Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
116.202.243.100

Network
116.202.0.0/15

Domain(s)
your-server.de

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://116.202.243.100:63210/ 403

HTTP Title
403 Forbidden

Reverse DNS
static.100.243.202.116.clients.your-server.de

ASN
AS24940

Organization
Hetzner Online GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
136fe281d91281d6d055a2878cf30012

HTTP Header MD5
af3b653d596f5db786234cb02803e2d1

HTTP Body MD5
45c844e7b458cadf8221fe758f5aacdd

HTTP/1.1 403 Forbidden
Server: nginx
Date: Thu, 07 Nov 2024 05:36:58 GMT
Content-Type: text/html
Content-Length: 1131
Connection: close
ETag: "6579939b-46b"

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ru" lang="ru">
<head>
	<meta http-equiv="Content-Type" content="text/html;charset=windows-1251"/>
	<style type="text/css">
		.error {color:#000; height:200px; margin:-100px 0 0 -340px; font-family:Arial, sans-serif; text-align:center; position:absolute; top:50%; text-align:center; left:50%; width:680px;}
		.error-fon {font-size:240px; font-weight:bold; line-height:240px; color:#f5f5f5; position:absolute; top:-16px; left:50%; margin-left:-200px; z-index:-1;}
		.error-text-top {font-size:40px; margin-top:50px;}
		.error-test-separate {border-top:1px solid #f2f2f2; margin-top:10px;}
		.error-text-bottom {font-size:20px; margin-top:16px;}
	</style>
	<title>403 Forbidden</title>
</head>
<body>
<div class="error">
	<div class="error-fon">403</div>
	<div class="error-text-wrap">
		<div class="error-text-top">403 Forbidden</div>
		<div class="error-test-separate"></div>
		<div class="error-text-bottom">Bitrix Environment</div>

	</div>
</div>
</body>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:58.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "45c844e7b458cadf8221fe758f5aacdd",
         "bodymmh3" : -702785345,
         "header" : [
            {
               "value" : "6579939b-46b",
               "name" : "ETag"
            }
         ],
         "headermd5" : "af3b653d596f5db786234cb02803e2d1",
         "headermmh3" : -1323819274,
         "title" : "403 Forbidden"
      },
      "length" : 1297
   },
   "asn" : "AS24940",
   "city" : "Falkenstein",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:36:58 GMT\r\nContent-Type: text/html\r\nContent-Length: 1131\r\nConnection: close\r\nETag: \"6579939b-46b\"\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"ru\" lang=\"ru\">\n<head>\n\t<meta http-equiv=\"Content-Type\" content=\"text/html;charset=windows-1251\"/>\n\t<style type=\"text/css\">\n\t\t.error {color:#000; height:200px; margin:-100px 0 0 -340px; font-family:Arial, sans-serif; text-align:center; position:absolute; top:50%; text-align:center; left:50%; width:680px;}\n\t\t.error-fon {font-size:240px; font-weight:bold; line-height:240px; color:#f5f5f5; position:absolute; top:-16px; left:50%; margin-left:-200px; z-index:-1;}\n\t\t.error-text-top {font-size:40px; margin-top:50px;}\n\t\t.error-test-separate {border-top:1px solid #f2f2f2; margin-top:10px;}\n\t\t.error-text-bottom {font-size:20px; margin-top:16px;}\n\t</style>\n\t<title>403 Forbidden</title>\n</head>\n<body>\n<div class=\"error\">\n\t<div class=\"error-fon\">403</div>\n\t<div class=\"error-text-wrap\">\n\t\t<div class=\"error-text-top\">403 Forbidden</div>\n\t\t<div class=\"error-test-separate\"></div>\n\t\t<div class=\"error-text-bottom\">Bitrix Environment</div>\n\n\t</div>\n</div>\n</body>",
   "datamd5" : "136fe281d91281d6d055a2878cf30012",
   "datammh3" : 529214313,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "your-server.de"
   ],
   "geolocus" : {
      "asn" : "AS24940",
      "country" : "ZZ",
      "domain" : [
         "apnic.net",
         "your-server.de"
      ],
      "netname" : "STUB-116-202SLASH15",
      "organization" : "Transferred to the RIPE region on 2018-08-28T00:42:30Z.",
      "subnet" : "116.202.0.0/15"
   },
   "host" : [
      "static"
   ],
   "hostname" : [
      "static.100.243.202.116.clients.your-server.de"
   ],
   "ip" : "116.202.243.100",
   "ipv6" : "false",
   "latitude" : "50.4777",
   "location" : "50.4777,12.3649",
   "longitude" : "12.3649",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hetzner Online GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 63210,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "reverse" : [
      "static.100.243.202.116.clients.your-server.de"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 403,
   "subdomains" : [
      "100.243.202.116.clients.your-server.de",
      "116.clients.your-server.de",
      "202.116.clients.your-server.de",
      "243.202.116.clients.your-server.de",
      "clients.your-server.de"
   ],
   "subnet" : "116.202.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "de"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
211.83.6.71

Network
211.80.0.0/13

Device

<enterprise field>: device.class

URL

http://211.83.6.71:63210/ 200

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan
Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a06436d9a3f0abdacaedd985baffe6ba

HTTP Header MD5
97eb73c41d2d1f332d0a4ddd4c85c3de

HTTP Body MD5
8e75197662d7a455528f4862681ce9a2

HTTP/1.1 200 ok
Server: Apache
Content-Length:  222
Cache-Control: no-cache
Connection: close

