-ssn closed
4897200.14.67.65 139 udp netbios-ssn unknown
4898200.14.67.65 161 tcp snmp filtered
4899200.14.67.65 161 udp snmp unknown
4900200.14.67.65 162 tcp snmptrap filtered
4901200.14.67.65 162 udp snmptrap unknown
4902200.14.67.65 389 tcp ldap filtered
4903200.14.67.65 389 udp ldap unknown
4904200.14.67.65 443 tcp ssl/http open nginx 1.16.1 Ubuntu
4905200.14.67.65 445 tcp microsoft-ds closed
4906200.14.67.65 520 tcp efs filtered
4907200.14.67.65 520 udp route unknown
4908200.14.67.65 2049 tcp nfs filtered
4909200.14.67.65 2049 udp nfs unknown
4910200.35.157.77 53 tcp domain filtered
4911200.35.157.77 53 udp domain unknown
4912200.35.157.77 67 tcp dhcps filtered
4913200.35.157.77 67 udp dhcps unknown
4914200.35.157.77 68 tcp dhcpc filtered
4915200.35.157.77 68 udp dhcpc unknown
4916200.35.157.77 69 tcp tftp filtered
4917200.35.157.77 69 udp tftp unknown
4918200.35.157.77 88 tcp kerberos-sec filtered
4919200.35.157.77 88 udp kerberos-sec unknown
4920200.35.157.77 123 tcp ntp filtered
4921200.35.157.77 123 udp ntp unknown
4922200.35.157.77 137 tcp netbios-ns filtered
4923200.35.157.77 137 udp netbios-ns filtered
4924200.35.157.77 138 tcp netbios-dgm filtered
4925200.35.157.77 138 udp netbios-dgm filtered
4926200.35.157.77 139 tcp netbios-ssn closed
4927200.35.157.77 139 udp netbios-ssn unknown
4928200.35.157.77 161 tcp snmp filtered
4929200.35.157.77 161 udp snmp unknown
4930200.35.157.77 162 tcp snmptrap filtered
4931200.35.157.77 162 udp snmptrap unknown
4932200.35.157.77 389 tcp ldap filtered
4933200.35.157.77 389 udp ldap unknown
4934200.35.157.77 520 tcp efs filtered
4935200.35.157.77 520 udp route unknown
4936200.35.157.77 2049 tcp nfs filtered
4937200.35.157.77 2049 udp nfs unknown
4938201.131.38.40 25 tcp smtp closed
4939201.131.38.40 53 tcp domain filtered
4940201.131.38.40 53 udp domain unknown
4941201.131.38.40 67 tcp dhcps filtered
4942201.131.38.40 67 udp dhcps unknown
4943201.131.38.40 68 tcp dhcpc filtered
4944201.131.38.40 68 udp dhcpc unknown
4945201.131.38.40 69 tcp tftp filtered
4946201.131.38.40 69 udp tftp unknown
4947201.131.38.40 80 tcp http open Apache httpd
4948201.131.38.40 88 tcp kerberos-sec filtered
4949201.131.38.40 88 udp kerberos-sec unknown
4950201.131.38.40 123 tcp ntp filtered
4951201.131.38.40 123 udp ntp unknown
4952201.131.38.40 137 tcp netbios-ns filtered
4953201.131.38.40 137 udp netbios-ns filtered
4954201.131.38.40 138 tcp netbios-dgm filtered
4955201.131.38.40 138 udp netbios-dgm filtered
4956201.131.38.40 139 tcp netbios-ssn closed
4957201.131.38.40 139 udp netbios-ssn unknown
4958201.131.38.40 161 tcp snmp filtered
4959201.131.38.40 161 udp snmp unknown
4960201.131.38.40 162 tcp snmptrap filtered
4961201.131.38.40 162 udp snmptrap unknown
4962201.131.38.40 389 tcp ldap filtered
4963201.131.38.40 389 udp ldap unknown
4964201.131.38.40 443 tcp ssl/http open Apache httpd
4965201.131.38.40 445 tcp microsoft-ds closed
4966201.131.38.40 520 tcp efs filtered
4967201.131.38.40 520 udp route unknown
4968201.131.38.40 2049 tcp nfs filtered
4969201.131.38.40 2049 udp nfs unknown
4970201.238.246.43 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 50 allowed.\x0d\x0a220-Local time is now 05:39. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
4971201.238.246.43 25 tcp smtp closed
4972201.238.246.43 53 tcp domain filtered
