┌──(haku505㉿Haku-Kali)-[~]
└─$ sudo nmap -sS -p- -sV -sC -O -T4 -Pn --min-rate 1000 -oA full_scan_192.168.1.2 192.168.1.2
[sudo] haku505 的密码:
Starting Nmap 7.95 ( https://nmap.org ) at 2025-03-25 07:42 CST
Nmap scan report for 192.168.1.2
Host is up (0.0038s latency).
Not shown: 65515 closed tcp ports (reset)
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 8.6 (protocol 2.0)
| ssh-hostkey:
| 2048 42:68:fc:36:dd:3f:04:7b:5b:d9:fe:9f:55:c1:fb:b3 (RSA)
| 256 f1:0a:2b:d3:8e:cc:f5:d4:fc:cc:de:0f:3c:fc:89:5e (ECDSA)
|_ 256 6c:10:4b:35:66:7b:41:dd:b3:99:4c:30:c3:0f:66:cd (ED25519)
23/tcp open telnet Cisco IOS telnetd
| fingerprint-strings:
| GenericLines:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 71)
| Username :
| Username :
| Username :
| GetRequest:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 71)
| Username :GET / HTTP/1.0
| Password :
| Access denied !
| Username :
| Help:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 58)
| Username :HELP
| Password :
| NCP:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 58)
| Username :DmdT
| NULL:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 71)
| Username :
| RPCCheck, SIPOptions:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 74)
| Username :
| tn3270:
| Welcome To Drcom NOS ( userip: 172.16.19.232, 75)
|_ Username :
80/tcp open http DrcomServer1.0
|_http-title: Drcom\xC9\xCF\xCD\xF8\xD0\xC5\xCF\xA2\xB4\xB0
| fingerprint-strings:
| GetRequest:
| HTTP/1.1 200 OK
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: keep-alive
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 5707
| <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
| <html xmlns="http://www.w3.org/1999/xhtml">
| <head>
| <meta http-equiv="Content-Type" content="text/html; charset=GB2312" />
| <title>Drcom
| </title><!--
| <!--
| <script type="text/javascript" src="a52.js"></script>
| <script type="text/javascript" src="a51.js"></script>
| <link rel="stylesheet" href="a50.css" type="text/css" media="screen" />
| <!--
| <script language="JavaScript"><!--
| carrier='';
| businessurl='';
| welcome='';
| bannerurl='a59.png';
| logourl='';
| serialno='';
| portalver='0010300000';
| portalid='UN0302912_0
| HTTPOptions:
| HTTP/1.1 200 OK
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: keep-alive
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 6945
| <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
| <html xmlns="http://www.w3.org/1999/xhtml">
| <head>
| <meta http-equiv="Content-Type" content="text/html; charset=GB2312" />
| <title>
| </title>
| <!--
| <script type="text/javascript" src="a52.js"></script>
| <script type="text/javascript" src="a51.js"></script>
| <link rel="stylesheet" href="a50.css" type="text/css" media="screen" />
| <!--
| <SCRIPT language=javascript>
| <!--
| Msg=01;time='1234567890';flow='1234567890';fsele=0;fee='1234567890';xsele=0;xip='000.000.000.000.';mac='00-00-00-00-00-00';va=00;vb=00;vc=00;vd=0000;ve=0000;vf=0000;
|_ ipm="c0a80
|_http-server-header: DrcomServer1.0
82/tcp open tcpwrapped
443/tcp open ssl/https DrcomServer1.0
|_http-server-header: DrcomServer1.0