<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:63210/'</script>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:58.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "211.83.41.225",
            "10.100.100.114"
         ],
         "url" : [
            "http://211.83.41.225/eportal/index.jsp?wlanuserip="
         ]
      },
      "http" : {
         "bodymd5" : "8e75197662d7a455528f4862681ce9a2",
         "bodymmh3" : -1035213875,
         "headermd5" : "97eb73c41d2d1f332d0a4ddd4c85c3de",
         "headermmh3" : -1169498968
      },
      "length" : 312
   },
   "asn" : "AS4538",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 ok\r\nServer: Apache\r\nContent-Length:  222\r\nCache-Control: no-cache\r\nConnection: close\r\n\r\n<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:63210/'</script>\r\n\r\n",
   "datamd5" : "a06436d9a3f0abdacaedd985baffe6ba",
   "datammh3" : 121308753,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "211.in-addr.arpa",
         "apnic.net",
         "cernet.edu.cn",
         "scut.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "211.80.0.0/13"
   },
   "ip" : "211.83.6.71",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 63210,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "ok",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "211.80.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
94.59.189.106

Network
94.56.0.0/14

Domain(s)
alshamil.net.ae

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://94.59.189.106:63210/ 404

Reverse DNS
bba-94-59-189-106.alshamil.net.ae

ASN
AS5384

Organization
Emirates Telecommunications Group Company (etisalat Group) Pjsc

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
4b5b496ff238cb6bc91391c80dbcb192

HTTP Header MD5
4b5b496ff238cb6bc91391c80dbcb192

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.1 404 Not Found
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:45.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4b5b496ff238cb6bc91391c80dbcb192",
         "headermmh3" : -2050145619
      },
      "length" : 24
   },
   "asn" : "AS5384",
   "city" : "Abu Dhabi",
   "country" : "AE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\n",
   "datamd5" : "4b5b496ff238cb6bc91391c80dbcb192",
   "datammh3" : -1733658736,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "alshamil.net.ae"
   ],
   "geolocus" : {
      "asn" : "AS5384",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "AE",
      "countryname" : "United Arab Emirates",
      "domain" : [
         "alshamil.net.ae",
         "emirates.net.ae"
      ],
      "isineu" : "false",
      "latitude" : "23.424076",
      "location" : "23.424076,53.847818",
      "longitude" : "53.847818",
      "netname" : "ETISALATADSL-EMIRNET",
      "organization" : "Emirates Telecommunications Corporation P.O. Box 1150, Dubai, UAE",
      "subnet" : "94.59.160.0/19"
   },
   "host" : [
      "bba-94-59-189-106"
   ],
   "hostname" : [
      "bba-94-59-189-106.alshamil.net.ae"
   ],
   "ip" : "94.59.189.106",
   "ipv6" : "false",
   "latitude" : "24.4542",
   "location" : "24.4542,54.4060",
   "longitude" : "54.4060",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Emirates Telecommunications Group Company (etisalat Group) Pjsc",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 63210,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "reverse" : [
      "bba-94-59-189-106.alshamil.net.ae"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 404,
   "subnet" : "94.56.0.0/14",
   "tld" : [
      "net.ae"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
139.129.231.228

Network
139.129.0.0/16

Device

<enterprise field>: device.class

Operating System
Linux Linux sUse

URL

http://139.129.231.228:63210/ 401

HTTP Title
STANNVR-4E 192.168.1.253,1080P Real-time Multi-touch Standalone NVR

HTTP Keyword(s)
voip vos3000

HTTP Copyright
www.linknat.com, 昆石网络

ASN
AS37963

Organization
Hangzhou Alibaba Advertising Co.,Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux sUse

Product
Pocoo Werkzeug 0.16.1

HTTP Component(s)
Python Python 3.8.10 Atlassian Confluence PHP PHP 5.6.40 Drupal Drupal 8 Gitlab Gitlab Jenkins Jenkins 2.121.3 SPIP SPIP 4.1.11

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
935d74f8528c076386acb98e43a6be86

