Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-03-24 14:20 MSK
- NSE: Loaded 285 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 14:20
- NSE: [mtrace] A source IP must be provided through fromip argument.
- NSE: [shodan-api] Error: Please specify your ShodanAPI key with the shodan-api.apikey argument
- Completed NSE at 14:21, 10.47s elapsed
- Initiating NSE at 14:21
- Completed NSE at 14:21, 0.00s elapsed
- Initiating NSE at 14:21
- Completed NSE at 14:21, 0.00s elapsed
- Pre-scan script results:
- | targets-asn:
- |_ targets-asn.asn is a mandatory parameter
- Initiating Ping Scan at 14:21
- Scanning 109.120.155.16 [7 ports]
- Completed Ping Scan at 14:21, 0.01s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 14:21
- Completed Parallel DNS resolution of 1 host. at 14:21, 0.02s elapsed
- Initiating SYN Stealth Scan at 14:21
- Scanning 1535104041.nbrz.ru (109.120.155.16) [1000 ports]
- Discovered open port 80/tcp on 109.120.155.16
- Discovered open port 25/tcp on 109.120.155.16
- Discovered open port 22/tcp on 109.120.155.16
- Discovered open port 111/tcp on 109.120.155.16
- Completed SYN Stealth Scan at 14:21, 1.59s elapsed (1000 total ports)
- Initiating UDP Scan at 14:21
- Scanning 1535104041.nbrz.ru (109.120.155.16) [1000 ports]
- Increasing send delay for 109.120.155.16 from 0 to 50 due to max_successful_tryno increase to 5
- Increasing send delay for 109.120.155.16 from 50 to 100 due to max_successful_tryno increase to 6
- Warning: 109.120.155.16 giving up on port because retransmission cap hit (6).
- Discovered open port 111/udp on 109.120.155.16
- Increasing send delay for 109.120.155.16 from 100 to 200 due to 11 out of 20 dropped probes since last increase.
- UDP Scan Timing: About 9.91% done; ETC: 14:26 (0:04:42 remaining)
- Increasing send delay for 109.120.155.16 from 200 to 400 due to 11 out of 11 dropped probes since last increase.
- Increasing send delay for 109.120.155.16 from 400 to 800 due to 11 out of 11 dropped probes since last increase.
- UDP Scan Timing: About 94.81% done; ETC: 14:36 (0:00:47 remaining)
- Completed UDP Scan at 14:36, 938.62s elapsed (1000 total ports)
- Initiating Service scan at 14:36
- Scanning 55 services on 1535104041.nbrz.ru (109.120.155.16)
- Completed Service scan at 14:39, 165.22s elapsed (55 services on 1 host)
- Initiating OS detection (try #1) against 1535104041.nbrz.ru (109.120.155.16)
- Retrying OS detection (try #2) against 1535104041.nbrz.ru (109.120.155.16)
- Retrying OS detection (try #3) against 1535104041.nbrz.ru (109.120.155.16)
- Retrying OS detection (try #4) against 1535104041.nbrz.ru (109.120.155.16)
- Retrying OS detection (try #5) against 1535104041.nbrz.ru (109.120.155.16)
- Initiating Traceroute at 14:39
- Completed Traceroute at 14:39, 0.02s elapsed
- Initiating Parallel DNS resolution of 5 hosts. at 14:39
- Completed Parallel DNS resolution of 5 hosts. at 14:39, 0.06s elapsed
- NSE: Script scanning 109.120.155.16.
- Initiating NSE at 14:39
- NSE: [ip-geolocation-maxmind] You must specify a Maxmind database file with the maxmind_db argument.
- NSE: [ip-geolocation-maxmind] Download the database from http://dev.maxmind.com/geoip/legacy/geolite/
- sendto in send_ip_packet_sd: sendto(44, packet, 44, 0, 109.120.155.16, 16) => Network is down
- Offending packet: TCP local > 109.120.155.16:111 S ttl=128 id=21969 iplen=11264 seq=298625210 win=3072 <mss 1460>
- Completed NSE at 14:53, 804.14s elapsed
- Initiating NSE at 14:53
- Completed NSE at 14:53, 0.14s elapsed
- Initiating NSE at 14:53
- Completed NSE at 14:53, 0.10s elapsed
- Nmap scan report for 1535104041.nbrz.ru (109.120.155.16)
- Host is up (0.010s latency).
