# Nmap 7.

60 scan initiated Fri Sep 1 00:21:32 2017 as: nmap -A -v --unprivileged

-iL um.txt -oN umfullscan.txt T4
Nmap scan report for mail.um.edu.ar (200.51.41.132) [host down]
Nmap scan report for ns1.um.edu.ar (200.51.41.130) [host down]
Nmap scan report for ns3.um.edu.ar (200.51.41.131) [host down]
Nmap scan report for ns4.um.edu.ar (200.51.41.131) [host down]
Increasing send delay for 200.51.41.141 from 0 to 5 due to 11 out of 20 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 0 to 5 due to 11 out of 25 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 0 to 5 due to 11 out of 21 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 0 to 5 due to 11 out of 27 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 0 to 5 due to 11 out of 33 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 0 to 5 due to 11 out of 31 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 5 to 10 due to 11 out of 17 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 5 to 10 due to 11 out of 15 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 5 to 10 due to 11 out of 19 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 5 to 10 due to 11 out of 19 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 5 to 10 due to 11 out of 23 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 10 to 20 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 5 to 10 due to 11 out of 22 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 10 to 20 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 10 to 20 due to 11 out of 17 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 20 to 40 due to 11 out of 13 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 10 to 20 due to 11 out of 24 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 10 to 20 due to 11 out of 19 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 0 to 5 due to 25 out of 82 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 20 to 40 due to 11 out of 14 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 40 to 80 due to 11 out of 13 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 10 to 20 due to 11 out of 24 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 20 to 40 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 20 to 40 due to 11 out of 21 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 20 to 40 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 40 to 80 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 80 to 160 due to 11 out of 17 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 5 to 10 due to 11 out of 20 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 40 to 80 due to 11 out of 18 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 40 to 80 due to 11 out of 20 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 40 to 80 due to 11 out of 16 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 80 to 160 due to 11 out of 14 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 20 to 40 due to 11 out of 26 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 10 to 20 due to 11 out of 19 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 160 to 320 due to 11 out of 15 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 80 to 160 due to 11 out of 24 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 80 to 160 due to 11 out of 22 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 80 to 160 due to 11 out of 25 dropped
probes since last increase.
Increasing send delay for 200.51.41.139 from 40 to 80 due to 11 out of 20 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 160 to 320 due to 11 out of 15 dropped
probes since last increase.
Increasing send delay for 200.51.41.141 from 320 to 640 due to 11 out of 21 dropped
probes since last increase.
Nmap scan report for www.um.edu.ar (200.51.41.139)
Host is up (0.072s latency).
rDNS record for 200.51.41.139: host139.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
|_http-title: Site doesn't have a title (text/html).
113/tcp closed ident
443/tcp open ssl/https?
|_http-title: Site doesn't have a title (text/html).
| ssl-cert: Subject: commonName=um.edu.ar
| Subject Alternative Name: DNS:um.edu.ar, DNS:www.um.edu.ar, DNS:mail.um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 4096
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2014-11-04T13:08:07
| Not valid after: 2015-11-04T13:08:07
| MD5: ae7c 808a 6ac9 6216 d83b c211 6a6e a170
|_SHA-1: 0519 a89a d4e1 10de bae1 6610 f863 32d7 f6ad 618d
|_ssl-date: 2017-09-01T00:43:45+00:00; +3s from scanner time.

Host script results:

|_clock-skew: mean: 2s, deviation: 0s, median: 2s

Nmap scan report for actitum.um.edu.ar (200.51.41.134)

Host is up (0.066s latency).
rDNS record for 200.51.41.134: host134.advance.com.ar
Not shown: 990 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp ProFTPD 1.3.4a
22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.7 (Ubuntu Linux;
protocol 2.0)
| ssh-hostkey:
| 1024 1e:9b:19:83:46:ab:f2:d4:0f:1f:db:72:e0:9e:45:ba (DSA)
|_ 2048 77:4c:f9:dc:0f:13:71:15:c3:ac:7a:13:05:48:c0:f4 (RSA)
80/tcp open http Apache httpd 2.2.22 ((Ubuntu) mod_ssl/2.2.22
OpenSSL/1.0.1)
|_http-favicon: Unknown favicon MD5: F43606CC9FE613E26995B25B80B31B20
| http-methods:
|_ Supported Methods: OPTIONS GET HEAD POST
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: #actitUM - Universidad de Mendoza -
110/tcp open pop3 Dovecot pop3d
|_pop3-capabilities: CAPA SASL(PLAIN LOGIN) PIPELINING USER TOP RESP-CODES UIDL
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap Dovecot imapd
|_imap-capabilities: AUTH=PLAIN OK IMAP4rev1 ENABLE listed SASL-IR more LOGIN-
REFERRALS have AUTH=LOGINA0001 capabilities Pre-login post-login IDLE ID LITERAL+
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-cookie-flags:
| /:
| PHPSESSID:
|_ httponly flag not set
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| http-robots.txt: 1 disallowed entry
|_/
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: Control Panel - Login
| ssl-cert: Subject: commonName=*.um.edu.ar
| Subject Alternative Name: DNS:*.um.edu.ar, DNS:um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-11-10T17:00:38
| Not valid after: 2018-11-10T17:00:38
| MD5: 2423 cb8f da30 82ff e88a ddc5 59f9 d0dd
|_SHA-1: b694 1fa6 2bfa 079a e57f 6e81 81fa 5fb7 8478 ee52
|_ssl-date: 2017-09-01T00:44:59+00:00; +44s from scanner time.
445/tcp filtered microsoft-ds
646/tcp filtered ldp
Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:

|_clock-skew: mean: 43s, deviation: 0s, median: 43s

Nmap scan report for www.actitum.um.edu.ar (200.51.41.134)

Host is up (0.067s latency).
rDNS record for 200.51.41.134: host134.advance.com.ar
Not shown: 990 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp ProFTPD 1.3.4a
22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.7 (Ubuntu Linux;
protocol 2.0)
| ssh-hostkey:
| 1024 1e:9b:19:83:46:ab:f2:d4:0f:1f:db:72:e0:9e:45:ba (DSA)
|_ 2048 77:4c:f9:dc:0f:13:71:15:c3:ac:7a:13:05:48:c0:f4 (RSA)
80/tcp open http Apache httpd 2.2.22 ((Ubuntu) mod_ssl/2.2.22
OpenSSL/1.0.1)
|_http-favicon: Unknown favicon MD5: F43606CC9FE613E26995B25B80B31B20
| http-methods:
|_ Supported Methods: OPTIONS GET HEAD POST
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: #actitUM - Universidad de Mendoza -
110/tcp open pop3 Dovecot pop3d
|_pop3-capabilities: CAPA SASL(PLAIN LOGIN) PIPELINING USER TOP RESP-CODES UIDL
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap Dovecot imapd
|_imap-capabilities: AUTH=PLAIN OK IMAP4rev1 ENABLE listed SASL-IR more LOGIN-
REFERRALS have AUTH=LOGINA0001 capabilities Pre-login post-login IDLE ID LITERAL+
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-cookie-flags:
| /:
| PHPSESSID:
|_ httponly flag not set
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| http-robots.txt: 1 disallowed entry
|_/
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: Control Panel - Login
| ssl-cert: Subject: commonName=*.um.edu.ar
| Subject Alternative Name: DNS:*.um.edu.ar, DNS:um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-11-10T17:00:38
| Not valid after: 2018-11-10T17:00:38
| MD5: 2423 cb8f da30 82ff e88a ddc5 59f9 d0dd
|_SHA-1: b694 1fa6 2bfa 079a e57f 6e81 81fa 5fb7 8478 ee52
|_ssl-date: 2017-09-01T00:44:42+00:00; +44s from scanner time.
445/tcp filtered microsoft-ds
646/tcp filtered ldp
Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:

|_clock-skew: mean: 43s, deviation: 0s, median: 43s

Nmap scan report for alumni.um.edu.ar (200.51.41.134)

Host is up (0.068s latency).
rDNS record for 200.51.41.134: host134.advance.com.ar
Not shown: 990 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp ProFTPD 1.3.4a
22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.7 (Ubuntu Linux;
protocol 2.0)
| ssh-hostkey:
| 1024 1e:9b:19:83:46:ab:f2:d4:0f:1f:db:72:e0:9e:45:ba (DSA)
|_ 2048 77:4c:f9:dc:0f:13:71:15:c3:ac:7a:13:05:48:c0:f4 (RSA)
80/tcp open http Apache httpd 2.2.22 ((Ubuntu) mod_ssl/2.2.22
OpenSSL/1.0.1)
|_http-favicon: Unknown favicon MD5: F43606CC9FE613E26995B25B80B31B20
| http-methods:
|_ Supported Methods: OPTIONS GET HEAD POST
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: #actitUM - Universidad de Mendoza -
110/tcp open pop3 Dovecot pop3d
|_pop3-capabilities: CAPA SASL(PLAIN LOGIN) PIPELINING USER TOP RESP-CODES UIDL
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap Dovecot imapd
|_imap-capabilities: AUTH=PLAIN OK IMAP4rev1 ENABLE listed SASL-IR more LOGIN-
REFERRALS have AUTH=LOGINA0001 capabilities Pre-login post-login IDLE ID LITERAL+
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-cookie-flags:
| /:
| PHPSESSID:
|_ httponly flag not set
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| http-robots.txt: 1 disallowed entry
|_/
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: Control Panel - Login
| ssl-cert: Subject: commonName=*.um.edu.ar
| Subject Alternative Name: DNS:*.um.edu.ar, DNS:um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-11-10T17:00:38
| Not valid after: 2018-11-10T17:00:38
| MD5: 2423 cb8f da30 82ff e88a ddc5 59f9 d0dd
|_SHA-1: b694 1fa6 2bfa 079a e57f 6e81 81fa 5fb7 8478 ee52
|_ssl-date: 2017-09-01T00:45:05+00:00; +45s from scanner time.
445/tcp filtered microsoft-ds
646/tcp filtered ldp
Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:

|_clock-skew: mean: 44s, deviation: 0s, median: 44s

Nmap scan report for cloud.um.edu.ar (200.51.41.176)

Host is up (0.065s latency).
rDNS record for 200.51.41.176: host176.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.3 (Ubuntu Linux; protocol
2.0)
| ssh-hostkey:
| 1024 8a:cf:32:ce:bb:96:21:da:89:d2:ba:f8:90:98:cd:a5 (DSA)
| 2048 c8:59:8e:06:c8:e9:1a:af:c0:86:66:ae:10:ac:85:0b (RSA)
| 256 08:0c:66:47:a1:91:94:cc:16:c5:c0:94:31:70:cf:0d (ECDSA)
|_ 256 db:1d:fb:2b:04:fe:7f:8d:3f:c3:cf:d1:74:d7:d0:f0 (EdDSA)
80/tcp open http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: UM Cloud
443/tcp open ssl/http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: UM Cloud
| ssl-cert: Subject: commonName=cloud.um.edu.ar
| Subject Alternative Name: DNS:cloud.um.edu.ar
| Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's
Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2017-06-23T19:49:00
| Not valid after: 2017-09-21T19:49:00
| MD5: c51d 8d64 d7b7 80b8 2d2f d80e edde e8cc
|_SHA-1: 8d6f 8241 9524 b993 a0b0 596b 9865 6b5b b891 90a0
|_ssl-date: ERROR: Script execution failed (use -d to debug)
| tls-nextprotoneg:
|_ http/1.1
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel

Nmap scan report for dashboard.cloud.um.edu.ar (200.51.41.176)

Host is up (0.063s latency).
rDNS record for 200.51.41.176: host176.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.3 (Ubuntu Linux; protocol
2.0)
| ssh-hostkey:
| 1024 8a:cf:32:ce:bb:96:21:da:89:d2:ba:f8:90:98:cd:a5 (DSA)
| 2048 c8:59:8e:06:c8:e9:1a:af:c0:86:66:ae:10:ac:85:0b (RSA)
| 256 08:0c:66:47:a1:91:94:cc:16:c5:c0:94:31:70:cf:0d (ECDSA)
|_ 256 db:1d:fb:2b:04:fe:7f:8d:3f:c3:cf:d1:74:d7:d0:f0 (EdDSA)
80/tcp open http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: Did not follow redirect to https://dashboard.cloud.um.edu.ar/
443/tcp open ssl/http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: UM Cloud
| ssl-cert: Subject: commonName=cloud.um.edu.ar
| Subject Alternative Name: DNS:cloud.um.edu.ar
| Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's
Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2017-06-23T19:49:00
| Not valid after: 2017-09-21T19:49:00
| MD5: c51d 8d64 d7b7 80b8 2d2f d80e edde e8cc
|_SHA-1: 8d6f 8241 9524 b993 a0b0 596b 9865 6b5b b891 90a0
|_ssl-date: ERROR: Script execution failed (use -d to debug)
| tls-nextprotoneg:
|_ http/1.1
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
Nmap scan report for registry.cloud.um.edu.ar (200.51.41.176)
Host is up (0.067s latency).
rDNS record for 200.51.41.176: host176.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2.3 (Ubuntu Linux; protocol
2.0)
| ssh-hostkey:
| 1024 8a:cf:32:ce:bb:96:21:da:89:d2:ba:f8:90:98:cd:a5 (DSA)
| 2048 c8:59:8e:06:c8:e9:1a:af:c0:86:66:ae:10:ac:85:0b (RSA)
| 256 08:0c:66:47:a1:91:94:cc:16:c5:c0:94:31:70:cf:0d (ECDSA)
|_ 256 db:1d:fb:2b:04:fe:7f:8d:3f:c3:cf:d1:74:d7:d0:f0 (EdDSA)
80/tcp open http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: Did not follow redirect to https://registry.cloud.um.edu.ar/
443/tcp open ssl/http nginx 1.4.6 (Ubuntu)
| http-methods:
|_ Supported Methods: GET HEAD
|_http-server-header: nginx/1.4.6 (Ubuntu)
|_http-title: UM Cloud
| ssl-cert: Subject: commonName=cloud.um.edu.ar
| Subject Alternative Name: DNS:cloud.um.edu.ar
| Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's
Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2017-06-23T19:49:00
| Not valid after: 2017-09-21T19:49:00
| MD5: c51d 8d64 d7b7 80b8 2d2f d80e edde e8cc
|_SHA-1: 8d6f 8241 9524 b993 a0b0 596b 9865 6b5b b891 90a0
|_ssl-date: ERROR: Script execution failed (use -d to debug)
| tls-nextprotoneg:
|_ http/1.1
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel

Nmap scan report for www.colegio.um.edu.ar (200.51.41.139)

Host is up (0.064s latency).
rDNS record for 200.51.41.139: host139.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
113/tcp closed ident
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
|_http-server-header: Apache/2.2.16 (Debian)
| ssl-cert: Subject: commonName=um.edu.ar
| Subject Alternative Name: DNS:um.edu.ar, DNS:www.um.edu.ar, DNS:mail.um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 4096
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2014-11-04T13:08:07
| Not valid after: 2015-11-04T13:08:07
| MD5: ae7c 808a 6ac9 6216 d83b c211 6a6e a170
|_SHA-1: 0519 a89a d4e1 10de bae1 6610 f863 32d7 f6ad 618d
|_ssl-date: 2017-09-01T00:43:48+00:00; +4s from scanner time.

Host script results:

|_clock-skew: mean: 3s, deviation: 0s, median: 3s

Nmap scan report for ead.um.edu.ar (200.51.41.141)

Host is up (0.078s latency).
rDNS record for 200.51.41.141: host141.advance.com.ar
Not shown: 998 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
| http-robots.txt: 2 disallowed entries
|_/wp-admin/ /wp-includes/
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
|_http-title: Site doesn't have a title (text/html).
| ssl-cert: Subject: commonName=localhost
| Issuer: commonName=localhost
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-06-30T10:36:33
| Not valid after: 2025-06-27T10:36:33
| MD5: bb03 576f 59ff d742 8c60 f892 4592 0fc4
|_SHA-1: 8db9 34f8 3a6b ec1b bfb0 264e 76f0 35d0 0ce2 36d6
|_ssl-date: ERROR: Script execution failed (use -d to debug)

Nmap scan report for etec.um.edu.ar (200.51.41.141)

Host is up (0.11s latency).
rDNS record for 200.51.41.141: host141.advance.com.ar
Not shown: 998 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
|_http-generator: WordPress 4.7.5
|_http-title: ETec
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| ssl-cert: Subject: commonName=localhost
| Issuer: commonName=localhost
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-06-30T10:36:33
| Not valid after: 2025-06-27T10:36:33
| MD5: bb03 576f 59ff d742 8c60 f892 4592 0fc4
|_SHA-1: 8db9 34f8 3a6b ec1b bfb0 264e 76f0 35d0 0ce2 36d6

Nmap scan report for etecvirtual.um.edu.ar (200.51.41.141)

Host is up (0.072s latency).
rDNS record for 200.51.41.141: host141.advance.com.ar
Not shown: 998 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: Apache/2.4.10 (Debian)
| ssl-cert: Subject: commonName=localhost
| Issuer: commonName=localhost
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-06-30T10:36:33
| Not valid after: 2025-06-27T10:36:33
| MD5: bb03 576f 59ff d742 8c60 f892 4592 0fc4
|_SHA-1: 8db9 34f8 3a6b ec1b bfb0 264e 76f0 35d0 0ce2 36d6

Nmap scan report for m.um.edu.ar (200.51.41.139)

Host is up (0.063s latency).
rDNS record for 200.51.41.139: host139.advance.com.ar
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
| http-cookie-flags:
| /:
| CAKEPHP:
|_ httponly flag not set
|_http-favicon: Unknown favicon MD5: 49305B4DD1B2076C3D0CCD3D8F366B29
|_http-title: Universidad de Mendoza
113/tcp closed ident
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| ssl-cert: Subject: commonName=um.edu.ar
| Subject Alternative Name: DNS:um.edu.ar, DNS:www.um.edu.ar, DNS:mail.um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 4096
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2014-11-04T13:08:07
| Not valid after: 2015-11-04T13:08:07
| MD5: ae7c 808a 6ac9 6216 d83b c211 6a6e a170
|_SHA-1: 0519 a89a d4e1 10de bae1 6610 f863 32d7 f6ad 618d

Nmap scan report for ns2.um.edu.ar (200.32.111.66)

Host is up (0.057s latency).
rDNS record for 200.32.111.66: mail.hcdmza.gov.ar
Not shown: 996 filtered ports
PORT STATE SERVICE VERSION
25/tcp open smtp Postfix smtpd
|_smtp-commands: mail.hcdmza.gov.ar, PIPELINING, SIZE 614400000, VRFY, ETRN,
STARTTLS, AUTH PLAIN LOGIN, AUTH=PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
| ssl-cert: Subject: commonName=mail.hcdmza.gov.ar/organizationName=Zimbra
Collaboration Server/stateOrProvinceName=N/A/countryName=US
| Issuer: commonName=mail.hcdmza.gov.ar/organizationName=Zimbra Collaboration
Server/stateOrProvinceName=N/A/countryName=US
| Public Key type: rsa
| Public Key bits: 1024
| Signature Algorithm: sha1WithRSAEncryption
| Not valid before: 2013-01-18T19:48:12
| Not valid after: 2018-01-17T19:48:12
| MD5: 90c0 bf8b cb4a b7db 1c95 0cc6 1ce6 d2f9
|_SHA-1: 474f a337 7abe 8be5 11ea e9d4 2fac 4b33 7519 ce45
|_ssl-date: 2017-09-01T00:43:08+00:00; -1m07s from scanner time.
| sslv2:
| SSLv2 supported
| ciphers:
| SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
| SSL2_RC4_128_EXPORT40_WITH_MD5
| SSL2_RC4_128_WITH_MD5
| SSL2_RC2_128_CBC_WITH_MD5
| SSL2_DES_192_EDE3_CBC_WITH_MD5
|_ SSL2_DES_64_CBC_WITH_MD5
113/tcp closed ident
443/tcp open ssl/http Zimbra Collabration Suite httpd
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-title: Inicio de sesi\xC3\xB3n en el cliente web de Zimbra
| ssl-cert: Subject: commonName=mail.hcdmza.gov.ar/organizationName=Zimbra
Collaboration Server/stateOrProvinceName=N/A/countryName=US
| Issuer: commonName=mail.hcdmza.gov.ar/organizationName=Zimbra Collaboration
Server/stateOrProvinceName=N/A/countryName=US
| Public Key type: rsa
| Public Key bits: 1024
| Signature Algorithm: sha1WithRSAEncryption
| Not valid before: 2013-01-18T19:48:12
| Not valid after: 2018-01-17T19:48:12
| MD5: 90c0 bf8b cb4a b7db 1c95 0cc6 1ce6 d2f9
|_SHA-1: 474f a337 7abe 8be5 11ea e9d4 2fac 4b33 7519 ce45
|_ssl-date: 2017-09-01T00:42:37+00:00; -1m08s from scanner time.
1443/tcp closed ies-lm
Service Info: Host: mail.hcdmza.gov.ar