HTTP Header MD5
9e06d8fb53cd44b456c363706b3d62ee

HTTP Body MD5
c59580caddc8d19c28ccaeccab8e7356

HTTP/1.1 401 Unauthorized
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 105699
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Pragma: private
Server: Werkzeug/0.16.1 Python/3.8.10
Set-Cookie: acSamlv2Error=; path=/; secure;
Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
Set-Cookie: fsm_u=admin; Path=/;
Set-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;
Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
Set-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;
Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: akaunting_session=7b22; Path=/;
Set-Cookie: PHC_DISABLED=1; path=/; secure;
Set-Cookie: acSamlv2Token=; path=/; secure;
Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
Set-Cookie: webvpnaac=1; path=/; secure;
Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
Set-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
Set-Cookie: token=21263a2bf; path=/;
Set-Cookie: webvpn_as=; path=/; secure;
Www-Authenticate: Basic realm="MSNswitch"
X-Amz-Cf-Pop: MAA50-C1
X-Cache: MISS from Hello
X-Cache-Lookup: MISS from Hello:8080
X-Citrix-Application: Receiver for Web
X-Cmd-Response: root
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Dc: gcp-us-east1,gcp-us-central1,gcp-us-central1
X-Drupal-Cache: HIT
X-Drupal-Dynamic-Cache: MISS
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 8 (https://www.drupal.org)
X-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B
X-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Powered-By: PHP/5.6.40
X-Powered-Cms: Bitrix Site Manager (31ebf3fe2d1251fbd7f82a700bcc1f66)
X-Server-Powered-By: Engintron
X-Syno-Token: MIGfMA0GCSq
X-Varnish-Cache: Miss
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 05:35:06 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0922==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>STANNVR-4E 192.168.1.253,1080P Real-time Multi-touch Standalone NVR</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwOTIyPT0=
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared_Clean:          0 kB
Shared_Dirty:          0 kB
Private_Clean:         0 kB
Private_Dirty:        52 kB
Referenced:           52 kB
Anonymous:            52 kB
AnonHugePages:         0 kB
Swap:                  8 kB
KernelPageSize:        4 kB
MMUPageSize:           4 kB
009b1000-009b8000 rwxp 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:06.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "drupal.org",
            "micros-hosting.com"
         ],
         "file" : [
            "cloud_index.php",
            "dvrremoteap.exe",
            "dvfplayer.zip",
            "admin-ajax.php",
            "dvrremoteap_x64.exe",
            "index.php"
         ],
         "hostname" : [
            "micros-hosting.com",
            "www.drupal.org"
         ],
         "ip" : [
            "7.7.31.1",
            "1.0.0.36",
            "192.168.1.1",
            "192.168.1.10",
            "192.168.1.253",
            "192.168.0.1",
            "192.168.1.4"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4",
            "https://www.drupal.org"
         ]
      },
      "http" : {
         "bodymd5" : "c59580caddc8d19c28ccaeccab8e7356",
         "bodymmh3" : 464043944,
         "component" : [
            {
               "product" : "Python",
               "productvendor" : "Python",
               "productversion" : "3.8.10"
            },
            {
               "product" : "Gitlab",
               "productvendor" : "Gitlab"
            },
            {
               "productvendor" : "Jenkins",
               "productversion" : "2.121.3",
               "product" : "Jenkins"
            },
            {
               "product" : "Drupal",
               "productvendor" : "Drupal",
               "productversion" : "8"
            },
            {
               "product" : "SPIP",
               "productversion" : "4.1.11",
               "productvendor" : "SPIP"
            },
            {
               "product" : "PHP",
               "productvendor" : "PHP",
               "productversion" : "5.6.40"
            },
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "9e06d8fb53cd44b456c363706b3d62ee",
         "headermmh3" : -1420503550,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "realm" : "MSNswitch",
         "title" : "STANNVR-4E 192.168.1.253,1080P Real-time Multi-touch Standalone NVR"
      },
      "length" : 16279
   },
   "asn" : "AS37963",
   "city" : "Qingdao",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105699\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: Werkzeug/0.16.1 Python/3.8.10\r\nSet-Cookie: acSamlv2Error=; path=/; secure;\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: fsm_u=admin; Path=/;\r\nSet-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: akaunting_session=7b22; Path=/;\r\nSet-Cookie: PHC_DISABLED=1; path=/; secure;\r\nSet-Cookie: acSamlv2Token=; path=/; secure;\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: token=21263a2bf; path=/;\r\nSet-Cookie: webvpn_as=; path=/; secure;\r\nWww-Authenticate: Basic realm=\"MSNswitch\"\r\nX-Amz-Cf-Pop: MAA50-C1\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Citrix-Application: Receiver for Web\r\nX-Cmd-Response: root\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Dc: gcp-us-east1,gcp-us-central1,gcp-us-central1\r\nX-Drupal-Cache: HIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B\r\nX-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: PHP/5.6.40\r\nX-Powered-Cms: Bitrix Site Manager (31ebf3fe2d1251fbd7f82a700bcc1f66)\r\nX-Server-Powered-By: Engintron\r\nX-Syno-Token: MIGfMA0GCSq\r\nX-Varnish-Cache: Miss\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 05:35:06 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0922==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>STANNVR-4E 192.168.1.253,1080P Real-time Multi-touch Standalone NVR</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwOTIyPT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:         0 kB\nSwap:                  8 kB\nKernelPageSize:        4 kB\nMMUPageSize:           4 kB\n009b1000-009b8000 rwxp 0",
   "datamd5" : "935d74f8528c076386acb98e43a6be86",
   "datammh3" : 1392185013,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS37963",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "alibaba-inc.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "ALISOFT",
      "organization" : "China Internet Network Information Center",
      "subnet" : "139.129.0.0/16"
   },
   "ip" : "139.129.231.228",
   "ipv6" : "false",
   "latitude" : "36.0610",
   "location" : "36.0610,120.3814",
   "longitude" : "120.3814",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 63210,
   "product" : "Werkzeug",
   "productvendor" : "Pocoo",
   "productversion" : "0.16.1",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "139.129.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
3.149.234.195

Network
3.144.0.0/13

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://3.149.234.195:63210/ 200

Reverse DNS
ec2-3-149-234-195.us-east-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d63cb7eed856963ab82852e1f200cf51

HTTP Header MD5
26c1e7b2e4b9c3ad6ee704fe983ca1d9

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.1 200 OK
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "26c1e7b2e4b9c3ad6ee704fe983ca1d9",
         "headermmh3" : 1529339778
      },
      "length" : 19
   },
   "asn" : "AS16509",
   "city" : "Columbus",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\n\r\n",
   "datamd5" : "d63cb7eed856963ab82852e1f200cf51",
   "datammh3" : 1527519102,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "3.144.0.0/13"
   },
   "host" : [
      "ec2-3-149-234-195"
   ],
   "hostname" : [
      "ec2-3-149-234-195.us-east-2.compute.amazonaws.com"
   ],
   "ip" : "3.149.234.195",
   "ipv6" : "false",
   "latitude" : "39.9625",
   "location" : "39.9625,-83.0061",
   "longitude" : "-83.0061",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 63210,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-149-234-195.us-east-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-east-2.compute.amazonaws.com"
   ],
   "subnet" : "3.144.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
58.71.192.127

Network
58.71.128.0/17

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://58.71.192.127:63210/ 200

HTTP Title
SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363

ASN
AS9534

Organization
Binariang Berhad

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
c73df22159fa1add03f7b584e7896e6d

HTTP Header MD5
3ca0601b9e171437df1cbed04159884a

HTTP Body MD5
6dd0a7badb4c64472952c3ebf3f8982e

HTTP/1.1 200 OK
Server: RemObjects SDK for .NET HTTP Server/5.0
Connection: Close
Content-Type: text/html; charset=utf-8
Content-Length: 1700

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>
    <meta name="GENERATOR" content="Remoting SDK for .NET v9.4.107.1363">
    <style>
        body
        {
            background-color: #f7f7f7;
            margin: 0;
            padding: 0;
            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;
            font-size: 10pt;
        }
        .header
        {
            padding: 5px;
            background-color: #c0c0c0;
            border-bottom: 5px solid #808080;
            font-size: 1.5em;
        }
        .body
        {
            padding: 5px;
        }
        .footer
        {
            padding: 5px;
            border-top: 1px solid #808080;
            font-size: 0.8em;
        }
        .h2
        {
            font-weight: bold;
        }
    </style>
</head>
<body>
    <div class="header">
        <img src="/favicon.ico" style="padding-right: 5px;" />SmartIMSLibrary
    </div>
    <div class="body">
        
