Scan Time: Wed Dec 31 18:49:58 2025
Target: 183.88.231.159
----------------------------------------
Starting Nmap 7.95 ( https://nmap.org ) at 2025-12-31 18:47 CET
Nmap scan report for mx-ll-183.88.231-159.dynamic.3bb.in.th (183.88.231.159)
Host is up (0.18s latency).
Not shown: 991 filtered tcp ports (no-response)
PORT STATE SERVICE VERSION
21/tcp open ftp vsftpd 3.0.5
|_ftp-bounce: server forbids bouncing to low ports <1025
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_drwxrwxrwx 3 65534 65534 4096 Oct 21 2023 upload [NSE: writeable]
| ftp-syst:
| STAT:
| FTP server status:
| Connected to ::ffff:192.168.1.1
| Logged in as ftp
| TYPE: ASCII
| No session bandwidth limit
| Session timeout in seconds is 300
| Control connection is plain text
| Data connections will be plain text
| At session startup, client count was 1
| vsFTPd 3.0.5 - secure, fast, stable
|_End of status
22/tcp closed ssh
23/tcp open telnet Huawei Home Gateway telnetd
80/tcp open http nginx 1.24.0 (Ubuntu)
|_http-server-header: nginx/1.24.0 (Ubuntu)
|_http-cors: HEAD GET POST PUT DELETE TRACE OPTIONS CONNECT PATCH
|_http-title: Fitment Center - \xE0\xB9\x80\xE0\xB8\x82\xE0\xB9\x89\xE0\xB8\xB2\xE0\xB8\xAA\xE0\xB8\xB9\xE0\xB9\x88\xE0\xB8\xA3\xE0\xB8\xB0\xE0\xB8\x9A\xE0\xB8\x9A
443/tcp open ssl/http nginx 1.24.0 (Ubuntu)
|_http-title: 404 Not Found
|_ssl-date: TLS randomness does not represent time
| ssl-cert: Subject: commonName=uat.tolltech.co
| Subject Alternative Name: DNS:uat.tolltech.co
| Not valid before: 2025-12-24T06:16:49
|_Not valid after: 2026-03-24T06:16:48
|_http-server-header: nginx/1.24.0 (Ubuntu)
8022/tcp open ssh Dropbear sshd (protocol 2.0)
8080/tcp open ssl/http-proxy
|_ssl-date: 2025-12-31T17:49:55+00:00; -1s from scanner time.
| ssl-cert: Subject: commonName=Huawei Technologies Co., Ltd/organizationName=Huawei Technologies Co., Ltd/stateOrProvinceName=Guangdong/countryName=CN
| Not valid before: 2017-09-01T07:57:47
|_Not valid after: 2027-08-30T07:57:47
|_http-title: Site doesn't have a title (text/html; charset=UTF-8).
8081/tcp open blackice-icecap?
| fingerprint-strings:
| FourOhFourRequest:
| HTTP/1.1 404 Not Found
| Connection: close
| Date: Wed, 31 Dec 2025 17:47:51 GMT
| Server: Kestrel
| Content-Length: 0
| GenericLines, WWWOFFLEctrlstat:
| HTTP/1.1 400 Bad Request
| Connection: close
| Date: Wed, 31 Dec 2025 17:47:52 GMT
| Server: Kestrel
| Content-Length: 0
| GetRequest:
| HTTP/1.1 200 OK
| Connection: close
| Date: Wed, 31 Dec 2025 17:47:51 GMT
| Content-Type: text/html; charset=utf-8
| Server: Kestrel
| Cache-Control: no-cache, no-store
| Pragma: no-cache
| Set-Cookie: .AspNetCore.Antiforgery.nJ3OEerSzEk=CfDJ8P_8LSIitBhOrV4YdXjvGWkCRJrwsXpO5uTHD2HRlFP9g0xtZPamjmb8M_Wwkr13NoPXbn1aV3AAS7tocNIHJhBV2MnPczJ4AmPJZffYWYKaOW-c-qCjzh1Nomnof0FhI7eMMfgx4_NbiqD_QQQeQf0; path=/; samesite=strict; httponly
| X-Frame-Options: SAMEORIGIN
|
|
|
| Fitment Center -
|
|
|
|
|
|
|
|
|
|
|
|
|
|_ \r\n\r\n\r\n\x20\x20\x20\x20Fitment\x20Center\x2
SF:0-\x20\xe0\xb9\x80\xe0\xb8\x82\xe0\xb9\x89\xe0\xb8\xb2\xe0\xb8\xaa\xe0\
SF:xb8\xb9\xe0\xb9\x88\xe0\xb8\xa3\xe0\xb8\xb0\xe0\xb8\x9a\xe0\xb8\x9a</ti
SF:tle>\r\n\x20\x20\x20\x20<meta\x20charset=\"utf-8\">\r\n\x20\x20\x20\x20
SF:<meta\x20http-equiv=\"X-UA-Compatible\"\x20content=\"IE=edge,\x20chrome
SF:=1\">\r\n\x20\x20\x20\x20<meta\x20name=\"viewport\"\x20content=\"width=
SF:device-width,\x20initial-scale=1\.0,\x20shrink-to-fit=no\">\r\n\r\n\t<l
SF:ink\x20rel=\"icon\"\x20type=\"image/png\"\x20href=\"/lib/login/images/i
SF:cons/favicon\.ico\"\x20/>\r\n\t<link\x20rel=\"stylesheet\"\x20type=\"te
SF:xt/css\"\x20href=\"/lib/login/vendor/boo")%r(FourOhFourRequest,76,"HTTP
SF:/1\.1\x20404\x20Not\x20Found\r\nConnection:\x20close\r\nDate:\x20Wed,\x
SF:2031\x20Dec\x202025\x2017:47:51\x20GMT\r\nServer:\x20Kestrel\r\nContent
SF:-Length:\x200\r\n\r\n")%r(SIPOptions,87,"HTTP/1\.1\x20505\x20HTTP\x20Ve
SF:rsion\x20Not\x20Supported\r\nConnection:\x20close\r\nDate:\x20Wed,\x203
SF:1\x20Dec\x202025\x2017:47:51\x20GMT\r\nServer:\x20Kestrel\r\nContent-Le
SF:ngth:\x200\r\n\r\n")%r(WWWOFFLEctrlstat,78,"HTTP/1\.1\x20400\x20Bad\x20
SF:Request\r\nConnection:\x20close\r\nDate:\x20Wed,\x2031\x20Dec\x202025\x
SF:2017:47:52\x20GMT\r\nServer:\x20Kestrel\r\nContent-Length:\x200\r\n\r\n
SF:")%r(GenericLines,78,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nConnection:
SF:\x20close\r\nDate:\x20Wed,\x2031\x20Dec\x202025\x2017:47:52\x20GMT\r\nS
SF:erver:\x20Kestrel\r\nContent-Length:\x200\r\n\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port8082-TCP:V=7.95%I=7%D=12/31%Time=695561C7%P=x86_64-pc-linux-gnu%r(G
SF:etRequest,1072,"HTTP/1\.1\x20200\x20OK\r\nConnection:\x20close\r\nDate:
SF:\x20Wed,\x2031\x20Dec\x202025\x2017:47:51\x20GMT\r\nContent-Type:\x20te
SF:xt/html;\x20charset=utf-8\r\nServer:\x20Kestrel\r\nCache-Control:\x20no
