Ports
Duration
Date
IP
Nmap scan report for uhprod.service-now.com (149.96.22.218) Host is up (0.065s latency). rDNS record for 149.96.22.218: vip-149-96-22-218.cust.service-now.com Not shown: 980 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 25/tcp open tcpwrapped |_smtp-commands: Couldn't establish connection on port 25 80/tcp open http snow_adc |_http-server-header: snow_adc | fingerprint-strings: | FourOhFourRequest, GetRequest, HTTPOptions: | HTTP/1.1 403 Forbidden | Server: snow_adc | Date: Mon, 16 Sep 2024 06:58:53 GMT | Content-Type: text/html | Content-Length: 149 | Connection: close | <html> | <head><title>403 Forbidden</title></head> | <body> | <center><h1>403 Forbidden</h1></center> | <hr><center>snow_adc</center> | </body> | </html> | RPCCheck: | HTTP/1.1 400 Bad Request | Server: snow_adc | Date: Mon, 16 Sep 2024 06:58:59 GMT | Content-Type: text/html | Content-Length: 153 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | <hr><center>snow_adc</center> | </body> | </html> | RTSPRequest, X11Probe: | HTTP/1.1 400 Bad Request | Server: snow_adc | Date: Mon, 16 Sep 2024 06:58:53 GMT | Content-Type: text/html | Content-Length: 153 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | <hr><center>snow_adc</center> | </body> |_ </html> |_http-title: Did not follow redirect to https://uhprod.service-now.com/ 443/tcp open ssl/https snow_adc |_http-server-header: snow_adc | tls-alpn: |_ http/1.1 |_http-trane-info: Problem with XML parsing of /evox/about |_ssl-date: TLS randomness does not represent time | ssl-cert: Subject: commonName=*.service-now.com/organizationName=ServiceNow, Inc./stateOrProvinceName=California/countryName=US | Subject Alternative Name: DNS:*.service-now.com, DNS:service-now.com, DNS:*.static.service-now.com | Not valid before: 2024-01-23T23:50:11 |_Not valid after: 2024-11-12T23:50:10 | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 301 Moved Permanently | Server: snow_adc | Date: Mon, 16 Sep 2024 06:59:00 GMT | Content-Type: text/html | Content-Length: 165 | Connection: close | Location: https://www.servicenow.com | <html> | <head><title>301 Moved Permanently</title></head> | <body> | <center><h1>301 Moved Permanently</h1></center> | <hr><center>snow_adc</center> | </body> | </html> | GetRequest, HTTPOptions: | HTTP/1.1 301 Moved Permanently | Server: snow_adc | Date: Mon, 16 Sep 2024 06:58:59 GMT | Content-Type: text/html | Content-Length: 165 | Connection: close | Location: https://www.servicenow.com | <html> | <head><title>301 Moved Permanently</title></head> | <body> | <center><h1>301 Moved Permanently</h1></center> | <hr><center>snow_adc</center> | </body> | </html> | RTSPRequest: | HTTP/1.1 400 Bad Request | Server: snow_adc | Date: Mon, 16 Sep 2024 06:59:05 GMT | Content-Type: text/html | Content-Length: 153 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | <hr><center>snow_adc</center> | </body> | </html> | tor-versions: | HTTP/1.1 400 Bad Request | Server: snow_adc | Date: Mon, 16 Sep 2024 06:59:00 GMT | Content-Type: text/html | Content-Length: 153 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | <hr><center>snow_adc</center> | </body> |_ </html> | tls-nextprotoneg: |_ http/1.1 | http-title: Production |_Requested resource was /auth_redirect.do?sysparm_stack=no&sysparm_url=https%3A%2F%2Fsecure.uhhospitals.org%2Fservicenow%3FSAMLRequest%3DlVLJbsIwEP2VyPcsJJTFIpFSUFUkSiNCe%252BjNxBNiKbFTjw3t3zcEKugFqVfPm7fM8wxZU4ctTa2p5AY%252BLaBxvppaIj1PYmK1pIqhQCpZA0hNQfP0ZUVDL6CtVkYVqiZOigjaCCXnSqJtQOegD6KAt80qJpUxLVLft1W3wD08j1ypjl6hGl%252ByQ8v24HFFnEVnQEh2YrruIRRWg2erSmErDKvRU3rvX3g6GuI8KV1AnyImZQcA4iwXMcnX890ughLCMIyAB4wPhuPJeBxNRoyXZRkNdh0QM4YoDnBdRbSwlGiYNDEJg3DoBlN3MNoGI%252FowpWHgjQfRB3GyS%252F5HIbmQ%252B%252FvH2p1BSJ%252B328zNXvNtT3AQHPS6Q%252F%252FrTu%252Bgsb9Rx0ySWV8W7W3r2%252F7uO2K%252FpZHkvvTMvxW4yLX05Hq5yFQtim8nrWt1nGtgpktitIW%252BlIaZ%252Bx5OL4K7ZQ%252BlVmILhSgFcOInF9m%252F3zP5AQ%253D%253D%26RelayState%3Dhttps%253A%252F%252Fuhprod.service-now.com%252Fnavpage.do%26SigAlg%3Dhttp%253A%252F%252Fwww.w3.org%252F2001%252F04%252Fxmldsig-more%2523rsa-sha256%26Signature%3DLCQ%252Bfo9L%252F3xG2lPnxJI%252FAD1LRC7O1wN%252FExmm48zGbZ5hBjeTBFpEHW69a30OVyEaRbSoLZ9I3wow9y2A0i6u3c%252BxESOcWUnYNkQmMbLTcHTRhpX%252FeTtLDDS8ckeM%252FJNYhGQphC7yTcm7YQICsm5pH3lsclRLPDOGpIoJE9sRbms%253D | http-robots.txt: 1 disallowed entry |_/ 4000/tcp open remoteanything? 4001/tcp open newoak? 4002/tcp open mlchat-proxy? 4003/tcp open pxc-splr-ft? 4004/tcp open pxc-roid? 4005/tcp open pxc-pin? 4006/tcp open pxc-spvr? 4045/tcp closed lockd 4111/tcp closed xgrid 4125/tcp closed rww 4126/tcp closed ddrepl 4129/tcp closed nuauth 4224/tcp closed xtell 4242/tcp closed vrml-multi-use 4279/tcp closed vrml-multi-use 4321/tcp closed rwhois 4343/tcp closed unicall 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.92%I=7%D=9/15%Time=66E7D72C%P=x86_64-redhat-linux-gnu%r( SF:GetRequest,127,"HTTP/1\.1\x20403\x20Forbidden\r\nServer:\x20snow_adc\r\ SF:nDate:\x20Mon,\x2016\x20Sep\x202024\x2006:58:53\x20GMT\r\nContent-Type: SF:\x20text/html\r\nContent-Length:\x20149\r\nConnection:\x20close\r\n\r\n SF:<html>\r\n<head><title>403\x20Forbidden</title></head>\r\n<body>\r\n<ce SF:nter><h1>403\x20Forbidden</h1></center>\r\n<hr><center>snow_adc</center SF:>\r\n</body>\r\n</html>\r\n")%r(HTTPOptions,127,"HTTP/1\.1\x20403\x20Fo SF:rbidden\r\nServer:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Sep\x202024\x2 SF:006:58:53\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x2014 SF:9\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>403\x20Forbidde SF:n</title></head>\r\n<body>\r\n<center><h1>403\x20Forbidden</h1></center SF:>\r\n<hr><center>snow_adc</center>\r\n</body>\r\n</html>\r\n")%r(RTSPRe SF:quest,12D,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20snow_adc\r\ SF:nDate:\x20Mon,\x2016\x20Sep\x202024\x2006:58:53\x20GMT\r\nContent-Type: SF:\x20text/html\r\nContent-Length:\x20153\r\nConnection:\x20close\r\n\r\n SF:<html>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<body>\r SF:\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n<hr><center>snow_a SF:dc</center>\r\n</body>\r\n</html>\r\n")%r(X11Probe,12D,"HTTP/1\.1\x2040 SF:0\x20Bad\x20Request\r\nServer:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Se SF:p\x202024\x2006:58:53\x20GMT\r\nContent-Type:\x20text/html\r\nContent-L SF:ength:\x20153\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>400 SF:\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x SF:20Request</h1></center>\r\n<hr><center>snow_adc</center>\r\n</body>\r\n SF:</html>\r\n")%r(FourOhFourRequest,127,"HTTP/1\.1\x20403\x20Forbidden\r\ SF:nServer:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Sep\x202024\x2006:58:53\ SF:x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20149\r\nConne SF:ction:\x20close\r\n\r\n<html>\r\n<head><title>403\x20Forbidden</title>< SF:/head>\r\n<body>\r\n<center><h1>403\x20Forbidden</h1></center>\r\n<hr>< SF:center>snow_adc</center>\r\n</body>\r\n</html>\r\n")%r(RPCCheck,12D,"HT SF:TP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20snow_adc\r\nDate:\x20Mon SF:,\x2016\x20Sep\x202024\x2006:58:59\x20GMT\r\nContent-Type:\x20text/html SF:\r\nContent-Length:\x20153\r\nConnection:\x20close\r\n\r\n<html>\r\n<he SF:ad><title>400\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h1 SF:>400\x20Bad\x20Request</h1></center>\r\n<hr><center>snow_adc</center>\r