        <p>
            <a href="/doc">View full documentation</a> | <a href="/rodl">View RODL</a>
        </p>
        <p>
            
        </p>
        <p class="h2">Service Dispatchers:</p>
        <ul>
            <li><a href="/bin">/bin</a> <i>(BinMessage)</i></li>
        </ul>
        
    </div>
    <div class="footer">
        Framework Version v4.0.30319.42000
        <br />
        Remoting SDK for .NET v9.4.107.1363
        <br /><br />
        RemObjects Software, LLC. <a href="http://www.remobjects.com">remobjects.com</a>.
    </div>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:04.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "remobjects.com"
         ],
         "hostname" : [
            "www.remobjects.com"
         ],
         "ip" : [
            "9.4.107.136"
         ],
         "url" : [
            "http://www.remobjects.com"
         ]
      },
      "http" : {
         "bodymd5" : "6dd0a7badb4c64472952c3ebf3f8982e",
         "bodymmh3" : -100720350,
         "headermd5" : "3ca0601b9e171437df1cbed04159884a",
         "headermmh3" : 841912321,
         "title" : "SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363"
      },
      "length" : 1849
   },
   "asn" : "AS9534",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: RemObjects SDK for .NET HTTP Server/5.0\r\nConnection: Close\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 1700\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Transitional//EN\">\r\n<html>\r\n<head>\r\n    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>\r\n    <meta name=\"GENERATOR\" content=\"Remoting SDK for .NET v9.4.107.1363\">\r\n    <style>\r\n        body\r\n        {\r\n            background-color: #f7f7f7;\r\n            margin: 0;\r\n            padding: 0;\r\n            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;\r\n            font-size: 10pt;\r\n        }\r\n        .header\r\n        {\r\n            padding: 5px;\r\n            background-color: #c0c0c0;\r\n            border-bottom: 5px solid #808080;\r\n            font-size: 1.5em;\r\n        }\r\n        .body\r\n        {\r\n            padding: 5px;\r\n        }\r\n        .footer\r\n        {\r\n            padding: 5px;\r\n            border-top: 1px solid #808080;\r\n            font-size: 0.8em;\r\n        }\r\n        .h2\r\n        {\r\n            font-weight: bold;\r\n        }\r\n    </style>\r\n</head>\r\n<body>\r\n    <div class=\"header\">\r\n        <img src=\"/favicon.ico\" style=\"padding-right: 5px;\" />SmartIMSLibrary\r\n    </div>\r\n    <div class=\"body\">\r\n        \r\n        <p>\r\n            <a href=\"/doc\">View full documentation</a> | <a href=\"/rodl\">View RODL</a>\r\n        </p>\r\n        <p>\r\n            \r\n        </p>\r\n        <p class=\"h2\">Service Dispatchers:</p>\r\n        <ul>\r\n            <li><a href=\"/bin\">/bin</a> <i>(BinMessage)</i></li>\r\n        </ul>\r\n        \r\n    </div>\r\n    <div class=\"footer\">\r\n        Framework Version v4.0.30319.42000\r\n        <br />\r\n        Remoting SDK for .NET v9.4.107.1363\r\n        <br /><br />\r\n        RemObjects Software, LLC. <a href=\"http://www.remobjects.com\">remobjects.com</a>.\r\n    </div>\r\n</body>\r\n</html>",
   "datamd5" : "c73df22159fa1add03f7b584e7896e6d",
   "datammh3" : -1125533508,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9534",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "maxis.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "MAXISNET",
      "organization" : "Maxis Broadband Sdn.Bhd",
      "subnet" : "58.71.128.0/17"
   },
   "ip" : "58.71.192.127",
   "ipv6" : "false",
   "latitude" : "3.1237",
   "location" : "3.1237,101.6936",
   "longitude" : "101.6936",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Binariang Berhad",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 63210,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "58.71.128.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
103.179.84.94

Network
103.179.84.0/24

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://103.179.84.94:63210/auth/login 200

HTTP Title
SMART IT | Log in

ASN
AS142307

Organization
PT CYB Media Group

Protocol
http

Source
urlscan::redirect
Operating System
Microsoft Windows

Product
Apache HTTP Server 2.4.54

HTTP Component(s)
PHP PHP 8.1.10 Bootstrap Bootstrap OpenSSL OpenSSL 1.1.1q

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1e571814d9b263213ce10499b9fd0d6f

HTTP Header MD5
08dcaa50d08cb00322ab6ed9d60260e4

HTTP Body MD5
e505bfb447935ca1d9f263418a355a09

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 05:34:09 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1q PHP/8.1.10
X-Powered-By: PHP/8.1.10
Cache-Control: no-cache, private
Set-Cookie: laravel_session=Z5nxjdfmUyx3llqN4FDF9tlPGVGCoXp1CbtmZJM3; path=/; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

