Degenerate 67.208.33.130

Hostname: 67-208-33-130.neospire.net

Region: Dallas,United States

Whois:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# Query terms are ambiguous.  The query is assumed to be:
#     "n 67.208.33.130"
#
# Use "?" to get help.
#

#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=67.208.33.130?showDetails=true&showARIN=false&ext=netref2
#

NetRange:       67.208.32.0 - 67.208.47.255
CIDR:           67.208.32.0/20
NetName:        NEOSPIRE-2
NetHandle:      NET-67-208-32-0-1
Parent:         NET67 (NET-67-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       AS30226
Organization:   NeoSpire, Inc. (NESP)
RegDate:        2007-07-09
Updated:        2012-10-03
Ref:            http://whois.arin.net/rest/net/NET-67-208-32-0-1

OrgName:        NeoSpire, Inc.
OrgId:          NESP
Address:        1807 Ross Ave, Suite 300
City:           Dallas
StateProv:      TX
PostalCode:     75201
Country:        US
RegDate:        2002-06-18
Updated:        2014-07-23
Ref:            http://whois.arin.net/rest/org/NESP

ReferralServer: rwhois://rwhois.neospire.net:4321

OrgAbuseHandle: ABUSE1072-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-302-731-4948 
OrgAbuseEmail:  abuse@hostmysite.com
OrgAbuseRef:    http://whois.arin.net/rest/poc/ABUSE1072-ARIN

OrgTechHandle: IPADM271-ARIN
OrgTechName:   IP Admin
OrgTechPhone:  +1-302-731-4948 
OrgTechEmail:  ipadmin@hostmysite.com
OrgTechRef:    http://whois.arin.net/rest/poc/IPADM271-ARIN

RTechHandle: IPADM271-ARIN
RTechName:   IP Admin
RTechPhone:  +1-302-731-4948 
RTechEmail:  ipadmin@hostmysite.com
RTechRef:    http://whois.arin.net/rest/poc/IPADM271-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#



Found a referral to rwhois.neospire.net:4321.

Host Scan:

Starting Nmap 5.00 ( http://nmap.org ) at 2015-01-01 19:48 CST
Interesting ports on 67-208-33-130.neospire.net (67.208.33.130):
Not shown: 1973 closed ports
PORT     STATE         SERVICE        VERSION
21/tcp   open          ftp            ProFTPD 1.3.3e
22/tcp   open          ssh            OpenSSH 4.3 (protocol 2.0)
|  ssh-hostkey: 1024 a4:a7:30:70:d3:d9:12:f8:0d:9f:9a:56:0c:be:c5:14 (DSA)
|_ 2048 e2:66:b7:d6:b7:1d:74:0d:60:2f:2c:65:90:c7:0f:f7 (RSA)
25/tcp   filtered      smtp
53/tcp   open          domain         ISC BIND none
80/tcp   open          http           Apache httpd
|_ html-title: Default Parallels Plesk Panel Page
106/tcp  open          pop3pw         poppassd
110/tcp  open          pop3           Courier pop3d
|_ pop3-capabilities: USER STLS IMPLEMENTATION(Courier Mail Server) UIDL PIPELINING APOP TOP LOGIN-DELAY(10)
135/tcp  filtered      msrpc
139/tcp  filtered      netbios-ssn
143/tcp  open          imap           Courier Imapd (released 2004)
|_ imap-capabilities: THREAD=ORDEREDSUBJECT QUOTA STARTTLS THREAD=REFERENCES UIDPLUS ACL2=UNION SORT ACL IMAP4rev1 IDLE NAMESPACE CHILDREN
443/tcp  open          ssl/http       Apache httpd
|_ sslv2: server still supports SSLv2
|_ html-title: Default Parallels Plesk Panel Page
445/tcp  filtered      microsoft-ds
465/tcp  open          ssl/smtp       Postfix smtpd
|_ smtp-commands: EHLO localhost.localdomain, PIPELINING, SIZE 10240000, ETRN, AUTH CRAM-MD5 DIGEST-MD5 PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN
993/tcp  open          ssl/imap       Courier Imapd (released 2004)
|_ imap-capabilities: THREAD=ORDEREDSUBJECT QUOTA AUTH=PLAIN THREAD=REFERENCES UIDPLUS ACL2=UNION SORT ACL IMAP4rev1 IDLE NAMESPACE CHILDREN
|_ sslv2: server still supports SSLv2
995/tcp  open          ssl/pop3       Courier pop3d
|_ pop3-capabilities: USER IMPLEMENTATION(Courier Mail Server) UIDL PIPELINING APOP LOGIN-DELAY(10) TOP
|_ sslv2: server still supports SSLv2
3306/tcp open          mysql          MySQL (unauthorized)
8443/tcp open          ssl/https-alt?
|_ html-title: Site doesn"t have a title (text/html).
53/udp   open          domain         ISC BIND none
68/udp   open|filtered dhcpc
135/udp  open|filtered msrpc
136/udp  open|filtered profile
137/udp  open|filtered netbios-ns
138/udp  open|filtered netbios-dgm
139/udp  open|filtered netbios-ssn
161/udp  open|filtered snmp
445/udp  open|filtered microsoft-ds
520/udp  open|filtered route
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
SF-Port8443-TCP:V=5.00%T=SSL%I=7%D=1/1%Time=54A5FD2A%P=x86_64-unknown-linux-gnu%r(GenericLines,1F5,"HTTP/1.0 400 Bad Request
Connection:
SF: close
Content-Type: text/html
Content-Length: 349
Da
SF:te: Fri, 02 Jan 2015 02:06:34 GMT
Server: sw-cp
SF:-server


