· 6 years ago · Sep 25, 2019, 04:46 AM
1#######################################################################################################################################
2=======================================================================================================================================
3Hostname lspixs.co ISP UpCloud Ltd
4Continent Europe Flag
5NL
6Country Netherlands Country Code NL
7Region North Holland Local time 25 Sep 2019 05:38 CEST
8City Badhoevedorp Postal Code 1171
9IP Address 94.237.46.132 Latitude 52.339
10 Longitude 4.783
11=======================================================================================================================================
12#######################################################################################################################################
13> lspixs.co
14Server: 185.93.180.131
15Address: 185.93.180.131#53
16
17Non-authoritative answer:
18Name: lspixs.co
19Address: 94.237.46.132
20>
21#######################################################################################################################################
22[+] Target : lspixs.co
23
24[+] IP Address : 94.237.46.132
25
26[+] Headers :
27
28[+] Server : nginx
29[+] Date : Wed, 25 Sep 2019 03:21:41 GMT
30[+] Content-Type : text/html; charset=UTF-8
31[+] Transfer-Encoding : chunked
32[+] Connection : keep-alive
33[+] Vary : Accept-Encoding
34[+] X-UA-Compatible : IE=edge
35[+] Link : <https://lspixs.co/wp-json/>; rel="https://api.w.org/"
36[+] Strict-Transport-Security : max-age=31536000
37[+] X-Frame-Options : SAMEORIGIN
38[+] X-Content-Type-Options : nosniff
39[+] X-XSS-Protection : 1; mode=block
40[+] Content-Encoding : gzip
41
42[+] SSL Certificate Information :
43
44[+] commonName : lspixs.co
45[+] countryName : US
46[+] organizationName : Let's Encrypt
47[+] commonName : Let's Encrypt Authority X3
48[+] Version : 3
49[+] Serial Number : 032C5D86A52A4BD6E145034352A665779D8F
50[+] Not Before : Aug 15 18:27:11 2019 GMT
51[+] Not After : Nov 13 18:27:11 2019 GMT
52[+] OCSP : ('http://ocsp.int-x3.letsencrypt.org',)
53[+] subject Alt Name : (('DNS', 'lspixs.co'), ('DNS', 'www.lspixs.co'))
54[+] CA Issuers : ('http://cert.int-x3.letsencrypt.org/',)
55
56[+] Whois Lookup :
57
58[+] NIR : None
59[+] ASN Registry : ripencc
60[+] ASN : 202053
61[+] ASN CIDR : 94.237.40.0/21
62[+] ASN Country Code : FI
63[+] ASN Date : 2008-10-22
64[+] ASN Description : UPCLOUD, FI
65[+] cidr : 94.237.40.0/21
66[+] name : UPCLOUD-NL-AMS1-NET1
67[+] handle : UPC-RIPE
68[+] range : 94.237.40.0 - 94.237.47.255
69[+] description : None
70[+] country : NL
71[+] state : None
72[+] city : None
73[+] address : Etelaranta 12
7400130 Helsinki
75Finland
76[+] postal_code : None
77[+] emails : ['abuse@upcloud.com']
78[+] created : 2018-04-12T13:07:21Z
79[+] updated : 2018-04-12T13:07:21Z
80
81[+] Crawling Target...
82
83[+] Looking for robots.txt........[ Found ]
84[+] Extracting robots Links.......[ 8 ]
85[+] Looking for sitemap.xml.......[ Found ]
86[+] Extracting sitemap Links......[ 8 ]
87[+] Extracting CSS Links..........[ 1 ]
88[+] Extracting Javascript Links...[ 2 ]
89[+] Extracting Internal Links.....[ 28 ]
90[+] Extracting External Links.....[ 31 ]
91[+] Extracting Images.............[ 40 ]
92
93[+] Total Links Extracted : 118
94
95[+] Dumping Links in /opt/FinalRecon/dumps/lspixs.co.dump
96[+] Completed!
97#######################################################################################################################################
98[+] Starting At 2019-09-24 23:53:11.679766
99[+] Collecting Information On: https://lspixs.co/
100[#] Status: 200
101--------------------------------------------------
102[#] Web Server Detected: nginx
103[+] Xss Protection Detected !
104- Server: nginx
105- Date: Wed, 25 Sep 2019 03:22:48 GMT
106- Content-Type: text/html; charset=UTF-8
107- Transfer-Encoding: chunked
108- Connection: keep-alive
109- Vary: Accept-Encoding
110- X-UA-Compatible: IE=edge
111- Link: <https://lspixs.co/wp-json/>; rel="https://api.w.org/"
112- Strict-Transport-Security: max-age=31536000
113- X-Frame-Options: SAMEORIGIN
114- X-Content-Type-Options: nosniff
115- X-XSS-Protection: 1; mode=block
116- Content-Encoding: gzip
117--------------------------------------------------
118[#] Finding Location..!
119[#] as: AS202053 UpCloud Ltd
120[#] city: Badhoevedorp
121[#] country: Netherlands
122[#] countryCode: NL
123[#] isp: UpCloud Ltd
124[#] lat: 52.3388
125[#] lon: 4.7827
126[#] org: Upcloud NL Ams1
127[#] query: 94.237.46.132
128[#] region: NH
129[#] regionName: North Holland
130[#] status: success
131[#] timezone: Europe/Amsterdam
132[#] zip: 1171
133--------------------------------------------------
134[x] Didn't Detect WAF Presence on: https://lspixs.co/
135--------------------------------------------------
136[#] Starting Reverse DNS
137[-] Failed ! Fail
138--------------------------------------------------
139[!] Scanning Open Port
140[#] 22/tcp open ssh
141[#] 80/tcp open http
142[#] 443/tcp open https
143[#] 465/tcp open smtps
144[#] 587/tcp open submission
145--------------------------------------------------
146[+] Collecting Information Disclosure!
147[#] Detecting sitemap.xml file
148[!] sitemap.xml File Found: https://lspixs.co/sitemap_index.xml
149[#] Detecting robots.txt file
150[!] robots.txt File Found: https://lspixs.co//robots.txt
151[#] Detecting GNU Mailman
152[-] GNU Mailman App Not Detected!?
153--------------------------------------------------
154[+] Crawling Url Parameter On: https://lspixs.co/
155--------------------------------------------------
156[#] Searching Html Form !