4973201.238.246.43 53 udp domain unknown
4974201.238.246.43 67 tcp dhcps filtered
4975201.238.246.43 67 udp dhcps unknown
4976201.238.246.43 68 tcp dhcpc filtered
4977201.238.246.43 68 udp dhcpc unknown
4978201.238.246.43 69 tcp tftp filtered
4979201.238.246.43 69 udp tftp unknown
4980201.238.246.43 88 tcp kerberos-sec filtered
4981201.238.246.43 88 udp kerberos-sec unknown
4982201.238.246.43 113 tcp ident closed
4983201.238.246.43 123 tcp ntp filtered
4984201.238.246.43 123 udp ntp unknown
4985201.238.246.43 137 tcp netbios-ns filtered
4986201.238.246.43 137 udp netbios-ns filtered
4987201.238.246.43 138 tcp netbios-dgm filtered
4988201.238.246.43 138 udp netbios-dgm filtered
4989201.238.246.43 139 tcp netbios-ssn closed
4990201.238.246.43 139 udp netbios-ssn unknown
4991201.238.246.43 161 tcp snmp filtered
4992201.238.246.43 161 udp snmp unknown
4993201.238.246.43 162 tcp snmptrap filtered
4994201.238.246.43 162 udp snmptrap unknown
4995201.238.246.43 389 tcp ldap filtered
4996201.238.246.43 389 udp ldap unknown
4997201.238.246.43 445 tcp microsoft-ds closed
4998201.238.246.43 520 tcp efs filtered
4999201.238.246.43 520 udp route unknown
5000201.238.246.43 2049 tcp nfs filtered
5001201.238.246.43 2049 udp nfs unknown
5002202.214.194.138 25 tcp smtp closed
5003202.214.194.138 53 tcp domain filtered
5004202.214.194.138 53 udp domain unknown
5005202.214.194.138 67 tcp dhcps filtered
5006202.214.194.138 67 udp dhcps unknown
5007202.214.194.138 68 tcp dhcpc filtered
5008202.214.194.138 68 udp dhcpc unknown
5009202.214.194.138 69 tcp tftp filtered
5010202.214.194.138 69 udp tftp unknown
5011202.214.194.138 80 tcp http open
5012202.214.194.138 88 tcp kerberos-sec filtered
5013202.214.194.138 88 udp kerberos-sec unknown
5014202.214.194.138 123 tcp ntp filtered
5015202.214.194.138 123 udp ntp unknown
5016202.214.194.138 137 tcp netbios-ns filtered
5017202.214.194.138 137 udp netbios-ns filtered
5018202.214.194.138 138 tcp netbios-dgm filtered
5019202.214.194.138 138 udp netbios-dgm filtered
5020202.214.194.138 139 tcp netbios-ssn closed
5021202.214.194.138 139 udp netbios-ssn unknown
5022202.214.194.138 161 tcp snmp filtered
5023202.214.194.138 161 udp snmp unknown
5024202.214.194.138 162 tcp snmptrap filtered
5025202.214.194.138 162 udp snmptrap unknown
5026202.214.194.138 389 tcp ldap filtered
5027202.214.194.138 389 udp ldap unknown
5028202.214.194.138 443 tcp ssl/https open
5029202.214.194.138 445 tcp microsoft-ds closed
5030202.214.194.138 520 tcp efs filtered
5031202.214.194.138 520 udp route unknown
5032202.214.194.138 2049 tcp nfs filtered
5033202.214.194.138 2049 udp nfs unknown
5034202.238.130.103 25 tcp smtp closed
5035202.238.130.103 53 tcp domain filtered
5036202.238.130.103 53 udp domain unknown
5037202.238.130.103 67 tcp dhcps filtered
5038202.238.130.103 67 udp dhcps unknown
5039202.238.130.103 68 tcp dhcpc filtered
5040202.238.130.103 68 udp dhcpc unknown
5041202.238.130.103 69 tcp tftp filtered
5042202.238.130.103 69 udp tftp unknown
5043202.238.130.103 80 tcp http-proxy open F5 BIG-IP load balancer http proxy
5044202.238.130.103 88 tcp kerberos-sec filtered
5045202.238.130.103 88 udp kerberos-sec unknown
5046202.238.130.103 113 tcp ident closed
5047202.238.130.103 123 tcp ntp filtered
5048202.238.130.103 123 udp ntp unknown
