Scan Time: Wed Dec 31 14:28:06 2025
Target: 185.12.204.239
----------------------------------------
Starting Nmap 7.95 ( https://nmap.org ) at 2025-12-31 14:24 CET
Nmap scan report for 185.12.204.239
Host is up (0.016s latency).
Not shown: 985 closed tcp ports (reset)
PORT     STATE    SERVICE           VERSION
22/tcp   open     ssh               OpenSSH 9.6p1 Ubuntu 3ubuntu13 (Ubuntu Linux; protocol 2.0)
25/tcp   filtered smtp
80/tcp   open     http              nginx 1.24.0 (Ubuntu)
|_http-title: 404 Not Found
|_http-server-header: nginx/1.24.0 (Ubuntu)
179/tcp  filtered bgp
443/tcp  open     ssl/http          nginx 1.24.0 (Ubuntu)
|_http-trane-info: Problem with XML parsing of /evox/about
|_http-server-header: nginx/1.24.0 (Ubuntu)
| ssl-cert: Subject: commonName=admin.nobilice.com
| Subject Alternative Name: DNS:admin.nobilice.com
| Not valid before: 2025-12-16T01:50:54
|_Not valid after:  2026-03-16T01:50:53
|_ssl-date: TLS randomness does not represent time
|_http-title: Pterodactyl
| http-robots.txt: 1 disallowed entry 
|_/
465/tcp  filtered smtps
1025/tcp open     ssl/NFS-or-IIS?
| ssl-cert: Subject: commonName=CloudFlare Origin Certificate/organizationName=CloudFlare, Inc.
| Subject Alternative Name: DNS:*.tabukco.com, DNS:tabukco.com
| Not valid before: 2025-07-27T14:03:00
|_Not valid after:  2040-07-23T14:03:00
1026/tcp open     ssl/LSA-or-nterm?
| ssl-cert: Subject: commonName=CloudFlare Origin Certificate/organizationName=CloudFlare, Inc.
| Subject Alternative Name: DNS:*.tabukco.com, DNS:tabukco.com
| Not valid before: 2025-07-27T14:03:00
|_Not valid after:  2040-07-23T14:03:00
1027/tcp open     IIS?
1028/tcp open     socks5            (Username/password authentication required)
| socks-auth-info: 
|_  Username and password
1029/tcp open     ssl/http          nginx
|_http-server-header: cloudflare
| ssl-cert: Subject: commonName=cloudflare-dns.com/organizationName=Cloudflare, Inc./stateOrProvinceName=California/countryName=US
| Subject Alternative Name: DNS:cloudflare-dns.com, DNS:*.cloudflare-dns.com, DNS:one.one.one.one, IP Address:1.0.0.1, IP Address:1.1.1.1, IP Address:162.159.36.1, IP Address:162.159.46.1, IP Address:2606:4700:4700:0:0:0:0:1001, IP Address:2606:4700:4700:0:0:0:0:1111, IP Address:2606:4700:4700:0:0:0:0:64, IP Address:2606:4700:4700:0:0:0:0:6400
| Not valid before: 2025-01-02T00:00:00
|_Not valid after:  2026-01-21T23:59:59
|_http-title: 403 Forbidden
|_ssl-date: TLS randomness does not represent time
2022/tcp open     ssh               Golang x/crypto/ssh server (protocol 2.0)
3306/tcp open     mysql             MariaDB 5.5.5-10.11.8
| mysql-info: 
|   Protocol: 10
|   Version: 5.5.5-10.11.8-MariaDB-0ubuntu0.24.04.1
|   Thread ID: 744103
|   Capabilities flags: 63486
|   Some Capabilities: SupportsCompression, LongColumnFlag, DontAllowDatabaseTableColumn, IgnoreSpaceBeforeParenthesis, SupportsTransactions, Support41Auth, Speaks41ProtocolOld, Speaks41ProtocolNew, IgnoreSigpipes, ConnectWithDatabase, FoundRows, InteractiveClient, SupportsLoadDataLocal, ODBCClient, SupportsMultipleResults, SupportsAuthPlugins, SupportsMultipleStatments
|   Status: Autocommit
|   Salt: ?{rJX]J:$CdQHRFGp!MA
|_  Auth Plugin Name: mysql_native_password
8080/tcp open     ssl/http          Golang net/http server
| ssl-cert: Subject: commonName=admin.nobilice.com
| Subject Alternative Name: DNS:admin.nobilice.com
| Not valid before: 2025-06-02T04:49:46
|_Not valid after:  2025-08-31T04:49:45
| http-auth: 
| HTTP/1.1 401 Unauthorized\x0D
|_  Bearer
|_http-title: Site doesn't have a title (application/json; charset=utf-8).