40c7
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <title>SMART IT | Log in</title>
    <link rel="icon" href="http://<ip>:63210/assets/img/alta-logo2.png">
    <link rel="stylesheet" href="http://<ip>:63210/plugins/fontawesome-free/css/all.min.css">
    <link rel="stylesheet" href="http://<ip>:63210/plugins/icheck-bootstrap/icheck-bootstrap.min.css">
    <link rel="stylesheet" href="http://<ip>:63210/dist/css/adminlte.min.css">
    <link rel="stylesheet" href="http://<ip>:63210/plugins/sweetalert2/sweetalert2.min.css">
    <link rel="stylesheet" href="http://<ip>:63210/plugins/toast/toastr.css">
    <style type="text/css">
        /* cyrillic-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNK7lqDY.woff2") format('woff2');
            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
        }
        /* cyrillic */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7jsDJT9g.woff2") format('woff2');
            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
        }
        /* greek-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7rsDJT9g.woff2") format('woff2');
            unicode-range: U+1F00-1FFF;
        }
        /* greek */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7ksDJT9g.woff2") format('woff2');
            unicode-range: U+0370-03FF;
        }
        /* vietnamese */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7osDJT9g.woff2") format('woff2');
            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;
        }
        /* latin-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7psDJT9g.woff2") format('woff2');
            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;
        }
        /* latin */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: italic;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2") format('woff2');
            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
        }
        /* cyrillic-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmhduz8A.woff2") format('woff2');
            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
        }
        /* cyrillic */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwkxduz8A.woff2") format('woff2');
            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
        }
        /* greek-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmxduz8A.woff2") format('woff2');
            unicode-range: U+1F00-1FFF;
        }
        /* greek */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlBduz8A.woff2") format('woff2');
            unicode-range: U+0370-03FF;
        }
        /* vietnamese */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmBduz8A.woff2") format('woff2');
            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;
        }
        /* latin-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmRduz8A.woff2") format('woff2');
            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;
        }
        /* latin */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 300;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2") format('woff2');
            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
        }
        /* cyrillic-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNa7lqDY.woff2") format('woff2');
            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
        }
        /* cyrillic */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qPK7lqDY.woff2") format('woff2');
            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
        }
        /* greek-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNK7lqDY.woff2") format('woff2');
            unicode-range: U+1F00-1FFF;
        }
        /* greek */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qO67lqDY.woff2") format('woff2');
            unicode-range: U+0370-03FF;
        }
        /* vietnamese */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qN67lqDY.woff2") format('woff2');
            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;
        }
        /* latin-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2") format('woff2');
            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;
        }
        /* latin */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 400;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2") format('woff2');
            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
        }
        /* cyrillic-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmhduz8A.woff2") format('woff2');
            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
        }
        /* cyrillic */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwkxduz8A.woff2") format('woff2');
            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
        }
        /* greek-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmxduz8A.woff2") format('woff2');
            unicode-range: U+1F00-1FFF;
        }
        /* greek */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlBduz8A.woff2") format('woff2');
            unicode-range: U+0370-03FF;
        }
        /* vietnamese */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmBduz8A.woff2") format('woff2');
            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;
        }
        /* latin-ext */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmRduz8A.woff2") format('woff2');
            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;
        }
        /* latin */
        @font-face {
            font-family: 'Source Sans Pro';
            font-style: normal;
            font-weight: 700;
            font-display: fallback;
            src: url("http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2") format('woff2');
            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
        }

    </style>
</head>

<body class="hold-transition login-page">
    <div class="login-box" style="margin-bottom: 50px;">
        <div class="login-logo">
            <b>Smart </b>IT<sup style="font-size: 25px">+</sup>
        </div>
        <div class="card">
            <div class="card-body login-card-body">
                <form action="http://<ip>:63210/auth/post-login" method="post" style="margin-bottom: 0" autocomplete="off">
                    <input type="hidden" name="_token" value="jA3G4jrGiYQw2sni8GV7DRFyicnOqIlHikacby5G">                    <div class="input-group mb-3">
                        <input type="text" class="form-control " value="" placeholder="Username" required name="username">
                        <div class="input-group-append">
                            <div class="input-group-text">
                                <span class="fas fa-user"></span>
                            </div>
                        </div>
                                            </div>
                    <div class="input-group mb-3">
                        <input type="password" class="form-control " name="password" placeholder="Password" required>
                        <div class="input-group-append">
                            <div class="input-group-text">
                                <span class="fas fa-lock"></span>
                            </div>
                        </div>
                                            </div>
                    <div class="input-group-prepend mb-2">
                        <input id="captcha" name="captcha" type="text" class="form-control " placeholder="Captcha" style="width:50%" required>
                        <span id="recap" class="input-group-prepend captcha" style="width: 50%" ?>&#8287 &#8287 &#8287 <img src="http://<ip>:63210/captcha/default?AJe7k0AQ" ></span>
                                            </div>

                    

                        


                    <button type="submit" class="btn btn-default bg-olive btn-block text-md mt-2" style="color: rgb(61, 153, 112);">
                        Login</button>
                    <button type="reset" class="btn btn-default btn-block text-md">Reset</button>

            </form>
        </div>
    </div>
    <div class="margin text-center">IT Inventory Kawasan Berikat (v6)</div>
</div>
<BR>
<div class="margin text-center">
    <span style="font-size:32px;">PT. DIAMONDFIT GARMENT INDONESIA</span><BR><BR>
    <span>Copyright © 2024 <a href="http://altaputra.co.id">Alta Putra Indomedia, PT</a>. | All rights reserved.</span>
</div>


<script src="http://<ip>:63210/plugins/jquery/jquery.min.js"></script>

<script src="http://<ip>:63210/plugins/bootstrap/js/bootstrap.bundle.min.js"></script>

<script src="http://<ip>:63210/dist/js/adminlte.min.js?v=3.2.0"></script>
    <script src="http://<ip>:63210/plugins/sweetalert2/sweetalert2.js"></script>

<script src="http://<ip>:63210/plugins/toast/toastr.min.js"></script>

<script type="text/javascript">
    $(function (){
        Toast = Swal.mixin({
            toast: true,
            position: 'top-end',
            showConfirmButton: false,
            timer: 3000,
            timerProgressBar: false,
            didOpe