| fingerprint-strings:
| FourOhFourRequest:
| HTTP/1.1 404 Not Found
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: close
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 58
| <html><body>
| Error code: 404 URL no found
| </body></html>
| GetRequest:
| HTTP/1.1 200 OK
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: keep-alive
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 5707
| <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
| <html xmlns="http://www.w3.org/1999/xhtml">
| <head>
| <meta http-equiv="Content-Type" content="text/html; charset=GB2312" />
| <title>Drcom
| </title><!--
| <!--
| <script type="text/javascript" src="a52.js"></script>
| <script type="text/javascript" src="a51.js"></script>
| <link rel="stylesheet" href="a50.css" type="text/css" media="screen" />
| <!--
| <script language="JavaScript"><!--
| carrier='';
| businessurl='';
| welcome='';
| bannerurl='a59.png';
| logourl='';
| serialno='';
| portalver='0010300000';
| portalid='UN0302912_0
| HTTPOptions, RTSPRequest:
| HTTP/1.1 202
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: close
| Content-type: text/html
| Cache-Control: no-cache
| Content-length: 59
| <html><body>
| Error code: 202 Bad request-1
|_ </body></html>
| ssl-cert: Subject: commonName=www.doctorcom.com/organizationName=Dr.COM SSL/stateOrProvinceName=GD/countryName=CN
| Not valid before: 2017-05-22T09:23:38
|_Not valid after: 2027-05-20T09:23:38
|_ssl-date: TLS randomness does not represent time
|_http-title: Drcom\xC9\xCF\xCD\xF8\xD0\xC5\xCF\xA2\xB4\xB0
445/tcp open ssl/microsoft-ds?
|_ssl-date: TLS randomness does not represent time
| fingerprint-strings:
| FourOhFourRequest, GetRequest:
| HTTP/1.1 302 Moved Temporarily
| Server: DrcomServer1.0
| Location: http://192.168.1.2/chkuser?url=
| Cache-Control: no-cache
| Content-Length: 0
| Connection: close
| HTTPOptions, RTSPRequest, SIPOptions:
| HTTP/1.1 202
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: close
| Content-type: text/html
| Cache-Control: no-cache
| Content-length: 59
| <html><body>
| Error code: 202 Bad request-1
|_ </body></html>
| ssl-cert: Subject: commonName=www.doctorcom.com/organizationName=Dr.COM SSL/stateOrProvinceName=GD/countryName=CN
| Not valid before: 2017-05-22T09:23:38
|_Not valid after: 2027-05-20T09:23:38
901/tcp open tcpwrapped
1723/tcp open pptp Drcom-Server/internet (Firmware: 2160)
2601/tcp filtered zebra
2602/tcp filtered ripd
2603/tcp filtered ripngd
2604/tcp filtered ospfd
3125/tcp filtered a13-an
3126/tcp filtered unknown
3127/tcp filtered ctx-bridge
3128/tcp filtered squid-http
3129/tcp filtered netport-id
9002/tcp open dynamid?
| fingerprint-strings:
| FourOhFourRequest:
| HTTP/1.1 200 OK
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: keep-alive
| Access-Control-Allow-Origin: *
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 779
| <html>
| <head>
| <title>Logout</title>
| <SCRIPT language=javascript><!--
| s1=020;sec=21033;uf=641604;df=3177253;
| url1='http://192.168.1.2:9002/0' ;url2='http://192.168.1.2/F.htm' ;
| s2=0;
