API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 25th, 2020
2,110
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 33.37 KB | None | 0 0
raw download clone embed print report
  1. Nmap scan report for 172.16.16.1
  2. Host is up (0.00044s latency).
  3. Not shown: 996 filtered ports
  4. PORT STATE SERVICE VERSION
  5. 22/tcp open ssh OpenSSH 7.5 (protocol 2.0)
  6. | ssh-hostkey:
  7. |_ 4096 d4:6e:2b:9c:29:50:86:7d:ef:c4:50:01:51:c4:35:7e (RSA)
  8. 53/tcp open domain
  9. 80/tcp open http nginx
  10. |_http-server-header: nginx
  11. |_http-title: Did not follow redirect to https://172.16.16.1/
  12. 443/tcp open ssl/http nginx
  13. |_http-title: pfSense - Login
  14. | ssl-cert: Subject: commonName=pfSense-5dbdade926f7f/organizationName=pfSense webConfigurator Self-Signed Certificate
  15. | Subject Alternative Name: DNS:pfSense-5dbdade926f7f
  16. | Not valid before: 2019-11-02T16:25:13
  17. |_Not valid after: 2025-04-24T16:25:13
  18.  
  19. Nmap scan report for 172.16.16.9
  20. Host is up (0.00065s latency).
  21. Not shown: 998 closed ports
  22. PORT STATE SERVICE VERSION
  23. 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.13 (Ubuntu Linux; protocol 2.0)
  24. | ssh-hostkey:
  25. | 1024 6b:a3:a7:41:1b:1d:51:89:56:e0:f3:08:98:e9:0e:c1 (DSA)
  26. | 2048 0b:b3:ce:6c:69:5d:cf:6a:6b:ff:e4:64:64:94:bb:bc (RSA)
  27. | 256 a8:d1:79:0b:91:39:86:59:e5:75:1c:34:1f:82:40:fe (ECDSA)
  28. |_ 256 6c:50:20:a7:b4:8b:9d:45:57:53:11:d3:6f:e6:03:6b (EdDSA)
  29. 80/tcp open http Apache httpd 2.4.7 ((Ubuntu))
  30. |_http-generator: Drupal 7 (http://drupal.org)
  31. | http-robots.txt: 36 disallowed entries (15 shown)
  32. | /includes/ /misc/ /modules/ /profiles/ /scripts/
  33. | /themes/ /CHANGELOG.txt /cron.php /INSTALL.mysql.txt
  34. | /INSTALL.pgsql.txt /INSTALL.sqlite.txt /install.php /INSTALL.txt
  35. |_/LICENSE.txt /MAINTAINERS.txt
  36. |_http-server-header: Apache/2.4.7 (Ubuntu)
  37. |_http-title: orochimaru | Boomers to the Moon
  38. Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
  39.  
  40. Nmap scan report for 172.16.16.25
  41. Host is up (0.00062s latency).
  42. Not shown: 990 closed ports
  43. PORT STATE SERVICE VERSION
  44. 22/tcp open ssh OpenSSH 7.4 (protocol 2.0)
  45. | ssh-hostkey:
  46. | 2048 44:c4:b3:74:4d:23:a8:10:33:0e:bb:e0:bd:7f:25:ae (RSA)
  47. | 256 f9:26:2e:23:7d:bf:fd:db:44:5c:29:31:ed:4a:a3:64 (ECDSA)
  48. |_ 256 d6:1f:f5:6a:96:e4:36:2c:97:2d:77:79:7d:6d:c2:7f (EdDSA)
  49. 25/tcp open smtp Postfix smtpd
  50. |_smtp-commands: mail.microspace.lowcoal, SIZE 11534336, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
  51. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  52. | Not valid before: 2019-12-20T06:47:11
  53. |_Not valid after: 2020-12-19T06:47:11
  54. |_ssl-date: TLS randomness does not represent time
  55. 80/tcp open http nginx 1.16.1
  56. |_http-server-header: nginx/1.16.1
  57. | http-title: Welcome to Modoboa
  58. |_Requested resource was /accounts/login/?next=/
  59. 110/tcp open pop3 Dovecot pop3d
  60. |_pop3-capabilities: USER UIDL SASL(PLAIN LOGIN) AUTH-RESP-CODE TOP CAPA STLS RESP-CODES PIPELINING
  61. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  62. | Not valid before: 2019-12-20T06:47:11
  63. |_Not valid after: 2020-12-19T06:47:11
  64. |_ssl-date: TLS randomness does not represent time
  65. 143/tcp open imap Dovecot imapd
  66. |_imap-capabilities: ID post-login IMAP4rev1 Pre-login SASL-IR AUTH=PLAIN AUTH=LOGINA0001 listed LOGIN-REFERRALS more LITERAL+ ENABLE STARTTLS OK capabilities IDLE have
  67. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  68. | Not valid before: 2019-12-20T06:47:11
  69. |_Not valid after: 2020-12-19T06:47:11
  70. |_ssl-date: TLS randomness does not represent time
  71. 443/tcp open ssl/http nginx 1.16.1
  72. |_http-server-header: nginx/1.16.1
  73. | http-title: Welcome to Modoboa
  74. |_Requested resource was /accounts/login/?next=/
  75. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  76. | Not valid before: 2019-12-20T06:47:11
  77. |_Not valid after: 2020-12-19T06:47:11
  78. |_ssl-date: TLS randomness does not represent time
  79. | tls-nextprotoneg:
  80. |_ http/1.1
  81. 587/tcp open smtp Postfix smtpd
  82. |_smtp-commands: mail.microspace.lowcoal, PIPELINING, SIZE 11534336, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
  83. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  84. | Not valid before: 2019-12-20T06:47:11
  85. |_Not valid after: 2020-12-19T06:47:11
  86. |_ssl-date: TLS randomness does not represent time
  87. 993/tcp open ssl/imap Dovecot imapd
  88. |_imap-capabilities: more ID OK AUTH=PLAIN post-login AUTH=LOGINA0001 listed LOGIN-REFERRALS IMAP4rev1 LITERAL+ ENABLE capabilities SASL-IR Pre-login IDLE have
  89. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  90. | Not valid before: 2019-12-20T06:47:11
  91. |_Not valid after: 2020-12-19T06:47:11
  92. |_ssl-date: TLS randomness does not represent time
  93. 995/tcp open ssl/pop3 Dovecot pop3d
  94. |_pop3-capabilities: UIDL AUTH-RESP-CODE USER TOP CAPA SASL(PLAIN LOGIN) RESP-CODES PIPELINING
  95. | ssl-cert: Subject: commonName=mail.microspace.lowcoal
  96. | Not valid before: 2019-12-20T06:47:11
  97. |_Not valid after: 2020-12-19T06:47:11
  98. |_ssl-date: TLS randomness does not represent time
  99. 3306/tcp open mysql MariaDB (unauthorized)
  100. Service Info: Host: mail.microspace.lowcoal
  101.  