157[+] Html Form Discovered
158[#] action: https://lspixs.co/
159[#] class: None
160[#] id: searchform
161[#] method: get
162--------------------------------------------------
163[!] Found 11 dom parameter
164[#] https://lspixs.co/private-amateur-photo-3040-r6833/#more-8090
165[#] https://lspixs.co/private-amateur-photo-3043-r6434/#more-8088
166[#] https://lspixs.co/private-amateur-photo-3045-r6435/#more-8086
167[#] https://lspixs.co/private-amateur-photo-3047-r6437/#more-8084
168[#] https://lspixs.co/private-amateur-photo-3048-r6842/#more-8082
169[#] https://lspixs.co/private-amateur-photo-3051-r6444/#more-8080
170[#] https://lspixs.co/private-amateur-photo-3052-r6845/#more-8078
171[#] https://lspixs.co/private-amateur-photo-3054-r6849/#more-8076
172[#] https://lspixs.co/private-amateur-photo-3056-r6850/#more-8074
173[#] https://lspixs.co/private-amateur-photo-3057-1-r6448/#more-8072
174[#] https://lspixs.co//#
175--------------------------------------------------
176[!] 1 Internal Dynamic Parameter Discovered
177[+] https://lspixs.co/xmlrpc.php?rsd
178--------------------------------------------------
179[!] 13 External Dynamic Parameter Discovered
180[#] http://jailbait.toplistcreator.eu/in.php?nr=14875
181[#] http://top.newmodim.com/cgi-bin/rankem.cgi?id=lspixs
182[#] http://free.top-dolls.net/cgi-bin/in.cgi?id=2106
183[#] http://top.top-dolls.net/cgi-bin/in.cgi?id=2114
184[#] http://www.little-cutie.org/cgi-bin/in.cgi?id=2500
185[#] http://free.xdcuties.com/cgi-bin/in.cgi?id=156
186[#] http://best.xdcuties.com/cgi-bin/in.cgi?id=159
187[#] http://www.models-list.org/cgi-bin/in.cgi?id=3356
188[#] http://nudedream.supertop-100.com/in.php?id=lspixs
189[#] http://top.modlinks.com/cgi-bin/rankem.cgi?id=lspixs
190[#] http://teenxporn.xxxtop.biz/index.php?u=lspixs
191[#] http://sgirls.hotdolls.info/cgi-bin/in.cgi?id=2332
192[#] http://angels.hotdolls.info/cgi-bin/in.cgi?id=3233
193--------------------------------------------------
194[!] 51 Internal links Discovered
195[+] https://lspixs.co/wp-content/themes/zbench/style.css
196[+] https://lspixs.co/xmlrpc.php
197[+] https://lspixs.co/
198[+] https://lspixs.co/page/2/
199[+] https://lspixs.co/feed/
200[+] https://lspixs.co/comments/feed/
201[+] https://lspixs.co/wp-includes/wlwmanifest.xml
202[+] https://lspixs.co///wp-content/uploads/fbrfg/apple-touch-icon.png
203[+] https://lspixs.co///wp-content/uploads/fbrfg/favicon-32x32.png
204[+] https://lspixs.co///wp-content/uploads/fbrfg/favicon-16x16.png
205[+] https://lspixs.co///wp-content/uploads/fbrfg/site.webmanifest
206[+] https://lspixs.co///wp-content/uploads/fbrfg/safari-pinned-tab.svg
207[+] https://lspixs.co///wp-content/uploads/fbrfg/favicon.ico
208[+] https://lspixs.co/
209[+] https://lspixs.co/
210[+] https://lspixs.co/private-amateur-photo-3040-r6833/
211[+] https://lspixs.co/author/lspixs/
212[+] https://lspixs.co/private-amateur-photo-3040-r6833/
213[+] https://lspixs.co/private-amateur-photo-3043-r6434/
214[+] https://lspixs.co/author/lspixs/
215[+] https://lspixs.co/private-amateur-photo-3043-r6434/
216[+] https://lspixs.co/private-amateur-photo-3045-r6435/
217[+] https://lspixs.co/author/lspixs/
218[+] https://lspixs.co/private-amateur-photo-3045-r6435/
219[+] https://lspixs.co/private-amateur-photo-3047-r6437/
220[+] https://lspixs.co/author/lspixs/
221[+] https://lspixs.co/private-amateur-photo-3047-r6437/
222[+] https://lspixs.co/private-amateur-photo-3048-r6842/
223[+] https://lspixs.co/author/lspixs/
224[+] https://lspixs.co/private-amateur-photo-3048-r6842/
225[+] https://lspixs.co/private-amateur-photo-3051-r6444/
226[+] https://lspixs.co/author/lspixs/
227[+] https://lspixs.co/private-amateur-photo-3051-r6444/
228[+] https://lspixs.co/private-amateur-photo-3052-r6845/
229[+] https://lspixs.co/author/lspixs/
230[+] https://lspixs.co/private-amateur-photo-3052-r6845/
231[+] https://lspixs.co/private-amateur-photo-3054-r6849/
232[+] https://lspixs.co/author/lspixs/
233[+] https://lspixs.co/private-amateur-photo-3054-r6849/
234[+] https://lspixs.co/private-amateur-photo-3056-r6850/
235[+] https://lspixs.co/author/lspixs/
236[+] https://lspixs.co/private-amateur-photo-3056-r6850/
237[+] https://lspixs.co/private-amateur-photo-3057-1-r6448/
238[+] https://lspixs.co/author/lspixs/
239[+] https://lspixs.co/private-amateur-photo-3057-1-r6448/
240[+] https://lspixs.co/page/2/
241[+] https://lspixs.co/feed/
242[+] https://lspixs.co/amateurs-picture/
243[+] https://lspixs.co/amateurs-video-clip/
244[+] https://lspixs.co/met-art/
245[+] https://lspixs.co/banner.html
246--------------------------------------------------
247[!] 19 External links Discovered
248[#] http://lslinks.pw
249[#] http://lslinks.pw
250[#] https://daofile.com/free34707.html
251[#] http://candylist.top
252[#] http://teenjb.com
253[#] https://ls-girls.biz/topsite/
254[#] http://realnudist.biz/
255[#] http://top.nydus.org/vote/4756/
256[#] http://8teenbay.net/
257[#] http://toplistx.com/in/114834
258[#] http://teenlist.top
259[#] http://loland.topz.mobi/in/90338
260[#] http://xfap.eu/
261[#] http://thenudism.co/
262[#] https://xxx.czin.eu/ins/1538198495.html
263[#] https://underground.click/
264[#] http://puss8.com
265[#] https://teenlist.xyz/top/
266[#] https://Modelsblog.biz
267--------------------------------------------------
268[#] Mapping Subdomain..
269[!] Found 2 Subdomain
270- lspixs.co
271- www.lspixs.co
272--------------------------------------------------
273[!] Done At 2019-09-24 23:53:40.677297
274#######################################################################################################################################
275[i] Scanning Site: https://lspixs.co
276
277
278
279B A S I C I N F O
280====================
281
282
283[+] Site Title: Amateur Teen Girls » Fresh and Young
284[+] IP address: 94.237.46.132
285[+] Web Server: nginx
286[+] CMS: WordPress
287[+] Cloudflare: Not Detected
288[+] Robots File: Found
289
290-------------[ contents ]----------------
291User-agent: *
292Disallow: /wp-admin/
293Disallow: /wp-includes/
294Disallow: /search?q=*
295Disallow: *?replytocom
296Disallow: */attachment/*
297Disallow: /images/
298
299Allow: /*.js$
300Allow: /*.css$
301Sitemap: http://lspixs.co/sitemap_index.xml
302-----------[end of contents]-------------
303
304
305
306
307
308G E O I P L O O K U P
309=========================
310
311[i] IP Address: 94.237.46.132
312[i] Country: Netherlands
313[i] State:
314[i] City:
315[i] Latitude: 52.3824
316[i] Longitude: 4.8995
317
318
319
320
321H T T P H E A D E R S
322=======================
323
324
325[i] HTTP/1.1 200 OK
326[i] Server: nginx
327[i] Date: Wed, 25 Sep 2019 03:24:27 GMT
328[i] Content-Type: text/html; charset=UTF-8
329[i] Connection: close
330[i] Vary: Accept-Encoding
331[i] X-UA-Compatible: IE=edge
332[i] Link: <https://lspixs.co/wp-json/>; rel="https://api.w.org/"
333[i] Strict-Transport-Security: max-age=31536000
334[i] X-Frame-Options: SAMEORIGIN
335[i] X-Content-Type-Options: nosniff
336[i] X-XSS-Protection: 1; mode=block
337
338
339
340
341D N S L O O K U P
342===================
343
344lspixs.co. 3788 IN HINFO "RFC8482" ""
345
346
347
348
349S U B N E T C A L C U L A T I O N
350====================================
351
352Address = 94.237.46.132
353Network = 94.237.46.132 / 32
354Netmask = 255.255.255.255
355Broadcast = not needed on Point-to-Point links
356Wildcard Mask = 0.0.0.0
357Hosts Bits = 0
358Max. Hosts = 1 (2^0 - 0)
359Host Range = { 94.237.46.132 - 94.237.46.132 }
360
361
362
363N M A P P O R T S C A N
364============================
365
366Starting Nmap 7.70 ( https://nmap.org ) at 2019-09-25 03:54 UTC
367Nmap scan report for lspixs.co (94.237.46.132)
368Host is up (0.079s latency).