| function ee(){if(s2!=1){window.open(url1,'','width=360,height=160,left=0,top=0,resizable=1');window.close();}}
| function wc(){if(window.confirm("
| ")){s2=1;window.open(url2);window.close()}}
| //--></SCRIPT>
| <style>
| text-decoration:none;
| color:#5F6468;
| font: 14px Microsoft YaHei, Helvetica;
| </style>
| <meta http-equiv="Content-Type" content="text/html; charset=gb2312"></head>
| <body onUnload="ee()" bgcolor="#EFF
| GetRequest:
| HTTP/1.1 200 OK
| Server: DrcomServer1.0
| Accept-Ranges: bytes
| Connection: keep-alive
| Access-Control-Allow-Origin: *
| Content-type: text/html; charset=gbk
| Cache-Control: no-cache
| Content-length: 779
| <html>
| <head>
| <title>Logout</title>
| <SCRIPT language=javascript><!--
| s1=020;sec=20965;uf=635389;df=3157190;
| url1='http://192.168.1.2:9002/0' ;url2='http://192.168.1.2/F.htm' ;
| s2=0;
| function ee(){if(s2!=1){window.open(url1,'','width=360,height=160,left=0,top=0,resizable=1');window.close();}}
| function wc(){if(window.confirm("
| ")){s2=1;window.open(url2);window.close()}}
| //--></SCRIPT>
| <style>
| text-decoration:none;
| color:#5F6468;
| font: 14px Microsoft YaHei, Helvetica;
| </style>
| <meta http-equiv="Content-Type" content="text/html; charset=gb2312"></head>
|_ <body onUnload="ee()" bgcolor="#EFF
61671/tcp open tcpwrapped
61672/tcp open unknown
5 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port23-TCP:V=7.95%I=7%D=3/25%Time=67E1EDDB%P=x86_64-pc-linux-gnu%r(NULL
SF:,4D,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\x1fWelcome\x20To\x20D
SF:rcom\x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\x2071\)\r\n\r\n\r\nUs
SF:ername\x20:")%r(GenericLines,69,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\x
SF:ff\xfd\x1fWelcome\x20To\x20Drcom\x20NOS\x20\(\x20userip:\x20172\.16\.19
SF:\.232,\x2071\)\r\n\r\n\r\nUsername\x20:\r\n\r\nUsername\x20:\r\n\r\nUse
SF:rname\x20:")%r(tn3270,4D,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\
SF:x1fWelcome\x20To\x20Drcom\x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\
SF:x2075\)\r\n\r\n\r\nUsername\x20:")%r(GetRequest,8A,"\xff\xfb\x01\xff\xf
SF:b\x03\xff\xfd\x18\xff\xfd\x1fWelcome\x20To\x20Drcom\x20NOS\x20\(\x20use
SF:rip:\x20172\.16\.19\.232,\x2071\)\r\n\r\n\r\nUsername\x20:GET\x20/\x20H
SF:TTP/1\.0\r\n\r\nPassword\x20:\r\n\r\nAccess\x20denied\x20!\r\n\r\nUsern
SF:ame\x20:")%r(RPCCheck,5A,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\
SF:x1fWelcome\x20To\x20Drcom\x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\
SF:x2074\)\r\n\r\n\r\nUsername\x20:\x80\(r\xfe\x1d\x13\x02\x01\x86\xa0\x01
SF:\x97\|")%r(Help,5F,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\x1fWel
SF:come\x20To\x20Drcom\x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\x2058\
SF:)\r\n\r\n\r\nUsername\x20:HELP\r\n\r\nPassword\x20:")%r(SIPOptions,4D,"
SF:\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\x1fWelcome\x20To\x20Drcom\
SF:x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\x2074\)\r\n\r\n\r\nUsernam
SF:e\x20:")%r(NCP,56,"\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18\xff\xfd\x1fWelc
SF:ome\x20To\x20Drcom\x20NOS\x20\(\x20userip:\x20172\.16\.19\.232,\x2058\)
