INFORMATION GATHERING

The information gathering of IS2C-dojo.net

 The active Information Gathering

root@BT:~# nmap -v -A 209.85.175.121

Starting Nmap 5.61TEST4 ( http://nmap.org ) at 2012-01-25 23:58 WIT

NSE: Loaded 87 scripts for scanning.

NSE: Script Pre-scanning.

Initiating Ping Scan at 23:58

Scanning 209.85.175.121 [4 ports]

Completed Ping Scan at 23:58, 0.10s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 23:58

Completed Parallel DNS resolution of 1 host. at 23:58, 0.00s elapsed

Initiating SYN Stealth Scan at 23:58

Scanning nx-in-f121.1e100.net (209.85.175.121) [1000 ports]

Discovered open port 53/tcp on 209.85.175.121

Discovered open port 80/tcp on 209.85.175.121

Completed SYN Stealth Scan at 23:59, 15.28s elapsed (1000 total ports)

Initiating Service scan at 23:59

Scanning 2 services on nx-in-f121.1e100.net (209.85.175.121)

Completed Service scan at 23:59, 32.73s elapsed (2 services on 1 host)

Initiating OS detection (try #1) against nx-in-f121.1e100.net (209.85.175.121)

Retrying OS detection (try #2) against nx-in-f121.1e100.net (209.85.175.121)

Initiating Traceroute at 23:59

Completed Traceroute at 23:59, 0.18s elapsed

Initiating Parallel DNS resolution of 14 hosts. at 23:59

Completed Parallel DNS resolution of 14 hosts. at 23:59, 10.04s elapsed

NSE: Script scanning 209.85.175.121.

Initiating NSE at 23:59

Completed NSE at 23:59, 5.95s elapsed

Nmap scan report for nx-in-f121.1e100.net (209.85.175.121)

Host is up (0.031s latency).

Not shown: 997 filtered ports

PORT    STATE  SERVICE    VERSION

53/tcp  open   domain     Mikrotik RouterOS named or OpenDNS Updater

80/tcp  open   http-proxy Squid webproxy 2.7.STABLE9

|_http-methods: No Allow or Public header in OPTIONS response (status code 404)

| http-open-proxy: Potentially OPEN proxy.

|_Methods supported:  GET HEAD CONNECTION

113/tcp closed ident

Device type: general purpose|WAP|remote management|broadband router|printer|phone

Running (JUST GUESSING): Linux 2.6.X|2.4.X (96%), Netgear embedded (90%), Dell embedded (90%), Linksys Linux 2.4.X (90%), Billion embedded (88%), Epson embedded (88%)

OS CPE: cpe:/o:linux:kernel:2.6 cpe:/o:linux:kernel:2.4.7 cpe:/o:linksys:linux:2.4 cpe:/o:linux:kernel:2.4 cpe:/o:linux:kernel:2.6.22 cpe:/o:linux:kernel:2.6.24

Aggressive OS guesses: Linux 2.6.15 - 2.6.30 (96%), Linux 2.4.7 (92%), Linux 2.6.9 - 2.6.27 (92%), Linux 2.6.18-8.el5 (Red Hat Enterprise Linux 5) (92%), Linux 2.6.21 (Arch Linux 0.8, x86) (92%), Linux 2.6.8 - 2.6.27 (92%), Linux 2.6.18 (ClarkConnect 4.3 Enterprise Edition) (91%), Linux 2.6.23 (91%), Linux 2.4.21 - 2.4.31 (likely embedded) (91%), Linux 2.6.15 - 2.6.23 (embedded) (91%)

No exact OS matches for host (test conditions non-ideal).

Uptime guess: 62.975 days (since Thu Nov 24 00:36:04 2011)

Network Distance: 14 hops

TCP Sequence Prediction: Difficulty=204 (Good luck!)

IP ID Sequence Generation: All zeros

TRACEROUTE (using port 113/tcp)

HOP RTT       ADDRESS

1   3.60 ms   hotspot.sejahtera.net (118.96.157.1)

2   3.67 ms   119.235.28.158

3   3.71 ms   host1.subnet128.comnet.net.id (202.150.128.1)

4   3.74 ms   host1.subnet129.comnet.net.id (202.150.129.1)

5   46.25 ms  118.96.148.1

6   46.19 ms  181.subnet125-160-15.infra.telkom.net.id (125.160.15.181)

7   73.92 ms  17.subnet118-98-57.astinet.telkom.net.id (118.98.57.17)

8   75.12 ms  118.98.15.29

9   71.48 ms  181.subnet118-98-57.astinet.telkom.net.id (118.98.57.181)

10  71.75 ms  37.subnet118-98-56.astinet.telkom.net.id (118.98.56.37)

11  71.78 ms  6.subnet118-98-59.astinet.telkom.net.id (118.98.59.6)

12  69.79 ms  42.subnet118-98-59.astinet.telkom.net.id (118.98.59.42)

13  164.57 ms 180.240.190.13

14  71.98 ms  nx-in-f121.1e100.net (209.85.175.121)

NSE: Script Post-scanning.