Host script results:

|_clock-skew: mean: -1m07s, deviation: 0s, median: -1m08s

Nmap scan report for virtual.um.edu.ar (200.51.41.141)

Host is up (0.062s latency).
rDNS record for 200.51.41.141: host141.advance.com.ar
Not shown: 998 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.16 ((Debian))
|_http-favicon: Unknown favicon MD5: 6313D3586939674818FB4074A5B21E40
|_http-title: C\xC3\xA1tedras Virtuales - UMVirtual
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| ssl-cert: Subject: commonName=localhost
| Issuer: commonName=localhost
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-06-30T10:36:33
| Not valid after: 2025-06-27T10:36:33
| MD5: bb03 576f 59ff d742 8c60 f892 4592 0fc4
|_SHA-1: 8db9 34f8 3a6b ec1b bfb0 264e 76f0 35d0 0ce2 36d6

Nmap scan report for zpanel.um.edu.ar (200.51.41.134)

Host is up (0.066s latency).
rDNS record for 200.51.41.134: host134.advance.com.ar
Not shown: 990 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp ProFTPD 1.3.4a
22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.7 (Ubuntu Linux;
protocol 2.0)
| ssh-hostkey:
| 1024 1e:9b:19:83:46:ab:f2:d4:0f:1f:db:72:e0:9e:45:ba (DSA)
|_ 2048 77:4c:f9:dc:0f:13:71:15:c3:ac:7a:13:05:48:c0:f4 (RSA)
80/tcp open http Apache httpd 2.2.22 ((Ubuntu) mod_ssl/2.2.22
OpenSSL/1.0.1)
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: Did not follow redirect to https://zpanel.um.edu.ar
110/tcp open pop3 Dovecot pop3d
|_pop3-capabilities: CAPA SASL(PLAIN LOGIN) PIPELINING USER TOP RESP-CODES UIDL
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap Dovecot imapd
|_imap-capabilities: AUTH=PLAIN OK IMAP4rev1 ENABLE listed SASL-IR more LOGIN-
REFERRALS have AUTH=LOGINA0001 capabilities Pre-login post-login IDLE ID LITERAL+
443/tcp open ssl/ssl Apache httpd (SSL-only mode)
| http-cookie-flags:
| /:
| PHPSESSID:
|_ httponly flag not set
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| http-robots.txt: 1 disallowed entry
|_/
|_http-server-header: Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1
|_http-title: Control Panel - Login
| ssl-cert: Subject: commonName=*.um.edu.ar
| Subject Alternative Name: DNS:*.um.edu.ar, DNS:um.edu.ar
| Issuer: commonName=Go Daddy Secure Certificate Authority -
G2/organizationName=GoDaddy.com, Inc./stateOrProvinceName=Arizona/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2015-11-10T17:00:38
| Not valid after: 2018-11-10T17:00:38
| MD5: 2423 cb8f da30 82ff e88a ddc5 59f9 d0dd
|_SHA-1: b694 1fa6 2bfa 079a e57f 6e81 81fa 5fb7 8478 ee52
|_ssl-date: 2017-09-01T00:45:27+00:00; +44s from scanner time.
445/tcp filtered microsoft-ds
646/tcp filtered ldp
Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:

|_clock-skew: mean: 43s, deviation: 0s, median: 43s

Post-scan script results:

| clock-skew:
| 43s:
| 200.51.41.134 (actitum.um.edu.ar)
| 200.51.41.134 (zpanel.um.edu.ar)
|_ 200.51.41.134 (www.actitum.um.edu.ar)
Read data files from: /usr/local/bin/../share/nmap
Service detection performed. Please report any incorrect results at
https://nmap.org/submit/ .
# Nmap done at Fri Sep 1 00:45:03 2017 -- 19 IP addresses (15 hosts up) scanned in
1411.71 seconds