SF:\r\n\r\n\r\nUsername\x20:DmdT\x17\x01\x11\x11\x13");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port80-TCP:V=7.95%I=7%D=3/25%Time=67E1EDDB%P=x86_64-pc-linux-gnu%r(GetR
SF:equest,16F9,"HTTP/1\.1\x20200\x20OK\r\nServer:\x20DrcomServer1\.0\r\nAc
SF:cept-Ranges:\x20bytes\r\nConnection:\x20keep-alive\r\nContent-type:\x20
SF:text/html;\x20charset=gbk\r\nCache-Control:\x20no-cache\r\nContent-leng
SF:th:\x205707\r\n\r\n<!DOCTYPE\x20html\x20PUBLIC\x20\"-//W3C//DTD\x20XHTM
SF:L\x201\.0\x20Transitional//EN\"\x20\"http://www\.w3\.org/TR/xhtml1/DTD/
SF:xhtml1-transitional\.dtd\">\r\n<html\x20xmlns=\"http://www\.w3\.org/199
SF:9/xhtml\">\r\n<head>\r\n<meta\x20http-equiv=\"Content-Type\"\x20content
SF:=\"text/html;\x20charset=GB2312\"\x20/>\r\n<title>Drcom\xc9\xcf\xcd\xf8
SF:\xd0\xc5\xcf\xa2\xb4\xb0\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x2
SF:0\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20</title><!--\xb2\x
SF:bb\xbf\xc9\xd0\xde\xb8\xc4-->\r\n<!--\x20\x20\xb6\xdf\xb5\xe3\xcf\xc2\x
SF:d4\xd8\xbf\xaa\xca\xbc\x20\x20-->\r\n<script\x20type=\"text/javascript\
SF:"\x20src=\"a52\.js\"></script>\r\n<script\x20type=\"text/javascript\"\x
SF:20src=\"a51\.js\"></script>\r\n<link\x20rel=\"stylesheet\"\x20href=\"a5
SF:0\.css\"\x20type=\"text/css\"\x20media=\"screen\"\x20/>\r\n<!--\x20\x20
SF:\xb6\xdf\xb5\xe3\xcf\xc2\xd4\xd8\xbd\xe1\xca\xf8\x20\x20-->\r\n<script\
SF:x20language=\"JavaScript\"><!--\r\ncarrier='';\nbusinessurl='';\r\nwelc
SF:ome='';\r\nbannerurl='a59\.png';\r\nlogourl='';\r\nserialno='';\r\nport
SF:alver='0010300000';\r\nportalid='UN0302912_0")%r(HTTPOptions,1BCF,"HTTP
SF:/1\.1\x20200\x20OK\r\nServer:\x20DrcomServer1\.0\r\nAccept-Ranges:\x20b
SF:ytes\r\nConnection:\x20keep-alive\r\nContent-type:\x20text/html;\x20cha
SF:rset=gbk\r\nCache-Control:\x20no-cache\r\nContent-length:\x206945\r\n\r
SF:\n<!DOCTYPE\x20html\x20PUBLIC\x20\"-//W3C//DTD\x20XHTML\x201\.0\x20Tran
SF:sitional//EN\"\x20\"http://www\.w3\.org/TR/xhtml1/DTD/xhtml1-transition
SF:al\.dtd\">\r\n<html\x20xmlns=\"http://www\.w3\.org/1999/xhtml\">\r\n<he
SF:ad>\r\n<meta\x20http-equiv=\"Content-Type\"\x20content=\"text/html;\x20
SF:charset=GB2312\"\x20/>\r\n<title>\xd0\xc5\xcf\xa2\xb7\xb5\xbb\xd8</titl
SF:e>\r\n<!--\x20\x20\xb6\xdf\xb5\xe3\xcf\xc2\xd4\xd8\xbf\xaa\xca\xbc\x20\
SF:x20-->\r\n<script\x20type=\"text/javascript\"\x20src=\"a52\.js\"></scri
SF:pt>\r\n<script\x20type=\"text/javascript\"\x20src=\"a51\.js\"></script>
SF:\r\n<link\x20rel=\"stylesheet\"\x20href=\"a50\.css\"\x20type=\"text/css
SF:\"\x20media=\"screen\"\x20/>\r\n<!--\x20\x20\xb6\xdf\xb5\xe3\xcf\xc2\xd
SF:4\xd8\xbd\xe1\xca\xf8\x20\x20-->\r\n<SCRIPT\x20language=javascript>\r\n
SF:<!--\x20\x20\x20\x20\x20\t\t\r\nMsg=01;time='1234567890';flow='12345678
SF:90';fsele=0;fee='1234567890';xsele=0;xip='000\.000\.000\.000\.';mac='00
SF:-00-00-00-00-00';va=00;vb=00;vc=00;vd=0000;ve=0000;vf=0000;\r\nipm=\"c0
SF:a80");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port443-TCP:V=7.95%T=SSL%I=7%D=3/25%Time=67E1EDE1%P=x86_64-pc-linux-gnu
SF:%r(GetRequest,10AA,"HTTP/1\.1\x20200\x20OK\r\nServer:\x20DrcomServer1\.
