Nmap scan report for pfabankapi.app.cloud.gov (56.137.14.198)
Host is up (0.029s latency).
Other addresses for pfabankapi.app.cloud.gov (not scanned): 2600:1f12:18a:7d00:25b:b03b:dbe0:a4ba 2600:1f12:18a:7d01:4475:eac4:fb07:f38d 56.136.4.146
rDNS record for 56.137.14.198: ec2-56-137-14-198.us-gov-west-1.compute.amazonaws.com
Not shown: 998 filtered tcp ports (no-response)
PORT    STATE SERVICE   VERSION
80/tcp  open  http      awselb/2.0
| fingerprint-strings: 
|   FourOhFourRequest: 
|     HTTP/1.1 403 Forbidden
|     Server: awselb/2.0
|     Date: Thu, 11 Sep 2025 10:04:54 GMT
|     Content-Type: text/html
|     Content-Length: 118
|     Connection: close
|     <html>
|     <head><title>403 Forbidden</title></head>
|     <body>
|     <center><h1>403 Forbidden</h1></center>
|     </body>
|     </html>
|   GetRequest, HTTPOptions: 
|     HTTP/1.1 301 Moved Permanently
|     Date: Thu, 11 Sep 2025 10:04:54 GMT
|     Content-Type: text/plain; charset=utf-8
|     Content-Length: 166
|     Connection: close
|     Location: https://production-cloudfoundry-apps-1374881977.us-gov-west-1.elb.amazonaws.com/
|     X-Frame-Options: DENY
|     Strict-Transport-Security: max-age=31536000
|     X-Content-Type-Options: nosniff
|     <html>
|     <head><title>301 Moved Permanently</title></head>
|     <body>
|     <center><h1>301 Moved Permanently</h1></center>
|     <hr><center>openresty</center>
|     </body>
|     </html>
|   RTSPRequest: 
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|     </html>
|   X11Probe: 
|     HTTP/1.1 400 Bad Request
|     Server: awselb/2.0
|     Date: Thu, 11 Sep 2025 10:04:54 GMT
|     Content-Type: text/html
|     Content-Length: 122
|     Connection: close
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|_    </html>
|_http-title: 403 Forbidden
|_http-server-header: awselb/2.0
443/tcp open  ssl/https awselb/2.0
| fingerprint-strings: 
|   FourOhFourRequest: 
|     HTTP/1.1 403 Forbidden
|     Server: awselb/2.0
|     Date: Thu, 11 Sep 2025 10:05:00 GMT
|     Content-Type: text/html
|     Content-Length: 118
|     Connection: close
|     <html>
|     <head><title>403 Forbidden</title></head>
|     <body>
|     <center><h1>403 Forbidden</h1></center>
|     </body>
|     </html>
|   GetRequest, HTTPOptions: 
|     HTTP/1.1 404 Not Found
|     Date: Thu, 11 Sep 2025 10:05:00 GMT
|     Content-Type: text/plain; charset=utf-8
|     Content-Length: 123
|     Connection: close
|     Vary: Accept-Encoding
|     Cache-Control: no-cache, no-store
|     Strict-Transport-Security: max-age=31536000
|     X-Cf-Routererror: unknown_route
|     X-Content-Type-Options: nosniff
|     X-Frame-Options: DENY
|     Found: Requested route ('production-cloudfoundry-apps-1374881977.us-gov-west-1.elb.amazonaws.com') does not exist.
|   RTSPRequest: 
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|     </html>
|   tor-versions: 
|     HTTP/1.1 400 Bad Request
|     Server: awselb/2.0
|     Date: Thu, 11 Sep 2025 10:05:00 GMT
|     Content-Type: text/html
|     Content-Length: 122
|     Connection: close
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|_    </html>
|_http-title: 403 Forbidden
|_http-server-header: awselb/2.0
| ssl-cert: Subject: commonName=*.app.cloud.gov
| Subject Alternative Name: DNS:*.app.cloud.gov
| Not valid before: 2025-07-15T13:03:38
|_Not valid after:  2025-10-13T13:03:37
|_ssl-date: TLS randomness does not represent time
2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port80-TCP:V=7.92%I=7%D=9/11%Time=68C29EC5%P=x86_64-redhat-linux-gnu%r(
SF:GetRequest,1FF,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nDate:\x20Th
SF:u,\x2011\x20Sep\x202025\x2010:04:54\x20GMT\r\nContent-Type:\x20text/pla
SF:in;\x20charset=utf-8\r\nContent-Length:\x20166\r\nConnection:\x20close\
SF:r\nLocation:\x20https://production-cloudfoundry-apps-1374881977\.us-gov
SF:-west-1\.elb\.amazonaws\.com/\r\nX-Frame-Options:\x20DENY\r\nStrict-Tra
SF:nsport-Security:\x20max-age=31536000\r\nX-Content-Type-Options:\x20nosn
SF:iff\r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanently</title></
SF:head>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</h1></center
SF:>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n")%r(HTTPO
SF:ptions,1FF,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nDate:\x20Thu,\x
SF:2011\x20Sep\x202025\x2010:04:54\x20GMT\r\nContent-Type:\x20text/plain;\
SF:x20charset=utf-8\r\nContent-Length:\x20166\r\nConnection:\x20close\r\nL
SF:ocation:\x20https://production-cloudfoundry-apps-1374881977\.us-gov-wes
