Del

[124]

Del

[30]

Not gonna do much more cuz i cba, but heres some Drupal text editor logs and info I've dug up.

---OPEN SERVICES---
PORT      STATE    SERVICE    VERSION
21/tcp    open     ftp        Pure-FTPd
| ssl-cert: Subject: commonName=*.accountservergroup.com
| Subject Alternative Name: DNS:*.accountservergroup.com, DNS:accountservergroup.com
| Not valid before: 2019-08-28T00:00:00
|_Not valid after:  2021-11-29T00:00:00
|_ssl-date: 2021-02-10T11:49:57+00:00; +3s from scanner time.
22/tcp    open     ssh        OpenSSH 5.3 (protocol 2.0)
| ssh-hostkey: 
|   1024 25:4f:56:33:6a:16:64:b8:0f:b7:d1:88:77:34:5e:c0 (DSA)
|_  2048 3a:fa:4c:3c:33:f0:e3:f2:a7:40:5e:cc:67:7d:2b:df (RSA)
23/tcp    filtered telnet
25/tcp    open     smtp       Exim smtpd 4.91
|_smtp-commands: Couldn't establish connection on port 25
26/tcp    open     tcpwrapped
53/tcp    open     domain     (unknown banner: not currently available)
| dns-nsid: 
|_  bind.version: not currently available
| fingerprint-strings: 
|   DNSVersionBindReqTCP: 
|     version
|     bind
|_    currently available
80/tcp    open     http       nginx 1.18.0
|_http-server-header: nginx/1.18.0
|_http-title: 403 Forbidden
110/tcp   open     pop3       Dovecot pop3d
|_pop3-capabilities: AUTH-RESP-CODE PIPELINING UIDL TOP STLS RESP-CODES SASL(PLAIN LOGIN) USER CAPA
|_ssl-date: 2021-02-10T11:49:57+00:00; +3s from scanner time.
143/tcp   open     imap       Dovecot imapd
|_imap-capabilities: IMAP4rev1 capabilities LOGIN-REFERRALS OK ID AUTH=PLAIN STARTTLS more post-login LITERAL+ ENABLE have IDLE SASL-IR listed Pre-login AUTH=LOGINA0001 NAMESPACE
|_ssl-date: 2021-02-10T11:49:58+00:00; +3s from scanner time.
443/tcp   open     ssl/http   nginx 1.18.0
|_http-server-header: nginx/1.18.0
|_http-title: 403 Forbidden
| ssl-cert: Subject: commonName=*.accountservergroup.com
| Subject Alternative Name: DNS:*.accountservergroup.com, DNS:accountservergroup.com
| Not valid before: 2019-08-28T00:00:00
|_Not valid after:  2021-11-29T00:00:00
|_ssl-date: 2021-02-10T11:49:56+00:00; +4s from scanner time.
| tls-nextprotoneg: 
|   h2
|_  http/1.1
465/tcp   open     ssl/smtps?
|_smtp-commands: uscentral416.accountservergroup.com Hello jamarqu.plus.com [80.229.158.253], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP, 
587/tcp   open     tcpwrapped
| smtp-commands: uscentral416.accountservergroup.com Hello jamarqu.plus.com [80.229.158.253], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, STARTTLS, HELP, 
|_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP 
993/tcp   open     ssl/imaps?
| ssl-cert: Subject: commonName=*.accountservergroup.com
| Subject Alternative Name: DNS:*.accountservergroup.com, DNS:accountservergroup.com
| Not valid before: 2019-08-28T00:00:00
|_Not valid after:  2021-11-29T00:00:00
|_ssl-date: 2021-02-10T11:49:56+00:00; +4s from scanner time.
995/tcp   open     ssl/pop3s?
| ssl-cert: Subject: commonName=*.accountservergroup.com
| Subject Alternative Name: DNS:*.accountservergroup.com, DNS:accountservergroup.com
| Not valid before: 2019-08-28T00:00:00
|_Not valid after:  2021-11-29T00:00:00
|_ssl-date: 2021-02-10T11:49:56+00:00; +4s from scanner time.
3306/tcp  open     mysql      MySQL (blocked - too many connection errors)
7777/tcp  filtered cbt
8080/tcp  open     http       nginx 1.18.0
|_http-server-header: nginx/1.18.0
|_http-title: 403 Forbidden
8443/tcp  open     ssl/http   nginx 1.18.0
|_http-server-header: nginx/1.18.0
|_http-title: 403 Forbidden
| ssl-cert: Subject: commonName=*.accountservergroup.com
| Subject Alternative Name: DNS:*.accountservergroup.com, DNS:accountservergroup.com
| Not valid before: 2019-08-28T00:00:00
|_Not valid after:  2021-11-29T00:00:00
|_ssl-date: 2021-02-10T11:49:56+00:00; +4s from scanner time.
| tls-nextprotoneg: 
|   h2
|_  http/1.1
49152/tcp filtered unknown