369rDNS record for 94.237.46.132: 94-237-46-132.nl-ams1.upcloud.host
370
371PORT STATE SERVICE
37221/tcp closed ftp
37322/tcp open ssh
37423/tcp filtered telnet
37580/tcp open http
376110/tcp closed pop3
377143/tcp closed imap
378443/tcp open https
3793389/tcp filtered ms-wbt-server
380
381Nmap done: 1 IP address (1 host up) scanned in 1.57 seconds
382
383
384
385S U B - D O M A I N F I N D E R
386==================================
387
388
389[i] Total Subdomains Found : 1
390
391[+] Subdomain: www.lspixs.co
392[-] IP: 94.237.46.132
393#######################################################################################################################################
394Trying "lspixs.co"
395;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40595
396;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 2, ADDITIONAL: 4
397
398;; QUESTION SECTION:
399;lspixs.co. IN ANY
400
401;; ANSWER SECTION:
402lspixs.co. 3789 IN HINFO "RFC8482" ""
403lspixs.co. 3600 IN NS thomas.ns.cloudflare.com.
404lspixs.co. 3600 IN NS nola.ns.cloudflare.com.
405
406;; AUTHORITY SECTION:
407lspixs.co. 3600 IN NS thomas.ns.cloudflare.com.
408lspixs.co. 3600 IN NS nola.ns.cloudflare.com.
409
410;; ADDITIONAL SECTION:
411nola.ns.cloudflare.com. 7557 IN A 173.245.58.212
412nola.ns.cloudflare.com. 7557 IN AAAA 2400:cb00:2049:1::adf5:3ad4
413thomas.ns.cloudflare.com. 5370 IN A 173.245.59.238
414thomas.ns.cloudflare.com. 5370 IN AAAA 2400:cb00:2049:1::adf5:3bee
415
416Received 221 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 57 ms
417#######################################################################################################################################
418; <<>> DiG 9.11.5-P4-5.1+b1-Debian <<>> +trace lspixs.co
419;; global options: +cmd
420. 79941 IN NS h.root-servers.net.
421. 79941 IN NS g.root-servers.net.
422. 79941 IN NS k.root-servers.net.
423. 79941 IN NS b.root-servers.net.
424. 79941 IN NS i.root-servers.net.
425. 79941 IN NS e.root-servers.net.
426. 79941 IN NS c.root-servers.net.
427. 79941 IN NS f.root-servers.net.
428. 79941 IN NS l.root-servers.net.
429. 79941 IN NS a.root-servers.net.
430. 79941 IN NS j.root-servers.net.
431. 79941 IN NS m.root-servers.net.
432. 79941 IN NS d.root-servers.net.
433. 79941 IN RRSIG NS 8 0 518400 20191007170000 20190924160000 59944 . JvMELd+sXxwwKWGIGlGXVsSdAjRprDrFrY8QepdE0JDGDwgqKdmXBNJd vvI4Z6ktq64eFMHRyLbAuW/rf98Q1nraMloX2tcUk1Qd6J2smZNXIC3r ohDXt6UlQ+6MZJJNNBtY1ZaqozfZwFZqoRHrVDChEXb3mZcsf3SfRrLC hF5GopkA22FWWRlYOPAXnSYhEeiBPtaiERHaKaxDUbaLNoUDLXBoKHaz cRDzM7P76fu1XoqzrDsmBziZ/jE7+OBQSvBCPW5rhqmQ+mHfvggR93nn HHV1HJIhC9/dymAqKXjnQN7njaOP0Y5FWJxUYrlrK369+u1gGTm3Btn6 8EyIEA==
434;; Received 525 bytes from 185.93.180.131#53(185.93.180.131) in 109 ms
435
436co. 172800 IN NS ns1.cctld.co.
437co. 172800 IN NS ns2.cctld.co.
438co. 172800 IN NS ns3.cctld.co.
439co. 172800 IN NS ns4.cctld.co.
440co. 172800 IN NS ns5.cctld.co.
441co. 172800 IN NS ns6.cctld.co.
442co. 86400 IN DS 10384 8 1 DF157833AAD57F3561F3A47F178BA46E7E7183DC
443co. 86400 IN DS 10384 8 2 A76358B4C22E95C2C4A56DB8ADC923779E0829142D7C51B04E54769C 86407D70
444co. 86400 IN DS 21754 8 1 8B9B8FDA21B4CF6FC3E97A31FC0D77C1CB7E70EE
445co. 86400 IN DS 21754 8 2 C30634014C0752DA93B0633ED4CE641B63826A5DED820027F4117CA0 C32050A0
446co. 86400 IN RRSIG DS 8 1 86400 20191007170000 20190924160000 59944 . o5p4zwHZxo+M3hUVURp1Gc2R4M3/qiBs8EGaFndfBBkZB3/dw/3kRBrp 4aKC4E5ZvGXSZ0/oaZ33VA85aIi58l+AlzvK2z0FwC7p2LfHrTnZ1z8l Mj3qEGryS5gx22FZQst4heYbGTT74MuXEMcH22h7JieKGDRU094iYmAn 3UHRK5JaAeanp6CJoSgq++BJBery/27LcbWHa4tWsqwLRPWQ0auu5ng/ 9aOt/cczi9Z/Xe/rnnmzGe4fhTpCek9fTzfu35iCAaMSZu+mh3KJArMq jciPbiXDgS2KXZSPVZiNFQplf5VGUxdz0ZX6fC8PI+XljVF9p65Kz+g6 lrc4IQ==
447;; Received 871 bytes from 198.97.190.53#53(h.root-servers.net) in 205 ms
448
449lspixs.co. 3600 IN NS thomas.ns.cloudflare.com.
450lspixs.co. 3600 IN NS nola.ns.cloudflare.com.
