jrdepriest@ebizsrvb:~$ sudo nmap -O2 -sSV -O -T4 -d --packet-trace -p25 Password: Starting Nmap 4.21ALPHA4 ( http://insecure.org ) at 2007-04-12 17:46 CDT --------------- Timing report --------------- hostgroups: min 1, max 100000 rtt-timeouts: init 500, min 100, max 1250 max-scan-delay: TCP 10, UDP 1000 parallelism: min 0, max 0 max-retries: 6, host-timeout: 0 --------------------------------------------- Packet capture filter (device eth1): (icmp and dst host ) or ((tcp or udp) and dst host and ( dst port 47022 or dst port 47023 or dst port 47024 or dst port 47025 or dst port47026)) SENT (0.1660s) ICMP > Echo request (type=8/code=0) ttl=48 id=20118 iplen=28 SENT (0.1660s) TCP :47022 > :80 A ttl=48 id=58470 iplen=40 seq=3164281246 win=1024 ack=3113949598 RCVD (0.1890s) ICMP > Echo reply (type=0/code=0) ttl=61 id=64065 iplen=28 We got a ping packet back from : id = 59917 seq = 27750 checksum = 43403 Hostupdate called for machine state UNKNOWN/COMBO -> HOST_UP (trynum 0, dotimeadj: yestime: 23981) Finished block: srtt: 23841 rttvar: 23841 timeout: 119205 block_tries: 1 up_this_block: 1 down_this_block: 0 group_sz: 1 massping done: num_hosts: 1 num_responses: 1 mass_rdns: Using DNS server mass_rdns: Using DNS server mass_rdns: Using DNS server mass_rdns: Using DNS server NSOCK (0.2980s) UDP connection requested to :53 (IOD #1) EID 8 NSOCK (0.2980s) Read request from IOD #1 [:53] (timeout: -1ms) EID 18 NSOCK (0.2990s) UDP connection requested to :53 (IOD #2) EID 24 NSOCK (0.2990s) Read request from IOD #2 [:53] (timeout: -1ms) EID 34 NSOCK (0.2990s) UDP connection requested to :53 (IOD #3) EID 40 NSOCK (0.2990s) Read request from IOD #3 [:53] (timeout: -1ms) EID 50 NSOCK (0.3000s) UDP connection requested to :53 (IOD #4) EID 56 NSOCK (0.3000s) Read request from IOD #4 [:53] (timeout: -1ms) EID 66 Initiating Parallel DNS resolution of 1 host. at 17:46 NSOCK (0.3000s) Write request for 43 bytes to IOD #1 EID 75 [:53]: ..............in-addr.arpa..... NSOCK (0.3010s) nsock_loop() started (timeout=500ms). 9 events pending NSOCK (0.3010s) Callback: CONNECT SUCCESS for EID 56 [:53] NSOCK (0.3010s) Callback: CONNECT SUCCESS for EID 40 [:53] NSOCK (0.3010s) Callback: CONNECT SUCCESS for EID 24 [:53] NSOCK (0.3010s) Callback: CONNECT SUCCESS for EID 8 [:53] NSOCK (0.3010s) Callback: WRITE SUCCESS for EID 75 [:53] NSOCK (0.3040s) Callback: READ SUCCESS for EID 18 [:53] (135 bytes) NSOCK (0.3040s) Read request from IOD #1 [:53] (timeout: -1ms) EID 82 mass_rdns: 0.01s 0/1 [#: 4, OK: 0, NX: 0, DR: 0, SF: 0, TR: 1] Completed Parallel DNS resolution of 1 host. at 17:46, 0.00s elapsed DNS resolution of 1 IPs took 0.01s. Mode: Async [#: 4, OK: 0, NX: 1, DR: 0, SF: 0, TR: 1, CN: 0] Initiating SYN Stealth Scan at 17:46 Scanning [1 port] Packet capture filter (device eth1): dst host and (icmp or (tcp and (src host 