SF:t-1\.elb\.amazonaws\.com/\r\nX-Frame-Options:\x20DENY\r\nStrict-Transpo
SF:rt-Security:\x20max-age=31536000\r\nX-Content-Type-Options:\x20nosniff\
SF:r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanently</title></head
SF:>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</h1></center>\r\
SF:n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n")%r(RTSPReque
SF:st,7A,"<html>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<
SF:body>\r\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n
SF:</html>\r\n")%r(X11Probe,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nSer
SF:ver:\x20awselb/2\.0\r\nDate:\x20Thu,\x2011\x20Sep\x202025\x2010:04:54\x
SF:20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20122\r\nConnec
SF:tion:\x20close\r\n\r\n<html>\r\n<head><title>400\x20Bad\x20Request</tit
SF:le></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></center>
SF:\r\n</body>\r\n</html>\r\n")%r(FourOhFourRequest,10A,"HTTP/1\.1\x20403\
SF:x20Forbidden\r\nServer:\x20awselb/2\.0\r\nDate:\x20Thu,\x2011\x20Sep\x2
SF:02025\x2010:04:54\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Lengt
SF:h:\x20118\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>403\x20
SF:Forbidden</title></head>\r\n<body>\r\n<center><h1>403\x20Forbidden</h1>
SF:</center>\r\n</body>\r\n</html>\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port443-TCP:V=7.92%T=SSL%I=7%D=9/11%Time=68C29ECB%P=x86_64-redhat-linux
SF:-gnu%r(GetRequest,1CB,"HTTP/1\.1\x20404\x20Not\x20Found\r\nDate:\x20Thu
SF:,\x2011\x20Sep\x202025\x2010:05:00\x20GMT\r\nContent-Type:\x20text/plai
SF:n;\x20charset=utf-8\r\nContent-Length:\x20123\r\nConnection:\x20close\r
SF:\nVary:\x20Accept-Encoding\r\nCache-Control:\x20no-cache,\x20no-store\r
SF:\nStrict-Transport-Security:\x20max-age=31536000\r\nX-Cf-Routererror:\x
SF:20unknown_route\r\nX-Content-Type-Options:\x20nosniff\r\nX-Frame-Option
SF:s:\x20DENY\r\n\r\n404\x20Not\x20Found:\x20Requested\x20route\x20\('prod
SF:uction-cloudfoundry-apps-1374881977\.us-gov-west-1\.elb\.amazonaws\.com
SF:'\)\x20does\x20not\x20exist\.\n")%r(HTTPOptions,1CB,"HTTP/1\.1\x20404\x
SF:20Not\x20Found\r\nDate:\x20Thu,\x2011\x20Sep\x202025\x2010:05:00\x20GMT
SF:\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nContent-Length:\x2
SF:0123\r\nConnection:\x20close\r\nVary:\x20Accept-Encoding\r\nCache-Contr
SF:ol:\x20no-cache,\x20no-store\r\nStrict-Transport-Security:\x20max-age=3
SF:1536000\r\nX-Cf-Routererror:\x20unknown_route\r\nX-Content-Type-Options
SF::\x20nosniff\r\nX-Frame-Options:\x20DENY\r\n\r\n404\x20Not\x20Found:\x2
SF:0Requested\x20route\x20\('production-cloudfoundry-apps-1374881977\.us-g
SF:ov-west-1\.elb\.amazonaws\.com'\)\x20does\x20not\x20exist\.\n")%r(FourO
SF:hFourRequest,10A,"HTTP/1\.1\x20403\x20Forbidden\r\nServer:\x20awselb/2\
SF:.0\r\nDate:\x20Thu,\x2011\x20Sep\x202025\x2010:05:00\x20GMT\r\nContent-
SF:Type:\x20text/html\r\nContent-Length:\x20118\r\nConnection:\x20close\r\
SF:n\r\n<html>\r\n<head><title>403\x20Forbidden</title></head>\r\n<body>\r
SF:\n<center><h1>403\x20Forbidden</h1></center>\r\n</body>\r\n</html>\r\n"
SF:)%r(tor-versions,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20
SF:awselb/2\.0\r\nDate:\x20Thu,\x2011\x20Sep\x202025\x2010:05:00\x20GMT\r\
SF:nContent-Type:\x20text/html\r\nContent-Length:\x20122\r\nConnection:\x2
SF:0close\r\n\r\n<html>\r\n<head><title>400\x20Bad\x20Request</title></hea
SF:d>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n</bo
SF:dy>\r\n</html>\r\n")%r(RTSPRequest,7A,"<html>\r\n<head><title>400\x20Ba
SF:d\x20Request</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Requ
SF:est</h1></center>\r\n</body>\r\n</html>\r\n");
Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
Device type: general purpose
Running (JUST GUESSING): Linux 2.6.X|3.X|4.X (90%)
OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
Aggressive OS guesses: Linux 2.6.32 (90%), Linux 3.2 - 4.9 (90%), Linux 2.6.32 - 3.10 (89%), Linux 2.6.32 - 3.13 (89%), Linux 3.10 - 3.13 (88%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 18 hops

TRACEROUTE (using port 443/tcp)
HOP RTT      ADDRESS
1   0.20 ms  208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177)
2   0.59 ms  gw.mcom-colocationamerica.com (208.64.231.81)
3   0.69 ms  r2b4.n1.p1401.lax.multacom.net (64.69.46.11)
4   0.95 ms  206.72.211.146.any2ix.coresite.com (206.72.211.146)
5   ... 7
8   29.19 ms 108.166.228.79
9   28.80 ms 108.166.228.92
10  26.84 ms 108.166.228.21
11  ... 17
18  28.78 ms ec2-56-137-14-198.us-gov-west-1.compute.amazonaws.com (56.137.14.198)

OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 38.09 seconds