SF:\n</body>\r\n</html>\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.92%T=SSL%I=7%D=9/15%Time=66E7D733%P=x86_64-redhat-linux SF:-gnu%r(GetRequest,165,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServ SF:er:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Sep\x202024\x2006:58:59\x20GM SF:T\r\nContent-Type:\x20text/html\r\nContent-Length:\x20165\r\nConnection SF::\x20close\r\nLocation:\x20https://www\.servicenow\.com\r\n\r\n<html>\r SF:\n<head><title>301\x20Moved\x20Permanently</title></head>\r\n<body>\r\n SF:<center><h1>301\x20Moved\x20Permanently</h1></center>\r\n<hr><center>sn SF:ow_adc</center>\r\n</body>\r\n</html>\r\n")%r(HTTPOptions,165,"HTTP/1\. SF:1\x20301\x20Moved\x20Permanently\r\nServer:\x20snow_adc\r\nDate:\x20Mon SF:,\x2016\x20Sep\x202024\x2006:58:59\x20GMT\r\nContent-Type:\x20text/html SF:\r\nContent-Length:\x20165\r\nConnection:\x20close\r\nLocation:\x20http SF:s://www\.servicenow\.com\r\n\r\n<html>\r\n<head><title>301\x20Moved\x20 SF:Permanently</title></head>\r\n<body>\r\n<center><h1>301\x20Moved\x20Per SF:manently</h1></center>\r\n<hr><center>snow_adc</center>\r\n</body>\r\n< SF:/html>\r\n")%r(FourOhFourRequest,165,"HTTP/1\.1\x20301\x20Moved\x20Perm SF:anently\r\nServer:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Sep\x202024\x2 SF:006:59:00\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x2016 SF:5\r\nConnection:\x20close\r\nLocation:\x20https://www\.servicenow\.com\ SF:r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanently</title></head SF:>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</h1></center>\r\ SF:n<hr><center>snow_adc</center>\r\n</body>\r\n</html>\r\n")%r(tor-versio SF:ns,12D,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20snow_adc\r\nDa SF:te:\x20Mon,\x2016\x20Sep\x202024\x2006:59:00\x20GMT\r\nContent-Type:\x2 SF:0text/html\r\nContent-Length:\x20153\r\nConnection:\x20close\r\n\r\n<ht SF:ml>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<body>\r\n< SF:center><h1>400\x20Bad\x20Request</h1></center>\r\n<hr><center>snow_adc< SF:/center>\r\n</body>\r\n</html>\r\n")%r(RTSPRequest,12D,"HTTP/1\.1\x2040 SF:0\x20Bad\x20Request\r\nServer:\x20snow_adc\r\nDate:\x20Mon,\x2016\x20Se SF:p\x202024\x2006:59:05\x20GMT\r\nContent-Type:\x20text/html\r\nContent-L SF:ength:\x20153\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>400 SF:\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x SF:20Request</h1></center>\r\n<hr><center>snow_adc</center>\r\n</body>\r\n SF:</html>\r\n"); Aggressive OS guesses: Linux 4.10 (92%), HP P2000 G3 NAS device (91%), Linux 3.16 - 4.6 (90%), Linux 5.1 (90%), Linux 4.4 (90%), Linux 3.10 - 4.11 (88%), Linux 3.13 (88%), Linux 3.13 or 4.2 (88%), Linux 4.2 (88%), Asus RT-AC66U WAP (88%) No exact OS matches for host (test conditions non-ideal). Network Distance: 15 hops TRACEROUTE (using port 4111/tcp) HOP RTT ADDRESS 1 0.30 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177) 2 290.95 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 0.85 ms r2b4.n1.p1401.lax.multacom.net (64.69.46.11) 4 ... 5 12.47 ms be2931.ccr31.phx01.atlas.cogentco.com (154.54.44.85) 6 21.66 ms be5471.ccr21.elp02.atlas.cogentco.com (154.54.166.57) 7 32.31 ms be3821.ccr31.dfw01.atlas.cogentco.com (154.54.165.25) 8 46.78 ms be5024.ccr41.atl01.atlas.cogentco.com (154.54.163.41) 9 63.23 ms be2112.ccr41.dca01.atlas.cogentco.com (154.54.7.157) 10 64.57 ms be3083.ccr41.iad02.atlas.cogentco.com (154.54.30.54) 11 64.42 ms be3264.agr11.iad02.atlas.cogentco.com (154.54.1.254) 12 64.71 ms te0-0-2-3.nr11.b050224-0.iad02.atlas.cogentco.com (154.24.45.178) 13 64.71 ms 38.32.106.178 14 ... 15 64.64 ms vip-149-96-22-218.cust.service-now.com (149.96.22.218) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 45.88 seconds