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:34:16.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "altaputra.co.id"
         ],
         "hostname" : [
            "altaputra.co.id"
         ],
         "url" : [
            "http://altaputra.co.id"
         ]
      },
      "http" : {
         "bodymd5" : "e505bfb447935ca1d9f263418a355a09",
         "bodymmh3" : 1161239076,
         "component" : [
            {
               "product" : "PHP",
               "productversion" : "8.1.10",
               "productvendor" : "PHP"
            },
            {
               "product" : "OpenSSL",
               "productvendor" : "OpenSSL",
               "productversion" : "1.1.1q"
            },
            {
               "product" : "Bootstrap",
               "productvendor" : "Bootstrap"
            }
         ],
         "headermd5" : "08dcaa50d08cb00322ab6ed9d60260e4",
         "headermmh3" : -1321159361,
         "title" : "SMART IT | Log in"
      },
      "length" : 16015
   },
   "asn" : "AS142307",
   "city" : "Boyolali",
   "country" : "ID",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 05:34:09 GMT\r\nServer: Apache/2.4.54 (Win64) OpenSSL/1.1.1q PHP/8.1.10\r\nX-Powered-By: PHP/8.1.10\r\nCache-Control: no-cache, private\r\nSet-Cookie: laravel_session=Z5nxjdfmUyx3llqN4FDF9tlPGVGCoXp1CbtmZJM3; path=/; httponly; samesite=lax\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n40c7\r\n<!DOCTYPE html>\r\n<html lang=\"en\">\r\n<head>\r\n    <meta charset=\"utf-8\">\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\r\n    <title>SMART IT | Log in</title>\r\n    <link rel=\"icon\" href=\"http://<ip>:63210/assets/img/alta-logo2.png\">\r\n    <link rel=\"stylesheet\" href=\"http://<ip>:63210/plugins/fontawesome-free/css/all.min.css\">\r\n    <link rel=\"stylesheet\" href=\"http://<ip>:63210/plugins/icheck-bootstrap/icheck-bootstrap.min.css\">\r\n    <link rel=\"stylesheet\" href=\"http://<ip>:63210/dist/css/adminlte.min.css\">\r\n    <link rel=\"stylesheet\" href=\"http://<ip>:63210/plugins/sweetalert2/sweetalert2.min.css\">\r\n    <link rel=\"stylesheet\" href=\"http://<ip>:63210/plugins/toast/toastr.css\">\r\n    <style type=\"text/css\">\r\n        /* cyrillic-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNK7lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;\r\n        }\r\n        /* cyrillic */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7jsDJT9g.woff2\") format('woff2');\r\n            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;\r\n        }\r\n        /* greek-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7rsDJT9g.woff2\") format('woff2');\r\n            unicode-range: U+1F00-1FFF;\r\n        }\r\n        /* greek */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7ksDJT9g.woff2\") format('woff2');\r\n            unicode-range: U+0370-03FF;\r\n        }\r\n        /* vietnamese */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7osDJT9g.woff2\") format('woff2');\r\n            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;\r\n        }\r\n        /* latin-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7psDJT9g.woff2\") format('woff2');\r\n            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;\r\n        }\r\n        /* latin */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: italic;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2\") format('woff2');\r\n            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;\r\n        }\r\n        /* cyrillic-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmhduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;\r\n        }\r\n        /* cyrillic */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwkxduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;\r\n        }\r\n        /* greek-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmxduz8A.woff2\") format('woff2');\r\n            unicode-range: U+1F00-1FFF;\r\n        }\r\n        /* greek */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlBduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0370-03FF;\r\n        }\r\n        /* vietnamese */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmBduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;\r\n        }\r\n        /* latin-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmRduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;\r\n        }\r\n        /* latin */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 300;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2\") format('woff2');\r\n            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;\r\n        }\r\n        /* cyrillic-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNa7lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;\r\n        }\r\n        /* cyrillic */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qPK7lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;\r\n        }\r\n        /* greek-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNK7lqDY.woff2\") format('woff2');\r\n            unicode-range: U+1F00-1FFF;\r\n        }\r\n        /* greek */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qO67lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0370-03FF;\r\n        }\r\n        /* vietnamese */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qN67lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;\r\n        }\r\n        /* latin-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2\") format('woff2');\r\n            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;\r\n        }\r\n        /* latin */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 400;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2\") format('woff2');\r\n            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;\r\n        }\r\n        /* cyrillic-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmhduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;\r\n        }\r\n        /* cyrillic */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwkxduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;\r\n        }\r\n        /* greek-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmxduz8A.woff2\") format('woff2');\r\n            unicode-range: U+1F00-1FFF;\r\n        }\r\n        /* greek */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlBduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0370-03FF;\r\n        }\r\n        /* vietnamese */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmBduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+1EA0-1EF9, U+20AB;\r\n        }\r\n        /* latin-ext */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmRduz8A.woff2\") format('woff2');\r\n            unicode-range: U+0100-024F, U+0259, U+1E00-1EFF, U+2020, U+20A0-20AB, U+20AD-20CF, U+2113, U+2C60-2C7F, U+A720-A7FF;\r\n        }\r\n        /* latin */\r\n        @font-face {\r\n            font-family: 'Source Sans Pro';\r\n            font-style: normal;\r\n            font-weight: 700;\r\n            font-display: fallback;\r\n            src: url(\"http://<ip>:63210/font/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2\") format('woff2');\r\n            unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;\r\n        }\r\n\r\n    </style>\r\n</head>\r\n\r\n<body class=\"hold-transition login-page\">\r\n    <div class=\"login-box\" style=\"margin-bottom: 50px;\">\r\n        <div class=\"login-logo\">\r\n            <b>Smart </b>IT<sup style=\"font-size: 25px\">+</sup>\r\n        </div>\r\n        <div class=\"card\">\r\n            <div class=\"card-body login-card-body\">\r\n                <form action=\"http://<ip>:63210/auth/post-login\" method=\"post\" style=\"margin-bottom: 0\" autocomplete=\"off\">\r\n                    <input type=\"hidden\" name=\"_token\" value=\"jA3G4jrGiYQw2sni8GV7DRFyicnOqIlHikacby5G\">                    <div class=\"input-group mb-3\">\r\n                        <input type=\"text\" class=\"form-control \" value=\"\" placeholder=\"Username\" required name=\"username\">\r\n                        <div class=\"input-group-append\">\r\n                            <div class=\"input-group-text\">\r\n                                <span class=\"fas fa-user\"></span>\r\n                            </div>\r\n                        </div>\r\n                                            </div>\r\n                    <div class=\"input-group mb-3\">\r\n                        <input type=\"password\" class=\"form-control \" name=\"password\" placeholder=\"Password\" required>\r\n                        <div class=\"input-group-append\">\r\n                            <div class=\"input-group-text\">\r\n                                <span class=\"fas fa-lock\"></span>\r\n                            </div>\r\n                        </div>\r\n                                            </div>\r\n                    <div class=\"input-group-prepend mb-2\">\r\n                        <input id=\"captcha\" name=\"captcha\" type=\"text\" class=\"form-control \" placeholder=\"Captcha\" style=\"width:50%\" required>\r\n                        <span id=\"recap\" class=\"input-group-prepend captcha\" style=\"width: 50%\" ?>&#8287 &#8287 &#8287 <img src=\"http://<ip>:63210/captcha/default?AJe7k0AQ\" ></span>\r\n                                            </div>\r\n\r\n                    \r\n\r\n                        \r\n\r\n\r\n                    <button type=\"submit\" class=\"btn btn-default bg-olive btn-block text-md mt-2\" style=\"color: rgb(61, 153, 112);\">\r\n                        Login</button>\r\n                    <button type=\"reset\" class=\"btn btn-default btn-block text-md\">Reset</button>\r\n\r\n            </form>\r\n        </div>\r\n    </div>\r\n    <div class=\"margin text-center\">IT Inventory Kawasan Berikat (v6)</div>\r\n</div>\r\n<BR>\r\n<div class=\"margin text-center\">\r\n    <span style=\"font-size:32px;\">PT. DIAMONDFIT GARMENT INDONESIA</span><BR><BR>\r\n    <span>Copyright \u00a9 2024 <a href=\"http://altaputra.co.id\">Alta Putra Indomedia, PT</a>. | All rights reserved.</span>\r\n</div>\r\n\r\n\r\n<script src=\"http://<ip>:63210/plugins/jquery/jquery.min.js\"></script>\r\n\r\n<script src=\"http://<ip>:63210/plugins/bootstrap/js/bootstrap.bundle.min.js\"></script>\r\n\r\n<script src=\"http://<ip>:63210/dist/js/adminlte.min.js?v=3.2.0\"></script>\r\n    <script src=\"http://<ip>:63210/plugins/sweetalert2/sweetalert2.js\"></script>\r\n\r\n<script src=\"http://<ip>:63210/plugins/toast/toastr.min.js\"></script>\r\n\r\n<script type=\"text/javascript\">\r\n    $(function (){\r\n        Toast = Swal.mixin({\r\n            toast: true,\r\n            position: 'top-end',\r\n            showConfirmButton: false,\r\n            timer: 3000,\r\n            timerProgressBar: false,\r\n            didOpe",
   "datamd5" : "1e571814d9b263213ce10499b9fd0d6f",
   "datammh3" : 86311578,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "103.179.84.94",
   "geolocus" : {
      "asn" : "AS142307",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "ID",
      "countryname" : "Indonesia",
      "domain" : [
         "cybmedia.co",
         "cybmedia.com"
      ],
      "isineu" : "false",
      "latitude" : "-0.789275",
      "location" : "-0.789275,113.921327",
      "longitude" : "113.921327",
      "netname" : "CYB-ID",
      "organization" : "PT CYB Media Group",
      "subnet" : "103.179.84.0/24"
   },
   "hostname" : [
      "103.179.84.94"
   ],
   "ip" : "103.179.84.94",
   "ipv6" : "false",
   "latitude" : "-7.5356",
   "location" : "-7.5356,110.5961",
   "longitude" : "110.5961",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "PT CYB Media Group",
   "os" : "Windows",
   "osbits" : 64,
   "osvendor" : "Microsoft",
   "port" : 63210,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.54",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 200,
   "subnet" : "103.179.84.0/24",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/auth/login"
}