SF:0\r\nAccept-Ranges:\x20bytes\r\nConnection:\x20keep-alive\r\nContent-ty
SF:pe:\x20text/html;\x20charset=gbk\r\nCache-Control:\x20no-cache\r\nConte
SF:nt-length:\x205707\r\n\r\n<!DOCTYPE\x20html\x20PUBLIC\x20\"-//W3C//DTD\
SF:x20XHTML\x201\.0\x20Transitional//EN\"\x20\"http://www\.w3\.org/TR/xhtm
SF:l1/DTD/xhtml1-transitional\.dtd\">\r\n<html\x20xmlns=\"http://www\.w3\.
SF:org/1999/xhtml\">\r\n<head>\r\n<meta\x20http-equiv=\"Content-Type\"\x20
SF:content=\"text/html;\x20charset=GB2312\"\x20/>\r\n<title>Drcom\xc9\xcf\
SF:xcd\xf8\xd0\xc5\xcf\xa2\xb4\xb0\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20
SF:\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20</title><!-
SF:-\xb2\xbb\xbf\xc9\xd0\xde\xb8\xc4-->\r\n<!--\x20\x20\xb6\xdf\xb5\xe3\xc
SF:f\xc2\xd4\xd8\xbf\xaa\xca\xbc\x20\x20-->\r\n<script\x20type=\"text/java
SF:script\"\x20src=\"a52\.js\"></script>\r\n<script\x20type=\"text/javascr
SF:ipt\"\x20src=\"a51\.js\"></script>\r\n<link\x20rel=\"stylesheet\"\x20hr
SF:ef=\"a50\.css\"\x20type=\"text/css\"\x20media=\"screen\"\x20/>\r\n<!--\
SF:x20\x20\xb6\xdf\xb5\xe3\xcf\xc2\xd4\xd8\xbd\xe1\xca\xf8\x20\x20-->\r\n<
SF:script\x20language=\"JavaScript\"><!--\r\ncarrier='';\nbusinessurl='';\
SF:r\nwelcome='';\r\nbannerurl='a59\.png';\r\nlogourl='';\r\nserialno='';\
SF:r\nportalver='0010300000';\r\nportalid='UN0302912_0")%r(HTTPOptions,D2,
SF:"HTTP/1\.1\x20202\r\nServer:\x20DrcomServer1\.0\r\nAccept-Ranges:\x20by
SF:tes\r\nConnection:\x20close\r\nContent-type:\x20text/html\r\nCache-Cont
SF:rol:\x20no-cache\r\nContent-length:\x2059\r\n\r\n<html><body>\r\nError\
SF:x20code:\x20202\x20Bad\x20request-1\r\n</body></html>")%r(FourOhFourReq
SF:uest,E8,"HTTP/1\.1\x20404\x20Not\x20Found\r\nServer:\x20DrcomServer1\.0
SF:\r\nAccept-Ranges:\x20bytes\r\nConnection:\x20close\r\nContent-type:\x2
SF:0text/html;\x20charset=gbk\r\nCache-Control:\x20no-cache\r\nContent-len
SF:gth:\x2058\r\n\r\n<html><body>\r\nError\x20code:\x20404\x20URL\x20no\x2
SF:0found\r\n</body></html>")%r(RTSPRequest,D2,"HTTP/1\.1\x20202\r\nServer
SF::\x20DrcomServer1\.0\r\nAccept-Ranges:\x20bytes\r\nConnection:\x20close
SF:\r\nContent-type:\x20text/html\r\nCache-Control:\x20no-cache\r\nContent
SF:-length:\x2059\r\n\r\n<html><body>\r\nError\x20code:\x20202\x20Bad\x20r
SF:equest-1\r\n</body></html>");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port445-TCP:V=7.95%T=SSL%I=7%D=3/25%Time=67E1EDF3%P=x86_64-pc-linux-gnu
SF:%r(GetRequest,A4,"HTTP/1\.1\x20302\x20Moved\x20Temporarily\r\nServer:\x