SF:-cache,\x20no-store\r\nPragma:\x20no-cache\r\nSet-Cookie:\x20\.AspNetCo
SF:re\.Antiforgery\.0A3R-r3_Fac=CfDJ8LGSonw5MU9Bhzcd2S2dFcj2hXy3QQYSNP9pjS
SF:5ozHkC6z_HljJG6dAzdIzJz1O7tph1Qn5tVPusqThoilxf5MfmisipOGr0N5Md3VwBwjwtN
SF:cRGh5gZqOuHCuzMCMv4icKRPVsY3dx0nbiXHp2quhQ;\x20path=/;\x20samesite=stri
SF:ct;\x20httponly\r\nX-Frame-Options:\x20SAMEORIGIN\r\n\r\n<!DOCTYPE\x20h
SF:tml>\r\n<html>\r\n<head>\r\n\x20\x20\x20\x20<title>Fitment\x20Center\x2
SF:0-\x20\xe0\xb9\x80\xe0\xb8\x82\xe0\xb9\x89\xe0\xb8\xb2\xe0\xb8\xaa\xe0\
SF:xb8\xb9\xe0\xb9\x88\xe0\xb8\xa3\xe0\xb8\xb0\xe0\xb8\x9a\xe0\xb8\x9a</ti
SF:tle>\r\n\x20\x20\x20\x20<meta\x20charset=\"utf-8\">\r\n\x20\x20\x20\x20
SF:<meta\x20http-equiv=\"X-UA-Compatible\"\x20content=\"IE=edge,\x20chrome
SF:=1\">\r\n\x20\x20\x20\x20<meta\x20name=\"viewport\"\x20content=\"width=
SF:device-width,\x20initial-scale=1\.0,\x20shrink-to-fit=no\">\r\n\r\n\t<l
SF:ink\x20rel=\"icon\"\x20type=\"image/png\"\x20href=\"/lib/login/images/i
SF:cons/favicon\.ico\"\x20/>\r\n\t<link\x20rel=\"stylesheet\"\x20type=\"te
SF:xt/css\"\x20href=\"/lib/login/vendor/boo")%r(FourOhFourRequest,76,"HTTP
SF:/1\.1\x20404\x20Not\x20Found\r\nConnection:\x20close\r\nDate:\x20Wed,\x
SF:2031\x20Dec\x202025\x2017:47:51\x20GMT\r\nServer:\x20Kestrel\r\nContent
SF:-Length:\x200\r\n\r\n")%r(GenericLines,78,"HTTP/1\.1\x20400\x20Bad\x20R
SF:equest\r\nConnection:\x20close\r\nDate:\x20Wed,\x2031\x20Dec\x202025\x2
SF:017:47:52\x20GMT\r\nServer:\x20Kestrel\r\nContent-Length:\x200\r\n\r\n"
SF:)%r(HTTPOptions,1072,"HTTP/1\.1\x20200\x20OK\r\nConnection:\x20close\r\
SF:nDate:\x20Wed,\x2031\x20Dec\x202025\x2017:47:52\x20GMT\r\nContent-Type:
SF:\x20text/html;\x20charset=utf-8\r\nServer:\x20Kestrel\r\nCache-Control:
SF:\x20no-cache,\x20no-store\r\nPragma:\x20no-cache\r\nSet-Cookie:\x20\.As
SF:pNetCore\.Antiforgery\.0A3R-r3_Fac=CfDJ8LGSonw5MU9Bhzcd2S2dFchnNa5g3gD5
SF:qtkhgrP9PplptXxMM0mC7ApSC44EE2Mn3hDpYwhGUqNCA3VaN9Z-CFdbd8ahGp0Ql9GaIig
SF:vfOET7XMtoKeLNJKWmcl7NFivx0EU7pk5CJXqtqVcq1fKI-k;\x20path=/;\x20samesit
SF:e=strict;\x20httponly\r\nX-Frame-Options:\x20SAMEORIGIN\r\n\r\n<!DOCTYP
SF:E\x20html>\r\n<html>\r\n<head>\r\n\x20\x20\x20\x20<title>Fitment\x20Cen
SF:ter\x20-\x20\xe0\xb9\x80\xe0\xb8\x82\xe0\xb9\x89\xe0\xb8\xb2\xe0\xb8\xa
SF:a\xe0\xb8\xb9\xe0\xb9\x88\xe0\xb8\xa3\xe0\xb8\xb0\xe0\xb8\x9a\xe0\xb8\x
SF:9a\r\n\x20\x20\x20\x20\r\n\x20\x20\x
SF:20\x20\r\n\x20\x20\x20\x20\r\n\r
SF:\n\t\r\n\t