5049202.238.130.103 137 tcp netbios-ns filtered
5050202.238.130.103 137 udp netbios-ns filtered
5051202.238.130.103 138 tcp netbios-dgm filtered
5052202.238.130.103 138 udp netbios-dgm filtered
5053202.238.130.103 139 tcp netbios-ssn closed
5054202.238.130.103 139 udp netbios-ssn unknown
5055202.238.130.103 161 tcp snmp filtered
5056202.238.130.103 161 udp snmp unknown
5057202.238.130.103 162 tcp snmptrap filtered
5058202.238.130.103 162 udp snmptrap unknown
5059202.238.130.103 389 tcp ldap filtered
5060202.238.130.103 389 udp ldap unknown
5061202.238.130.103 443 tcp ssl/http open Apache httpd
5062202.238.130.103 445 tcp microsoft-ds closed
5063202.238.130.103 520 tcp efs filtered
5064202.238.130.103 520 udp route unknown
5065202.238.130.103 2049 tcp nfs filtered
5066202.238.130.103 2049 udp nfs unknown
5067202.238.130.103 8008 tcp http open
5068203.137.110.66 21 tcp ftp open 220 203.137.110.66 FTP server ready\x0d\x0a
5069203.180.216.224 25 tcp smtp closed
5070203.180.216.224 53 tcp domain filtered
5071203.180.216.224 53 udp domain unknown
5072203.180.216.224 67 tcp dhcps filtered
5073203.180.216.224 67 udp dhcps unknown
5074203.180.216.224 68 tcp dhcpc filtered
5075203.180.216.224 68 udp dhcpc unknown
5076203.180.216.224 69 tcp tftp filtered
5077203.180.216.224 69 udp tftp unknown
5078203.180.216.224 80 tcp http open nginx
5079203.180.216.224 88 tcp kerberos-sec filtered
5080203.180.216.224 88 udp kerberos-sec unknown
5081203.180.216.224 123 tcp ntp filtered
5082203.180.216.224 123 udp ntp unknown
5083203.180.216.224 137 tcp netbios-ns filtered
5084203.180.216.224 137 udp netbios-ns filtered
5085203.180.216.224 138 tcp netbios-dgm filtered
5086203.180.216.224 138 udp netbios-dgm filtered
5087203.180.216.224 139 tcp netbios-ssn closed
5088203.180.216.224 139 udp netbios-ssn unknown
5089203.180.216.224 161 tcp snmp filtered
5090203.180.216.224 161 udp snmp unknown
5091203.180.216.224 162 tcp snmptrap filtered
5092203.180.216.224 162 udp snmptrap unknown
5093203.180.216.224 389 tcp ldap filtered
5094203.180.216.224 389 udp ldap unknown
5095203.180.216.224 443 tcp ssl/http open nginx
5096203.180.216.224 445 tcp microsoft-ds closed
5097203.180.216.224 520 tcp efs filtered
5098203.180.216.224 520 udp route unknown
5099203.180.216.224 2049 tcp nfs filtered
5100203.180.216.224 2049 udp nfs unknown
5101203.183.218.244 21 tcp ftp open 220 203.183.218.130 FTP server ready\x0d\x0a
5102208.113.216.185 25 tcp smtp closed
5103208.113.216.185 53 tcp domain filtered
5104208.113.216.185 53 udp domain unknown
5105208.113.216.185 67 tcp dhcps filtered
5106208.113.216.185 67 udp dhcps unknown
5107208.113.216.185 68 tcp dhcpc filtered
5108208.113.216.185 68 udp dhcpc unknown
5109208.113.216.185 69 tcp tftp filtered
5110208.113.216.185 69 udp tftp unknown
5111208.113.216.185 88 tcp kerberos-sec filtered
5112208.113.216.185 88 udp kerberos-sec unknown
5113208.113.216.185 123 tcp ntp filtered
5114208.113.216.185 123 udp ntp unknown
5115208.113.216.185 137 tcp netbios-ns filtered
5116208.113.216.185 137 udp netbios-ns filtered
5117208.113.216.185 138 tcp netbios-dgm filtered
5118208.113.216.185 138 udp netbios-dgm filtered
5119208.113.216.185 139 tcp netbios-ssn closed
5120208.113.216.185 139 udp netbios-ssn unknown
5121208.113.216.185 161 tcp snmp filtered