SF:20DrcomServer1\.0\r\nLocation:\x20http://192\.168\.1\.2/chkuser\?url=\r
SF:\nCache-Control:\x20no-cache\r\nContent-Length:\x200\r\nConnection:\x20
SF:close\r\n\r\n")%r(HTTPOptions,D2,"HTTP/1\.1\x20202\r\nServer:\x20DrcomS
SF:erver1\.0\r\nAccept-Ranges:\x20bytes\r\nConnection:\x20close\r\nContent
SF:-type:\x20text/html\r\nCache-Control:\x20no-cache\r\nContent-length:\x2
SF:059\r\n\r\n<html><body>\r\nError\x20code:\x20202\x20Bad\x20request-1\r\
SF:n</body></html>")%r(RTSPRequest,D2,"HTTP/1\.1\x20202\r\nServer:\x20Drco
SF:mServer1\.0\r\nAccept-Ranges:\x20bytes\r\nConnection:\x20close\r\nConte
SF:nt-type:\x20text/html\r\nCache-Control:\x20no-cache\r\nContent-length:\
SF:x2059\r\n\r\n<html><body>\r\nError\x20code:\x20202\x20Bad\x20request-1\
SF:r\n</body></html>")%r(FourOhFourRequest,A4,"HTTP/1\.1\x20302\x20Moved\x
SF:20Temporarily\r\nServer:\x20DrcomServer1\.0\r\nLocation:\x20http://192\
SF:.168\.1\.2/chkuser\?url=\r\nCache-Control:\x20no-cache\r\nContent-Lengt
SF:h:\x200\r\nConnection:\x20close\r\n\r\n")%r(SIPOptions,D2,"HTTP/1\.1\x2
SF:0202\r\nServer:\x20DrcomServer1\.0\r\nAccept-Ranges:\x20bytes\r\nConnec
SF:tion:\x20close\r\nContent-type:\x20text/html\r\nCache-Control:\x20no-ca
SF:che\r\nContent-length:\x2059\r\n\r\n<html><body>\r\nError\x20code:\x202
SF:02\x20Bad\x20request-1\r\n</body></html>");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port9002-TCP:V=7.95%I=7%D=3/25%Time=67E1EDE5%P=x86_64-pc-linux-gnu%r(Ge
SF:tRequest,3D8,"HTTP/1\.1\x20200\x20OK\r\nServer:\x20DrcomServer1\.0\r\nA
SF:ccept-Ranges:\x20bytes\r\nConnection:\x20keep-alive\r\nAccess-Control-A
SF:llow-Origin:\x20\*\r\nContent-type:\x20text/html;\x20charset=gbk\r\nCac
SF:he-Control:\x20no-cache\r\nContent-length:\x20779\r\n\r\n<html>\r\n<hea
SF:d>\r\n<title>Logout</title>\r\n<SCRIPT\x20language=javascript><!--\r\ns
SF:1=020;sec=20965;uf=635389;df=3157190;\x20\x20\x20\x20\x20\x20\x20\x20\x
SF:20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\r\nurl1='http://
SF:192\.168\.1\.2:9002/0'\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\
SF:x20;url2='http://192\.168\.1\.2/F\.htm'\x20\x20\x20\x20;\r\ns2=0;\r\nfu
SF:nction\x20ee\(\){if\(s2!=1\){window\.open\(url1,'','width=360,height=16
SF:0,left=0,top=0,resizable=1'\);window\.close\(\);}}\r\nfunction\x20wc\(\
SF:){if\(window\.confirm\(\"\xb9\xd8\xb1\xd5\xb4\xcb\xb4\xb0\xbf\xda\xd2\x
SF:e2\xce\xb6\xd7\xc5\xbd\xe1\xca\xf8\xb1\xbe\xb4\xce\xc1\xac\xbd\xd3\xa3\
SF:xac\xd7\xa2\xcf\xfa\xc7\xeb\xb0\xb4\xc8\xb7\xb6\xa8\"\)\){s2=1;window\.