- Not shown: 1944 closed ports, 50 open|filtered ports
- PORT STATE SERVICE VERSION
- 22/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.8 (Ubuntu Linux; protocol 2.0)
- |_banner: SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.8
- | ssh-hostkey:
- | 2048 db:a5:f2:f0:75:b7:3f:6a:f8:f2:53:c6:d6:da:67:cc (RSA)
- | 256 4e:05:92:11:3e:34:a3:39:6b:31:50:bc:4c:86:f0:a5 (ECDSA)
- |_ 256 93:f1:37:9a:5d:bf:dc:96:48:48:24:86:c2:c7:8b:9c (ED25519)
- | ssh2-enum-algos:
- | kex_algorithms: (6)
- | curve25519-sha256@libssh.org
- | ecdh-sha2-nistp256
- | ecdh-sha2-nistp384
- | ecdh-sha2-nistp521
- | diffie-hellman-group-exchange-sha256
- | diffie-hellman-group14-sha1
- | server_host_key_algorithms: (5)
- | ssh-rsa
- | rsa-sha2-512
- | rsa-sha2-256
- | ecdsa-sha2-nistp256
- | ssh-ed25519
- | encryption_algorithms: (6)
- | chacha20-poly1305@openssh.com
- | aes128-ctr
- | aes192-ctr
- | aes256-ctr
- | aes128-gcm@openssh.com
- | aes256-gcm@openssh.com
- | mac_algorithms: (10)
- | umac-64-etm@openssh.com
- | umac-128-etm@openssh.com
- | hmac-sha2-256-etm@openssh.com
- | hmac-sha2-512-etm@openssh.com
- | hmac-sha1-etm@openssh.com
- | umac-64@openssh.com
- | umac-128@openssh.com
- | hmac-sha2-256
- | hmac-sha2-512
- | hmac-sha1
- | compression_algorithms: (2)
- | none
- |_ zlib@openssh.com
- 25/tcp open smtp Postfix smtpd
- |_banner: 220 localhost.localdomain ESMTP Postfix (Ubuntu)
- |_smtp-commands: localhost.localdomain, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
- | ssl-cert: Subject: commonName=localhost.localdomain
- | Issuer: commonName=localhost.localdomain
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2017-08-08T09:09:46
- | Not valid after: 2027-08-06T09:09:46
- | MD5: 525b 0518 d49c ef49 493d fe5b 3bf1 dbbe
- |_SHA-1: b4ed ebd3 c990 15b7 29e3 dea4 4e79 fd1e 9aad 5aed
- |_ssl-date: ERROR: Script execution failed (use -d to debug)
- 80/tcp open http Apache httpd 2.4.18 ((Ubuntu))
- | http-backup-finder:
- | Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=1535104041.nbrz.ru
- | http://1535104041.nbrz.ru:80/js/px copy.js
- | http://1535104041.nbrz.ru:80/js/Copy of px.js
- | http://1535104041.nbrz.ru:80/js/Copy (2) of px.js
- | http://1535104041.nbrz.ru:80/js/px copy.js
- | http://1535104041.nbrz.ru:80/js/Copy of px.js
- | http://1535104041.nbrz.ru:80/js/Copy (2) of px.js
- | http://1535104041.nbrz.ru:80/js/caf copy.js
- | http://1535104041.nbrz.ru:80/js/Copy of caf.js
- | http://1535104041.nbrz.ru:80/js/Copy (2) of caf.js
- | http://1535104041.nbrz.ru:80/js/adframe copy.js
- | http://1535104041.nbrz.ru:80/js/Copy of adframe.js
- |_ http://1535104041.nbrz.ru:80/js/Copy (2) of adframe.js
- |_http-comments-displayer: Couldn't find any comments.
- |_http-date: Sun, 24 Mar 2019 11:39:50 GMT; 0s from local time.
- | http-headers:
- | Date: Sun, 24 Mar 2019 11:39:51 GMT
- | Server: Apache/2.4.18 (Ubuntu)
- | Last-Modified: Sat, 23 Mar 2019 11:30:31 GMT
- | ETag: "13b-584c14c908b7e"
- | Accept-Ranges: bytes
- | Content-Length: 315
- | Vary: Accept-Encoding
- | Connection: close
- | Content-Type: text/html
- |
- |_ (Request type: HEAD)
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- |_http-mobileversion-checker: No mobile version detected.
- |_http-referer-checker: Couldn't find any cross-domain scripts.
- |_http-security-headers:
- |_http-server-header: Apache/2.4.18 (Ubuntu)
- |_http-title: Site doesn't have a title (text/html).
- | http-traceroute:
- |_ Possible reverse proxy detected.
- | http-useragent-tester:
- | Status for browser useragent: 200
- | Allowed User Agents:
- | Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
- | libwww
- | lwp-trivial
- | libcurl-agent/1.0
- | PHP/
- | Python-urllib/2.5
- | GT::WWW
- | Snoopy
- | MFC_Tear_Sample
- | HTTP::Lite
- | PHPCrawl
- | URI::Fetch
- | Zend_Http_Client
- | http client
- | PECL::HTTP
- | Wget/1.13.4 (linux-gnu)
- |_ WWW-Mechanize/1.34
- |_http-xssed: No previously reported XSS vuln.