  102. Nmap scan report for 172.16.16.30
  103. Host is up (0.00066s latency).
  104. Not shown: 978 closed ports
  105. PORT STATE SERVICE VERSION
  106. 22/tcp open ssh OpenSSH for_Windows_8.0 (protocol 2.0)
  107. | ssh-hostkey:
  108. | 3072 93:f4:70:de:99:c4:de:5b:c8:22:1e:07:57:45:4c:69 (RSA)
  109. | 256 b1:e8:f9:6f:c0:bc:b9:a8:fa:32:d2:a4:6f:52:a0:94 (ECDSA)
  110. |_ 256 60:d7:2a:a5:bf:75:3c:c8:d6:85:a7:2b:41:ad:d8:f8 (EdDSA)
  111. 23/tcp open telnet Microsoft Windows XP telnetd
  112. | telnet-ntlm-info:
  113. | Target_Name: US
  114. | NetBIOS_Domain_Name: US
  115. | NetBIOS_Computer_Name: BORUTO
  116. | DNS_Domain_Name: microspace.lowcoal
  117. | DNS_Computer_Name: boruto.microspace.lowcoal
  118. | DNS_Tree_Name: microspace.lowcoal
  119. |_ Product_Version: 6.3.9600
  120. 53/tcp open domain Microsoft DNS
  121. 88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2020-01-25 18:38:24Z)
  122. 135/tcp open msrpc Microsoft Windows RPC
  123. 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
  124. 389/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: microspace.lowcoal, Site: Default-First-Site-Name)
  125. 445/tcp open microsoft-ds Windows Server 2012 R2 Standard 9600 microsoft-ds (workgroup: US)
  126. 464/tcp open kpasswd5?
  127. 593/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
  128. 636/tcp open tcpwrapped
  129. 3268/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: microspace.lowcoal, Site: Default-First-Site-Name)
  130. 3269/tcp open tcpwrapped
  131. 3389/tcp open ms-wbt-server Microsoft Terminal Service
  132. | ssl-cert: Subject: commonName=boruto.microspace.lowcoal
  133. | Not valid before: 2019-12-04T07:26:18
  134. |_Not valid after: 2020-06-04T07:26:18
  135. |_ssl-date: 2020-01-25T18:41:07+00:00; +5h20m40s from scanner time.
  136. 49152/tcp open msrpc Microsoft Windows RPC
  137. 49153/tcp open msrpc Microsoft Windows RPC
  138. 49154/tcp open msrpc Microsoft Windows RPC
  139. 49155/tcp open msrpc Microsoft Windows RPC
  140. 49157/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
  141. 49158/tcp open msrpc Microsoft Windows RPC
  142. 49159/tcp open msrpc Microsoft Windows RPC
  143. 49175/tcp open msrpc Microsoft Windows RPC
  144. Service Info: Host: BORUTO; OSs: Windows XP, Windows; CPE: cpe:/o:microsoft:windows_xp, cpe:/o:microsoft:windows
  145.  
  146. Host script results:
  147. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m39s
  148. |_nbstat: NetBIOS name: BORUTO, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:a8:51:34 (VMware)
  149. | smb-os-discovery:
  150. | OS: Windows Server 2012 R2 Standard 9600 (Windows Server 2012 R2 Standard 6.3)
  151. | OS CPE: cpe:/o:microsoft:windows_server_2012::-
  152. | Computer name: boruto
  153. | NetBIOS computer name: BORUTO\x00
  154. | Domain name: microspace.lowcoal
  155. | Forest name: microspace.lowcoal
  156. | FQDN: boruto.microspace.lowcoal
  157. |_ System time: 2020-01-25T10:40:57-08:00
  158. | smb-security-mode:
  159. | account_used: <blank>
  160. | authentication_level: user
  161. | challenge_response: supported
  162. |_ message_signing: required
  163. | smb2-security-mode:
  164. | 2.02:
  165. |_ Message signing enabled and required
  166. | smb2-time:
  167. | date: 2020-01-25 18:40:59
  168. |_ start_date: 2020-01-24 03:39:59
  169.  