10.236.1.220))) SENT (0.3170s) TCP :47002 > :25 S ttl=39 id=13732 iplen=44 seq=2747695603 win=4096 RCVD (0.3310s) TCP :25 > :47002 SA ttl=61 id=64066 iplen=44 seq=1473658820win=5840 ack=2747695604 Discovered open port 25/tcp on Completed SYN Stealth Scan at 17:46, 0.03s elapsed (1 total ports) WARNING: Template "p/DCM-202 httpd/" replaced with "p/D-Link DCM-202 Docsis Cable Modem http config/" on line 3824 of nmap-service-probes Initiating Service scan at 17:46 Scanning 1 service on NSOCK (0.4890s) TCP connection requested to :25 (IOD #1) EID 8 NSOCK (0.4900s) nsock_loop() started (no timeout). 1 events pending NSOCK (0.5080s) Callback: CONNECT SUCCESS for EID 8 [:25] NSOCK (0.5080s) Read request from IOD #1 [:25] (timeout: 6000ms) EID 18 NSOCK (0.5610s) Callback: READ SUCCESS for EID 18 [:25] (14 bytes): 220 DP-6020.. NSOCK (0.5610s) Read request from IOD #1 [:25] (timeout: 5944ms) EID 26 NSOCK (6.5080s) Callback: READ TIMEOUT for EID 26 [:25] NSOCK (6.5080s) Write request for 6 bytes to IOD #1 EID 35 [:25]: HELP.. NSOCK (6.5080s) Read request from IOD #1 [:25] (timeout: 7500ms) EID 42 NSOCK (6.5090s) Callback: WRITE SUCCESS for EID 35 [:25] NSOCK (6.5170s) Callback: READ SUCCESS for EID 42 [:25] (25 bytes): 554 command not support.. NSOCK (6.5170s) Read request from IOD #1 [:25] (timeout: 7488ms) EID 50 NSOCK (14.0050s) Callback: READ TIMEOUT for EID 50 [:25] NSOCK (14.0050s) TCP connection requested to :25 (IOD #2) EID 56 NSOCK (17.0130s) Callback: CONNECT SUCCESS for EID 56 [:25] NSOCK (17.0130s) Write request for 4 bytes to IOD #2 EID 67 [:25]: .... NSOCK (17.0130s) Read request from IOD #2 [:25] (timeout: 5000ms) EID 74 NSOCK (17.0130s) Callback: WRITE SUCCESS for EID 67 [:25] NSOCK (17.0250s) Callback: READ SUCCESS for EID 74 [:25] (14 bytes): 220 DP-6020.. NSOCK (17.0250s) Read request from IOD #2 [:25] (timeout: 4984ms) EID 82 NSOCK (17.0320s) Callback: READ SUCCESS for EID 82 [:25] (25 bytes): 554 command not support.. NSOCK (17.0320s) Read request from IOD #2 [:25] (timeout: 4977ms) EID 90 NSOCK (17.0400s) Callback: READ SUCCESS for EID 90 [:25] (25 bytes): 554 command not support.. NSOCK (17.0400s) Read request from IOD #2 [:25] (timeout: 4970ms) EID 98 NSOCK (22.0100s) Callback: READ TIMEOUT for EID 98 [:25] NSOCK (22.0100s) TCP connection requested to :25 (IOD #3) EID 104 NSOCK (22.0180s) Callback: CONNECT SUCCESS for EID 104 [:25] NSOCK (22.0180s) Write request for 18 bytes to IOD #3 EID 115 [:25]: GET / HTTP/1.0.... NSOCK (22.0180s) Read request from IOD #3 [:25] (timeout: 5000ms) EID 122 NSOCK (22.0180s) Callback: WRITE SUCCESS for EID 115 [:25] NSOCK (22.0300s) Callback: READ SUCCESS for EID 122 [:25] (14 bytes): 220 DP-6020.. NSOCK (22.0300s) Read request from IOD #3 [:25] (timeout: 4982ms) EID 130 NSOCK (22.0380s) Callback: READ SUCCESS for EID 130 [:25] (25 bytes): 554 command not