Read data files from: /usr/local/bin/../share/nmap

OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .

Nmap done: 1 IP address (1 host up) scanned in 69.46 seconds

           Raw packets sent: 3091 (140.024KB) | Rcvd: 56 (3.148KB)

Passive Information Gathering

root@BT:~# whois is2c-dojo.net

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered

with many different competing registrars. Go to http://www.internic.net

for detailed information.

   Domain Name: IS2C-DOJO.NET

   Registrar: CV. JOGJACAMP

   Whois Server: whois.resellercamp.com

   Referral URL: http://www.resellercamp.com

   Name Server: PARTNERIT1.EARTH.ORDERBOX-DNS.COM

   Name Server: PARTNERIT1.MARS.ORDERBOX-DNS.COM

   Name Server: PARTNERIT1.MERCURY.ORDERBOX-DNS.COM

   Name Server: PARTNERIT1.VENUS.ORDERBOX-DNS.COM

   Status: clientTransferProhibited

   Updated Date: 22-dec-2011

   Creation Date: 22-dec-2011

   Expiration Date: 22-dec-2012

The Registry database contains ONLY .COM, .NET, .EDU domains and

Registrars.

Registration Service Provided By: PARTNER IT

Contact: +62.2749570974

Domain Name: IS2C-DOJO.NET

Registrant:

    PrivacyProtect.org

    Domain Admin        (contact@privacyprotect.org)

    ID#10760, PO Box 16

    Note - All Postal Mails Rejected, visit Privacyprotect.org

    Nobby Beach

    null,QLD 4218

    AU

    Tel. +45.36946676

Creation Date: 22-Dec-2011 

Expiration Date: 22-Dec-2012

Domain servers in listed order:

    partnerit1.earth.orderbox-dns.com

    partnerit1.mars.orderbox-dns.com

    partnerit1.mercury.orderbox-dns.com

    partnerit1.venus.orderbox-dns.com

Administrative Contact:

    PrivacyProtect.org

    Domain Admin        (contact@privacyprotect.org)

    ID#10760, PO Box 16

    Note - All Postal Mails Rejected, visit Privacyprotect.org

    Nobby Beach

    null,QLD 4218

    AU

    Tel. +45.36946676

Technical Contact:

    PrivacyProtect.org

    Domain Admin        (contact@privacyprotect.org)

    ID#10760, PO Box 16

    Note - All Postal Mails Rejected, visit Privacyprotect.org

    Nobby Beach

    null,QLD 4218

    AU

    Tel. +45.36946676

Billing Contact:

    PrivacyProtect.org

    Domain Admin        (contact@privacyprotect.org)

    ID#10760, PO Box 16

    Note - All Postal Mails Rejected, visit Privacyprotect.org

    Nobby Beach

    null,QLD 4218

    AU

    Tel. +45.36946676

Status:LOCKED

        Note: This Domain Name is currently Locked. In this status the domain

        name cannot be transferred, hijacked, or modified. The Owner of this

        domain name can easily change this status from their control panel.

        This feature is provided as a security measure against fraudulent domain name hijacking.

The information gathering of IS2C-dojo.com

The Active Information Gathering

root@BT:~# nmap -v -A 67.222.154.106

Starting Nmap 5.61TEST4 ( http://nmap.org ) at 2012-01-26 00:17 WIT

NSE: Loaded 87 scripts for scanning.

NSE: Script Pre-scanning.

Initiating Ping Scan at 00:17

Scanning 67.222.154.106 [4 ports]

Completed Ping Scan at 00:17, 0.39s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 00:17

Completed Parallel DNS resolution of 1 host. at 00:17, 0.00s elapsed

Initiating SYN Stealth Scan at 00:17

Scanning gudeg.partnerit.us (67.222.154.106) [1000 ports]

Discovered open port 80/tcp on 67.222.154.106

Discovered open port 53/tcp on 67.222.154.106

SYN Stealth Scan Timing: About 47.60% done; ETC: 00:18 (0:00:34 remaining)

Completed SYN Stealth Scan at 00:17, 36.12s elapsed (1000 total ports)

Initiating Service scan at 00:17

Scanning 2 services on gudeg.partnerit.us (67.222.154.106)

Stats: 0:00:53 elapsed; 0 hosts completed (1 up), 1 undergoing Service Scan

Service scan Timing: About 50.00% done; ETC: 00:18 (0:00:16 remaining)

Stats: 0:00:58 elapsed; 0 hosts completed (1 up), 1 undergoing Service Scan

Service scan Timing: About 50.00% done; ETC: 00:18 (0:00:21 remaining)

Stats: 0:01:08 elapsed; 0 hosts completed (1 up), 1 undergoing Service Scan

Service scan Timing: About 50.00% done; ETC: 00:18 (0:00:31 remaining)

Completed Service scan at 00:18, 51.12s elapsed (2 services on 1 host)

Initiating OS detection (try #1) against gudeg.partnerit.us (67.222.154.106)

Initiating Traceroute at 00:18

Completed Traceroute at 00:18, 0.02s elapsed

Initiating Parallel DNS resolution of 3 hosts. at 00:18

Completed Parallel DNS resolution of 3 hosts. at 00:18, 0.05s elapsed

NSE: Script scanning 67.222.154.106.

Initiating NSE at 00:18

Completed NSE at 00:20, 76.71s elapsed

Nmap scan report for gudeg.partnerit.us (67.222.154.106)

Host is up (0.0071s latency).

Not shown: 998 filtered ports

PORT   STATE SERVICE    VERSION

53/tcp open  domain     Mikrotik RouterOS named or OpenDNS Updater

80/tcp open  http-proxy Squid webproxy 2.7.STABLE9

| http-open-proxy: Potentially OPEN proxy.

|_Methods supported:  GET HEAD CONNECTION

Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port

Device type: general purpose

Running: Linux 2.6.X

OS CPE: cpe:/o:linux:kernel:2.6

OS details: Linux 2.6.15 - 2.6.30

Uptime guess: 62.989 days (since Thu Nov 24 00:36:04 2011)

Network Distance: 3 hops

TCP Sequence Prediction: Difficulty=206 (Good luck!)

IP ID Sequence Generation: All zeros

TRACEROUTE (using port 80/tcp)

HOP RTT     ADDRESS

1   5.63 ms hotspot.sejahtera.net (118.96.157.1)

2   5.74 ms 119.235.28.158

3   5.77 ms gudeg.partnerit.us (67.222.154.106)

NSE: Script Post-scanning.

Read data files from: /usr/local/bin/../share/nmap

OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .

Nmap done: 1 IP address (1 host up) scanned in 167.27 seconds

           Raw packets sent: 3067 (136.968KB) | Rcvd: 45 (2.592KB)

The Passive Information Gathering

root@BT:~# whois IS2C-dojo.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered

with many different competing registrars. Go to http://www.internic.net

for detailed information.

   Domain Name: IS2C-DOJO.COM

   Registrar: CV. JOGJACAMP

   Whois Server: whois.resellercamp.com

   Referral URL: http://www.resellercamp.com

   Name Server: NS1.PARTNERIT.US

   Name Server: NS2.PARTNERIT.US

   Status: clientTransferProhibited

   Updated Date: 14-jan-2012

   Creation Date: 14-jan-2012

   Expiration Date: 14-jan-2013

The Registry database contains ONLY .COM, .NET, .EDU domains and

Registrars.

Registration Service Provided By: PARTNER IT

Contact: +62.2749570974

Domain Name: IS2C-DOJO.COM

Registrant:

    n/a

    Mada Rambu Perdhana        (mrp.bpp@gmail.com)

    Jl. MT Haryono No.25A rt.36 Kelurahan Damaii

    Balikpapan

    Balikpapan,12345

    ID

    Tel. +62.087838463816

Creation Date: 14-Jan-2012 

Expiration Date: 14-Jan-2013

Domain servers in listed order:

    ns1.partnerit.us

    ns2.partnerit.us

Administrative Contact:

    n/a

    Mada Rambu Perdhana        (mrp.bpp@gmail.com)

    Jl. MT Haryono No.25A rt.36 Kelurahan Damaii

    Balikpapan

    Balikpapan,12345

    ID

    Tel. +62.087838463816

Technical Contact:

    n/a

    Mada Rambu Perdhana        (mrp.bpp@gmail.com)

    Jl. MT Haryono No.25A rt.36 Kelurahan Damaii

    Balikpapan

    Balikpapan,12345

    ID

    Tel. +62.087838463816

Billing Contact:

    n/a

    Mada Rambu Perdhana        (mrp.bpp@gmail.com)

    Jl. MT Haryono No.25A rt.36 Kelurahan Damaii

    Balikpapan

    Balikpapan,12345

    ID

    Tel. +62.087838463816

Status:Locked

        Note: This Domain Name is currently Locked. In this status the domain

        name cannot be transferred, hijacked, or modified. The Owner of this

        domain name can easily change this status from their control panel.