5122208.113.216.185 161 udp snmp unknown
5123208.113.216.185 162 tcp snmptrap filtered
5124208.113.216.185 162 udp snmptrap unknown
5125208.113.216.185 389 tcp ldap filtered
5126208.113.216.185 389 udp ldap unknown
5127208.113.216.185 445 tcp microsoft-ds closed
5128208.113.216.185 520 tcp efs filtered
5129208.113.216.185 520 udp route unknown
5130208.113.216.185 2049 tcp nfs filtered
5131208.113.216.185 2049 udp nfs unknown
5132208.113.220.218 25 tcp smtp closed
5133208.113.220.218 53 tcp domain filtered
5134208.113.220.218 53 udp domain unknown
5135208.113.220.218 67 tcp dhcps filtered
5136208.113.220.218 67 udp dhcps unknown
5137208.113.220.218 68 tcp dhcpc filtered
5138208.113.220.218 68 udp dhcpc unknown
5139208.113.220.218 69 tcp tftp filtered
5140208.113.220.218 69 udp tftp unknown
5141208.113.220.218 88 tcp kerberos-sec filtered
5142208.113.220.218 88 udp kerberos-sec unknown
5143208.113.220.218 123 tcp ntp filtered
5144208.113.220.218 123 udp ntp unknown
5145208.113.220.218 137 tcp netbios-ns filtered
5146208.113.220.218 137 udp netbios-ns filtered
5147208.113.220.218 138 tcp netbios-dgm filtered
5148208.113.220.218 138 udp netbios-dgm filtered
5149208.113.220.218 139 tcp netbios-ssn closed
5150208.113.220.218 139 udp netbios-ssn unknown
5151208.113.220.218 161 tcp snmp filtered
5152208.113.220.218 161 udp snmp unknown
5153208.113.220.218 162 tcp snmptrap filtered
5154208.113.220.218 162 udp snmptrap unknown
5155208.113.220.218 389 tcp ldap filtered
5156208.113.220.218 389 udp ldap unknown
5157208.113.220.218 445 tcp microsoft-ds closed
5158208.113.220.218 520 tcp efs filtered
5159208.113.220.218 520 udp route unknown
5160208.113.220.218 2049 tcp nfs filtered
5161208.113.220.218 2049 udp nfs unknown
5162209.59.165.178 25 tcp smtp closed
5163209.59.165.178 53 tcp domain filtered PowerDNS Authoritative Server 4.1.10
5164209.59.165.178 53 udp domain unknown PowerDNS Authoritative Server 4.1.10
5165209.59.165.178 67 tcp dhcps filtered
5166209.59.165.178 67 udp dhcps unknown
5167209.59.165.178 68 tcp dhcpc filtered
5168209.59.165.178 68 udp dhcpc unknown
5169209.59.165.178 69 tcp tftp filtered
5170209.59.165.178 69 udp tftp unknown
5171209.59.165.178 88 tcp kerberos-sec filtered
5172209.59.165.178 88 udp kerberos-sec unknown
5173209.59.165.178 123 tcp ntp filtered
5174209.59.165.178 123 udp ntp unknown
5175209.59.165.178 137 tcp netbios-ns filtered
5176209.59.165.178 137 udp netbios-ns filtered
5177209.59.165.178 138 tcp netbios-dgm filtered
5178209.59.165.178 138 udp netbios-dgm filtered
5179209.59.165.178 139 tcp netbios-ssn closed
5180209.59.165.178 139 udp netbios-ssn unknown
5181209.59.165.178 161 tcp snmp filtered
5182209.59.165.178 161 udp snmp unknown
5183209.59.165.178 162 tcp snmptrap filtered
5184209.59.165.178 162 udp snmptrap unknown
5185209.59.165.178 389 tcp ldap filtered
5186209.59.165.178 389 udp ldap unknown
5187209.59.165.178 445 tcp microsoft-ds closed
5188209.59.165.178 520 tcp efs filtered
5189209.59.165.178 520 udp route unknown
5190209.59.165.178 2049 tcp nfs filtered
5191209.59.165.178 2049 udp nfs unknown
5192210.149.141.34 53 tcp domain filtered
5193210.149.141.34 53 udp domain unknown
5194210.149.141.34 67 tcp dhcps filtered
5195210.149.141.34 67 udp dhcps unknown
5196210.149.141.34 68 tcp dhcpc filtered