---ENUMERATED USERS---RECHNER\\Administrator
RECHNER\\Tobit
Peperoni-PC\\Peperoni

---WEB SCAN---

- Nikto v2.1.6
---------------------------------------------------------------------------
+ Target IP:          143.95.79.243
+ Target Hostname:    www.abtreiber.com
+ Target Port:        80
+ Start Time:         2021-02-10 11:54:35 (GMT0)
---------------------------------------------------------------------------
+ Server: nginx/1.18.0
+ The anti-clickjacking X-Frame-Options header is not present.
+ The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
+ The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
+ All CGI directories 'found', use '-C none' to test none


--- Drupal Editor Logs ---
---------------------------------------------------------------------------------
vti_encoding:SR|utf8-nl vti_timelastmodified:TR|25 Aug 2009 1330 -0000 vti_extenderversion:SR|5.0.2.6790 vti_lineageid:SR|{E821D056-214F-4090-9920-164CDA146B17} vti_cacheddtm:TX|23 Jul 2009 19:06:14 -0000 vti_filesize:IR|6656 vti_backlinkinfo:VX| vti_modifiedby:SR|RECHNER\\Tobit
---------------------------------------------------------------------------------
vti_encoding:SR|utf8-nl
vti_author:SR|Peperoni-PC\\Peperoni
vti_modifiedby:SR|Peperoni-PC\\Peperoni
vti_timelastmodified:TR|15 Jun 2017 14:49:50 -0000
vti_timecreated:TR|15 Jun 2017 14:49:50 -0000
vti_lineageid:SR|{2CB91109-1F38-43A3-A9B5-1F10C9308E9A}
vti_cacheddtm:TX|15 Jun 2017 14:49:50 -0000
vti_filesize:IR|534
vti_extenderversion:SR|5.0.2.2623
vti_backlinkinfo:VX|
---------------------------------------------------------------------------------
vti_encoding:SR|utf8-nl vti_author:SR|RECHNER\\Tobit vti_modifiedby:SR|RECHNER\\Tobit vti_timelastmodified:TR|21 Jul 2010 18:04:07 -0000 vti_timecreated:TR|21 Jul 2010 16:31:54 -0000 vti_title:SR|Abtreibungspraxis Koblenz, Laabs, Maekowski,, Krueger, Edelmann, Schwangerschaftsabbrueche vti_extenderversion:SR|5.0.2.6790 vti_lineageid:SR|{BD46126B-11A2-470E-8622-74F3A241F9F6} vti_timelastindexed:TW|21 Jul 2010 18:04:08 -0000 vti_backlinkinfo:VX|c-m/st/m-p.htm c-m/plz/plz2.htm vti_nexttolasttimemodified:TW|21 Jul 2010 17:57:18 -0000 vti_cacheddtm:TX|21 Jul 2010 18:04:08 -0000 vti_filesize:IR|9692 vti_cachedtitle:SR|Abtreibungspraxis Koblenz, Laabs, Maekowski,, Krueger, Edelmann, Schwangerschaftsabbrueche vti_cachedbodystyle:SR| vti_cachedlinkinfo:VX|S|klinik.jpg H|mailto:[email protected] H|http://www.klinikum-oldenburg.de H|rat2.jpg S|rat.jpg H|http://fraktion-spd.kdo.de/ H|http://fraktion-cdu.kdo.de/ H|http://fraktion-diegruenen.kdo.de/ H|http://www.fdp-fraktion-oldenburg.de/ H|http://fraktion-dielinke.kdo.de/ S|mintrop1.jpg S|schwandner.jpg S|../../../images/bild4gr.jpg H|../../../c-m/plz/plz2.htm vti_cachedsvcrellinks:VX|FSUS|genossen/bilder/oldenb/klinik.jpg NHUS|mailto:[email protected] NHHS|http://www.klinikum-oldenburg.de