- 111/tcp open rpcbind 2-4 (RPC #100000)
- | rpcinfo:
- | program version port/proto service
- | 100000 2,3,4 111/tcp rpcbind
- |_ 100000 2,3,4 111/udp rpcbind
- 4899/tcp filtered radmin
- 111/udp open rpcbind 2-4 (RPC #100000)
- | rpcinfo:
- | program version port/proto service
- | 100000 2,3,4 111/tcp rpcbind
- |_ 100000 2,3,4 111/udp rpcbind
- No exact OS matches for host (If you know what OS is running on it, see https://nmap.org/submit/ ).
- TCP/IP fingerprint:
- OS:SCAN(V=7.70%E=4%D=3/24%OT=22%CT=1%CU=2%PV=N%DS=5%DC=T%G=Y%TM=5C976FA8%P=
- OS:x86_64-apple-darwin13.4.0)SEQ(SP=101%GCD=1%ISR=10C%TI=Z%II=I%TS=A)OPS(O1
- OS:=M4ECST11NW7%O2=M4ECST11NW7%O3=M4ECNNT11NW7%O4=M4ECST11NW7%O5=M4ECST11NW
- OS:7%O6=M4ECST11)WIN(W1=3890%W2=3890%W3=3890%W4=3890%W5=3890%W6=3890)ECN(R=
- OS:Y%DF=Y%T=3F%W=3908%O=M4ECNNSNW7%CC=Y%Q=)T1(R=Y%DF=Y%T=3F%S=O%A=S+%F=AS%R
- OS:D=0%Q=)T2(R=N)T3(R=N)T4(R=N)T5(R=Y%DF=Y%T=3F%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q
- OS:=)T6(R=N)T7(R=N)U1(R=Y%DF=N%T=3F%IPL=164%UN=0%RIPL=G%RID=G%RIPCK=G%RUCK=
- OS:G%RUD=G)IE(R=Y%DFI=N%T=3F%CD=S)
- Uptime guess: 41.984 days (since Sun Feb 10 15:15:33 2019)
- Network Distance: 5 hops
- TCP Sequence Prediction: Difficulty=256 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: Host: localhost.localdomain; OS: Linux; CPE: cpe:/o:linux:linux_kernel
- Host script results:
- | asn-query:
- | BGP: 109.120.128.0/18 | Country: RU
- | Origin AS: 30968 - INFOBOX-AS Infobox.ru Autonomous System, RU
- |_ Peer AS: 9002 20764 29076
- | fcrdns:
- | 1498632086.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | 1507907844.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | 1535104041.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | 1538494413.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | 1552073781.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | at5.com:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 54.76.127.67
- | freecc.xyz:
- | status: fail
- | reason: No A record
- | ftp-229618:
- | status: fail
- | reason: No A record
- | i.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | karaev1006.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | newsendfresh.ru:
- | status: fail
- | reason: No A record
- | nikita.surnachev03.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | senior20932.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- | 192.64.147.152
- | spichakovda.nbrz.ru:
- | status: fail
- | reason: FCRDNS mismatch
- | addresses:
- |_ 192.64.147.152
- | firewalk:
- | HOP HOST PROTOCOL BLOCKED PORTS
- | 0 local udp 67
- | 4 .* tcp 4899
- |_ udp 3,23,199,512,814,998,1012,1020,1041
- |_hostmap-robtex: ERROR: Script execution failed (use -d to debug)
- | ip-geolocation-geoplugin:
- |_109.120.155.16
- |_ipidseq: All zeros
- |_path-mtu: PMTU == 1300
- | traceroute-geolocation:
- | HOP RTT ADDRESS GEOLOCATION
- | 1 0.39 10.***.0.1 localhost
- | 2 0.90 h ********** private info
- | 3 1.98 h ********** private info
- | 4 1.51 unspecified.mtw.ru (37.228.89.2) 55.752,37.616 Russia (Moscow)
- |_ 5 9.17 1535104041.nbrz.ru (109.120.155.16) 55.739,37.607 Russia ()
- |_whois-domain: You should provide a domain name.
- | whois-ip: Record found at whois.ripe.net
- | inetnum: 109.120.155.0 - 109.120.157.255
- | netname: INFOBOX-HYPER-V
- | descr: Net for VPS servers.
- | country: RU
- | role: Infobox.ru contact data
- |_email: noc@infobox.ru
- TRACEROUTE (using port 995/tcp)
- HOP RTT ADDRESS
- 1 0.39 ms local
- 2 0.90 ms private
- 3 1.98 ms private
- 4 1.51 ms unspecified.mtw.ru (37.228.89.2)
- 5 9.17 ms 1535104041.nbrz.ru (109.120.155.16)
- NSE: Script Post-scanning.
- Initiating NSE at 14:53
- Completed NSE at 14:53, 0.00s elapsed
- Initiating NSE at 14:53
- Completed NSE at 14:53, 0.00s elapsed
- Initiating NSE at 14:53
- Completed NSE at 14:53, 0.00s elapsed
- Read data files from: /usr/local/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 1938.90 seconds
- Raw packets sent: 2931 (123.005KB) | Rcvd: 2093 (103.997KB)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement