Nmap scan report for www.hhsidm.state.pa.us (164.156.78.240)
Host is up (0.068s latency).
rDNS record for 164.156.78.240: www.hhsidm.pa.gov
Not shown: 996 filtered tcp ports (no-response)
PORT     STATE  SERVICE    VERSION
80/tcp   open   http
| fingerprint-strings: 
|   FourOhFourRequest: 
|     HTTP/1.0 302 Found : Moved Temporarily
|     Location: https:///nice%20ports%2C/Tri%6Eity.txt%2ebak
|     Connection: close
|     Cache-Control: no-cache
|     Pragma: no-cache
|   GetRequest, HTTPOptions, RTSPRequest: 
|     HTTP/1.0 302 Found : Moved Temporarily
|     Location: https:///
|     Connection: close
|     Cache-Control: no-cache
|     Pragma: no-cache
|   SIPOptions: 
|     HTTP/1.0 302 Found : Moved Temporarily
|     Location: https://sip:nm
|     Connection: close
|     Cache-Control: no-cache
|_    Pragma: no-cache
|_http-title: Attack Detected
|_http-trane-info: Problem with XML parsing of /evox/about
113/tcp  closed ident
443/tcp  open   ssl/http   Apache httpd 2.4.57
|_http-title: Site doesn't have a title (text/html; charset=UTF-8).
| http-methods: 
|_  Potentially risky methods: TRACE
8080/tcp closed http-proxy
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
SF-Port80-TCP:V=7.92%I=7%D=9/15%Time=68C7E71D%P=x86_64-redhat-linux-gnu%r(
SF:GetRequest,7D,"HTTP/1\.0\x20302\x20Found\x20:\x20Moved\x20Temporarily\r
SF:\nLocation:\x20https:///\r\nConnection:\x20close\r\nCache-Control:\x20n
SF:o-cache\r\nPragma:\x20no-cache\r\n\r\n")%r(HTTPOptions,7D,"HTTP/1\.0\x2
SF:0302\x20Found\x20:\x20Moved\x20Temporarily\r\nLocation:\x20https:///\r\
SF:nConnection:\x20close\r\nCache-Control:\x20no-cache\r\nPragma:\x20no-ca
SF:che\r\n\r\n")%r(RTSPRequest,7D,"HTTP/1\.0\x20302\x20Found\x20:\x20Moved
SF:\x20Temporarily\r\nLocation:\x20https:///\r\nConnection:\x20close\r\nCa
SF:che-Control:\x20no-cache\r\nPragma:\x20no-cache\r\n\r\n")%r(FourOhFourR
SF:equest,A0,"HTTP/1\.0\x20302\x20Found\x20:\x20Moved\x20Temporarily\r\nLo
SF:cation:\x20https:///nice%20ports%2C/Tri%6Eity\.txt%2ebak\r\nConnection:
SF:\x20close\r\nCache-Control:\x20no-cache\r\nPragma:\x20no-cache\r\n\r\n"
SF:)%r(SIPOptions,82,"HTTP/1\.0\x20302\x20Found\x20:\x20Moved\x20Temporari
SF:ly\r\nLocation:\x20https://sip:nm\r\nConnection:\x20close\r\nCache-Cont
SF:rol:\x20no-cache\r\nPragma:\x20no-cache\r\n\r\n");
Device type: load balancer|specialized|general purpose
Running (JUST GUESSING): Citrix embedded (90%), AVtech embedded (89%), OpenBSD 4.X (88%)
OS CPE: cpe:/o:openbsd:openbsd:4.0
Aggressive OS guesses: Citrix NetScaler load balancer (90%), AVtech Room Alert 26W environmental monitor (89%), OpenBSD 4.0 (88%), OpenBSD 4.3 (88%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 17 hops
Service Info: Host: HSAVPRDIDM305.PA.LCL

TRACEROUTE (using port 8080/tcp)
HOP RTT      ADDRESS
1   0.21 ms  208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177)
2   0.62 ms  gw.mcom-colocationamerica.com (208.64.231.81)
3   1.86 ms  r1b4.n1p1400.lax.multacom.net (64.69.46.9)
4   ...
5   1.54 ms  be3271.ccr41.lax04.atlas.cogentco.com (154.54.42.102)
6   ...
7   62.50 ms ae3.3.bar3.Philadelphia1.net.lumen.tech (4.69.207.93)
8   62.97 ms 4.4.210.238
9   62.38 ms 8.20.65.4
10  ... 16
17  68.35 ms www.hhsidm.pa.gov (164.156.78.240)

OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 231.17 seconds