  170. Nmap scan report for 172.16.16.35
  171. Host is up (0.00062s latency).
  172. Not shown: 979 closed ports
  173. PORT STATE SERVICE VERSION
  174. 22/tcp open ssh OpenSSH for_Windows_8.0 (protocol 2.0)
  175. | ssh-hostkey:
  176. | 3072 93:f4:70:de:99:c4:de:5b:c8:22:1e:07:57:45:4c:69 (RSA)
  177. | 256 b1:e8:f9:6f:c0:bc:b9:a8:fa:32:d2:a4:6f:52:a0:94 (ECDSA)
  178. |_ 256 60:d7:2a:a5:bf:75:3c:c8:d6:85:a7:2b:41:ad:d8:f8 (EdDSA)
  179. 23/tcp open telnet Microsoft Windows XP telnetd
  180. | telnet-ntlm-info:
  181. | Target_Name: US
  182. | NetBIOS_Domain_Name: US
  183. | NetBIOS_Computer_Name: NARUTO
  184. | DNS_Domain_Name: microspace.lowcoal
  185. | DNS_Computer_Name: NARUTO.microspace.lowcoal
  186. | DNS_Tree_Name: microspace.lowcoal
  187. |_ Product_Version: 6.3.9600
  188. 53/tcp open domain Microsoft DNS
  189. 88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2020-01-25 18:38:24Z)
  190. 135/tcp open msrpc Microsoft Windows RPC
  191. 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
  192. 389/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: microspace.lowcoal, Site: Default-First-Site-Name)
  193. 445/tcp open microsoft-ds Windows Server 2012 R2 Standard 9600 microsoft-ds (workgroup: US)
  194. 464/tcp open kpasswd5?
  195. 593/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
  196. 636/tcp open tcpwrapped
  197. 3268/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: microspace.lowcoal, Site: Default-First-Site-Name)
  198. 3269/tcp open tcpwrapped
  199. 3389/tcp open ms-wbt-server Microsoft Terminal Service
  200. | ssl-cert: Subject: commonName=NARUTO.microspace.lowcoal
  201. | Not valid before: 2019-12-03T09:00:46
  202. |_Not valid after: 2020-06-03T09:00:46
  203. |_ssl-date: 2020-01-25T18:41:02+00:00; +5h20m41s from scanner time.
  204. 49152/tcp open msrpc Microsoft Windows RPC
  205. 49153/tcp open msrpc Microsoft Windows RPC
  206. 49154/tcp open msrpc Microsoft Windows RPC
  207. 49155/tcp open msrpc Microsoft Windows RPC
  208. 49157/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
  209. 49158/tcp open msrpc Microsoft Windows RPC
  210. 49159/tcp open msrpc Microsoft Windows RPC
  211. Service Info: Host: NARUTO; OSs: Windows XP, Windows; CPE: cpe:/o:microsoft:windows_xp, cpe:/o:microsoft:windows
  212.  
  213. Host script results:
  214. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m40s
  215. |_nbstat: NetBIOS name: NARUTO, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:a8:19:4b (VMware)
  216. | smb-os-discovery:
  217. | OS: Windows Server 2012 R2 Standard 9600 (Windows Server 2012 R2 Standard 6.3)
  218. | OS CPE: cpe:/o:microsoft:windows_server_2012::-
  219. | Computer name: NARUTO
  220. | NetBIOS computer name: NARUTO\x00
  221. | Domain name: microspace.lowcoal
  222. | Forest name: microspace.lowcoal
  223. | FQDN: NARUTO.microspace.lowcoal
  224. |_ System time: 2020-01-25T10:41:13-08:00
  225. | smb-security-mode:
  226. | account_used: guest
  227. | authentication_level: user
  228. | challenge_response: supported
  229. |_ message_signing: required
  230. | smb2-security-mode:
  231. | 2.02:
  232. |_ Message signing enabled and required
  233. | smb2-time:
  234. | date: 2020-01-25 18:41:05
  235. |_ start_date: 2020-01-23 22:18:16
  236.  
  237. Nmap scan report for 172.16.16.43
  238. Host is up (0.00071s latency).
  239. Not shown: 993 closed ports
  240. PORT STATE SERVICE VERSION
  241. 22/tcp open ssh OpenSSH 7.4 (protocol 2.0)
  242. | ssh-hostkey:
  243. | 2048 45:be:14:b7:25:47:9b:fc:25:a5:43:2b:f8:12:61:e9 (RSA)
  244. | 256 5a:20:a4:a1:8c:8f:50:6d:ad:c8:da:62:f3:45:28:63 (ECDSA)
  245. |_ 256 d9:d4:ff:20:78:f7:b9:c5:17:00:b1:22:be:ba:7e:80 (EdDSA)
  246. 80/tcp open http nginx 1.16.1
  247. |_http-server-header: nginx/1.16.1
  248. |_http-title: Alfresco
  249. 139/tcp open netbios-ssn?
  250. 445/tcp open microsoft-ds Java microsoft-ds
  251. | fingerprint-strings:
  252. | Kerberos:
  253. | ^0\xa0
  254. | SMBProgNeg:
  255. |_ SMBr
  256. 8009/tcp open ajp13 Apache Jserv (Protocol v1.3)
  257. |_ajp-methods: Failed to get a valid response for the OPTION request
  258. 8080/tcp open http Apache Tomcat/Coyote JSP engine 1.1
  259. |_http-open-proxy: Proxy might be redirecting requests
  260. |_http-server-header: Apache-Coyote/1.1
  261. |_http-title: Alfresco
  262. 8443/tcp open ssl/http Apache Tomcat/Coyote JSP engine 1.1
  263. |_http-server-header: Apache-Coyote/1.1
  264. |_http-title: Alfresco
  265. | ssl-cert: Subject: commonName=Alfresco Repository/organizationName=Alfresco Software Ltd./stateOrProvinceName=UK/countryName=GB
  266. | Not valid before: 2012-08-10T16:21:00
  267. |_Not valid after: 2112-07-17T16:21:00
  268.  
