Might be a new target. Major lulzcow, could be milked again?
- Website: http://mainframe-irc.net/
- IRC hub: 72.20.38.41
- http://encyclopediadramatica.com/Neo
Starting Nmap 4.76 ( http://nmap.org ) at 2009-03-06 02:47 EST Initiating Parallel DNS resolution of 1 host. at 02:47 Illegal character(s) in hostname -- replacing with '*' Completed Parallel DNS resolution of 1 host. at 02:47, 0.00s elapsed Initiating Connect Scan at 02:47 Scanning * (72.20.38.41) [1000 ports] Discovered open port 21/tcp on 72.20.38.41 Discovered open port 53/tcp on 72.20.38.41 Discovered open port 113/tcp on 72.20.38.41 Increasing send delay for 72.20.38.41 from 0 to 5 due to 37 out of 123 dropped probes since last increase. Discovered open port 7000/tcp on 72.20.38.41 Discovered open port 10000/tcp on 72.20.38.41 Discovered open port 6667/tcp on 72.20.38.41 Discovered open port 5050/tcp on 72.20.38.41 Discovered open port 5555/tcp on 72.20.38.41 Discovered open port 111/tcp on 72.20.38.41 Increasing send delay for 72.20.38.41 from 5 to 10 due to max_successful_tryno increase to 4 Increasing send delay for 72.20.38.41 from 10 to 20 due to 11 out of 11 dropped probes since last increase. Increasing send delay for 72.20.38.41 from 20 to 40 due to 11 out of 11 dropped probes since last increase. Discovered open port 6668/tcp on 72.20.38.41 Discovered open port 6669/tcp on 72.20.38.41 Discovered open port 7100/tcp on 72.20.38.41 Discovered open port 3306/tcp on 72.20.38.41 Completed Connect Scan at 02:48, 58.35s elapsed (1000 total ports) Initiating Service scan at 02:48 Scanning 13 services on * (72.20.38.41) Completed Service scan at 02:50, 121.60s elapsed (13 services on 1 host) SCRIPT ENGINE: Initiating script scanning. Initiating SCRIPT ENGINE at 02:50 Completed SCRIPT ENGINE at 02:50, 9.64s elapsed Host * (72.20.38.41) appears to be up ... good. Scanned at 2009-03-06 02:47:15 EST for 189s Interesting ports on * (72.20.38.41): Not shown: 980 closed ports PORT STATE SERVICE VERSION 13/tcp filtered daytime 21/tcp open ftp vsftpd 2.0.5 53/tcp open domain ISC BIND 9.3.4-P1 111/tcp open rpcbind | rpcinfo: | 100000 2 111/udp rpcbind | 100024 1 868/udp status | 100000 2 111/tcp rpcbind |_ 100024 1 871/tcp status 113/tcp open ident 407/tcp filtered timbuktu 1031/tcp filtered iad2 1201/tcp filtered unknown 1720/tcp filtered H.323/Q.931 3306/tcp open mysql MySQL (unauthorized) 5050/tcp open tcpwrapped 5555/tcp open freeciv? 6667/tcp open irc? |_ IRC Server Info: ERROR: Closing Link: [173.65.196.10] (You are not welcome on this server: You're not welcome on this network. Email stark@mainframe-irc.net for more information.) 6668/tcp open irc? |_ IRC Server Info: ERROR: Closing Link: [173.65.196.10] (You are not welcome on this server: You're not welcome on this network. Email stark@mainframe-irc.net for more information.) 6669/tcp open irc? |_ IRC Server Info: ERROR: Closing Link: [173.65.196.10] (You are not welcome on this server: You're not welcome on this network. Email stark@mainframe-irc.net for more information.) 7000/tcp open afs3-fileserver? 7100/tcp open irc-proxy psyBNC 2.3.2-7 8292/tcp filtered unknown 10000/tcp open http Webmin httpd |_ robots.txt: is empty or has no disallowed entries |_ HTML title: Site doesn't have a title. 44176/tcp filtered unknown Service Info: OS: Unix Read data files from: /opt/local/share/nmap Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 189.93 seconds
I'd like to point out the irony of him saying server then network. There is only one server on his network. I guess making logical statements is hard when you're enduring severe butthurt.
Looks like it's just behind a proxy. (ddos protection?)
Starting Nmap 4.76 ( http://nmap.org ) at 2009-03-06 02:48 EST Initiating Parallel DNS resolution of 1 host. at 02:48 Completed Parallel DNS resolution of 1 host. at 02:48, 0.00s elapsed Initiating Connect Scan at 02:48 Scanning 7.18.be.static.xlhost.com (209.190.24.7) [1000 ports] Discovered open port 80/tcp on 209.190.24.7 Increasing send delay for 209.190.24.7 from 0 to 5 due to 11 out of 20 dropped probes since last increase. Connect Scan Timing: About 6.60% done; ETC: 02:55 (0:07:12 remaining) Stats: 0:04:03 elapsed; 0 hosts completed (1 up), 1 undergoing Connect Scan Connect Scan Timing: About 27.68% done; ETC: 03:02 (0:10:35 remaining) Stats: 0:04:04 elapsed; 0 hosts completed (1 up), 1 undergoing Connect Scan Connect Scan Timing: About 27.90% done; ETC: 03:02 (0:10:31 remaining) Stats: 0:06:43 elapsed; 0 hosts completed (1 up), 1 undergoing Connect Scan Connect Scan Timing: About 45.16% done; ETC: 03:03 (0:08:10 remaining) Stats: 0:11:07 elapsed; 0 hosts completed (1 up), 1 undergoing Connect Scan Connect Scan Timing: About 72.82% done; ETC: 03:03 (0:04:09 remaining) Completed Connect Scan at 03:04, 988.78s elapsed (1000 total ports) Initiating Service scan at 03:04 Scanning 1 service on 7.18.be.static.xlhost.com (209.190.24.7) Completed Service scan at 03:04, 6.46s elapsed (1 service on 1 host) SCRIPT ENGINE: Initiating script scanning. Initiating SCRIPT ENGINE at 03:04 Completed SCRIPT ENGINE at 03:04, 0.67s elapsed Host 7.18.be.static.xlhost.com (209.190.24.7) appears to be up ... good. Scanned at 2009-03-06 02:48:15 EST for 996s Interesting ports on 7.18.be.static.xlhost.com (209.190.24.7): Not shown: 998 closed ports PORT STATE SERVICE VERSION 80/tcp open http-proxy Squid webproxy 2.7.STABLE6-20090211 111/tcp filtered rpcbind Read data files from: /opt/local/share/nmap Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 996.07 seconds
<Stark> Hi. - Stark is Stark@Network.Administrator.Mainframe-IRC.Net * Tony Stark Stark is a registered nick Stark is a Network Administrator Stark is available for help. Stark is using a Secure Connection Stark is a Services Root Administrator Stark has been idle 2secs, signed on Sun Mar 08 00:38:08 Stark End of /WHOIS list. - <Nickname> hey <Stark> Can I help you...? <Stark> How you find this place? <Nickname> google <Stark> Oh yeah? <Stark> So, why aren't you talking. <Nickname> <Anim0> my gf would be perfect if she had breasts <Stark> K. <Stark> So. <Stark> What did you search on google? <Nickname> Tony Stark <Stark> .... Closing Link: Nickname[97.102.154.32] (User has been permanently banned from Mainframe (You are banned from this network indefinitely. Contact raiden89@live.com with your nickname for information on this ban))