SF:open\(url2\);window\.close\(\)}}\r\n//--></SCRIPT>\r\n<style>\r\na\x20{
SF:\r\n\ttext-decoration:none;\r\n\tcolor:#5F6468;\r\n\tfont:\x2014px\x20M
SF:icrosoft\x20YaHei,\x20Helvetica;\r\n}\r\n</style>\r\n<meta\x20http-equi
SF:v=\"Content-Type\"\x20content=\"text/html;\x20charset=gb2312\"></head>\
SF:r\n<body\x20onUnload=\"ee\(\)\"\x20bgcolor=\"#EFF")%r(FourOhFourRequest
SF:,3D8,"HTTP/1\.1\x20200\x20OK\r\nServer:\x20DrcomServer1\.0\r\nAccept-Ra
SF:nges:\x20bytes\r\nConnection:\x20keep-alive\r\nAccess-Control-Allow-Ori
SF:gin:\x20\*\r\nContent-type:\x20text/html;\x20charset=gbk\r\nCache-Contr
SF:ol:\x20no-cache\r\nContent-length:\x20779\r\n\r\n<html>\r\n<head>\r\n<t
SF:itle>Logout</title>\r\n<SCRIPT\x20language=javascript><!--\r\ns1=020;se
SF:c=21033;uf=641604;df=3177253;\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x
SF:20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\r\nurl1='http://192\.168
SF:\.1\.2:9002/0'\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20;url2
SF:='http://192\.168\.1\.2/F\.htm'\x20\x20\x20\x20;\r\ns2=0;\r\nfunction\x
SF:20ee\(\){if\(s2!=1\){window\.open\(url1,'','width=360,height=160,left=0
SF:,top=0,resizable=1'\);window\.close\(\);}}\r\nfunction\x20wc\(\){if\(wi
SF:ndow\.confirm\(\"\xb9\xd8\xb1\xd5\xb4\xcb\xb4\xb0\xbf\xda\xd2\xe2\xce\x
SF:b6\xd7\xc5\xbd\xe1\xca\xf8\xb1\xbe\xb4\xce\xc1\xac\xbd\xd3\xa3\xac\xd7\
SF:xa2\xcf\xfa\xc7\xeb\xb0\xb4\xc8\xb7\xb6\xa8\"\)\){s2=1;window\.open\(ur
SF:l2\);window\.close\(\)}}\r\n//--></SCRIPT>\r\n<style>\r\na\x20{\r\n\tte
SF:xt-decoration:none;\r\n\tcolor:#5F6468;\r\n\tfont:\x2014px\x20Microsoft
SF:\x20YaHei,\x20Helvetica;\r\n}\r\n</style>\r\n<meta\x20http-equiv=\"Cont
SF:ent-Type\"\x20content=\"text/html;\x20charset=gb2312\"></head>\r\n<body
SF:\x20onUnload=\"ee\(\)\"\x20bgcolor=\"#EFF");
Device type: general purpose
Running: Linux 2.6.X|3.X
OS CPE: cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3
OS details: Linux 2.6.32 - 3.13
Network Distance: 2 hops
Service Info: Host: Drcom-Server/internet
Host script results:
|_smb2-time: Protocol negotiation failed (SMB2)
OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 235.57 seconds