  269. Host script results:
  270. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m40s
  271. |_nbstat: NetBIOS name: SASUKEA, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
  272. | smb-os-discovery:
  273. | OS: Java (Alfresco CIFS Server 6.0.0)
  274. | Computer name: SASUKEA
  275. | NetBIOS computer name: SASUKEA\x00
  276. | Workgroup: US\x00
  277. |_ System time: 2020-01-25T18:41:10+00:00
  278. | smb-security-mode:
  279. | account_used: guest
  280. | authentication_level: user
  281. | challenge_response: supported
  282. |_ message_signing: disabled (dangerous, but default)
  283. |_smb2-time: Protocol negotiation failed (SMB2)
  284.  
  285. Nmap scan report for 172.16.16.60
  286. Host is up (0.00069s latency).
  287. Not shown: 996 closed ports
  288. PORT STATE SERVICE VERSION
  289. 22/tcp open ssh OpenSSH 7.4 (protocol 2.0)
  290. | ssh-hostkey:
  291. | 2048 b9:09:b1:7a:a9:dc:4c:91:e3:07:e7:f1:8a:11:dc:ef (RSA)
  292. | 256 86:fa:5c:40:ad:41:91:f6:75:77:46:08:f8:3e:81:11 (ECDSA)
  293. |_ 256 c8:e5:d6:a1:f9:73:be:ed:86:d9:a5:de:57:ce:57:48 (EdDSA)
  294. 23/tcp open telnet Linux telnetd
  295. 80/tcp open http Werkzeug httpd 0.16.0 (Python 3.6.8)
  296. |_http-server-header: Werkzeug/0.16.0 Python/3.6.8
  297. |_http-title: Launch Results!
  298. 111/tcp open rpcbind 2-4 (RPC #100000)
  299. | rpcinfo:
  300. | program version port/proto service
  301. | 100000 2,3,4 111/tcp rpcbind
  302. |_ 100000 2,3,4 111/udp rpcbind
  303. Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
  304.  
  305. Nmap scan report for 172.16.16.66
  306. Host is up (0.00020s latency).
  307. Not shown: 991 closed ports
  308. PORT STATE SERVICE VERSION
  309. 21/tcp open ftp OpenBSD ftpd 6.4 (Linux port 0.17)
  310. 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.13 (Ubuntu Linux; protocol 2.0)
  311. | ssh-hostkey:
  312. | 1024 e0:f8:2d:26:40:a5:72:f9:8b:17:e2:a6:79:e4:54:a8 (DSA)
  313. | 2048 ee:6e:4f:aa:71:98:99:f6:6a:04:b9:57:f4:66:58:95 (RSA)
  314. | 256 a7:94:ac:0d:48:9c:98:a5:7e:38:25:41:b3:7d:1a:07 (ECDSA)
  315. |_ 256 bd:d0:58:00:1e:55:ec:0c:f4:8f:5d:c3:4e:28:67:52 (EdDSA)
  316. 23/tcp open telnet Linux telnetd
  317. 80/tcp open http Apache httpd 2.4.7 ((Ubuntu))
  318. |_http-server-header: Apache/2.4.7 (Ubuntu)
  319. |_http-title: Apache2 Ubuntu Default Page: It works
  320. 139/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP)
  321. 445/tcp open netbios-ssn Samba smbd 4.3.11-Ubuntu (workgroup: WORKGROUP)
  322. 3306/tcp open mysql MySQL (unauthorized)
  323. 5901/tcp open vnc VNC (protocol 3.8)
  324. | vnc-info:
  325. | Protocol version: 3.8
  326. | Security types:
  327. |_ VNC Authentication (2)
  328. 6001/tcp open X11 (access denied)
  329. Service Info: Host: sakura; OSs: Linux, Unix; CPE: cpe:/o:linux:linux_kernel
  330.  
  331. Host script results:
  332. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m40s
  333. |_nbstat: NetBIOS name: SAKURA, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
  334. | smb-os-discovery:
  335. | OS: Windows 6.1 (Samba 4.3.11-Ubuntu)
  336. | Computer name: sakura
  337. | NetBIOS computer name: SAKURA\x00
  338. | Domain name: \x00
  339. | FQDN: sakura
  340. |_ System time: 2020-01-25T10:41:00-08:00
  341. | smb-security-mode:
  342. | account_used: <blank>
  343. | authentication_level: user
  344. | challenge_response: supported
  345. |_ message_signing: disabled (dangerous, but default)
  346. | smb2-security-mode:
  347. | 2.02:
  348. |_ Message signing enabled but not required
  349. | smb2-time:
  350. | date: 2020-01-25 18:41:14
  351. |_ start_date: 1601-01-01 00:00:00
  352.  
  353. Nmap scan report for 172.16.16.67
  354. Host is up (0.00029s latency).
  355. Not shown: 990 closed ports
  356. PORT STATE SERVICE VERSION
  357. 7/tcp open echo
  358. 9/tcp open discard?