IP
79.112.11.97

Network
79.112.0.0/14

Domain(s)
fiberlink.ro

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://79.112.11.97:63210/ 200

HTTP Title
Node-RED

Reverse DNS
79-112-11-097.iasi.fiberlink.ro

ASN
AS8708

Organization
Digi Romania S.A.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
expressjs Express

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b8c1a3c89380f9f357fa1c8bb9ddd163

HTTP Header MD5
b72af955deeabb50e1df3034a21c1079

HTTP Body MD5
a74d652f8adcf486b0386a343059a5f2

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=utf-8
Content-Length: 1518
ETag: W/"5ee-AirVrUCVQ7l0Iw0Je44W/Rjqgqg"
Date: Thu, 07 Nov 2024 05:26:19 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge" />
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=0"/>
<meta name="apple-mobile-web-app-capable" content="yes">
<meta name="mobile-web-app-capable" content="yes">
<!--
  Copyright JS Foundation and other contributors, http://js.foundation

  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
  You may obtain a copy of the License at

  http://www.apache.org/licenses/LICENSE-2.0

  Unless required by applicable law or agreed to in writing, software
  distributed under the License is distributed on an "AS IS" BASIS,
  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  See the License for the specific language governing permissions and
  limitations under the License.
-->
<title>Node-RED</title>
<link rel="icon" type="image/png" href="favicon.ico">
<link rel="mask-icon" href="red&#x2F;images&#x2F;node-red-icon-black.svg" color="#8f0000">
<link rel="stylesheet" href="vendor/jquery/css/base/jquery-ui.min.css">
<link rel="stylesheet" href="vendor/font-awesome/css/font-awesome.min.css">
<link rel="stylesheet" href="red/style.min.css">
</head>
<body spellcheck="false">
<div id="red-ui-editor"></div>
<script src="vendor/vendor.js"></script>
<script src="red&#x2F;red.min.js"></script>
<script src="red&#x2F;main.min.js"></script>

