lolxxxx
Legendary
Offline
Activity: 2198
Merit: 1032
|
|
July 13, 2016, 12:36:22 AM |
|
Just take a look. I have found some info too. name class type data time to live www.bayanradio.nl IN HINFO CPU: Please stop asking for ANY OS: See draft-ietf-dnsop-refuse-any 3789s (01:03:09) bayanradio.nl IN NS norm.ns.cloudflare.com 86400s (1.00:00:00) bayanradio.nl IN NS nicole.ns.cloudflare.com 86400s (1.00:00:00) bayanradio.nl IN HINFO CPU: Please stop asking for ANY OS: See draft-ietf-dnsop-refuse-any 3789s (01:03:09) bayanradio.nl IN NS norm.ns.cloudflare.com 69130s (19:12:10) bayanradio.nl IN NS nicole.ns.cloudflare.com 69130s (19:12:10) 157.146.27.104.in-addr.arpa IN HINFO CPU: Please stop asking for ANY OS: See draft-ietf-dnsop-refuse-any 3789s (01:03:09) Traceroute
Tracing route to www.bayanradio.nl [104.27.146.157]...
hop rtt rtt rtt ip address fully qualified domain name 1 0 0 0 208.101.16.73 49.10.65d0.ip4.static.sl-reverse.com 2 0 0 0 66.228.118.153 ae11.dar01.sr01.dal01.networklayer.com 3 0 0 0 173.192.18.210 ae6.bbr01.eq01.dal03.networklayer.com 4 0 0 0 141.101.74.253 5 0 0 0 104.27.146.157 Trace complete Congrats, you have traced route to CloudFlare and found their name servers Congrats why? I still don't know the real IP.
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 12:36:52 AM |
|
Congrats, you have traced route to CloudFlare and found their name servers
Congrats why? I still don't know the real IP. That was sarcasm
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 08:29:17 AM Last edit: July 13, 2016, 11:10:22 AM by deisik |
|
The site IP address may be in this range 67.15.47.0 - 67.15.47.255 Currently alive hosts from that range: Where this you find this /24 subnet? From here: But nothing alive there looks like the site we're searching for. I tested the machines on these networks for open 2083 port (I did that twice to make double-sure), and nothing came up so far. So the registrar info is likely fake (or the site is only registered by that entity while it is actually located somewhere else)... If we only could find a subnet this node is on (/24 or even /16), we would trace it down
|
|
|
|
pvaspecialist
|
|
July 13, 2016, 08:34:48 AM |
|
just find this after spending my whole days.I was thinking it will really easy to find out IP address.LOL
|
|
|
|
sabotag3x
Legendary
Offline
Activity: 2646
Merit: 2269
Crypto Swap Exchange
|
|
July 13, 2016, 08:36:52 AM |
|
If u are able to find the real ip ie server's ip address behind the website http://bayanradio.nl/ and not the cloud fare one then u get the bounty.Finding should be attached with proof. If u are successful then u get 2 more jobs Regards I lost a good time trying ;DD What's the point? Why you don't send a e-mail to cloudflare?
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 08:50:31 AM |
|
yandex.com is a public Russian e-mail service
|
|
|
|
lolxxxx
Legendary
Offline
Activity: 2198
Merit: 1032
|
|
July 13, 2016, 09:23:23 AM |
|
Please do not post the shortened link we don't know where does it redirect to . Please post the complete link here without shortening .
|
|
|
|
ashour
|
|
July 13, 2016, 09:32:01 AM |
|
It's not possible to get the real IP if the server is hosted/protected by cloud flare, even if it was possible, cloud flare would instantly close that zero day exploit. Your only hope is to get a lawyer and ask him to write a letter to cloud flare and order them to give you the real IP of the server but that would be highly unlikely to happen if you aren't a law enforcement or intelligence agency.
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 09:39:59 AM |
|
It's not possible to get the real IP if the server is hosted/protected by cloud flare, even if it was possible, cloud flare would instantly close that zero day exploit. Your only hope is to get a lawyer and ask him to write a letter to cloud flare and order them to give you the real IP of the server but that would be highly unlikely to happen if you aren't a law enforcement or intelligence agency.
What about a vulnerability in cPanel that would either allow access or just betray the real IP of the node?
|
|
|
|
ashour
|
|
July 13, 2016, 10:34:33 AM |
|
It's not possible to get the real IP if the server is hosted/protected by cloud flare, even if it was possible, cloud flare would instantly close that zero day exploit. Your only hope is to get a lawyer and ask him to write a letter to cloud flare and order them to give you the real IP of the server but that would be highly unlikely to happen if you aren't a law enforcement or intelligence agency.
What about a vulnerability in cPanel that would either allow access or just betray the real IP of the node? Good luck with that, if and that is a huge if, you found a vulnerability in cPanel then you would get WAY more than 0.05 btc from cPanel & WHM
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 10:47:19 AM Last edit: July 13, 2016, 11:02:09 AM by deisik |
|
It's not possible to get the real IP if the server is hosted/protected by cloud flare, even if it was possible, cloud flare would instantly close that zero day exploit. Your only hope is to get a lawyer and ask him to write a letter to cloud flare and order them to give you the real IP of the server but that would be highly unlikely to happen if you aren't a law enforcement or intelligence agency.