451131vnuv1malje6dnud9fsaqdrqcs5i91.co. 86400 IN NSEC3 1 1 1 F873A2F5 133IIC1R9IQS3PLR1A4B5NK6NOKAE2F4 NS SOA RRSIG DNSKEY NSEC3PARAM
452131vnuv1malje6dnud9fsaqdrqcs5i91.co. 86400 IN RRSIG NSEC3 8 2 86400 20191018050958 20190918044920 63993 co. DUrSQUI/gxiIfuJK+rZv2hxWC4YOngMeeA2OzX38XfqlwyZU+91l5tTB dDaTXBwGtjmPpvM8NvLme68puddxcDtnhC/v/SFIf6ZCpNu/HCNFAvLO lDE4uyJHw0vqq7cQBvwJFwc08k6LFsSXVir2BF8uZmnwFe4eKs+6kz8a H5Hj1Yefm7UUtUi+xIQnJMSoyuDBPL1bfPFpONX+ydHAzg==
453sfaof5e87qljc211gu19463383srm7s3.co. 86400 IN NSEC3 1 1 1 F873A2F5 SFDSCU9ICLH6CCVQH5OND3I183N5A7SC NS DS RRSIG
454sfaof5e87qljc211gu19463383srm7s3.co. 86400 IN RRSIG NSEC3 8 2 86400 20191020234334 20190920230154 63993 co. R/i8/gLmXyHxh/9uxYBjfEbTUPQrArWan+zPbCGX6Zj4fWNlRS90uIz2 Cf/XctTtCALKs06P08RBqIlcSTpE4KtWRCvg8BlnkTerZBFvf03HhRjW DhQa//8SIooJB4woYzY1SMVUe6v/n/B/gpFd5/huXWWmHxBol1Bn+R6s K8F4eRDlyv8RLDIIZrjEPqS9nVXeTpOiuC+yBOHmOfHNuw==
455;; Received 678 bytes from 2610:a1:1010::21#53(ns4.cctld.co) in 37 ms
456
457lspixs.co. 300 IN A 94.237.46.132
458;; Received 54 bytes from 173.245.59.238#53(thomas.ns.cloudflare.com) in 118 ms
459
460#######################################################################################################################################
461[*] Performing General Enumeration of Domain: lspixs.co
462[-] DNSSEC is not configured for lspixs.co
463[*] SOA nola.ns.cloudflare.com 173.245.58.212
464[*] NS thomas.ns.cloudflare.com 173.245.59.238
465[*] Bind Version for 173.245.59.238 20171212
466[*] NS thomas.ns.cloudflare.com 2400:cb00:2049:1::adf5:3bee
467[*] Bind Version for 2400:cb00:2049:1::adf5:3bee 20171212
468[*] NS nola.ns.cloudflare.com 173.245.58.212
469[*] Bind Version for 173.245.58.212 20171212
470[*] NS nola.ns.cloudflare.com 2400:cb00:2049:1::adf5:3ad4
471[*] Bind Version for 2400:cb00:2049:1::adf5:3ad4 20171212
472[-] Could not Resolve MX Records for lspixs.co
473[*] A lspixs.co 94.237.46.132
474[*] Enumerating SRV Records
475[-] No SRV Records Found for lspixs.co
476[+] 0 Records Found
477#######################################################################################################################################
478[*] Processing domain lspixs.co
479[*] Using system resolvers ['185.93.180.131', '194.187.251.67', '38.132.106.139', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a', '2001:18c0:ffe0:2::2', '2001:18c0:ffe0:3::2', '2001:18c0:ffe0:1::2', '192.168.0.1']
480[+] Getting nameservers
481173.245.59.238 - thomas.ns.cloudflare.com
482173.245.58.212 - nola.ns.cloudflare.com
483[-] Zone transfer failed
484
485[*] Scanning lspixs.co for A records
48694.237.46.132 - lspixs.co
48794.237.46.132 - www.lspixs.co
488#######################################################################################################################################
489
490
491 AVAILABLE PLUGINS
492 -----------------
493
494 CertificateInfoPlugin
495 CompressionPlugin
496 RobotPlugin
497 OpenSslCipherSuitesPlugin
498 HeartbleedPlugin
499 SessionResumptionPlugin
500 EarlyDataPlugin
501 FallbackScsvPlugin
502 SessionRenegotiationPlugin
503 OpenSslCcsInjectionPlugin
504 HttpHeadersPlugin
505
506
507
508 CHECKING HOST(S) AVAILABILITY
509 -----------------------------
510
511 94.237.46.132:443 => 94.237.46.132
512
513
514
515
516 SCAN RESULTS FOR 94.237.46.132:443 - 94.237.46.132
517 --------------------------------------------------
518
519 * TLSV1_3 Cipher Suites:
520 Server rejected all cipher suites.
521
522 * Certificate Information:
523 Content
524 SHA1 Fingerprint: 67fc6ad223a7aafac3eb30d21c94588897f18d5d
525 Common Name: lspixs.co
526 Issuer: Let's Encrypt Authority X3
527 Serial Number: 276433599261137711753134698027969334975887
528 Not Before: 2019-08-15 18:27:11
529 Not After: 2019-11-13 18:27:11
530 Signature Algorithm: sha256
531 Public Key Algorithm: RSA
532 Key Size: 2048
533 Exponent: 65537 (0x10001)
534 DNS Subject Alternative Names: ['lspixs.co', 'www.lspixs.co']
535
536 Trust
537 Hostname Validation: FAILED - Certificate does NOT match 94.237.46.132
538 Android CA Store (9.0.0_r9): OK - Certificate is trusted
539 Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):OK - Certificate is trusted
540 Java CA Store (jdk-12.0.1): OK - Certificate is trusted
541 Mozilla CA Store (2019-03-14): OK - Certificate is trusted
542 Windows CA Store (2019-05-27): OK - Certificate is trusted
543 Symantec 2018 Deprecation: WARNING: Certificate distrusted by Google and Mozilla on September 2018
544 Received Chain: lspixs.co --> Let's Encrypt Authority X3
545 Verified Chain: lspixs.co --> Let's Encrypt Authority X3 --> DST Root CA X3
546 Received Chain Contains Anchor: OK - Anchor certificate not sent
547 Received Chain Order: OK - Order is valid
548 Verified Chain contains SHA1: OK - No SHA1-signed certificate in the verified certificate chain
549
550 Extensions
551 OCSP Must-Staple: NOT SUPPORTED - Extension not found
552 Certificate Transparency: WARNING - Only 2 SCTs included but Google recommends 3 or more
553
554 OCSP Stapling
555 NOT SUPPORTED - Server did not send back an OCSP response
556
557 * Deflate Compression:
558 OK - Compression disabled
559
560 * TLSV1_1 Cipher Suites:
561 Forward Secrecy OK - Supported
562 RC4 OK - Not Supported
563
564 Preferred:
565 None - Server followed client cipher suite preference.
566 Accepted:
567 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
568 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
569 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
570 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
571 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
572 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
573
574 * TLSV1_2 Cipher Suites:
575 Forward Secrecy OK - Supported
576 RC4 OK - Not Supported
577
578 Preferred:
579 None - Server followed client cipher suite preference.
580 Accepted:
581 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
582 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
583 TLS_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
584 TLS_RSA_WITH_AES_256_CBC_SHA256 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
585 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
586 TLS_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
587 TLS_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
588 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
589 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
590 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
591 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
592 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
593 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
594 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
595
596 * OpenSSL Heartbleed:
597 OK - Not vulnerable to Heartbleed
598
599 * Downgrade Attacks:
600 TLS_FALLBACK_SCSV: OK - Supported
601
602 * TLSV1 Cipher Suites:
603 Forward Secrecy OK - Supported
604 RC4 OK - Not Supported
605
606 Preferred:
607 None - Server followed client cipher suite preference.
608 Accepted:
609 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
610 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
611 TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
612 TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
613 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 301 Moved Permanently - https://lspixs.co/
614 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 301 Moved Permanently - https://lspixs.co/
615
616 * TLS 1.2 Session Resumption Support:
617 With Session IDs: NOT SUPPORTED (0 successful, 5 failed, 0 errors, 5 total attempts).
618 With TLS Tickets: OK - Supported
619
620 * Session Renegotiation:
621 Client-initiated Renegotiation: OK - Rejected
622 Secure Renegotiation: OK - Supported
623
624 * OpenSSL CCS Injection:
625 OK - Not vulnerable to OpenSSL CCS injection
626
627 * SSLV2 Cipher Suites:
628 Server rejected all cipher suites.
629
630 * SSLV3 Cipher Suites:
631 Server rejected all cipher suites.
632
633 * ROBOT Attack:
634 OK - Not vulnerable
635
636
637 SCAN COMPLETED IN 21.19 S
638 -------------------------
639#######################################################################################################################################
640Domains still to check: 1
641 Checking if the hostname lspixs.co. given is in fact a domain...
642
643Analyzing domain: lspixs.co.
