Nmap scan report for images.nationalgeographic.org (146.75.94.104) Host is up (0.00038s latency). Other addresses for images.nationalgeographic.org (not scanned): 2a04:4e42:87::616 Not shown: 998 filtered ports PORT STATE SERVICE VERSION 80/tcp open http Cloudinary | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 404 Not Found | Connection: close | Content-Length: 0 | Content-Disposition: inline | Content-Transfer-Encoding: binary | X-Cld-Error: Resource not found | Content-Type: image/gif | Date: Mon, 20 Nov 2023 02:54:23 GMT | Pragma: no-cache | Cache-Control: private, no-transform, max-age=0, no-cache | Server-Timing: cld-fastly;mitm=p;dur=1;cpu=0;start=2023-11-20T02:54:23.282Z;desc=hit,rtt;dur=0 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Expose-Headers: Content-Length,Content-Disposition,Server-Timing,X-Cld-Error | Accept-Ranges: bytes | GetRequest: | HTTP/1.1 404 Not Found | Connection: close | Content-Length: 0 | Content-Disposition: inline | Content-Transfer-Encoding: binary | X-Cld-Error: Resource not found | Content-Type: image/gif | Date: Mon, 20 Nov 2023 02:54:23 GMT | Pragma: no-cache | Cache-Control: private, no-transform, max-age=0, no-cache | Server-Timing: cld-fastly;mitm=p;dur=9;cpu=0;start=2023-11-20T02:54:23.253Z;desc=hit,rtt;dur=1006 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Expose-Headers: Content-Length,Content-Disposition,Server-Timing,X-Cld-Error | Accept-Ranges: bytes | HTTPOptions: | HTTP/1.1 200 OK | Connection: close | Content-Length: 0 | Access-Control-Allow-Methods: GET, HEAD, OPTIONS | Date: Mon, 20 Nov 2023 02:54:23 GMT | Cache-Control: private, no-transform, immutable, max-age=604800 | Server-Timing: cld-fastly;mitm=p;dur=0;start=2023-11-20T02:54:23.270Z;desc=hit,rtt;dur=0 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Allow-Credentials: true | Accept-Ranges: bytes | Access-Control-Expose-Headers: Content-Length,Server-Timing | RTSPRequest: | HTTP/1.1 400 Bad Request | Connection: close | Content-Length: 11 | content-type: text/plain; charset=utf-8 | x-served-by: cache-bur-kbur8200046 | Request | X11Probe: | HTTP/1.1 400 Bad Request | Connection: close | Content-Length: 11 | content-type: text/plain; charset=utf-8 | x-served-by: cache-bur-kbur8200124 |_ Request | http-robots.txt: 1 disallowed entry |_/ |_http-server-header: Cloudinary |_http-title: Did not follow redirect to https://cloudinary.com 443/tcp open ssl/https Cloudinary | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 404 Not Found | Connection: close | Content-Length: 0 | Content-Disposition: inline | Content-Transfer-Encoding: binary | X-Cld-Error: Resource not found | Content-Type: image/gif | Date: Mon, 20 Nov 2023 02:54:29 GMT | Strict-Transport-Security: max-age=604800 | Pragma: no-cache | Cache-Control: private, no-transform, max-age=0, no-cache | Server-Timing: cld-fastly;mitm=p;dur=1;cpu=0;start=2023-11-20T02:54:29.295Z;desc=hit,rtt;dur=0 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Expose-Headers: Content-Length,Content-Disposition,Server-Timing,X-Cld-Error | Accept-Ranges: bytes | GetRequest: | HTTP/1.1 404 Not Found | Connection: close | Content-Length: 0 | Content-Disposition: inline | Content-Transfer-Encoding: binary | X-Cld-Error: Resource not found | Content-Type: image/gif | Date: Mon, 20 Nov 2023 02:54:29 GMT | Strict-Transport-Security: max-age=604800 | Pragma: no-cache | Cache-Control: private, no-transform, max-age=0, no-cache | Server-Timing: cld-fastly;mitm=p;dur=2;cpu=0;start=2023-11-20T02:54:29.263Z;desc=hit,rtt;dur=0 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Expose-Headers: Content-Length,Content-Disposition,Server-Timing,X-Cld-Error | Accept-Ranges: bytes | HTTPOptions: | HTTP/1.1 200 OK | Connection: close | Content-Length: 0 | Access-Control-Allow-Methods: GET, HEAD, OPTIONS | Date: Mon, 20 Nov 2023 02:54:29 GMT | Strict-Transport-Security: max-age=604800 | Cache-Control: private, no-transform, immutable, max-age=604800 | Server-Timing: cld-fastly;mitm=p;dur=0;start=2023-11-20T02:54:29.279Z;desc=hit,rtt;dur=0 | Server: Cloudinary | Timing-Allow-Origin: * | Access-Control-Allow-Origin: * | Access-Control-Allow-Credentials: true | Accept-Ranges: bytes |_ Access-Control-Expose-Headers: Content-Length,Server-Timing | http-robots.txt: 1 disallowed entry |_/ |_http-server-header: Cloudinary |_http-title: Did not follow redirect to https://cloudinary.com | ssl-cert: Subject: commonName=s3-san.cloudinary.com | Subject Alternative Name: DNS:s3-san.cloudinary.com, DNS:a.hwstatic.com, DNS:asset.japan.travel, DNS:asset.swarovski.com, DNS:assets.alliedelec.com, DNS:assets.bombas.com, DNS:assets.charmboard.com, DNS:assets.katomcdn.com, DNS:assets.lybrate.com, DNS:assets.mediacorp.sg, DNS:assets.spothub.com, DNS:assets.wego.com, DNS:assets.workjam.com, DNS:c-cdn-stg-b.assets.air-closet.com, DNS:c-cdn-stg-g.assets.air-closet.com, DNS:c-cdn.assets.air-closet.com, DNS:c.yellqatest.com, DNS:c8y.doxcdn.com, DNS:cdn.allbirds.com, DNS:cdn.igp.com, DNS:cdn.instabase.jp, DNS:cdn.muenchen-p.de, DNS:cdn.no-toxic.com, DNS:cdn.pinko.com, DNS:cdn.wynnresorts.com, DNS:cld.partsimg.com, DNS:cname-test.salsify.com, DNS:dev-img.peerspaceapp.com, DNS:fastui.cltpstatic.com, DNS:image.fisheriessupply.com, DNS:image.flyinstatic.com, DNS:images.anytask.com, DNS:images.canadagoose.com, DNS:images.carriercms.com, DNS:images.dmp.eis-deliverydevqa.cloud, DNS:images.dmp.eis-deliveryintegration.cloud, DNS:images.flyinstatic.com, DNS:images.lincolncenter.org, DNS:images.nationalgeographic.org, DNS:images.pavilionshotels.com, DNS:images.philanthropycloud.com, DNS:images.rogansshoes.com, DNS:images.snpfood.com, DNS:images.thrillophilia.com, DNS:images.urbanclap.com, DNS:images.vouchercloud.com, DNS:images.wfmstatic.com, DNS:img.bizhint.jp, DNS:img.breslev.co.il, DNS:img.karkkainen.com, DNS:img.peerspace.com, DNS:library.moorecoinc.com, DNS:media-cdn.grubhub.com, DNS:media.autoexpress.co.uk, DNS:media.caradvice.com.au, DNS:media.chillisauce.com, DNS:media.drivingelectric.com, DNS:media.dynahealth.com, DNS:media.dynamed.com, DNS:media.dynamedex.com, DNS:media.ebsco.healthcare, DNS:media.equityapartments.com, DNS:media.evo.co.uk, DNS:media.g-hughes.co.uk, DNS:media.itpro.co.uk, DNS:media.itpro.com, DNS:media.jimmychoo.com, DNS:media.marshalls.co.uk, DNS:media.moneyweek.com, DNS:media.stubhubstatic.com, DNS:media.travelodge.co.uk, DNS:media.triple.guide, DNS:mediacdn.shufersal.co.il, DNS:mediacloud.carbuyer.co.uk, DNS:mediacloud.kiplinger.com, DNS:nonprod.cloudinary.pgsitecore.com, DNS:previews.framerspointe.com, DNS:res.surplex.com, DNS:video.newsela.com, DNS:www.uber-assets.com | Not valid before: 2023-04-22T16:24:27 |_Not valid after: 2024-05-23T16:24:26 |_ssl-date: 2023-11-20T02:54:47+00:00; 0s from scanner time. | tls-alpn: | h2 |_ http/1.1 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.70%I=7%D=11/19%Time=655ACA5F%P=x86_64-redhat-linux-gnu%r SF:(GetRequest,24E,"HTTP/1\.1\x20404\x20Not\x20Found\r\nConnection:\x20clo SF:se\r\nContent-Length:\x200\r\nContent-Disposition:\x20inline\r\nContent SF:-Transfer-Encoding:\x20binary\r\nX-Cld-Error:\x20Resource\x20not\x20fou SF:nd\r\nContent-Type:\x20image/gif\r\nDate:\x20Mon,\x2020\x20Nov\x202023\ SF:x2002:54:23\x20GMT\r\nPragma:\x20no-cache\r\nCache-Control:\x20private, SF:\x20no-transform,\x20max-age=0,\x20no-cache\r\nServer-Timing:\x20cld-fa SF:stly;mitm=p;dur=9;cpu=0;start=2023-11-20T02:54:23\.253Z;desc=hit,rtt;du SF:r=1006\r\nServer:\x20Cloudinary\r\nTiming-Allow-Origin:\x20\*\r\nAccess SF:-Control-Allow-Origin:\x20\*\r\nAccess-Control-Expose-Headers:\x20Conte SF:nt-Length,Content-Disposition,Server-Timing,X-Cld-Error\r\nAccept-Range SF:s:\x20bytes\r\n\r\n")%r(HTTPOptions,1F2,"HTTP/1\.1\x20200\x20OK\r\nConn SF:ection:\x20close\r\nContent-Length:\x200\r\nAccess-Control-Allow-Method SF:s:\x20GET,\x20HEAD,\x20OPTIONS\r\nDate:\x20Mon,\x2020\x20Nov\x202023\x2 SF:002:54:23\x20GMT\r\nCache-Control:\x20private,\x20no-transform,\x20immu SF:table,\x20max-age=604800\r\nServer-Timing:\x20cld-fastly;mitm=p;dur=0;s SF:tart=2023-11-20T02:54:23\.270Z;desc=hit,rtt;dur=0\r\nServer:\x20Cloudin SF:ary\r\nTiming-Allow-Origin:\x20\*\r\nAccess-Control-Allow-Origin:\x20\* SF:\r\nAccess-Control-Allow-Credentials:\x20true\r\nAccept-Ranges:\x20byte SF:s\r\nAccess-Control-Expose-Headers:\x20Content-Length,Server-Timing\r\n SF:\r\n")%r(RTSPRequest,9B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nConnecti SF:on:\x20close\r\nContent-Length:\x2011\r\ncontent-type:\x20text/plain;\x SF:20charset=utf-8\r\nx-served-by:\x20cache-bur-kbur8200046\r\n\r\nBad\x20 SF:Request")%r(X11Probe,9B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nConnecti SF:on:\x20close\r\nContent-Length:\x2011\r\ncontent-type:\x20text/plain;\x SF:20charset=utf-8\r\nx-served-by:\x20cache-bur-kbur8200124\r\n\r\nBad\x20 SF:Request")%r(FourOhFourRequest,24B,"HTTP/1\.1\x20404\x20Not\x20Found\r\n SF:Connection:\x20close\r\nContent-Length:\x200\r\nContent-Disposition:\x2 SF:0inline\r\nContent-Transfer-Encoding:\x20binary\r\nX-Cld-Error:\x20Reso SF:urce\x20not\x20found\r\nContent-Type:\x20image/gif\r\nDate:\x20Mon,\x20 SF:20\x20Nov\x202023\x2002:54:23\x20GMT\r\nPragma:\x20no-cache\r\nCache-Co SF:ntrol:\x20private,\x20no-transform,\x20max-age=0,\x20no-cache\r\nServer SF:-Timing:\x20cld-fastly;mitm=p;dur=1;cpu=0;start=2023-11-20T02:54:23\.28 SF:2Z;desc=hit,rtt;dur=0\r\nServer:\x20Cloudinary\r\nTiming-Allow-Origin:\ SF:x20\*\r\nAccess-Control-Allow-Origin:\x20\*\r\nAccess-Control-Expose-He SF:aders:\x20Content-Length,Content-Disposition,Server-Timing,X-Cld-Error\ SF:r\nAccept-Ranges:\x20bytes\r\n\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.70%T=SSL%I=7%D=11/19%Time=655ACA65%P=x86_64-redhat-linu