5197210.149.141.34 68 udp dhcpc unknown
5198210.149.141.34 69 tcp tftp filtered
5199210.149.141.34 69 udp tftp unknown
5200210.149.141.34 88 tcp kerberos-sec filtered
5201210.149.141.34 88 udp kerberos-sec unknown
5202210.149.141.34 123 tcp ntp filtered
5203210.149.141.34 123 udp ntp unknown
5204210.149.141.34 137 tcp netbios-ns filtered
5205210.149.141.34 137 udp netbios-ns filtered
5206210.149.141.34 138 tcp netbios-dgm filtered
5207210.149.141.34 138 udp netbios-dgm filtered
5208210.149.141.34 139 tcp netbios-ssn closed
5209210.149.141.34 139 udp netbios-ssn unknown
5210210.149.141.34 161 tcp snmp filtered
5211210.149.141.34 161 udp snmp unknown
5212210.149.141.34 162 tcp snmptrap filtered
5213210.149.141.34 162 udp snmptrap unknown
5214210.149.141.34 389 tcp ldap filtered
5215210.149.141.34 389 udp ldap unknown
5216210.149.141.34 520 tcp efs filtered
5217210.149.141.34 520 udp route unknown
5218210.149.141.34 2049 tcp nfs filtered
5219210.149.141.34 2049 udp nfs unknown
5220210.152.243.182 21 tcp ftp open 220 (vsFTPd 2.2.2)\x0d\x0a
5221210.160.220.105 53 tcp domain closed
5222210.160.220.105 53 udp domain unknown
5223210.160.220.105 67 tcp dhcps closed
5224210.160.220.105 67 udp dhcps unknown
5225210.160.220.105 68 tcp dhcpc closed
5226210.160.220.105 68 udp dhcpc unknown
5227210.160.220.105 69 tcp tftp filtered
5228210.160.220.105 69 udp tftp unknown
5229210.160.220.105 88 tcp kerberos-sec closed
5230210.160.220.105 88 udp kerberos-sec unknown
5231210.160.220.105 123 tcp ntp filtered
5232210.160.220.105 123 udp ntp unknown
5233210.160.220.105 137 tcp netbios-ns closed
5234210.160.220.105 137 udp netbios-ns filtered
5235210.160.220.105 138 tcp netbios-dgm closed
5236210.160.220.105 138 udp netbios-dgm filtered
5237210.160.220.105 139 tcp netbios-ssn closed
5238210.160.220.105 139 udp netbios-ssn unknown
5239210.160.220.105 161 tcp snmp closed
5240210.160.220.105 161 udp snmp unknown
5241210.160.220.105 162 tcp snmptrap filtered
5242210.160.220.105 162 udp snmptrap unknown
5243210.160.220.105 389 tcp ldap closed
5244210.160.220.105 389 udp ldap unknown
5245210.160.220.105 520 tcp efs closed
5246210.160.220.105 520 udp route unknown
5247210.160.220.105 2049 tcp nfs closed
5248210.160.220.105 2049 udp nfs unknown
5249210.160.220.113 53 tcp domain closed
5250210.160.220.113 53 udp domain unknown
5251210.160.220.113 67 tcp dhcps closed
5252210.160.220.113 67 udp dhcps unknown
5253210.160.220.113 68 tcp dhcpc closed
5254210.160.220.113 68 udp dhcpc unknown
5255210.160.220.113 69 tcp tftp closed
5256210.160.220.113 69 udp tftp unknown
5257210.160.220.113 88 tcp kerberos-sec filtered
5258210.160.220.113 88 udp kerberos-sec unknown
5259210.160.220.113 123 tcp ntp filtered
5260210.160.220.113 123 udp ntp unknown
5261210.160.220.113 137 tcp netbios-ns closed
5262210.160.220.113 137 udp netbios-ns filtered
5263210.160.220.113 138 tcp netbios-dgm closed
5264210.160.220.113 138 udp netbios-dgm filtered
5265210.160.220.113 139 tcp netbios-ssn closed
5266210.160.220.113 139 udp netbios-ssn unknown
5267210.160.220.113 161 tcp snmp closed
5268210.160.220.113 161 udp snmp unknown
5269210.160.220.113 162 tcp snmptrap closed
5270210.160.220.113 162 udp snmptrap unknown
5271210.160.220.113 389 tcp ldap filtered
5272210.160.220.113 389 udp ldap unknown
5273210.160.220.113 520 tcp efs closed