644 Checking NameServers using system default resolver...
645 IP: 173.245.58.212 (United States)
646 HostName: nola.ns.cloudflare.com Type: NS
647 HostName: nola.ns.cloudflare.com Type: PTR
648 IP: 173.245.59.238 (United States)
649 HostName: thomas.ns.cloudflare.com Type: NS
650 HostName: thomas.ns.cloudflare.com Type: PTR
651
652 Checking MailServers using system default resolver...
653 WARNING!! There are no MX records for this domain
654
655 Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
656 No zone transfer found on nameserver 173.245.58.212
657 No zone transfer found on nameserver 173.245.59.238
658
659 Checking SPF record...
660 No SPF record
661
662 Checking 192 most common hostnames using system default resolver...
663 IP: 94.237.46.132 (Netherlands)
664 HostName: www.lspixs.co. Type: A
665
666 Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
667 Checking netblock 173.245.58.0
668 Checking netblock 173.245.59.0
669 Checking netblock 94.237.46.0
670
671 Searching for lspixs.co. emails in Google
672
673 Checking 3 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
674 Host 173.245.58.212 is up (echo-reply ttl 58)
675 Host 173.245.59.238 is up (reset ttl 64)
676 Host 94.237.46.132 is up (reset ttl 64)
677
678 Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
679 Scanning ip 173.245.58.212 (nola.ns.cloudflare.com (PTR)):
680 Scanning ip 173.245.59.238 (thomas.ns.cloudflare.com (PTR)):
681 53/tcp open domain syn-ack ttl 58 (unknown banner: 20171212)
682 | dns-nsid:
683 | NSID: 75m43 (37356d3433)
684 | id.server: HAM
685 |_ bind.version: 20171212
686 | fingerprint-strings:
687 | DNSVersionBindReqTCP:
688 | version
689 | bind
690 |_ 20171212
691 Scanning ip 94.237.46.132 (www.lspixs.co.):
692 WebCrawling domain's web servers... up to 50 max links.
693--Finished--
694Summary information for domain lspixs.co.
695-----------------------------------------
696
697 Domain Ips Information:
698 IP: 173.245.58.212
699 HostName: nola.ns.cloudflare.com Type: NS
700 HostName: nola.ns.cloudflare.com Type: PTR
701 Country: United States
702 Is Active: True (echo-reply ttl 58)
703 IP: 173.245.59.238
704 HostName: thomas.ns.cloudflare.com Type: NS
705 HostName: thomas.ns.cloudflare.com Type: PTR
706 Country: United States
707 Is Active: True (reset ttl 64)
708 Port: 53/tcp open domain syn-ack ttl 58 (unknown banner: 20171212)
709 Script Info: | dns-nsid:
710 Script Info: | NSID: 75m43 (37356d3433)
711 Script Info: | id.server: HAM
712 Script Info: |_ bind.version: 20171212
713 Script Info: | fingerprint-strings:
714 Script Info: | DNSVersionBindReqTCP:
715 Script Info: | version
716 Script Info: | bind
717 Script Info: |_ 20171212
718 IP: 94.237.46.132
719 HostName: www.lspixs.co. Type: A
720 Country: Netherlands
721 Is Active: True (reset ttl 64)
722######################################################################################################################################
723+] URL: https://lspixs.co/
724[+] Started: Tue Sep 24 23:44:38 2019
725
726Interesting Finding(s):
727
728[+] https://lspixs.co/
729 | Interesting Entries:
730 | - server: nginx
731 | - x-ua-compatible: IE=edge
732 | Found By: Headers (Passive Detection)
733 | Confidence: 100%
734
735[+] https://lspixs.co/robots.txt
736 | Found By: Robots Txt (Aggressive Detection)
737 | Confidence: 100%
738
739[+] https://lspixs.co/xmlrpc.php
740 | Found By: Link Tag (Passive Detection)
741 | Confidence: 100%
742 | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
743 | References:
744 | - http://codex.wordpress.org/XML-RPC_Pingback_API
745 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
746 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
747 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
748 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
749
750[+] https://lspixs.co/readme.html
751 | Found By: Direct Access (Aggressive Detection)
752 | Confidence: 100%
753
754[+] https://lspixs.co/wp-cron.php
755 | Found By: Direct Access (Aggressive Detection)
756 | Confidence: 60%
757 | References:
758 | - https://www.iplocation.net/defend-wordpress-from-ddos
759 | - https://github.com/wpscanteam/wpscan/issues/1299
760
761[+] WordPress version 4.9.11 identified (Latest, released on 2019-09-05).
762 | Detected By: Rss Generator (Passive Detection)
763 | - https://lspixs.co/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
764 | - https://lspixs.co/comments/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
765
766[+] WordPress theme in use: zbench
767 | Location: https://lspixs.co/wp-content/themes/zbench/
768 | Latest Version: 1.4.2 (up to date)
769 | Last Updated: 2014-09-23T00:00:00.000Z
770 | Readme: https://lspixs.co/wp-content/themes/zbench/readme.txt
771 | Style URL: https://lspixs.co/wp-content/themes/zbench/style.css
772 | Style Name: zBench
773 | Style URI: http://zww.me/archives/25131
774 | Description: It is a simple WordPress theme without any plugin needed (support plugin WP-PageNavi, WP Page Number...
775 | Author: zwwooooo
776 | Author URI: http://zww.me/
777 |
778 | Detected By: Css Style (Passive Detection)
779 | Confirmed By: Urls In Homepage (Passive Detection)
780 |
781 | Version: 1.4.2 (80% confidence)
782 | Detected By: Style (Passive Detection)
783 | - https://lspixs.co/wp-content/themes/zbench/style.css, Match: 'Version:1.4.2'
784
785[+] Enumerating All Plugins (via Passive Methods)
786[+] Checking Plugin Versions (via Passive and Aggressive Methods)
787
788[i] Plugin(s) Identified:
789
790[+] shareaholic
791 | Location: https://lspixs.co/wp-content/plugins/shareaholic/
792 | Last Updated: 2019-09-19T21:57:00.000Z
793 | [!] The version is out of date, the latest version is 8.13.10
794 |
795 | Detected By: Meta Tag (Passive Detection)
796 |
797 | Version: 8.13.6 (100% confidence)
798 | Detected By: Meta Tag (Passive Detection)
799 | - https://lspixs.co/, Match: '8.13.6'
800 | Confirmed By:
801 | Readme - Stable Tag (Aggressive Detection)
802 | - https://lspixs.co/wp-content/plugins/shareaholic/readme.txt
803 | Readme - ChangeLog Section (Aggressive Detection)
804 | - https://lspixs.co/wp-content/plugins/shareaholic/readme.txt
805
806[+] wordpress-seo
807 | Location: https://lspixs.co/wp-content/plugins/wordpress-seo/
808 | Last Updated: 2019-09-17T09:09:00.000Z
809 | [!] The version is out of date, the latest version is 12.1
810 |
811 | Detected By: Comment (Passive Detection)
812 |
813 | Version: 11.9 (100% confidence)
814 | Detected By: Comment (Passive Detection)
815 | - https://lspixs.co/, Match: 'optimized with the Yoast SEO plugin v11.9 -'
816 | Confirmed By:
817 | Readme - Stable Tag (Aggressive Detection)
818 | - https://lspixs.co/wp-content/plugins/wordpress-seo/readme.txt
819 | Readme - ChangeLog Section (Aggressive Detection)
820 | - https://lspixs.co/wp-content/plugins/wordpress-seo/readme.txt
821
822[+] Enumerating Config Backups (via Passive and Aggressive Methods)
823 Checking Config Backups - Time: 00:00:02 <=============> (21 / 21) 100.00% Time: 00:00:02
824
825[i] No Config Backups Found.