support.. NSOCK (22.0380s) Read request from IOD #3 [:25] (timeout: 4975ms) EID 138 NSOCK (22.0450s) Callback: READ SUCCESS for EID 138 [:25] (25 bytes): 554 command not support.. NSOCK (22.0450s) Read request from IOD #3 [:25] (timeout: 4967ms) EID 146 NSOCK (27.0140s) Callback: READ TIMEOUT for EID 146 [:25] NSOCK (27.0140s) TCP connection requested to :25 (IOD #4) EID 152 NSOCK (27.0220s) Callback: CONNECT SUCCESS for EID 152 [:25] NSOCK (27.0220s) Write request for 22 bytes to IOD #4 EID 163 [:25]: OPTIONS / HTTP/1.0.... NSOCK (27.0220s) Read request from IOD #4 [:25] (timeout: 5000ms) EID 170 NSOCK (27.0220s) Callback: WRITE SUCCESS for EID 163 [:25] NSOCK (27.0340s) Callback: READ SUCCESS for EID 170 [:25] (14 bytes): 220 DP-6020.. NSOCK (27.0340s) Read request from IOD #4 [:25] (timeout: 4982ms) EID 178 NSOCK (27.0420s) Callback: READ SUCCESS for EID 178 [:25] (25 bytes): 554 command not support.. NSOCK (27.0420s) Read request from IOD #4 [:25] (timeout: 4974ms) EID 186 NSOCK (27.0490s) Callback: READ SUCCESS for EID 186 [:25] (25 bytes): 554 command not support.. NSOCK (27.0490s) Read request from IOD #4 [:25] (timeout: 4967ms) EID 194 NSOCK (32.0180s) Callback: READ TIMEOUT for EID 194 [:25] NSOCK (32.0190s) TCP connection requested to :25 (IOD #5) EID 200 NSOCK (32.0260s) Callback: CONNECT SUCCESS for EID 200 [:25] NSOCK (32.0260s) Write request for 22 bytes to IOD #5 EID 211 [:25]: OPTIONS / RTSP/1.0.... NSOCK (32.0260s) Read request from IOD #5 [:25] (timeout: 5000ms) EID 218 NSOCK (32.0260s) Callback: WRITE SUCCESS for EID 211 [:25] NSOCK (32.0380s) Callback: READ SUCCESS for EID 218 [:25] (14 bytes): 220 DP-6020.. NSOCK (32.0380s) Read request from IOD #5 [:25] (timeout: 4982ms) EID 226 NSOCK (32.0460s) Callback: READ SUCCESS for EID 226 [:25] (25 bytes): 554 command not support.. NSOCK (32.0460s) Read request from IOD #5 [:25] (timeout: 4975ms) EID 234 NSOCK (32.0530s) Callback: READ SUCCESS for EID 234 [:25] (25 bytes): 554 command not support.. NSOCK (32.0530s) Read request from IOD #5 [:25] (timeout: 4967ms) EID 242 NSOCK (37.0230s) Callback: READ TIMEOUT for EID 242 [:25] NSOCK (37.0230s) TCP connection requested to :25 (IOD #6) EID 248 NSOCK (37.0310s) Callback: CONNECT SUCCESS for EID 248 [:25] NSOCK (37.0310s) Write request for 44 bytes to IOD #6 EID 259 [:25]: ...(r..................|.................... NSOCK (37.0310s) Read request from IOD #6 [:25] (timeout: 5000ms) EID 266 NSOCK (37.0310s) Callback: WRITE SUCCESS for EID 259 [:25] NSOCK (37.0430s) Callback: READ SUCCESS for EID 266 [:25] (14 bytes): 220 DP-6020.. NSOCK (37.0430s) Read request from IOD #6 [:25] (timeout: 4985ms) EID 274 NSOCK (42.0350s) Callback: READ TIMEOUT for EID 274 [:25] NSOCK (42.0350s) TCP connection requested to :25 (IOD #7) EID 280 NSOCK (42.0430s) Callback: CONNECT SUCCESS for EID 280 [:25] NSOCK (42.0430s) Write request for 32 bytes to IOD #7 EID 291 [:25]: ...............version.bind..... NSOCK (42.0430s) Read request from IOD #7 [:25] (timeout: 5000ms) EID 298 NSOCK (42.0440s) Callback: WRITE SUCCESS for EID 291 [:25] NSOCK (42.0550s) Callback: READ SUCCESS for EID 298 [:25] (14 bytes): 220 DP-6020.. NSOCK (42.0550s) Read request from IOD #7 [:25] (timeout: 4985ms) EID 306 NSOCK (47.0470s) Callback: READ TIMEOUT for EID 306 [:25] NSOCK (47.0480s) TCP connection requested to :25 (IOD #8) EID 312 NSOCK (47.1400s) Callback: CONNECT SUCCESS for EID 312 [:25] NSOCK (47.1400s) Write request for 14 bytes to IOD #8 EID 323 [:25]: .............. NSOCK (47.1400s) Read request from IOD #8 [:25] (timeout: 5000ms) EID 330 NSOCK (47.1400s) Callback: WRITE SUCCESS for EID 323 [:25] NSOCK (47.2480s) Callback: READ SUCCESS for EID 330 [:25] (14 bytes): 220 DP-6020.. NSOCK (47.2480s) Read request from IOD #8 [:25] (timeout: 4889ms) EID 338 NSOCK (52.1440s) Callback: READ TIMEOUT for EID 338 [:25] NSOCK (52.1440s) TCP connection requested to :25 (IOD #9) EID 344 NSOCK (52.1520s) Callback: CONNECT SUCCESS for EID 344 [:25] NSOCK (52.1520s) Write request for 88 bytes to IOD #9 EID 355 [:25] NSOCK (52.1520s) Read request from IOD #9 [:25] (timeout: 5000ms) EID 362 NSOCK (52.1520s) Callback: WRITE SUCCESS for EID 355 [:25] NSOCK (52.1640s) Callback: READ SUCCESS for EID 362 [:25] (14 bytes): 220 DP-6020.. NSOCK (52.1640s) Read request from IOD #9 [:25] (timeout: 4982ms) EID 370 NSOCK (52.1720s) Callback: READ SUCCESS for EID 370 [:25] (25 bytes): 554 command not support.. NSOCK (52.1720s) Read request from IOD #9 [:25] (timeout: 4974ms) EID 378 NSOCK (57.1480s) Callback: READ TIMEOUT for EID 378 [:25] NSOCK (57.1480s) TCP connection requested to :25 (IOD #10) EID 384 NSOCK (57.1560s) Callback: CONNECT SUCCESS for EID 384 [:25] NSOCK (57.1560s) Write request for 168 bytes to IOD #10 EID 395 [:25] NSOCK (57.1560s) Read request from IOD #10 [:25] (timeout: 5000ms) EID 402 NSOCK (57.1570s) Callback: WRITE SUCCESS for EID 395 [:25] NSOCK (57.1690s) Callback: READ SUCCESS for EID 402 [:25] (14 bytes): 220 DP-6020.. NSOCK (57.1690s) Read request from IOD #10 [:25] (timeout: 4985ms) EID 410 NSOCK (62.1560s) Callback: READ TIMEOUT for EID 410 [:25] NSOCK (62.1570s) TCP connection requested to :25 (IOD #11) EID 416 NSOCK (62.1650s) Callback: CONNECT SUCCESS for EID 416 [:25] NSOCK (62.1650s) Write request for 12 bytes to IOD #11 EID 427 [:25]: l........... NSOCK (62.1650s) Read request from IOD #11 [:25] (timeout: 5000ms) EID 434 NSOCK (62.1650s) Callback: WRITE SUCCESS for EID 427 [:25] NSOCK (62.1770s) Callback: READ SUCCESS for EID 434 [:25] (14 bytes): 220 DP-6020.. Completed Service scan at 17:47, 61.69s elapsed (1 service on 1 host) Warning: OS detection for will be MUCH less reliable because we did not find