SF:


 
SF:
  400 - Bad Request
 
 <
SF:body>
  400 - Bad Request
 

")%r(HTTPOptions,6CF,"HTTP/1.0 200 OK
Connection: close
SF:
Expires: Sun, 01 Feb 2015 02:06:39 GMT
Expires
SF:: Fri, 28 May 1999 00:00:00 GMT
Cache-Control: 
SF:max-age=2592000
Cache-Control: no-store, no-cache, must-rev
SF:alidate
Cache-Control: post-check=0, pre-check=0
Last-Modif
SF:ied: Fri, 02 Jan 2015 02:06:39 GMT
Pragma: no-c
SF:ache
P3P: CP="NON COR CURa ADMa OUR NOR UNI
SF:0COM NAV STA"
Content-type: text/html
Date: Fri, 
SF:02 Jan 2015 02:06:41 GMT
Server: sw-cp-server


SF:
		
		
		
		
SF:
		
		
		
			var opt_
SF:no_frames = false;
			var opt_integrated_")%r(RTSPRequest,
SF:1F5,"HTTP/1.0 400 Bad Request
Connection: close
Cont
SF:ent-Type: text/html
Content-Length: 349
Date: Fri, 02
SF: Jan 2015 02:06:42 GMT
Server: sw-cp-server

<
SF:?xml version="1.0" encoding="iso-8859-1"?>


 
  
SF:400 - Bad Request
 
 
  400 - Bad Request
 

");
Device type: general purpose|WAP|router|broadband router|printer|firewall
Running (JUST GUESSING) : Linux 2.6.X|2.4.X (91%), Linksys Linux 2.4.X (90%), D-Link embedded (88%), Linksys embedded (88%), Peplink embedded (88%), Lexmark embedded (86%), Check Point Linux 2.4.X (85%)
Aggressive OS guesses: Linux 2.6.9 - 2.6.26 (91%), Linux 2.6.22 (Fedora Core 6) (91%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (91%), OpenWrt White Russian 0.9 (Linux 2.4.30) (90%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (90%), Linux 2.6.9 - 2.6.18 (89%), Linux 2.6.18 - 2.6.27 (88%), Linux 2.6.15 - 2.6.24 (88%), Linux 2.6.22 (88%), D-Link DSA-3100 or Linksys WRT54GL (DD-WRT v23) WAP, or Peplink Balance 30 router (88%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 12 hops
Service Info: Hosts: localhost.localdomain,  localhost.localdomain; OS: Unix

Host script results:
|_ nbstat: ERROR: Name query failed: TIMEOUT

OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 1212.95 seconds

Hostname: 67-208-33-130.neospire.net

Region: Dallas,United States

Whois:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# Query terms are ambiguous.  The query is assumed to be:
#     "n 67.208.33.130"
#
# Use "?" to get help.
#

#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=67.208.33.130?showDetails=true&showARIN=false&ext=netref2
#

NetRange:       67.208.32.0 - 67.208.47.255
CIDR:           67.208.32.0/20
NetName:        NEOSPIRE-2
NetHandle:      NET-67-208-32-0-1
Parent:         NET67 (NET-67-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       AS30226
Organization:   NeoSpire, Inc. (NESP)
RegDate:        2007-07-09
Updated:        2012-10-03
Ref:            http://whois.arin.net/rest/net/NET-67-208-32-0-1

OrgName:        NeoSpire, Inc.
OrgId:          NESP
Address:        1807 Ross Ave, Suite 300
City:           Dallas
StateProv:      TX
PostalCode:     75201
Country:        US
RegDate:        2002-06-18
Updated:        2014-07-23
Ref:            http://whois.arin.net/rest/org/NESP

ReferralServer: rwhois://rwhois.neospire.net:4321

OrgTechHandle: IPADM271-ARIN
OrgTechName:   IP Admin
OrgTechPhone:  +1-302-731-4948 
OrgTechEmail:  ipadmin@hostmysite.com
OrgTechRef:    http://whois.arin.net/rest/poc/IPADM271-ARIN

OrgAbuseHandle: ABUSE1072-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-302-731-4948 
OrgAbuseEmail:  abuse@hostmysite.com
OrgAbuseRef:    http://whois.arin.net/rest/poc/ABUSE1072-ARIN

RTechHandle: IPADM271-ARIN
RTechName:   IP Admin
RTechPhone:  +1-302-731-4948 
RTechEmail:  ipadmin@hostmysite.com
RTechRef:    http://whois.arin.net/rest/poc/IPADM271-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#



Found a referral to rwhois.neospire.net:4321.

Host Scan:

Starting Nmap 5.00 ( http://nmap.org ) at 2015-01-01 23:12 CST
Interesting ports on 67-208-33-130.neospire.net (67.208.33.130):
Not shown: 1973 closed ports
PORT     STATE         SERVICE        VERSION
21/tcp   open          ftp            ProFTPD 1.3.3e
22/tcp   open          ssh            OpenSSH 4.3 (protocol 2.0)
|  ssh-hostkey: 1024 a4:a7:30:70:d3:d9:12:f8:0d:9f:9a:56:0c:be:c5:14 (DSA)
|_ 2048 e2:66:b7:d6:b7:1d:74:0d:60:2f:2c:65:90:c7:0f:f7 (RSA)
25/tcp   filtered      smtp
53/tcp   open          domain         ISC BIND none
80/tcp   open          http           Apache httpd
|_ html-title: Default Parallels Plesk Panel Page
106/tcp  open          pop3pw         poppassd
110/tcp  open          pop3           Courier pop3d
|_ pop3-capabilities: USER STLS IMPLEMENTATION(Courier Mail Server) UIDL PIPELINING APOP TOP LOGIN-DELAY(10)
135/tcp  filtered      msrpc
139/tcp  filtered      netbios-ssn
143/tcp  open          imap           Courier Imapd (released 2004)
|_ imap-capabilities: THREAD=ORDEREDSUBJECT QUOTA STARTTLS THREAD=REFERENCES UIDPLUS ACL2=UNION SORT ACL IMAP4rev1 IDLE NAMESPACE CHILDREN
443/tcp  open          ssl/http       Apache httpd
|_ sslv2: server still supports SSLv2
|_ html-title: Default Parallels Plesk Panel Page
445/tcp  filtered      microsoft-ds
465/tcp  open          ssl/smtp       Postfix smtpd
|_ smtp-commands: EHLO localhost.localdomain, PIPELINING, SIZE 10240000, ETRN, AUTH CRAM-MD5 DIGEST-MD5 PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN
993/tcp  open          ssl/imap       Courier Imapd (released 2004)
|_ sslv2: server still supports SSLv2
|_ imap-capabilities: THREAD=ORDEREDSUBJECT QUOTA AUTH=PLAIN THREAD=REFERENCES UIDPLUS ACL2=UNION SORT ACL IMAP4rev1 IDLE NAMESPACE CHILDREN
995/tcp  open          ssl/pop3       Courier pop3d
|_ pop3-capabilities: USER IMPLEMENTATION(Courier Mail Server) UIDL PIPELINING APOP LOGIN-DELAY(10) TOP
|_ sslv2: server still supports SSLv2
3306/tcp open          mysql          MySQL (unauthorized)
8443/tcp open          ssl/https-alt?
|_ html-title: Site doesn"t have a title (text/html).
53/udp   open          domain         ISC BIND none
68/udp   open|filtered dhcpc
135/udp  open|filtered msrpc
136/udp  open|filtered profile
137/udp  open|filtered netbios-ns
138/udp  open|filtered netbios-dgm
139/udp  open|filtered netbios-ssn
161/udp  open|filtered snmp
445/udp  open|filtered microsoft-ds
520/udp  open|filtered route
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
SF-Port8443-TCP:V=5.00%T=SSL%I=7%D=1/1%Time=54A62D0B%P=x86_64-unknown-linux-gnu%r(GenericLines,1F5,"HTTP/1.0 400 Bad Request
Connection:
SF: close
Content-Type: text/html
Content-Length: 349
Da
SF:te: Fri, 02 Jan 2015 05:30:51 GMT
Server: sw-cp
SF:-server