  359. 13/tcp open daytime
  360. 19/tcp open chargen xinetd chargen
  361. 21/tcp open ftp vsftpd 3.0.2
  362. |_ftp-anon: Anonymous FTP login allowed (FTP code 230)
  363. | ftp-syst:
  364. | STAT:
  365. | FTP server status:
  366. | Connected to 172.16.16.201
  367. | Logged in as ftp
  368. | TYPE: ASCII
  369. | No session bandwidth limit
  370. | Session timeout in seconds is 300
  371. | Control connection is plain text
  372. | Data connections will be plain text
  373. | At session startup, client count was 1
  374. | vsFTPd 3.0.2 - secure, fast, stable
  375. |_End of status
  376. 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.13 (Ubuntu Linux; protocol 2.0)
  377. | ssh-hostkey:
  378. | 1024 09:f4:57:2a:58:af:06:41:7c:09:0b:04:32:8a:6b:30 (DSA)
  379. | 2048 fe:30:c9:c1:39:77:26:11:db:2f:ac:d6:24:a3:04:ba (RSA)
  380. | 256 d3:90:23:be:ea:ec:d4:b6:8f:c7:b3:19:a4:9f:3e:b2 (ECDSA)
  381. |_ 256 68:35:a2:b2:b7:a0:a6:55:25:e2:0b:5e:d4:ba:7c:19 (EdDSA)
  382. 37/tcp open time (32 bits)
  383. |_rfc868-time: 2020-01-25T18:41:04
  384. 80/tcp open http Apache httpd 2.4.7 ((Ubuntu))
  385. |_http-server-header: Apache/2.4.7 (Ubuntu)
  386. |_http-title: Apache2 Ubuntu Default Page: It works
  387. 2222/tcp open ssh Dropbear sshd 2013.60 (protocol 2.0)
  388. 3306/tcp open mysql MySQL 5.5.62-0ubuntu0.14.04.1
  389. | mysql-info:
  390. | Protocol: 10
  391. | Version: 5.5.62-0ubuntu0.14.04.1
  392. | Thread ID: 81911
  393. | Capabilities flags: 63487
  394. | Some Capabilities: Support41Auth, SupportsCompression, InteractiveClient, FoundRows, ConnectWithDatabase, DontAllowDatabaseTableColumn, SupportsTransactions, IgnoreSpaceBeforeParenthesis, Speaks41ProtocolNew, IgnoreSigpipes, SupportsLoadDataLocal, LongPassword, ODBCClient, LongColumnFlag, Speaks41ProtocolOld, SupportsMultipleStatments, SupportsAuthPlugins, SupportsMultipleResults
  395. | Status: Autocommit
  396. | Salt: 9~5+s(gP;u]PZRnT9_Uj
  397. |_ Auth Plugin Name: 96
  398. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
  399.  
  400. Host script results:
  401. |_clock-skew: mean: 5h20m39s, deviation: 0s, median: 5h20m39s
  402.  
  403. Nmap scan report for 172.16.16.68
  404. Host is up (0.00080s latency).
  405. Not shown: 986 closed ports
  406. PORT STATE SERVICE VERSION
  407. 21/tcp open ftp Microsoft ftpd
  408. | ftp-anon: Anonymous FTP login allowed (FTP code 230)
  409. | 12-20-19 11:15AM 1407 admin.asp
  410. | 12-20-19 11:15AM 1407 admin.asp.txt
  411. | 12-20-19 09:58AM <DIR> aspnet_client
  412. | 12-20-19 03:56PM 1407 help.asp
  413. | 12-20-19 04:01PM <DIR> icons
  414. | 12-20-19 10:16AM 1781 index.html
  415. | 12-20-19 03:56PM 1407 shell.asp
  416. |_12-20-19 04:00PM <DIR> tickets
  417. | ftp-syst:
  418. |_ SYST: Windows_NT
  419. 23/tcp open telnet Microsoft Windows XP telnetd
  420. | telnet-ntlm-info:
  421. | Target_Name: US
  422. | NetBIOS_Domain_Name: US
  423. | NetBIOS_Computer_Name: TSUNADE
  424. | DNS_Domain_Name: microspace.lowcoal
  425. | DNS_Computer_Name: Tsunade.microspace.lowcoal
  426. | DNS_Tree_Name: microspace.lowcoal
  427. |_ Product_Version: 6.2.9200
  428. 80/tcp open http Microsoft IIS httpd 8.0
  429. | http-methods:
  430. |_ Potentially risky methods: TRACE COPY PROPFIND DELETE MOVE PROPPATCH MKCOL LOCK UNLOCK PUT
  431. |_http-server-header: Microsoft-IIS/8.0
  432. |_http-title: HTML Meta Tag
  433. | http-webdav-scan:
  434. | WebDAV type: Unkown
  435. | Public Options: OPTIONS, TRACE, GET, HEAD, POST, PROPFIND, PROPPATCH, MKCOL, PUT, DELETE, COPY, MOVE, LOCK, UNLOCK
  436. | Allowed Methods: OPTIONS, TRACE, GET, HEAD, POST, COPY, PROPFIND, DELETE, MOVE, PROPPATCH, MKCOL, LOCK, UNLOCK
  437. | Server Date: Sat, 25 Jan 2020 18:41:10 GMT
  438. |_ Server Type: Microsoft-IIS/8.0
  439. 111/tcp open rpcbind 2-4 (RPC #100000)
  440. | rpcinfo:
  441. | program version port/proto service
  442. | 100000 2,3,4 111/tcp rpcbind
  443. | 100000 2,3,4 111/udp rpcbind
  444. | 100003 2,3 2049/udp nfs
  445. | 100003 2,3,4 2049/tcp nfs
  446. | 100005 1,2,3 2049/tcp mountd
  447. | 100005 1,2,3 2049/udp mountd
  448. | 100021 1,2,3,4 2049/tcp nlockmgr
  449. | 100021 1,2,3,4 2049/udp nlockmgr
  450. | 100024 1 2049/tcp status
  451. |_ 100024 1 2049/udp status
  452. 135/tcp open msrpc Microsoft Windows RPC
  453. 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
  454. 445/tcp open microsoft-ds Microsoft Windows Server 2008 R2 - 2012 microsoft-ds
  455. 2049/tcp open mountd 1-3 (RPC #100005)
  456. 3389/tcp open ms-wbt-server Microsoft Terminal Service
  457. | ssl-cert: Subject: commonName=Tsunade.microspace.lowcoal
  458. | Not valid before: 2019-12-19T17:58:34
  459. |_Not valid after: 2020-06-19T17:58:34
  460. |_ssl-date: 2020-01-25T18:41:15+00:00; +5h20m40s from scanner time.