826
827[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
828[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/register.
829
830[+] Finished: Tue Sep 24 23:45:04 2019
831[+] Requests Done: 64
832[+] Cached Requests: 7
833[+] Data Sent: 12.695 KB
834[+] Data Received: 10.966 MB
835[+] Memory used: 144.824 MB
836[+] Elapsed time: 00:00:26
837#######################################################################################################################################
838
839[+] URL: https://lspixs.co/
840[+] Started: Tue Sep 24 23:44:43 2019
841
842Interesting Finding(s):
843
844[+] https://lspixs.co/
845 | Interesting Entries:
846 | - server: nginx
847 | - x-ua-compatible: IE=edge
848 | Found By: Headers (Passive Detection)
849 | Confidence: 100%
850
851[+] https://lspixs.co/robots.txt
852 | Found By: Robots Txt (Aggressive Detection)
853 | Confidence: 100%
854
855[+] https://lspixs.co/xmlrpc.php
856 | Found By: Link Tag (Passive Detection)
857 | Confidence: 100%
858 | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
859 | References:
860 | - http://codex.wordpress.org/XML-RPC_Pingback_API
861 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
862 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
863 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
864 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
865
866[+] https://lspixs.co/readme.html
867 | Found By: Direct Access (Aggressive Detection)
868 | Confidence: 100%
869
870[+] https://lspixs.co/wp-cron.php
871 | Found By: Direct Access (Aggressive Detection)
872 | Confidence: 60%
873 | References:
874 | - https://www.iplocation.net/defend-wordpress-from-ddos
875 | - https://github.com/wpscanteam/wpscan/issues/1299
876
877[+] WordPress version 4.9.11 identified (Latest, released on 2019-09-05).
878 | Detected By: Rss Generator (Passive Detection)
879 | - https://lspixs.co/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
880 | - https://lspixs.co/comments/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
881
882[+] WordPress theme in use: zbench
883 | Location: https://lspixs.co/wp-content/themes/zbench/
884 | Latest Version: 1.4.2 (up to date)
885 | Last Updated: 2014-09-23T00:00:00.000Z
886 | Readme: https://lspixs.co/wp-content/themes/zbench/readme.txt
887 | Style URL: https://lspixs.co/wp-content/themes/zbench/style.css
888 | Style Name: zBench
889 | Style URI: http://zww.me/archives/25131
890 | Description: It is a simple WordPress theme without any plugin needed (support plugin WP-PageNavi, WP Page Number...
891 | Author: zwwooooo
892 | Author URI: http://zww.me/
893 |
894 | Detected By: Css Style (Passive Detection)
895 | Confirmed By: Urls In Homepage (Passive Detection)
896 |
897 | Version: 1.4.2 (80% confidence)
898 | Detected By: Style (Passive Detection)
899 | - https://lspixs.co/wp-content/themes/zbench/style.css, Match: 'Version:1.4.2'
900
901[+] Enumerating Users (via Passive and Aggressive Methods)
902 Brute Forcing Author IDs - Time: 00:00:06 <==> (10 / 10) 100.00% Time: 00:00:06
903
904[i] User(s) Identified:
905
906[+] lspixs
907 | Detected By: Author Posts - Author Pattern (Passive Detection)
908 | Confirmed By:
909 | Rss Generator (Passive Detection)
910 | Wp Json Api (Aggressive Detection)
911 | - https://lspixs.co/wp-json/wp/v2/users/?per_page=100&page=1
912 | Rss Generator (Aggressive Detection)
913 | Yoast Seo Author Sitemap (Aggressive Detection)
914 | - https://lspixs.co/author-sitemap.xml
915 | Author Id Brute Forcing - Author Pattern (Aggressive Detection)
916 | Login Error Messages (Aggressive Detection)
917
918[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
919[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/register.
920
921[+] Finished: Tue Sep 24 23:45:09 2019
922[+] Requests Done: 27
923[+] Cached Requests: 28
924[+] Data Sent: 6.221 KB
925[+] Data Received: 193.555 KB
926[+] Memory used: 126.574 MB
927[+] Elapsed time: 00:00:26
928#######################################################################################################################################
929[+] URL: https://lspixs.co/
930[+] Started: Tue Sep 24 23:49:48 2019
931
932Interesting Finding(s):
933
934[+] https://lspixs.co/
935 | Interesting Entries:
936 | - server: nginx
937 | - x-ua-compatible: IE=edge
938 | Found By: Headers (Passive Detection)
939 | Confidence: 100%
940
941[+] https://lspixs.co/robots.txt
942 | Found By: Robots Txt (Aggressive Detection)
943 | Confidence: 100%
944
945[+] https://lspixs.co/xmlrpc.php
946 | Found By: Link Tag (Passive Detection)
947 | Confidence: 100%
948 | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
949 | References:
950 | - http://codex.wordpress.org/XML-RPC_Pingback_API
951 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
952 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
953 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
954 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
955
956[+] https://lspixs.co/readme.html
957 | Found By: Direct Access (Aggressive Detection)
958 | Confidence: 100%
959
960[+] https://lspixs.co/wp-cron.php
961 | Found By: Direct Access (Aggressive Detection)
962 | Confidence: 60%
963 | References:
964 | - https://www.iplocation.net/defend-wordpress-from-ddos
965 | - https://github.com/wpscanteam/wpscan/issues/1299
966
967[+] WordPress version 4.9.11 identified (Latest, released on 2019-09-05).
968 | Detected By: Rss Generator (Passive Detection)
969 | - https://lspixs.co/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
970 | - https://lspixs.co/comments/feed/, <generator>https://wordpress.org/?v=4.9.11</generator>
971
972[+] WordPress theme in use: zbench
973 | Location: https://lspixs.co/wp-content/themes/zbench/
974 | Latest Version: 1.4.2 (up to date)
975 | Last Updated: 2014-09-23T00:00:00.000Z
976 | Readme: https://lspixs.co/wp-content/themes/zbench/readme.txt
977 | Style URL: https://lspixs.co/wp-content/themes/zbench/style.css
978 | Style Name: zBench
979 | Style URI: http://zww.me/archives/25131
980 | Description: It is a simple WordPress theme without any plugin needed (support plugin WP-PageNavi, WP Page Number...