SF:x-gnu%r(GetRequest,276,"HTTP/1\.1\x20404\x20Not\x20Found\r\nConnection: SF:\x20close\r\nContent-Length:\x200\r\nContent-Disposition:\x20inline\r\n SF:Content-Transfer-Encoding:\x20binary\r\nX-Cld-Error:\x20Resource\x20not SF:\x20found\r\nContent-Type:\x20image/gif\r\nDate:\x20Mon,\x2020\x20Nov\x SF:202023\x2002:54:29\x20GMT\r\nStrict-Transport-Security:\x20max-age=6048 SF:00\r\nPragma:\x20no-cache\r\nCache-Control:\x20private,\x20no-transform SF:,\x20max-age=0,\x20no-cache\r\nServer-Timing:\x20cld-fastly;mitm=p;dur= SF:2;cpu=0;start=2023-11-20T02:54:29\.263Z;desc=hit,rtt;dur=0\r\nServer:\x SF:20Cloudinary\r\nTiming-Allow-Origin:\x20\*\r\nAccess-Control-Allow-Orig SF:in:\x20\*\r\nAccess-Control-Expose-Headers:\x20Content-Length,Content-D SF:isposition,Server-Timing,X-Cld-Error\r\nAccept-Ranges:\x20bytes\r\n\r\n SF:")%r(HTTPOptions,21D,"HTTP/1\.1\x20200\x20OK\r\nConnection:\x20close\r\ SF:nContent-Length:\x200\r\nAccess-Control-Allow-Methods:\x20GET,\x20HEAD, SF:\x20OPTIONS\r\nDate:\x20Mon,\x2020\x20Nov\x202023\x2002:54:29\x20GMT\r\ SF:nStrict-Transport-Security:\x20max-age=604800\r\nCache-Control:\x20priv SF:ate,\x20no-transform,\x20immutable,\x20max-age=604800\r\nServer-Timing: SF:\x20cld-fastly;mitm=p;dur=0;start=2023-11-20T02:54:29\.279Z;desc=hit,rt SF:t;dur=0\r\nServer:\x20Cloudinary\r\nTiming-Allow-Origin:\x20\*\r\nAcces SF:s-Control-Allow-Origin:\x20\*\r\nAccess-Control-Allow-Credentials:\x20t SF:rue\r\nAccept-Ranges:\x20bytes\r\nAccess-Control-Expose-Headers:\x20Con SF:tent-Length,Server-Timing\r\n\r\n")%r(FourOhFourRequest,276,"HTTP/1\.1\ SF:x20404\x20Not\x20Found\r\nConnection:\x20close\r\nContent-Length:\x200\ SF:r\nContent-Disposition:\x20inline\r\nContent-Transfer-Encoding:\x20bina SF:ry\r\nX-Cld-Error:\x20Resource\x20not\x20found\r\nContent-Type:\x20imag SF:e/gif\r\nDate:\x20Mon,\x2020\x20Nov\x202023\x2002:54:29\x20GMT\r\nStric SF:t-Transport-Security:\x20max-age=604800\r\nPragma:\x20no-cache\r\nCache SF:-Control:\x20private,\x20no-transform,\x20max-age=0,\x20no-cache\r\nSer SF:ver-Timing:\x20cld-fastly;mitm=p;dur=1;cpu=0;start=2023-11-20T02:54:29\ SF:.295Z;desc=hit,rtt;dur=0\r\nServer:\x20Cloudinary\r\nTiming-Allow-Origi SF:n:\x20\*\r\nAccess-Control-Allow-Origin:\x20\*\r\nAccess-Control-Expose SF:-Headers:\x20Content-Length,Content-Disposition,Server-Timing,X-Cld-Err SF:or\r\nAccept-Ranges:\x20bytes\r\n\r\n"); Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port Aggressive OS guesses: Crestron XPanel control system (90%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (88%), OpenWrt White Russian 0.9 (Linux 2.4.30) (88%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (88%), Linux 4.4 (88%), OpenBSD 4.3 (88%), Asus RT-AC66U router (Linux 2.6) (87%), Asus RT-N10 router or AXIS 211A Network Camera (Linux 2.6) (87%), Linux 2.6.18 (87%), Asus RT-N16 WAP (Linux 2.6) (87%) No exact OS matches for host (test conditions non-ideal). Network Distance: 5 hops TRACEROUTE (using port 443/tcp) HOP RTT ADDRESS 1 0.19 ms 208.76.251.177 2 0.51 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 0.76 ms multacom.com (96.45.162.9) 4 0.34 ms 206.72.211.174.any2ix.coresite.com (206.72.211.174) 5 0.32 ms 146.75.94.104 OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 43.76 seconds