SF:


 
SF:
  400 - Bad Request
 
 <
SF:body>
  400 - Bad Request
 

")%r(GetRequest,6CF,"HTTP/1.0 200 OK
Connection: close
SF:r
Expires: Sun, 01 Feb 2015 05:30:52 GMT
Expires:
SF: Fri, 28 May 1999 00:00:00 GMT
Cache-Control: m
SF:ax-age=2592000
Cache-Control: no-store, no-cache, must-reva
SF:lidate
Cache-Control: post-check=0, pre-check=0
Last-Modifi
SF:ed: Fri, 02 Jan 2015 05:30:55 GMT
Pragma: no-ca
SF:che
P3P: CP="NON COR CURa ADMa OUR NOR UNI 
SF:COM NAV STA"
Content-type: text/html
Date: Fri, 0
SF:2 Jan 2015 05:30:55 GMT
Server: sw-cp-server


SF:n		
		
		
		<
SF:/title>
		
		
		
			var opt_n
SF:o_frames = false;
			var opt_integrated_")%r(HTTPOptions,6
SF:CF,"HTTP/1.0 200 OK
Connection: close
Expires: Sun,
SF:x2001 Feb 2015 05:30:56 GMT
Expires: Fri, 28 Ma
SF:y 1999 00:00:00 GMT
Cache-Control: max-age=2592000
Ca
SF:che-Control: no-store, no-cache, must-revalidate
Cache-Cont
SF:rol: post-check=0, pre-check=0
Last-Modified: Fri, 02
SF:0Jan 2015 05:30:56 GMT
Pragma: no-cache
P3P: CP="
SF:NON COR CURa ADMa OUR NOR UNI COM NAV STA"
SF:r
Content-type: text/html
Date: Fri, 02 Jan 2015 
SF:05:30:56 GMT
Server: sw-cp-server


		

SF:t	
		
		
		
		
		
			var opt_no_frames = fal
SF:se;
			var opt_integrated_");
Device type: general purpose|WAP|router|broadband router|printer|firewall
Running (JUST GUESSING) : Linux 2.6.X|2.4.X (91%), Linksys Linux 2.4.X (90%), D-Link embedded (88%), Linksys embedded (88%), Peplink embedded (88%), Lexmark embedded (86%), Check Point Linux 2.4.X (85%)
Aggressive OS guesses: Linux 2.6.9 - 2.6.26 (91%), Linux 2.6.22 (Fedora Core 6) (91%), OpenWrt White Russian 0.9 (Linux 2.4.30) (90%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (90%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (90%), Linux 2.6.9 - 2.6.18 (89%), Linux 2.6.18 - 2.6.27 (88%), Linux 2.6.15 - 2.6.24 (88%), Linux 2.6.22 (88%), D-Link DSA-3100 or Linksys WRT54GL (DD-WRT v23) WAP, or Peplink Balance 30 router (88%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 12 hops
Service Info: Hosts: localhost.localdomain,  localhost.localdomain; OS: Unix

Host script results:
|_ nbstat: ERROR: Name query failed: TIMEOUT

OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 1194.91 seconds
BACK  |  HOME