To start, I made sure firewall is off and then ran acp_commander again with option -o.
C:\>java -jar acp_commander.jar -t 192.168.101.22 -o
ACP_commander out of the linkstationwiki.net project.
Used to send ACP-commands to Buffalo linkstation(R) LS-PRO.
WARNING: This is experimental software that might brick your linkstation!
Using random connID value = 8803C9E3D14E
Using target: 192.168.101.22/192.168.101.22
Reset root pwd...
You can now telnet to your box as user 'root' providingno / an empty password.
But telnet via cmd and putty didn't work.
Downloaded nmap and ran it.
Here are the results from nmap:
Initiating ARP Ping Scan at 10:52
Scanning 192.168.101.22 [1 port]
Completed ARP Ping Scan at 10:52, 0.13s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 10:52
Completed Parallel DNS resolution of 1 host. at 10:52, 0.08s elapsed
Initiating SYN Stealth Scan at 10:52
Scanning 192.168.101.22 [1715 ports]
Discovered open port 80/tcp on 192.168.101.22
Completed SYN Stealth Scan at 10:52, 2.39s elapsed (1715 total ports)
Initiating Service scan at 10:52
Scanning 1 service on 192.168.101.22
Completed Service scan at 10:52, 6.11s elapsed (1 service on 1 host)
Initiating OS detection (try #1) against 192.168.101.22
Retrying OS detection (try #2) against 192.168.101.22
SCRIPT ENGINE: Initiating script scanning.
Initiating SCRIPT ENGINE at 10:52
Completed SCRIPT ENGINE at 10:52, 6.20s elapsed
Host 192.168.101.22 appears to be up ... good.
Interesting ports on 192.168.101.22:
Not shown: 1714 closed ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 1.3.39 ((Unix))
|_ HTML title: Site doesn't have a title.
MAC Address: 00:1D:73:26:08:C1 (Buffalo)
Device type: general purpose|WAP|broadband router|media device|firewall|VoIP phone
Running (JUST GUESSING) : Linux 2.6.X|2.4.X (99%), FON Linux 2.6.X|2.4.X (95%), 3Com Linux 2.4.X (94%), Emprex Linux 2.6.X (93%), Secure Computing embedded (93%), WebVOIZE embedded (93%), Linksys embedded (92%), Belkin embedded (91%)
Aggressive OS guesses: Linux 2.6.22 - 2.6.23 (99%), Linux 2.6.11 - 2.6.22 (98%), DD-WRT v24 rc4 (Linux 188.8.131.52) (95%), Linux 2.6.13 - 2.6.20 (94%), Linux 2.6.9 (94%), Linux 2.6.9 (Red Hat Enterprise Linux) (94%), Linux 2.6.9 - 2.6.15 (x86) (94%), 3Com OfficeConnect (94%), Linux 2.4.18 - 2.4.32 (likely embedded) (94%), Linux 2.6.11 - 2.6.20 (94%)
No exact OS matches for host (test conditions non-ideal).
Uptime: 497.101 days (since Mon Jan 01 08:27:35 2007)
Network Distance: 1 hop
TCP Sequence Prediction: Difficulty=252 (Good luck!)
IP ID Sequence Generation: All zeros
Read data files from: C:\Program Files\Nmap
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 19.328 seconds
Seems like only port 80 is open