5274210.160.220.113 520 udp route unknown
5275210.160.220.113 2049 tcp nfs closed
5276210.160.220.113 2049 udp nfs unknown
5277210.226.36.2 25 tcp smtp closed
5278210.226.36.2 53 tcp domain filtered
5279210.226.36.2 53 udp domain unknown
5280210.226.36.2 67 tcp dhcps filtered
5281210.226.36.2 67 udp dhcps unknown
5282210.226.36.2 68 tcp dhcpc filtered
5283210.226.36.2 68 udp dhcpc unknown
5284210.226.36.2 69 tcp tftp filtered
5285210.226.36.2 69 udp tftp unknown
5286210.226.36.2 80 tcp http open Apache httpd 1.3.41 (Unix) PHP/3.0.18-i18n-ja-3
5287210.226.36.2 88 tcp kerberos-sec filtered
5288210.226.36.2 88 udp kerberos-sec unknown
5289210.226.36.2 123 tcp ntp filtered
5290210.226.36.2 123 udp ntp unknown
5291210.226.36.2 137 tcp netbios-ns filtered
5292210.226.36.2 137 udp netbios-ns filtered
5293210.226.36.2 138 tcp netbios-dgm filtered
5294210.226.36.2 138 udp netbios-dgm filtered
5295210.226.36.2 139 tcp netbios-ssn closed
5296210.226.36.2 139 udp netbios-ssn unknown
5297210.226.36.2 161 tcp snmp filtered
5298210.226.36.2 161 udp snmp unknown
5299210.226.36.2 162 tcp snmptrap filtered
5300210.226.36.2 162 udp snmptrap unknown
5301210.226.36.2 389 tcp ldap filtered
5302210.226.36.2 389 udp ldap unknown
5303210.226.36.2 445 tcp microsoft-ds closed
5304210.226.36.2 520 tcp efs filtered
5305210.226.36.2 520 udp route unknown
5306210.226.36.2 2049 tcp nfs filtered
5307210.226.36.2 2049 udp nfs unknown
5308217.160.131.142 21 tcp ftp open ProFTPD
5309217.160.131.142 22 tcp ssh open OpenSSH 5.3 protocol 2.0
5310217.160.131.142 53 tcp domain closed
5311217.160.131.142 53 udp domain unknown
5312217.160.131.142 67 tcp dhcps closed
5313217.160.131.142 67 udp dhcps unknown
5314217.160.131.142 68 tcp dhcpc closed
5315217.160.131.142 68 udp dhcpc closed
5316217.160.131.142 69 tcp tftp closed
5317217.160.131.142 69 udp tftp unknown
5318217.160.131.142 80 tcp http open Apache httpd PleskLin
5319217.160.131.142 88 tcp kerberos-sec closed
5320217.160.131.142 88 udp kerberos-sec unknown
5321217.160.131.142 123 tcp ntp closed
5322217.160.131.142 123 udp ntp unknown
5323217.160.131.142 137 tcp netbios-ns closed
5324217.160.131.142 137 udp netbios-ns filtered
5325217.160.131.142 138 tcp netbios-dgm closed
5326217.160.131.142 138 udp netbios-dgm filtered
5327217.160.131.142 139 tcp netbios-ssn closed
5328217.160.131.142 139 udp netbios-ssn closed
5329217.160.131.142 161 tcp snmp closed
5330217.160.131.142 161 udp snmp unknown
5331217.160.131.142 162 tcp snmptrap closed
5332217.160.131.142 162 udp snmptrap closed
5333217.160.131.142 389 tcp ldap closed
5334217.160.131.142 389 udp ldap closed
5335217.160.131.142 443 tcp ssl/http open Apache httpd PleskLin
5336217.160.131.142 520 tcp efs closed
5337217.160.131.142 520 udp route unknown
5338217.160.131.142 2049 tcp nfs closed
5339217.160.131.142 2049 udp nfs closed
5340217.160.131.142 3306 tcp mysql open MySQL 5.1.73
5341217.160.131.142 4643 tcp ssl/http open Apache httpd
5342217.160.131.142 8443 tcp ssl/http open sw-cp-server httpd Plesk Onyx 17.8.11
5343217.160.131.142 8880 tcp http open sw-cp-server httpd Plesk Onyx 17.8.11
5344#####################################################################################################################################
5345 Anonymous JTSEC #OpDeathEathers Full Recon #5