at least 1 open and 1 closed TCP port Packet capture filter (device eth1): dst host and (icmp or (tcp and (src host ))) Initiating OS detection (try #1) against SENT (62.2800s) TCP :47126 > :25 S ttl=49 id=31996 iplen=60 seq=666749933 win=1 RCVD (62.2880s) TCP :25 > :47126 SA ttl=61 id=64125 iplen=44 seq=1473719710 win=5840 ack=666749934 SENT (62.3880s) TCP :47127 > :25 S ttl=40 id=32164 iplen=60 seq=666749934 win=63 RCVD (62.3960s) TCP :25 > :47127 SA ttl=61 id=64126 iplen=44 seq=1473719820 win=5840 ack=666749935 SENT (62.4960s) TCP :47128 > :25 S ttl=59 id=24433 iplen=60 seq=666749935 win=4 RCVD (62.5040s) TCP :25 > :47128 SA ttl=61 id=64127 iplen=44 seq=1473719930 win=5840 ack=666749936 SENT (62.6040s) TCP :47129 > :25 S ttl=41 id=58857 iplen=56 seq=666749936 win=4 RCVD (62.6120s) TCP :25 > :47129 SA ttl=61 id=64128 iplen=44 seq=1473720030 win=5840 ack=666749937 SENT (62.7120s) TCP :47130 > :25 S ttl=51 id=63093 iplen=60 seq=666749937 win=16 RCVD (62.7200s) TCP :25 > :47130 SA ttl=61 id=64129 iplen=44 seq=1473720140 win=5840 ack=666749938 SENT (62.8200s) TCP :47131 > :25 S ttl=41 id=37512 iplen=56 seq=666749938 win=512 RCVD (62.8280s) TCP :25 > :47131 SA ttl=61 id=64130 iplen=44 seq=1473720240 win=5840 ack=666749939 SENT (62.8480s) ICMP > Echo request (type=8/code=9) ttl=39 id=57341 iplen=148 RCVD (62.8570s) ICMP > Echo reply (type=0/code=9) ttl=61 id=64131 iplen=148 SENT (62.8800s) ICMP > Echo request (type=8/code=0) ttl=51 id=53684 iplen=178 RCVD (62.8890s) ICMP > Echo reply (type=0/code=0) ttl=61 id=64132 iplen=178 SENT (62.9120s) UDP :47178 > :36058 ttl=60 id=16912 iplen=328 RCVD (62.9220s) ICMP > port unreachable (type=3/code=3) ttl=61 id=64133 iplen=56 SENT (62.9450s) TCP :47138 > :25 SEC ttl=49 id=1294 iplen=52 seq=666749933 win=3 RCVD (62.9530s) TCP :25 > :0 R ttl=61 id=64134 iplen=40 seq=0 win=0 SENT (62.9740s) TCP :47140 > :25 ttl=42 id=18031 iplen=60 seq=666749933 win=128 SENT (63.0010s) TCP :47141 > :25 SFPU ttl=47 id=39211 iplen=60 seq=666749933 win=256 RCVD (63.0080s) TCP :25 > :0 R ttl=61 id=64135 iplen=40 seq=0 win=0 SENT (63.0290s) TCP :47142 > :25 A ttl=40 id=51840 iplen=60 seq=666749933 win=1024 ack=2420425962 SENT (63.0570s) TCP :47143 > :43544 S ttl=51 id=53977 iplen=60 seq=666749933 win=31337 RCVD (63.0730s) TCP :43544 > :47143 RA ttl=61 id=64136 iplen=40 seq=0 win=31337 ack=666749934 SENT (63.0880s) TCP :47144 > :43544 A ttl=39 id=9432 iplen=60 seq=666749933 win=32768 ack=2420425962 RCVD (63.1050s) TCP :43544 > :47144 RA ttl=61 id=64137 iplen=40 seq=2420425962 win=32768 ack=666749933 SENT (63.1210s) TCP :47145 > :43544 FPU ttl=55 id=15624 iplen=60 seq=666749933 win=65535 RCVD (63.1370s) TCP :43544 > :47145 RA ttl=61 id=64138 iplen=40 seq=0 win=65535 ack=666749934 SENT (63.1530s) TCP :47138 > :25 SEC ttl=54 id=49152 iplen=52 seq=666749933 win=3 RCVD (63.1600s) TCP :25 > :0 