  461. 49152/tcp open msrpc Microsoft Windows RPC
  462. 49153/tcp open msrpc Microsoft Windows RPC
  463. 49154/tcp open msrpc Microsoft Windows RPC
  464. 49155/tcp open msrpc Microsoft Windows RPC
  465. 49156/tcp open msrpc Microsoft Windows RPC
  466. Service Info: OSs: Windows, Windows XP, Windows Server 2008 R2 - 2012; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_xp
  467.  
  468. Host script results:
  469. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m39s
  470. |_nbstat: NetBIOS name: TSUNADE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:a8:8e:bd (VMware)
  471. | smb-security-mode:
  472. | authentication_level: user
  473. | challenge_response: supported
  474. |_ message_signing: disabled (dangerous, but default)
  475. | smb2-security-mode:
  476. | 2.02:
  477. |_ Message signing enabled but not required
  478. | smb2-time:
  479. | date: 2020-01-25 18:41:08
  480. |_ start_date: 2020-01-23 22:20:08
  481.  
  482. Nmap scan report for 172.16.16.77
  483. Host is up (0.00076s latency).
  484. Not shown: 998 closed ports
  485. PORT STATE SERVICE VERSION
  486. 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.13 (Ubuntu Linux; protocol 2.0)
  487. | ssh-hostkey:
  488. | 1024 17:69:f8:46:d9:ec:f5:e5:57:d5:a4:4d:05:0c:af:eb (DSA)
  489. | 2048 e8:bf:1e:c6:c5:f4:7f:ab:c2:36:1e:ff:95:4c:32:9f (RSA)
  490. | 256 ea:5c:f2:2a:0e:dd:f3:47:dc:18:76:c8:de:72:4c:05 (ECDSA)
  491. |_ 256 7d:bc:c2:77:b9:8c:63:ab:94:df:e9:af:9b:49:11:43 (EdDSA)
  492. 53/tcp open domain
  493. | dns-nsid:
  494. |_ bind.version: 9.9.5-3ubuntu0.19-Ubuntu
  495. Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
  496.  
  497. Nmap scan report for 172.16.16.83
  498. Host is up (0.00078s latency).
  499. Not shown: 990 closed ports
  500. PORT STATE SERVICE VERSION
  501. 80/tcp open http Microsoft IIS httpd 8.0
  502. |_http-generator: WordPress 5.0
  503. | http-methods:
  504. |_ Potentially risky methods: TRACE COPY PROPFIND DELETE MOVE PROPPATCH MKCOL LOCK UNLOCK PUT
  505. |_http-server-header: Microsoft-IIS/8.0
  506. |_http-title: Microspace Main Blog &#8211; Boomers to the Moon
  507. | http-webdav-scan:
  508. | WebDAV type: Unkown
  509. | Public Options: OPTIONS, TRACE, GET, HEAD, POST, PROPFIND, PROPPATCH, MKCOL, PUT, DELETE, COPY, MOVE, LOCK, UNLOCK
  510. | Allowed Methods: OPTIONS, TRACE, GET, HEAD, POST, COPY, PROPFIND, DELETE, MOVE, PROPPATCH, MKCOL, LOCK, UNLOCK
  511. | Server Date: Sat, 25 Jan 2020 18:41:06 GMT
  512. |_ Server Type: Microsoft-IIS/8.0
  513. 135/tcp open msrpc Microsoft Windows RPC
  514. 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
  515. 445/tcp open microsoft-ds Microsoft Windows Server 2008 R2 - 2012 microsoft-ds
  516. 3389/tcp open ssl Microsoft SChannel TLS
  517. | fingerprint-strings:
  518. | TLSSessionReq:
  519. | ]GAy
  520. | 0%1#0!
  521. | rocklee.microspace.lowcoal0
  522. | 191227054058Z
  523. | 200627054058Z0%1#0!
  524. | rocklee.microspace.lowcoal0
  525. | owXv
  526. | jK6Y
  527. | z}w"
  528. | =Sg?/
  529. | gH*7
  530. | a3ih
  531. | $0"0
  532. | F:=#
  533. | _p5M
  534. | uc7]f
  535. | mgGB
  536. | 7\xf4
  537. |_ u727
  538. | ssl-cert: Subject: commonName=rocklee.microspace.lowcoal
  539. | Not valid before: 2019-12-27T05:40:58
  540. |_Not valid after: 2020-06-27T05:40:58
  541. |_ssl-date: 2020-01-25T18:41:13+00:00; +5h20m41s from scanner time.