What about a vulnerability in cPanel that would either allow access or just betray the real IP of the node? Good luck with that, if and that is a huge if, you found a vulnerability in cPanel then you would get WAY more than 0.05 btc from cPanel & WHM I know this. My point was that the IP in question could still be traced down even if the server is protected by CloudFlare. The possibility of that primarily depends on the site admin, not on CloudFlare (CloudFlare cannot help much if, for example, the site has aliases which are bound to its real IP). And I don't know how you are going to trace an IP of a hosted server, though, or what it could look like, lol... Maybe, something like 10.10.1.121?
|
|
|
|
Uberin (OP)
Newbie
Offline
Activity: 57
Merit: 0
|
|
July 13, 2016, 11:07:16 AM |
|
If u are able to find the real ip ie server's ip address behind the website http://bayanradio.nl/ and not the cloud fare one then u get the bounty.Finding should be attached with proof. If u are successful then u get 2 more jobs Regards I lost a good time trying ;DD What's the point? Why you don't send a e-mail to cloudflare? And u think they will just give u?
|
|
|
|
Uberin (OP)
Newbie
Offline
Activity: 57
Merit: 0
|
|
July 13, 2016, 11:08:05 AM |
|
Please do not post the shortened link we don't know where does it redirect to . Please post the complete link here without shortening . What's this the pic is not hosted properly.Pls attach to other site.
|
|
|
|
Naix662
Newbie
Offline
Activity: 7
Merit: 0
|
|
July 13, 2016, 11:10:20 AM |
|
It's not possible to get the real IP if the server is hosted/protected by cloud flare, even if it was possible, cloud flare would instantly close that zero day exploit. Your only hope is to get a lawyer and ask him to write a letter to cloud flare and order them to give you the real IP of the server but that would be highly unlikely to happen if you aren't a law enforcement or intelligence agency.
It is possible. But in this case, yea it might be not possible, or extremely hard, since it seems whoever configured CF, did it correctly.
|
|
|
|
FruitsBasket
Legendary
Offline
Activity: 1232
Merit: 1017
|
|
July 13, 2016, 11:16:53 AM |
|
This is what I found: nicole norm 24rezepte.com nicole norm 44recipes.com nicole norm bayanradio.nl nicole norm bloomingphotographies.com nicole norm casaldeduas.com.br nicole norm crisederisos.com.br nicole norm filecanvas.com nicole norm hapishopping.com nicole norm iaps.co.in nicole norm li4e.ru nicole norm li4epro.com nicole norm luxecrack.com nicole norm mansfieldgaragedoors.co.uk nicole norm metacafeg.xyz nicole norm musicalflutes.net nicole norm myforextrendyreview.com nicole norm myfreeguestbook.net nicole norm myrecipedairys.com nicole norm otubooku.ru nicole norm pb-narrowboats.co.uk nicole norm pcsaudavel.com nicole norm recette2luxe.com nicole norm resortoluxury.com nicole norm scotcoin.com nicole norm scotcoin.net nicole norm scotcoinproject.com nicole norm scotcoinproject.uk nicole norm song-titles.net nicole norm thescotcoinproject.org nicole norm umoz.info nicole norm uttrakhandpestcontrol.in nicole norm uwimages.org nicole norm vaitertudo.com nicole norm videodeposu.net nicole norm videohibe.net nicole norm videolata.net nicole norm videosdemais.net nicole norm videoslike.net nicole norm voymp3.net nicole norm xposurecreative.uk nicole norm zivil-recht.org
These are all domains that are hidden behind the nicole domain from cloudflare. There must be some connection between those websites. I will update the post with some more information.
|
fck@dt-alwayzz_newbz
|
|
|
Roboabhishek
|
|
July 13, 2016, 11:25:45 AM Last edit: July 16, 2016, 05:24:46 AM by Roboabhishek |
|
Hey i am running the scan to ip address . The ip address is 104.27.146.157 Address is in my profile. ahahhaha this IP address is provided by cloud fare its not the real IP of website
|
|
|
|
Roboabhishek
|
|
July 13, 2016, 11:27:40 AM |
|
This Website seems to be of ISIS 70% chances
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 11:28:27 AM |
|
These are all domains that are hidden behind the nicole domain from cloudflare. There must be some connection between those websites. I will update the post with some more information.
There is no connection between them except they are all behind CF and share the same IP address
|
|
|
|
lolxxxx
Legendary
Offline
Activity: 2198
Merit: 1032
|
|
July 13, 2016, 11:29:24 AM |
|
Hey i am running the scan to ip address . The ip address is 104.27.146.157 Address is in my profile. ahahhaha this IP address is provided my cloud fare its not the real IP of website Yes it is protected by cloudflare and that's cloudflare ip.
|
|
|
|
deisik
Legendary
Offline
Activity: 3500
Merit: 1280
English ⬄ Russian Translation Services
|
|
July 13, 2016, 11:34:31 AM |
|
If u are able to find the real ip ie server's ip address behind the website http://bayanradio.nl/ and not the cloud fare one then u get the bounty.Finding should be attached with proof. If u are successful then u get 2 more jobs Regards I lost a good time trying ;DD What's the point? Why you don't send a e-mail to cloudflare? And u think they will just give u? By the way, what are the other 2 jobs you mentioned? Bring down that site and dox its real owner?
|
|
|
|
|