        This feature is provided as a security measure against fraudulent domain name hijacking.



Information Gathering Spentera.com

nmap -v -A 74.81.66.104.

whois spentera.com
Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Domain Name: SPENTERA.COM
   Registrar: ENOM, INC.
   Whois Server: whois.enom.com
   Referral URL: http://www.enom.com
   Name Server: DNS1.NAMECHEAPHOSTING.COM
   Name Server: DNS2.NAMECHEAPHOSTING.COM
   Status: ok
   Updated Date: 12-may-2011
   Creation Date: 15-feb-2011
   Expiration Date: 15-feb-2012

>>> Last update of whois database: Wed, 25 Jan 2012 20:39:00 UTC <<<
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
=-=-=-=

Registration Service Provided By: Namecheap.com
Contact: support@namecheap.com
Visit: http://namecheap.com

Domain name: spentera.com

Registrant Contact:
   WhoisGuard
   WhoisGuard Protected ()
  
   Fax:
   11400 W. Olympic Blvd. Suite 200
   Los Angeles, CA 90064
   US

Administrative Contact:
   WhoisGuard
   WhoisGuard Protected (2289eab88851476688242cf0144287f4.protect@whoisguard.com)
   +1.6613102107
   Fax: +1.6613102107
   11400 W. Olympic Blvd. Suite 200
   Los Angeles, CA 90064
   US

Technical Contact:
   WhoisGuard
 WhoisGuardProtected (2289eab88851476688242cf0144287f4.protect@whoisguard.com)
   +1.6613102107
   Fax: +1.6613102107
   11400 W. Olympic Blvd. Suite 200
   Los Angeles, CA 90064
   US

Status: Active
Name Servers:
   dns1.namecheaphosting.com
   dns2.namecheaphosting.com
  
Creation date: 15 Feb 2011 13:04:00
Expiration date: 15 Feb 2012 08:04:00
  =-=-=-=
The data in this whois database is provided to you for information
purposes only, that is, to assist you in obtaining information about or
related to a domain name registration record. We make this information
available "as is," and do not guarantee its accuracy. By submitting a
whois query, you agree that you will use this data only for lawful
purposes and that, under no circumstances will you use this data to: (1)
enable high volume, automated, electronic processes that stress or load
this whois database system providing you this information; or (2) allow,
enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations via direct mail, electronic
mail, or by telephone. The compilation, repackaging, dissemination or
other use of this data is expressly prohibited without prior written
consent from us. 

We reserve the right to modify these terms at any time. By submitting
this query, you agree to abide by these terms.
Version 6.3 4/3/2002

HOW TO USE AUTOSCAN

First open Terminal

And Type  ifconfig eth0 to get in

root@bt:~# ifconfig eth0

eth0      Link encap:Ethernet  HWaddr 00:25:64:67:3b:1d 

          inet addr:192.168.0.33  Bcast:192.168.0.255  Mask:255.255.255.0

          inet6 addr: fe80::225:64ff:fe67:3b1d/64 Scope:Link

          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1

          RX packets:6567 errors:0 dropped:0 overruns:0 frame:0

          TX packets:567 errors:0 dropped:0 overruns:0 carrier:0

          collisions:0 txqueuelen:1000

          RX bytes:553250 (553.2 KB)  TX bytes:45293 (45.2 KB)

          Interrupt:44 Base address:0xe000

Next we type dhclient eth0 to see the ip

root@bt:~# dhclient eth0

There is already a pid file /var/run/dhclient.pid with pid 3732

killed old client process, removed PID file

Internet Systems Consortium DHCP Client V3.1.3

Copyright 2004-2009 Internet Systems Consortium.

All rights reserved.

For info, please visit https://www.isc.org/software/dhcp/

Listening on LPF/eth0/00:25:64:67:3b:1d

Sending on   LPF/eth0/00:25:64:67:3b:1d

Sending on   Socket/fallback

DHCPREQUEST of 192.168.0.33 on eth0 to 255.255.255.255 port 67

DHCPACK of 192.168.0.33 from 192.168.0.40

bound to 192.168.0.33 -- renewal in 259465 seconds.

 

Next to get in  Applikation Information Gatering, Network Analisis, Network Scanner, Select Auto scan

then it will appear like the image below:

 

Click Forward

Forward

Forward

Next we see ip the active and we can determaine the ip address which we enter,

For example  I got 192.168.0.21 There is 4 options depending on where we want to go, 

but I choose via web active