  542. 49152/tcp open msrpc Microsoft Windows RPC
  543. 49153/tcp open msrpc Microsoft Windows RPC
  544. 49154/tcp open msrpc Microsoft Windows RPC
  545. 49155/tcp open msrpc Microsoft Windows RPC
  546. 49156/tcp open msrpc Microsoft Windows RPC
  547. 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
  548. SF-Port3389-TCP:V=7.60%I=7%D=1/25%Time=5E2C4015%P=x86_64-pc-linux-gnu%r(TL
  549. SF:SSessionReq,360,"\x16\x03\x03\x03\[\x02\0\0M\x03\x03\^,\x8b8\xb9\0&l\xa
  550. SF:3\xbf=zJ\xcdO\xde\xdfp\xf8w\x83\x01\x83=\xfcX\xb1\xc0\xa3@b\xab\x20\.&\
  551. SF:0\0\xe6\x7f\xa1\x8a\xc3\x82\xc0\x16n\x0b\xc4\xf2M\xc1\)R\x19\xcfM\xb4\x
  552. SF:d8\x07\xb06\xabW\xde\x91\0/\0\0\x05\xff\x01\0\x01\0\x0b\0\x03\x02\0\x02
  553. SF:\xff\0\x02\xfc0\x82\x02\xf80\x82\x01\xe0\xa0\x03\x02\x01\x02\x02\x10c\x
  554. SF:ca\x15\]GAy\x88K\xca\x92\xaa\x0e\xca-\xa70\r\x06\t\*\x86H\x86\xf7\r\x01
  555. SF:\x01\x05\x05\x000%1#0!\x06\x03U\x04\x03\x13\x1arocklee\.microspace\.low
  556. SF:coal0\x1e\x17\r191227054058Z\x17\r200627054058Z0%1#0!\x06\x03U\x04\x03\
  557. SF:x13\x1arocklee\.microspace\.lowcoal0\x82\x01\"0\r\x06\t\*\x86H\x86\xf7\
  558. SF:r\x01\x01\x01\x05\0\x03\x82\x01\x0f\x000\x82\x01\n\x02\x82\x01\x01\0\xb
  559. SF:9\xb1\+\x11\x14\x94\xd6\xd4\xb7\xbc>b\x20\xfb\.~\xa8\xd8\x85\xd8\xa6s\x
  560. SF:c4\r\xdf\xa7\xd0\xc8owXv\xa40\xa3\xba\xd2k\xb8\x20\xc9a\xa0`Fg\xdc\xb0\
  561. SF:xed\xeb\)\x11\xbc\xe4\x1e;\x1b\^\xa2\xf7\xf76@\[\0\xe8\xb0\xed\xe9m\x16
  562. SF:\xf0\n\x07j\x8bjK6Y\xf1\x0f\x10vPd\xcf\xf9\x06\xb2\xb4\x0c\xc6z}w\"\xfe
  563. SF:M\x06\xc5=Sg\?/\x02\xa2\xd3u\xc4\x930\x9fY\xd5\xa9\xb1\xf4\xba\x05\xe7\
  564. SF:xdc\)\xf9\xaa\xce\x8bq\t\xfa\xb3\x93\xc4\x855\xb1\x969\]a\x9aG\xe7TZ\xc
  565. SF:6\+\xcb\xe7\xe7\xb8\|G\xabZ:\x8e\xc5\xce\xfa\|\xaaSf\x10\xdc\xe8\xefV\x
  566. SF:c5\x93D\x15\x8e\x83gH\*7\x10O\xc0X\x89\xb9\x84\xe1\xa7\xeca3ih\x82\x8el
  567. SF:\x87@\xb6\xf2\xd6\xe7\x82A\xb6\xb8\x02\xbd\xf8\[k{\x1b\x9b6\xbb\xd0\x1b
  568. SF:k\xafs\r\xc3\x91\x06\*\x88P\x040\x9c7D\[\x10,\xe4\x84\xf7\xc1\x99\xb21f
  569. SF:\x18b\xf8\n\x8d\xd3\xe79\xe3~\xc7\x02\x03\x01\0\x01\xa3\$0\"0\x13\x06\x
  570. SF:03U\x1d%\x04\x0c0\n\x06\x08\+\x06\x01\x05\x05\x07\x03\x010\x0b\x06\x03U
  571. SF:\x1d\x0f\x04\x04\x03\x02\x0400\r\x06\t\*\x86H\x86\xf7\r\x01\x01\x05\x05
  572. SF:\0\x03\x82\x01\x01\0%to\xa3\x08\xae\x8a\x87\xf6r9s\xfd\x82YNy\xe4\xf9\x
  573. SF:b9\xf7\xbd\xb5\xa5\xe8G\x11\x1c\xe9\xf8\x80F:=#\x06K\x04\0I\xa61\x12_p5
  574. SF:M\xb0\x85\xdb\?\xc3<\x03\x12\xfd\x99\xa1@7\x1f\xf1\x98\xb3\xe3\x08uc7\]
  575. SF:f\x99-\x0e%\x03\x86Ps\xf5G@\xac\xe2\xde\xf6\^Q\xc4\xd3\xfd\x96p\xfc\xd7
  576. SF::V\xb0\x9a\x90Al\x80\xae\xd99\xeemgGB\xbd\$\$\xc0\xb0C\x0e\xd6\xde\x05\
  577. SF:x01\xbc\n\\/U\n\x91\xff\xbc\xe7\xef\x17\x91\*\x96\x13k\x10y\x96\)\xb4\x
  578. SF:14\x0c\x04\xe5\xe8'j\xe9k\xc25\x7f\t\xaf\x05#r\xa0\x06\x002\xc7\xbc\x9f
  579. SF:!\xe4\xed\x93\x99\xcd\xc7\x0fhp\xe2\xb4\xb9\xe4\xe7\xa17\\\xf4\x0cn\xd9
  580. SF:k\xd4!_R\xee\xa53\x13\xa7\xf4\x01\x07JN\x9cup\xd2d\xd5\xc5\x15\xec,U\xe
  581. SF:d\x88\xa0\xa4~\xd8\xff\x87\+\xfaQo\x0f\xca\xd6CH\xc8K\\B#\xceu72\\7\x8a
  582. SF:gb\x85\x8a#\xe05\xd2p\xb8\xb4\x0e\0\0\0");
  583. Service Info: OSs: Windows, Windows Server 2008 R2 - 2012; CPE: cpe:/o:microsoft:windows
  584.  