FHUS|genossen/bilder/oldenb/rat2.jpg FSUS|genossen/bilder/oldenb/rat.jpg NHHS|http://fraktion-spd.kdo.de/ NHHS|http://fraktion-cdu.kdo.de/ NHHS|http://fraktion-diegruenen.kdo.de/ NHHS|http://www.fdp-fraktion-oldenburg.de/ NHHS|http://fraktion-dielinke.kdo.de/ FSUS|genossen/bilder/oldenb/mintrop1.jpg FSUS|genossen/bilder/oldenb/schwandner.jpg FSUS|images/bild4gr.jpg FHUS|c-m/plz/plz2.htm vti_cachedneedsrewrite:BR|true vti_cachedhasbots:BR|false vti_cachedhastheme:BR|true vti_cachedhasborder:BR|false vti_themeaggregate:SR|default vti_metatags:VR|GENERATOR Microsoft\\ FrontPage\\ 5.0 ProgId FrontPage.Editor.Document HTTP-EQUIV=Content-Type text/html;\\ charset=windows-1252 vti_charset:SR|windows-1252 vti_progid:SR|FrontPage.Editor.Document vti_generator:SR|Microsoft FrontPage 5.0
--------------------------------------------------------------------------------- vti_encoding:SR|utf8-nl vti_author:SR|Günter vti_modifiedby:SR|NOTEBOOK\\Günter Annen vti_timecreated:TR|16 May 2004 07:49:16 -0000 vti_timelastmodified:TR|02 Jul 2007 16:42:16 -0000 vti_title:SR|Amtsgericht München, Grain, Richter, Dr. Miller, Frauenarzt vti_extenderversion:SR|5.0.2.6790 vti_backlinkinfo:VX|muench_m/auswahl.htm vti_nexttolasttimemodified:TR|16 May 2004 07:56:13 -0000 vti_lineageid:SR|{0E8AB85D-9FC9-44BD-AD84-FD330B48491C} vti_timelastindexed:TW|02 Jul 2007 16:42:21 -0000 vti_cacheddtm:TX|02 Jul 2007 16:42:16 -0000 vti_filesize:IR|1054 vti_cachedtitle:SR|Amtsgericht München, Grain, Richter, Dr. Miller, Frauenarzt vti_cachedbodystyle:SR|<body> vti_cachedlinkinfo:VX|S|br04.jpg vti_cachedsvcrellinks:VX|FSUS|muench_m/beschlu/br04.jpg vti_cachedneedsrewrite:BR|true vti_cachedhasbots:BR|false vti_cachedhastheme:BR|true vti_cachedhasborder:BR|false vti_themeaggregate:SR|default vti_metatags:VR|HTTP-EQUIV=Content-Language de HTTP-EQUIV=Content-Type text/html;\\ charset=windows-1252 GENERATOR Microsoft\\ FrontPage\\ 4.0 ProgId FrontPage.Editor.Document vti_charset:SR|windows-1252 vti_language:SR|de vti_progid:SR|FrontPage.Editor.Document vti_generator:SR|Microsoft FrontPage 4.0 ---------------------------------------------------------------------------------



If you wanna actually do sum shit, I'd recommend going after the services open like telnet, SSH, FTP, SQL, etc and using the enumerated users to brute some logins.

-Spice <3

[124]

—-

[1]

By the way, you are doing a very good job, I'm a nurse myself and I know how important it is to be paid stipends on time and so on. Because without it there is no way and there are nuances and problems. By the way, if you are interested, here https://graduateway.com/essay-examples/n...holarship/ there is an essay about nursing scholarship just to learn more about it and maybe it will be useful for you too. I also wish you well.

[9]

this topic is a bit compromising, not sure that they will help you 100%