| fingerprint-strings: 
|   GenericLines, Help, RTSPRequest, SSLSessionReq: 
|     HTTP/1.1 400 Bad Request
|     Content-Type: text/plain; charset=utf-8
|     Connection: close
|     Request
|   GetRequest: 
|     HTTP/1.0 401 Unauthorized
|     Access-Control-Allow-Credentials: true
|     Access-Control-Allow-Headers: Accept, Accept-Encoding, Authorization, Cache-Control, Content-Type, Content-Length, Origin, X-Real-IP, X-CSRF-Token
|     Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
|     Access-Control-Allow-Origin: https://admin.nobilice.com
|     Access-Control-Max-Age: 7200
|     Content-Type: application/json; charset=utf-8
|     Www-Authenticate: Bearer
|     X-Request-Id: 43116046-314b-4402-87f3-8a4903d14cae
|     Date: Wed, 31 Dec 2025 13:25:08 GMT
|     Content-Length: 77
|     {"error":"The required authorization heads were not present in the request."}
|   HTTPOptions: 
|     HTTP/1.0 204 No Content
|     Access-Control-Allow-Credentials: true
|     Access-Control-Allow-Headers: Accept, Accept-Encoding, Authorization, Cache-Control, Content-Type, Content-Length, Origin, X-Real-IP, X-CSRF-Token
|     Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
|     Access-Control-Allow-Origin: https://admin.nobilice.com
|     Access-Control-Max-Age: 7200
|     X-Request-Id: b0749288-ca1f-4e10-9d7f-94727d0af758
|_    Date: Wed, 31 Dec 2025 13:25:08 GMT
9595/tcp open     http              Golang net/http server (Go-IPFS json-rpc or InfluxDB API)
|_http-title: Site doesn't have a title (text/plain; charset=utf-8).
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
SF-Port8080-TCP:V=7.95%T=SSL%I=7%D=12/31%Time=69552434%P=x86_64-pc-linux-g
SF:nu%r(GenericLines,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Typ
SF:e:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x
SF:20Bad\x20Request")%r(GetRequest,279,"HTTP/1\.0\x20401\x20Unauthorized\r
SF:\nAccess-Control-Allow-Credentials:\x20true\r\nAccess-Control-Allow-Hea
SF:ders:\x20Accept,\x20Accept-Encoding,\x20Authorization,\x20Cache-Control
SF:,\x20Content-Type,\x20Content-Length,\x20Origin,\x20X-Real-IP,\x20X-CSR
SF:F-Token\r\nAccess-Control-Allow-Methods:\x20GET,\x20POST,\x20PATCH,\x20
SF:PUT,\x20DELETE,\x20OPTIONS\r\nAccess-Control-Allow-Origin:\x20https://a
SF:dmin\.nobilice\.com\r\nAccess-Control-Max-Age:\x207200\r\nContent-Type:
SF:\x20application/json;\x20charset=utf-8\r\nWww-Authenticate:\x20Bearer\r
SF:\nX-Request-Id:\x2043116046-314b-4402-87f3-8a4903d14cae\r\nDate:\x20Wed
SF:,\x2031\x20Dec\x202025\x2013:25:08\x20GMT\r\nContent-Length:\x2077\r\n\
SF:r\n{\"error\":\"The\x20required\x20authorization\x20heads\x20were\x20no
SF:t\x20present\x20in\x20the\x20request\.\"}")%r(HTTPOptions,1CD,"HTTP/1\.
SF:0\x20204\x20No\x20Content\r\nAccess-Control-Allow-Credentials:\x20true\
SF:r\nAccess-Control-Allow-Headers:\x20Accept,\x20Accept-Encoding,\x20Auth
SF:orization,\x20Cache-Control,\x20Content-Type,\x20Content-Length,\x20Ori
SF:gin,\x20X-Real-IP,\x20X-CSRF-Token\r\nAccess-Control-Allow-Methods:\x20
SF:GET,\x20POST,\x20PATCH,\x20PUT,\x20DELETE,\x20OPTIONS\r\nAccess-Control
SF:-Allow-Origin:\x20https://admin\.nobilice\.com\r\nAccess-Control-Max-Ag
SF:e:\x207200\r\nX-Request-Id:\x20b0749288-ca1f-4e10-9d7f-94727d0af758\r\n
SF:Date:\x20Wed,\x2031\x20Dec\x202025\x2013:25:08\x20GMT\r\n\r\n")%r(RTSPR
SF:equest,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/
SF:plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Re
SF:quest")%r(Help,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\
SF:x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20B
SF:ad\x20Request")%r(SSLSessionReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\
SF:r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20clos
SF:e\r\n\r\n400\x20Bad\x20Request");
Aggressive OS guesses: Linux 2.6.32 - 3.13 (96%), Linux 5.0 - 5.14 (96%), Linux 5.1 - 5.15 (96%), MikroTik RouterOS 7.2 - 7.5 (Linux 5.6.3) (96%), Linux 2.6.22 - 2.6.36 (95%), Linux 3.10 - 4.11 (95%), Linux 2.6.32 (94%), Linux 4.15 (94%), OpenWrt 21.02 (Linux 5.4) (94%), Linux 3.10 (94%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 15 hops
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel

TRACEROUTE (using port 587/tcp)
HOP RTT      ADDRESS
1   0.03 ms  172.18.0.1
2   2.76 ms  172.31.1.1
3   0.93 ms  26472.your-cloud.host (162.55.119.126)
4   ... 5
6   2.18 ms  core-spine-rdev1.cloud2.fsn1.hetzner.com (213.239.239.85)
7   2.16 ms  core22.fsn1.hetzner.com (213.239.227.214)
8   6.69 ms  core0.fra.hetzner.com (213.239.224.82)
9   ...
10  11.68 ms core2.ams.hetzner.com (213.239.203.237)
11  12.37 ms skylink-gw.hetzner.com (88.198.255.158)
12  ... 14
15  14.50 ms 185.12.204.239

OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 197.28 seconds