R ttl=61 id=64139 iplen=40 seq=0 win=0 SENT (63.1810s) TCP :47140 > :25 ttl=44 id=64491 iplen=60 seq=666749933 win=128 SENT (63.2090s) TCP :47141 > :25 SFPU ttl=58 id=29957 iplen=60 seq=666749933 win=256 RCVD (63.2160s) TCP :25 > :0 R ttl=61 id=64140 iplen=40 seq=0 win=0 SENT (63.2370s) TCP :47142 > :25 A ttl=58 id=21682 iplen=60 seq=666749933 win=1024 ack=2420425962 SENT (63.2650s) TCP :47138 > :25 SEC ttl=50 id=6471 iplen=52 seq=666749933 win=3 RCVD (63.2720s) TCP :25 > :0 R ttl=61 id=64141 iplen=40 seq=0 win=0 SENT (63.2930s) TCP :47140 > :25 ttl=53 id=19546 iplen=60 seq=666749933 win=128 SENT (63.3210s) TCP :47141 > :25 SFPU ttl=56 id=26713 iplen=60 seq=666749933 win=256 RCVD (63.3280s) TCP :25 > :0 R ttl=61 id=64142 iplen=40 seq=0 win=0 SENT (63.3490s) TCP :47142 > :25 A ttl=40 id=65354 iplen=60 seq=666749933 win=1024 ack=2420425962 SENT (63.3770s) TCP :47138 > :25 SEC ttl=44 id=47984 iplen=52 seq=666749933 win=3 RCVD (63.3840s) TCP :25 > :0 R ttl=61 id=64143 iplen=40 seq=0 win=0 SENT (63.4050s) TCP :47140 > :25 ttl=43 id=24703 iplen=60 seq=666749933 win=128 SENT (63.4330s) TCP :47141 > :25 SFPU ttl=37 id=6533 iplen=60 seq=666749933 win=256 RCVD (63.4400s) TCP :25 > :0 R ttl=61 id=64144 iplen=40 seq=0 win=0 SENT (63.4610s) TCP :47142 > :25 A ttl=51 id=34391 iplen=60 seq=666749933 win=1024 ack=2420425962 OS detection timingRatio() == (1176418035.895 - 1176418035.355) * 1000 / 500 == 1.080 Starting RPC scan against SCRIPT ENGINE: Initiating script scanning. SCRIPT ENGINE: Script scanning . SCRIPT ENGINE: Initialized 1 rules SCRIPT ENGINE: Matching rules. SCRIPT ENGINE: Running scripts. SCRIPT ENGINE: Script scanning completed. Host appears to be up ... good. Interesting ports on : PORT STATE SERVICE VERSION 25/tcp open skype Skype VoIP data channel Device type: printer Running: Panasonic embedded OS details: Panasonic DB-3500 series printer OS Fingerprint: OS:SCAN(V=4.21ALPHA4%D=4/12%OT=25%CT=%CU=36058%PV=Y%DS=3%G=N%TM=461EB6F4%P= OS:i686-pc-linux-gnu)SEQ(SP=13%GCD=A%ISR=50%TI=I%II=I%SS=S%TS=U)OPS(O1=M5B4 OS:%O2=M5B4%O3=M5B4%O4=M5B4%O5=M5B4%O6=M5B4)WIN(W1=16D0%W2=16D0%W3=16D0%W4= OS:16D0%W5=16D0%W6=16D0)ECN(R=N)T1(R=Y%DF=N%T=40%S=O%A=S+%F=AS%RD=0%Q=)T2(R OS:=N)T3(R=N)T4(R=N)T5(R=Y%DF=N%T=40%W=7A69%S=Z%A=S+%F=AR%O=%RD=0%Q=)T6(R=Y OS:%DF=N%T=40%W=8000%S=A%A=S%F=AR%O=%RD=0%Q=)T7(R=Y%DF=N%T=40%W=FFFF%S=Z%A= OS:S+%F=AR%O=%RD=0%Q=)U1(R=Y%DF=N%T=40%TOS=0%IPL=38%UN=0%RIPL=G%RID=G%RIPCK OS:=G%RUCK=G%RUL=G%RUD=G)IE(R=Y%DFI=N%T=40%TOSI=Z%CD=S%SI=S%DLI=S)Network Distance: 3 hops TCP Sequence Prediction: Difficulty=19 (Good luck!) IPID Sequence Generation: Incremental Final times for host: srtt: 13898 rttvar: 5275 to: 100000OS and Service detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ . Nmap finished: 1 IP address (1 host up) scanned in 63.874 secondsRaw packets sent: 31 (2226B) | Rcvd: 22 (1256B)