Nmap scan report for sep-bifrost-green.uw2-red.nielsendigital.net (52.25.175.130) Host is up (0.026s latency). Other addresses for sep-bifrost-green.uw2-red.nielsendigital.net (not scanned): 54.212.64.253 35.82.240.19 rDNS record for 52.25.175.130: ec2-52-25-175-130.us-west-2.compute.amazonaws.com Not shown: 998 filtered ports PORT STATE SERVICE VERSION 80/tcp open http awselb/2.0 | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 301 Moved Permanently | Server: awselb/2.0 | Date: Sat, 18 Nov 2023 20:11:16 GMT | Content-Type: text/html | Content-Length: 134 | Connection: close | Location: https://k8s-bifrosta-collecto-a80d9b59c8-172977248.us-west-2.elb.amazonaws.com:443/nice%20ports%2C/Tri%6Eity.txt%2ebak | | 301 Moved Permanently | |

301 Moved Permanently

| | | GetRequest, HTTPOptions: | HTTP/1.1 301 Moved Permanently | Server: awselb/2.0 | Date: Sat, 18 Nov 2023 20:11:16 GMT | Content-Type: text/html | Content-Length: 134 | Connection: close | Location: https://k8s-bifrosta-collecto-a80d9b59c8-172977248.us-west-2.elb.amazonaws.com:443/ | | 301 Moved Permanently | |

301 Moved Permanently

| | | RTSPRequest: | | 400 Bad Request | |

400 Bad Request

| | | X11Probe: | HTTP/1.1 400 Bad Request | Server: awselb/2.0 | Date: Sat, 18 Nov 2023 20:11:16 GMT | Content-Type: text/html | Content-Length: 122 | Connection: close | | 400 Bad Request | |

400 Bad Request

| |_ |_http-server-header: awselb/2.0 |_http-title: Did not follow redirect to https://sep-bifrost-green.uw2-red.nielsendigital.net:443/ 443/tcp open ssl/https | fingerprint-strings: | FourOhFourRequest, GetRequest: | HTTP/1.1 200 OK | Date: Sat, 18 Nov 2023 20:11:22 GMT | Content-Type: image/gif | Content-Length: 35 | Connection: close | Expires: 0 | Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 | P3P: P3P policyref="http://k8s-bifrosta-collecto-a80d9b59c8-172977248.us-west-2.elb.amazonaws.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM" | Pragma: no-cache | max-age: 0 | access-control-allow-origin: * | cross-origin-resource-policy: cross-origin | Accept-CH: Sec-Ch-Ua-Model, Sec-Ch-Ua-Platform, Sec-Ch-Ua-Platform-Version | Strict-Transport-Security: max-age=31536000 | GIF89a | HTTPOptions: | HTTP/1.1 200 OK | Date: Sat, 18 Nov 2023 20:11:22 GMT | Content-Type: image/gif | Content-Length: 35 | Connection: close | Expires: 0 | Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 | P3P: P3P policyref="http://k8s-bifrosta-collecto-a80d9b59c8-172977248.us-west-2.elb.amazonaws.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM" | Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization | Pragma: no-cache | max-age: 0 | access-control-allow-origin: * | cross-origin-resource-policy: cross-origin | Accept-CH: Sec-Ch-Ua-Model, Sec-Ch-Ua-Platform, Sec-Ch-Ua-Platform-Version | Strict-Transport-Security: max-age=31536000 | Access-Control-Allow-Methods: POST, GET, OPTIONS |_ GIF89a |_http-cors: GET POST OPTIONS | http-robots.txt: 1 disallowed entry |_/ |_http-title: Site doesn't have a title (image/gif). | ssl-cert: Subject: commonName=*.uw2-red.nielsendigital.net | Subject Alternative Name: DNS:*.uw2-red.nielsendigital.net | Not valid before: 2023-07-19T00:00:00 |_Not valid after: 2024-08-16T23:59:59 |_ssl-date: TLS randomness does not represent time | tls-alpn: | h2 |_ http/1.1 | tls-nextprotoneg: | h2 |_ http/1.1 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.70%I=7%D=11/18%Time=65591A63%P=x86_64-redhat-linux-gnu%r SF:(GetRequest,181,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x2 SF:0awselb/2\.0\r\nDate:\x20Sat,\x2018\x20Nov\x202023\x2020:11:16\x20GMT\r SF:\nContent-Type:\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x SF:20close\r\nLocation:\x20https://k8s-bifrosta-collecto-a80d9b59c8-172977 SF:248\.us-west-2\.elb\.amazonaws\.com:443/\r\n\r\n\r\n SF:301\x20Moved\x20Permanently\r\n\r\n