981 | Author: zwwooooo
982 | Author URI: http://zww.me/
983 |
984 | Detected By: Css Style (Passive Detection)
985 | Confirmed By: Urls In Homepage (Passive Detection)
986 |
987 | Version: 1.4.2 (80% confidence)
988 | Detected By: Style (Passive Detection)
989 | - https://lspixs.co/wp-content/themes/zbench/style.css, Match: 'Version:1.4.2'
990
991[+] Enumerating Users (via Passive and Aggressive Methods)
992 Brute Forcing Author IDs - Time: 00:00:04 <============> (10 / 10) 100.00% Time: 00:00:04
993
994[i] User(s) Identified:
995
996[+] lspixs
997 | Detected By: Author Posts - Author Pattern (Passive Detection)
998 | Confirmed By:
999 | Rss Generator (Passive Detection)
1000 | Wp Json Api (Aggressive Detection)
1001 | - https://lspixs.co/wp-json/wp/v2/users/?per_page=100&page=1
1002 | Rss Generator (Aggressive Detection)
1003 | Yoast Seo Author Sitemap (Aggressive Detection)
1004 | - https://lspixs.co/author-sitemap.xml
1005 | Author Id Brute Forcing - Author Pattern (Aggressive Detection)
1006 | Login Error Messages (Aggressive Detection)
1007
1008[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
1009[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/register.
1010
1011[+] Finished: Tue Sep 24 23:49:57 2019
1012[+] Requests Done: 14
1013[+] Cached Requests: 41
1014[+] Data Sent: 3.014 KB
1015[+] Data Received: 48.159 KB
1016[+] Memory used: 126.973 MB
1017[+] Elapsed time: 00:00:09
1018#######################################################################################################################################
1019[INFO] ------TARGET info------
1020[*] TARGET: https://lspixs.co/
1021[*] TARGET IP: 94.237.46.132
1022[INFO] NO load balancer detected for lspixs.co...
1023[*] DNS servers: nola.ns.cloudflare.com.
1024[*] TARGET server: nginx
1025[*] CC: NL
1026[*] Country: Netherlands
1027[*] RegionCode: NH
1028[*] RegionName: North Holland
1029[*] City: Badhoevedorp
1030[*] ASN: AS202053
1031[*] BGP_PREFIX: 94.237.40.0/21
1032[*] ISP: UPCLOUD UpCloud Ltd, FI
1033[INFO] SSL/HTTPS certificate detected
1034[*] Issuer: issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
1035[*] Subject: subject=CN = lspixs.co
1036[ALERT] Let's Encrypt is commonly used for Phishing
1037[INFO] DNS enumeration:
1038[INFO] Possible abuse mails are:
1039[*] abuse@lspixs.co
1040[*] abuse@upcloud.com
1041[INFO] NO PAC (Proxy Auto Configuration) file FOUND
1042[ALERT] robots.txt file FOUND in http://lspixs.co/robots.txt
1043[INFO] Checking for HTTP status codes recursively from http://lspixs.co/robots.txt
1044[INFO] Status code Folders
1045[INFO] Starting FUZZing in http://lspixs.co/FUzZzZzZzZz...
1046[INFO] Status code Folders
1047[ALERT] Look in the source code. It may contain passwords
1048[INFO] Links found from https://lspixs.co/ http://94.237.46.132/:
1049[*] http://8teenbay.net/
1050[*] http://94.237.46.132/
1051[*] http://angels.hotdolls.info/cgi-bin/in.cgi?id=3233
1052[*] http://best.xdcuties.com/cgi-bin/in.cgi?id=159
1053[*] http://candylist.top/
1054[*] http://free.top-dolls.net/cgi-bin/in.cgi?id=2106
1055[*] http://free.xdcuties.com/cgi-bin/in.cgi?id=156
1056[*] http://jailbait.toplistcreator.eu/in.php?nr=14875
1057[*] http://loland.topz.mobi/in/90338
1058[*] http://lslinks.pw/
1059[*] http://lspixs.co/
1060[*] http://lspixs.co/amateurs-picture/
1061[*] http://lspixs.co/amateurs-video-clip/
1062[*] http://lspixs.co/author/lspixs/
1063[*] http://lspixs.co/banner.html
1064[*] http://lspixs.co/comments/feed/
1065[*] http://lspixs.co/feed/
1066[*] http://lspixs.co/met-art/
1067[*] http://lspixs.co/page/2/
1068[*] http://lspixs.co/private-amateur-photo-3040-r6833/
1069[*] http://lspixs.co/private-amateur-photo-3040-r6833/#more-8090
1070[*] http://lspixs.co/private-amateur-photo-3043-r6434/
1071[*] http://lspixs.co/private-amateur-photo-3043-r6434/#more-8088
1072[*] http://lspixs.co/private-amateur-photo-3045-r6435/
1073[*] http://lspixs.co/private-amateur-photo-3045-r6435/#more-8086
1074[*] http://lspixs.co/private-amateur-photo-3047-r6437/
1075[*] http://lspixs.co/private-amateur-photo-3047-r6437/#more-8084
1076[*] http://lspixs.co/private-amateur-photo-3048-r6842/
1077[*] http://lspixs.co/private-amateur-photo-3048-r6842/#more-8082
1078[*] http://lspixs.co/private-amateur-photo-3051-r6444/
1079[*] http://lspixs.co/private-amateur-photo-3051-r6444/#more-8080
1080[*] http://lspixs.co/private-amateur-photo-3052-r6845/
1081[*] http://lspixs.co/private-amateur-photo-3052-r6845/#more-8078
1082[*] http://lspixs.co/private-amateur-photo-3054-r6849/
1083[*] http://lspixs.co/private-amateur-photo-3054-r6849/#more-8076
1084[*] http://lspixs.co/private-amateur-photo-3056-r6850/
1085[*] http://lspixs.co/private-amateur-photo-3056-r6850/#more-8074
1086[*] http://lspixs.co/private-amateur-photo-3057-1-r6448/
1087[*] http://lspixs.co/private-amateur-photo-3057-1-r6448/#more-8072
1088[*] http://nudedream.supertop-100.com/in.php?id=lspixs
1089[*] http://puss8.com/
1090[*] http://realnudist.biz/
1091[*] https://daofile.com/free34707.html
1092[*] http://sgirls.hotdolls.info/cgi-bin/in.cgi?id=2332
1093[*] https://ls-girls.biz/topsite/
1094[*] https://lspixs.co/
1095[*] https://lspixs.co/amateurs-picture/
1096[*] https://lspixs.co/amateurs-video-clip/
1097[*] https://lspixs.co/author/lspixs/
1098[*] https://lspixs.co/banner.html
1099[*] https://lspixs.co/comments/feed/
1100[*] https://lspixs.co/feed/
1101[*] https://lspixs.co/met-art/
1102[*] https://lspixs.co/page/2/
1103[*] https://lspixs.co/private-amateur-photo-3040-r6833/
1104[*] https://lspixs.co/private-amateur-photo-3040-r6833/#more-8090
1105[*] https://lspixs.co/private-amateur-photo-3043-r6434/
1106[*] https://lspixs.co/private-amateur-photo-3043-r6434/#more-8088
1107[*] https://lspixs.co/private-amateur-photo-3045-r6435/
1108[*] https://lspixs.co/private-amateur-photo-3045-r6435/#more-8086
1109[*] https://lspixs.co/private-amateur-photo-3047-r6437/
1110[*] https://lspixs.co/private-amateur-photo-3047-r6437/#more-8084
1111[*] https://lspixs.co/private-amateur-photo-3048-r6842/