  585. Host script results:
  586. |_clock-skew: mean: 5h20m40s, deviation: 0s, median: 5h20m40s
  587. |_nbstat: NetBIOS name: ROCKLEE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:a8:b1:2a (VMware)
  588. | smb-security-mode:
  589. | account_used: guest
  590. | authentication_level: user
  591. | challenge_response: supported
  592. |_ message_signing: disabled (dangerous, but default)
  593. | smb2-security-mode:
  594. | 2.02:
  595. |_ Message signing enabled but not required
  596. | smb2-time:
  597. | date: 2020-01-25 18:41:06
  598. |_ start_date: 2020-01-24 03:40:50
  599.  
  600. Nmap scan report for 172.16.16.200
  601. Host is up (0.00076s latency).
  602. Not shown: 991 closed ports
  603. PORT STATE SERVICE VERSION
  604. 135/tcp open msrpc Microsoft Windows RPC
  605. 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
  606. 445/tcp open microsoft-ds Windows 7 Professional 7601 Service Pack 1 microsoft-ds (workgroup: US)
  607. 3389/tcp open ms-wbt-server Microsoft Terminal Service
  608. | ssl-cert: Subject: commonName=ino.microspace.lowcoal
  609. | Not valid before: 2019-12-19T04:50:46
  610. |_Not valid after: 2020-06-19T04:50:46
  611. |_ssl-date: 2020-01-25T18:41:03+00:00; +5h20m40s from scanner time.
  612. 7070/tcp open ssl/realserver?
  613. |_ssl-date: 2020-01-25T18:41:09+00:00; +5h20m40s from scanner time.
  614. 49152/tcp open msrpc Microsoft Windows RPC
  615. 49153/tcp open msrpc Microsoft Windows RPC
  616. 49154/tcp open msrpc Microsoft Windows RPC
  617. 49155/tcp open msrpc Microsoft Windows RPC
  618. Service Info: Host: INO; OS: Windows; CPE: cpe:/o:microsoft:windows
  619.  
  620. Host script results:
  621. |_clock-skew: mean: 5h20m39s, deviation: 0s, median: 5h20m39s
  622. |_nbstat: NetBIOS name: INO, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:a8:bc:11 (VMware)
  623. | smb-os-discovery:
  624. | OS: Windows 7 Professional 7601 Service Pack 1 (Windows 7 Professional 6.1)
  625. | OS CPE: cpe:/o:microsoft:windows_7::sp1:professional
  626. | Computer name: ino
  627. | NetBIOS computer name: INO\x00
  628. | Domain name: microspace.lowcoal
  629. | Forest name: microspace.lowcoal
  630. | FQDN: ino.microspace.lowcoal
  631. |_ System time: 2020-01-25T10:41:09-08:00
  632. | smb-security-mode:
  633. | account_used: guest
  634. | authentication_level: user
  635. | challenge_response: supported
  636. |_ message_signing: disabled (dangerous, but default)
  637. | smb2-security-mode:
  638. | 2.02:
  639. |_ Message signing enabled but not required
  640. | smb2-time:
  641. | date: 2020-01-25 18:41:06
  642. |_ start_date: 2020-01-23 22:19:29
  643.  
  644. Nmap scan report for 172.16.16.201
  645. Host is up (0.00070s latency).
  646. Not shown: 998 closed ports
  647. PORT STATE SERVICE VERSION
  648. 22/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0)
  649. | ssh-hostkey:
  650. | 2048 85:05:db:cc:40:d5:40:e8:73:5c:53:6f:7e:3e:36:7c (RSA)
  651. | 256 fe:e4:34:5a:38:94:6f:2a:96:e6:08:18:9f:58:76:77 (ECDSA)
  652. |_ 256 a6:41:59:01:72:ee:0c:9d:8c:b7:6d:11:f4:ac:f5:d8 (EdDSA)
  653. 3389/tcp open ms-wbt-server Microsoft Terminal Service
  654. Service Info: OSs: Linux, Windows; CPE: cpe:/o:linux:linux_kernel, cpe:/o:microsoft:windows
  655.  
  656. Post-scan script results:
  657. | clock-skew:
  658. | 5h20m40s:
  659. | 172.16.16.68
  660. | 172.16.16.30
  661. | 172.16.16.67
  662. |_ 172.16.16.200
  663. | ssh-hostkey: Possible duplicate hosts
  664. | Key 256 b1:e8:f9:6f:c0:bc:b9:a8:fa:32:d2:a4:6f:52:a0:94 (ECDSA) used by:
  665. | 172.16.16.30
  666. | 172.16.16.35
  667. | Key 3072 93:f4:70:de:99:c4:de:5b:c8:22:1e:07:57:45:4c:69 (RSA) used by:
  668. | 172.16.16.30
  669. | 172.16.16.35
  670. | Key 256 60:d7:2a:a5:bf:75:3c:c8:d6:85:a7:2b:41:ad:d8:f8 (EdDSA) used by:
  671. | 172.16.16.30
  672. |_ 172.16.16.35
  673. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  674. Nmap done: 256 IP addresses (14 hosts up) scanned in 306.03 seconds
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!