301 SF:\x20Moved\x20Permanently

\r\n\r\n\r\n")%r(HT SF:TPOptions,181,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20a SF:wselb/2\.0\r\nDate:\x20Sat,\x2018\x20Nov\x202023\x2020:11:16\x20GMT\r\n SF:Content-Type:\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x20 SF:close\r\nLocation:\x20https://k8s-bifrosta-collecto-a80d9b59c8-17297724 SF:8\.us-west-2\.elb\.amazonaws\.com:443/\r\n\r\n\r\n30 SF:1\x20Moved\x20Permanently\r\n\r\n

301\x SF:20Moved\x20Permanently

\r\n\r\n\r\n")%r(RTSP SF:Request,7A,"\r\n400\x20Bad\x20Request SF:\r\n\r\n

400\x20Bad\x20Request

\r\n\r\n\r\n")%r(X11Probe,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r SF:\nServer:\x20awselb/2\.0\r\nDate:\x20Sat,\x2018\x20Nov\x202023\x2020:11 SF::16\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20122\r\nC SF:onnection:\x20close\r\n\r\n\r\n400\x20Bad\x20Request SF:\r\n\r\n

400\x20Bad\x20Request

\r\n\r\n\r\n")%r(FourOhFourRequest,1A4,"HTTP/1\.1\x2 SF:0301\x20Moved\x20Permanently\r\nServer:\x20awselb/2\.0\r\nDate:\x20Sat, SF:\x2018\x20Nov\x202023\x2020:11:16\x20GMT\r\nContent-Type:\x20text/html\ SF:r\nContent-Length:\x20134\r\nConnection:\x20close\r\nLocation:\x20https SF:://k8s-bifrosta-collecto-a80d9b59c8-172977248\.us-west-2\.elb\.amazonaw SF:s\.com:443/nice%20ports%2C/Tri%6Eity\.txt%2ebak\r\n\r\n\r\n SF:301\x20Moved\x20Permanently\r\n\r\n
SF:

301\x20Moved\x20Permanently

\r\n\r\n\r\n SF:"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.70%T=SSL%I=7%D=11/18%Time=65591A69%P=x86_64-redhat-linu SF:x-gnu%r(GetRequest,27B,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Sat,\x2018\x SF:20Nov\x202023\x2020:11:22\x20GMT\r\nContent-Type:\x20image/gif\r\nConte SF:nt-Length:\x2035\r\nConnection:\x20close\r\nExpires:\x200\r\nCache-Cont SF:rol:\x20no-store,\x20no-cache,\x20must-revalidate,\x20post-check=0,\x20 SF:pre-check=0\r\nP3P:\x20P3P\x20policyref=\"http://k8s-bifrosta-collecto- SF:a80d9b59c8-172977248\.us-west-2\.elb\.amazonaws\.com/w3c/p3p\.xml\",\x2 SF:0CP=\"NOI\x20DSP\x20COR\x20NID\x20PSA\x20ADM\x20OUR\x20IND\x20UNI\x20NA SF:V\x20COM\"\r\nPragma:\x20no-cache\r\nmax-age:\x200\r\naccess-control-al SF:low-origin:\x20\*\r\ncross-origin-resource-policy:\x20cross-origin\r\nA SF:ccept-CH:\x20Sec-Ch-Ua-Model,\x20Sec-Ch-Ua-Platform,\x20Sec-Ch-Ua-Platf SF:orm-Version\r\nStrict-Transport-Security:\x20max-age=31536000\r\n\r\nGI SF:F89a\x01\0\x01\0\x80\0\0\xff\xff\xff\0\0\0,\0\0\0\0\x01\0\x01\0\0\x02\x SF:02D\x01\0;")%r(HTTPOptions,31F,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Sat, SF:\x2018\x20Nov\x202023\x2020:11:22\x20GMT\r\nContent-Type:\x20image/gif\ SF:r\nContent-Length:\x2035\r\nConnection:\x20close\r\nExpires:\x200\r\nCa SF:che-Control:\x20no-store,\x20no-cache,\x20must-revalidate,\x20post-chec SF:k=0,\x20pre-check=0\r\nP3P:\x20P3P\x20policyref=\"http://k8s-bifrosta-c SF:ollecto-a80d9b59c8-172977248\.us-west-2\.elb\.amazonaws\.com/w3c/p3p\.x SF:ml\",\x20CP=\"NOI\x20DSP\x20COR\x20NID\x20PSA\x20ADM\x20OUR\x20IND\x20U SF:NI\x20NAV\x20COM\"\r\nAccess-Control-Allow-Headers:\x20Accept,\x20Conte SF:nt-Type,\x20Content-Length,\x20Accept-Encoding,\x20X-CSRF-Token,\x20Aut SF:horization\r\nPragma:\x20no-cache\r\nmax-age:\x200\r\naccess-control-al SF:low-origin:\x20\*\r\ncross-origin-resource-policy:\x20cross-origin\r\nA SF:ccept-CH:\x20Sec-Ch-Ua-Model,\x20Sec-Ch-Ua-Platform,\x20Sec-Ch-Ua-Platf SF:orm-Version\r\nStrict-Transport-Security:\x20max-age=31536000\r\nAccess SF:-Control-Allow-Methods:\x20POST,\x20GET,\x20OPTIONS\r\n\r\nGIF89a\x01\0 SF:\x01\0\x80\0\0\xff\xff\xff\0\0\0,\0\0\0\0\x01\0\x01\0\0\x02\x02D\x01\0; SF:")%r(FourOhFourRequest,27B,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Sat,\x20 SF:18\x20Nov\x202023\x2020:11:22\x20GMT\r\nContent-Type:\x20image/gif\r\nC SF:ontent-Length:\x2035\r\nConnection:\x20close\r\nExpires:\x200\r\nCache- SF:Control:\x20no-store,\x20no-cache,\x20must-revalidate,\x20post-check=0, SF:\x20pre-check=0\r\nP3P:\x20P3P\x20policyref=\"http://k8s-bifrosta-colle SF:cto-a80d9b59c8-172977248\.us-west-2\.elb\.amazonaws\.com/w3c/p3p\.xml\" SF:,\x20CP=\"NOI\x20DSP\x20COR\x20NID\x20PSA\x20ADM\x20OUR\x20IND\x20UNI\x SF:20NAV\x20COM\"\r\nPragma:\x20no-cache\r\nmax-age:\x200\r\naccess-contro SF:l-allow-origin:\x20\*\r\ncross-origin-resource-policy:\x20cross-origin\ SF:r\nAccept-CH:\x20Sec-Ch-Ua-Model,\x20Sec-Ch-Ua-Platform,\x20Sec-Ch-Ua-P SF:latform-Version\r\nStrict-Transport-Security:\x20max-age=31536000\r\n\r SF:\nGIF89a\x01\0\x01\0\x80\0\0\xff\xff\xff\0\0\0,\0\0\0\0\x01\0\x01\0\0\x SF:02\x02D\x01\0;"); Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port Device type: general purpose|PBX Running (JUST GUESSING): Linux 2.6.X|3.X|4.X (90%), Vodavi embedded (87%) OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4 cpe:/h:vodavi:xts-ip Aggressive OS guesses: Linux 2.6.32 (90%), Linux 3.2 - 4.9 (90%), Linux 2.6.32 - 3.10 (89%), Linux 2.6.32 - 3.13 (89%), Linux 3.10 - 3.13 (88%), Vodavi XTS-IP PBX (87%) No exact OS matches for host (test conditions non-ideal). Network Distance: 17 hops TRACEROUTE (using port 80/tcp) HOP RTT ADDRESS 1 3.78 ms 208.76.251.177 2 2.40 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 0.75 ms multacom.com (96.45.162.9) 4 0.67 ms 206.72.211.146.any2ix.coresite.com (206.72.211.146) 5 ... 12 13 24.17 ms 108.166.236.5 14 24.11 ms 108.166.236.19 15 24.34 ms 108.166.228.71 16 ... 17 28.24 ms ec2-52-25-175-130.us-west-2.compute.amazonaws.com (52.25.175.130) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 48.69 seconds