1112[*] https://lspixs.co/private-amateur-photo-3048-r6842/#more-8082
1113[*] https://lspixs.co/private-amateur-photo-3051-r6444/
1114[*] https://lspixs.co/private-amateur-photo-3051-r6444/#more-8080
1115[*] https://lspixs.co/private-amateur-photo-3052-r6845/
1116[*] https://lspixs.co/private-amateur-photo-3052-r6845/#more-8078
1117[*] https://lspixs.co/private-amateur-photo-3054-r6849/
1118[*] https://lspixs.co/private-amateur-photo-3054-r6849/#more-8076
1119[*] https://lspixs.co/private-amateur-photo-3056-r6850/
1120[*] https://lspixs.co/private-amateur-photo-3056-r6850/#more-8074
1121[*] https://lspixs.co/private-amateur-photo-3057-1-r6448/
1122[*] https://lspixs.co/private-amateur-photo-3057-1-r6448/#more-8072
1123[*] https://Modelsblog.biz/
1124[*] https://teenlist.xyz/top/
1125[*] https://underground.click/
1126[*] https://xxx.czin.eu/ins/1538198495.html
1127[*] http://teenjb.com/
1128[*] http://teenlist.top/
1129[*] http://teenxporn.xxxtop.biz/index.php?u=lspixs
1130[*] http://thenudism.co/
1131[*] http://toplistx.com/in/114834
1132[*] http://top.modlinks.com/cgi-bin/rankem.cgi?id=lspixs
1133[*] http://top.newmodim.com/cgi-bin/rankem.cgi?id=lspixs
1134[*] http://top.nydus.org/vote/4756/
1135[*] http://top.top-dolls.net/cgi-bin/in.cgi?id=2114
1136[*] http://www.little-cutie.org/cgi-bin/in.cgi?id=2500
1137[*] http://www.models-list.org/cgi-bin/in.cgi?id=3356
1138[*] http://xfap.eu/
1139[INFO] GOOGLE has 41,300 results (0.29 seconds) about http://lspixs.co/
1140[INFO] Shodan detected the following opened ports on 94.237.46.132:
1141[*] 22
1142[*] 25
1143[*] 443
1144[*] 465
1145[*] 587
1146[*] 80
1147[INFO] ------VirusTotal SECTION------
1148[INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
1149[INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
1150[INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
1151[INFO] ------Alexa Rank SECTION------
1152[INFO] Percent of Visitors Rank in Country:
1153[INFO] Percent of Search Traffic:
1154[INFO] Percent of Unique Visits:
1155[INFO] Total Sites Linking In:
1156[*] Total Sites
1157[INFO] Useful links related to lspixs.co - 94.237.46.132:
1158[*] https://www.virustotal.com/pt/ip-address/94.237.46.132/information/
1159[*] https://www.hybrid-analysis.com/search?host=94.237.46.132
1160[*] https://www.shodan.io/host/94.237.46.132
1161[*] https://www.senderbase.org/lookup/?search_string=94.237.46.132
1162[*] https://www.alienvault.com/open-threat-exchange/ip/94.237.46.132
1163[*] http://pastebin.com/search?q=94.237.46.132
1164[*] http://urlquery.net/search.php?q=94.237.46.132
1165[*] http://www.alexa.com/siteinfo/lspixs.co
1166[*] http://www.google.com/safebrowsing/diagnostic?site=lspixs.co
1167[*] https://censys.io/ipv4/94.237.46.132
1168[*] https://www.abuseipdb.com/check/94.237.46.132
1169[*] https://urlscan.io/search/#94.237.46.132
1170[*] https://github.com/search?q=94.237.46.132&type=Code
1171[INFO] Useful links related to AS202053 - 94.237.40.0/21:
1172[*] http://www.google.com/safebrowsing/diagnostic?site=AS:202053
1173[*] https://www.senderbase.org/lookup/?search_string=94.237.40.0/21
1174[*] http://bgp.he.net/AS202053
1175[*] https://stat.ripe.net/AS202053
1176[INFO] Date: 24/09/19 | Time: 23:50:43
1177[INFO] Total time: 1 minute(s) and 47 second(s)
1178#######################################################################################################################################
1179[-] Date & Time: 24/09/2019 23:44:47
1180[I] Threads: 5
1181[-] Target: https://lspixs.co (94.237.46.132)
1182[I] Server: nginx
1183[L] X-Frame-Options: Not Enforced
1184[I] X-Content-Security-Policy: Not Enforced
1185[L] Robots.txt Found: https://lspixs.co/robots.txt
1186[I] CMS Detection: WordPress
1187[I] Wordpress Version: 4.9.11
1188[M] EDB-ID: 47361 "WordPress 5.2.3 - Cross-Site Host Modification"
1189[M] EDB-ID: 46460-wordpress-5
1190[M] EDB-ID: 46511 "WordPress Core 5.0 - Remote Code Execution"
1191[M] EDB-ID: 46662 "WordPress 5.0.0 - Crop-image Shell Upload (Metasploit)"
1192[I] Wordpress Theme: zbench
1193[-] WordPress usernames identified:
1194[M] lspixs
1195[M] XML-RPC services are enabled
1196[M] Website vulnerable to XML-RPC Brute Force Vulnerability
1197[I] Forgotten Password Allows Username Enumeration: https://lspixs.co/wp-login.php?action=lostpassword
1198[I] Autocomplete Off Not Found: https://lspixs.co/wp-login.php
1199[-] Default WordPress Files:
1200[I] https://lspixs.co/license.txt
1201[I] https://lspixs.co/readme.html
1202[I] https://lspixs.co/wp-content/themes/twentyfifteen/genericons/COPYING.txt
1203[I] https://lspixs.co/wp-content/themes/twentyfifteen/genericons/LICENSE.txt
1204[I] https://lspixs.co/wp-content/themes/twentyfifteen/readme.txt
1205[I] https://lspixs.co/wp-content/themes/twentyseventeen/README.txt
1206[I] https://lspixs.co/wp-content/themes/twentysixteen/genericons/COPYING.txt
1207[I] https://lspixs.co/wp-content/themes/twentysixteen/genericons/LICENSE.txt
1208[I] https://lspixs.co/wp-content/themes/twentysixteen/readme.txt
1209[I] https://lspixs.co/wp-includes/ID3/license.commercial.txt
1210[I] https://lspixs.co/wp-includes/ID3/license.txt
1211[I] https://lspixs.co/wp-includes/ID3/readme.txt
1212[I] https://lspixs.co/wp-includes/images/crystal/license.txt
1213[I] https://lspixs.co/wp-includes/js/plupload/license.txt
1214[I] https://lspixs.co/wp-includes/js/swfupload/license.txt
1215[I] https://lspixs.co/wp-includes/js/tinymce/license.txt
1216[-] Searching Wordpress Plugins ...
1217[I] akismet v4.1.2
1218[M] EDB-ID: 37826 "WordPress 3.4.2 - Multiple Path Disclosure Vulnerabilities"
1219[M] EDB-ID: 37902 "WordPress Plugin Akismet - Multiple Cross-Site Scripting Vulnerabilities"
1220[I] Checking for Directory Listing Enabled ...
1221[-] Date & Time: 24/09/2019 23:54:59
1222[-] Completed in: 0:10:11
1223#######################################################################################################################################
1224 Anonymous JTSEC #OpDeathEathers Full Recon #3