</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:19.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "js.foundation",
            "apache.org"
         ],
         "hostname" : [
            "js.foundation",
            "www.apache.org"
         ],
         "url" : [
            "http://js.foundation",
            "http://www.apache.org/licenses/LICENSE-2.0"
         ]
      },
      "favicon" : {
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "a74d652f8adcf486b0386a343059a5f2",
         "bodymmh3" : -1568759718,
         "component" : [
            {
               "product" : "Express",
               "productvendor" : "expressjs"
            }
         ],
         "header" : [
            {
               "name" : "ETag",
               "value" : "W/\"5ee-AirVrUCVQ7l0Iw0Je44W/Rjqgqg"
            }
         ],
         "headermd5" : "b72af955deeabb50e1df3034a21c1079",
         "headermmh3" : -1925318449,
         "title" : "Node-RED"
      },
      "length" : 1753
   },
   "asn" : "AS8708",
   "city" : "Iasi",
   "country" : "RO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nX-Powered-By: Express\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 1518\r\nETag: W/\"5ee-AirVrUCVQ7l0Iw0Je44W/Rjqgqg\"\r\nDate: Thu, 07 Nov 2024 05:26:19 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta charset=\"utf-8\">\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" />\n<meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=0\"/>\n<meta name=\"apple-mobile-web-app-capable\" content=\"yes\">\n<meta name=\"mobile-web-app-capable\" content=\"yes\">\n<!--\n  Copyright JS Foundation and other contributors, http://js.foundation\n\n  Licensed under the Apache License, Version 2.0 (the \"License\");\n  you may not use this file except in compliance with the License.\n  You may obtain a copy of the License at\n\n  http://www.apache.org/licenses/LICENSE-2.0\n\n  Unless required by applicable law or agreed to in writing, software\n  distributed under the License is distributed on an \"AS IS\" BASIS,\n  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n  See the License for the specific language governing permissions and\n  limitations under the License.\n-->\n<title>Node-RED</title>\n<link rel=\"icon\" type=\"image/png\" href=\"favicon.ico\">\n<link rel=\"mask-icon\" href=\"red&#x2F;images&#x2F;node-red-icon-black.svg\" color=\"#8f0000\">\n<link rel=\"stylesheet\" href=\"vendor/jquery/css/base/jquery-ui.min.css\">\n<link rel=\"stylesheet\" href=\"vendor/font-awesome/css/font-awesome.min.css\">\n<link rel=\"stylesheet\" href=\"red/style.min.css\">\n</head>\n<body spellcheck=\"false\">\n<div id=\"red-ui-editor\"></div>\n<script src=\"vendor/vendor.js\"></script>\n<script src=\"red&#x2F;red.min.js\"></script>\n<script src=\"red&#x2F;main.min.js\"></script>\n\n</body>\n</html>\n",
   "datamd5" : "b8c1a3c89380f9f357fa1c8bb9ddd163",
   "datammh3" : -813542817,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "fiberlink.ro"
   ],
   "host" : [
      "79-112-11-097"
   ],
   "hostname" : [
      "79-112-11-097.iasi.fiberlink.ro"
   ],
   "ip" : "79.112.11.97",
   "ipv6" : "false",
   "latitude" : "47.1672",
   "location" : "47.1672,27.6083",
   "longitude" : "27.6083",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Digi Romania S.A.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 63210,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "79-112-11-097.iasi.fiberlink.ro"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "iasi.fiberlink.ro"
   ],
   "subnet" : "79.112.0.0/14",
   "tld" : [
      "ro"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
119.13.111.169

Network
119.13.64.0/18

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Linux Linux sUse

URL

http://119.13.111.169:63210/ 200

HTTP Title
K2P

HTTP Keyword(s)
voip vos3000

HTTP Copyright
www.linknat.com, 昆石网络

Reverse DNS
ecs-119-13-111-169.compute.hwclouds-dns.com

ASN
AS136907

Organization
HUAWEI CLOUDS

Protocol
http

Source
datascan
Operating System
Linux Linux sUse

HTTP Component(s)
MobileIron Core CentOS-WebPanel CentOS Web Panel Oracle Java Roundcube Webmail Jenkins Jenkins 2.121.3 SPIP SPIP 4.1.11 Drupal Drupal 8 PHP PHP Gitlab Gitlab Atlassian Confluence

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
51450cb310d6d7b3d94b8b8b26a49d74

HTTP Header MD5
5f9114bab314e16475103e1d954da593

HTTP Body MD5
9829f0b8f386d753e0abdaf32fdaf6e6

HTTP/1.1 200 OK
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 104957
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
P3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Pragma: private
Proxy-Authenticate: Basic realm="Tinyproxy"
Report-To: {'group': 'network-errors', 'max_age': 2592000, 'endpoints': [{'url': 'https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify'}]}
Server: cwpsrv
Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
Set-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;
Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
Set-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;
Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
Set-Cookie: laravel_session=a0ffeb;
Set-Cookie: Session=10.76.118.67.ff37fe7ceeca9a0ebedcf6549e8275d9; path=/
Set-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;
Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: samlPreauthSessionHash=; path=/; secure;
Set-Cookie: id=A67B8F9C;
X-Aspnetmvc-Version: 5.2
X-Cache: MISS from Hello
X-Cache-Lookup: MISS from Hello:8080
X-Confluence-Request-Time: 1698802372064
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 8 (https://www.drupal.org)
X-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
X-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Pingback: https://example.com/xmlrpc.php
X-Powered-By-Plesk: PleskWin
X-Proxy-Cache: MISS
X-Served-By: cache-xsp21434-XSP
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 05:25:53 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0827==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>K2P</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwODI3PT0=
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:25:53.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "shopifycloud.com",
            "drupal.org",
            "micros-hosting.com",
            "example.com"
         ],
         "file" : [
            "cloud_index.php",
            "admin-ajax.php",
            "dvrremoteap_x64.exe",
            "dvfplayer.zip",
            "index.php",
            "p3p.xml",
            "dvrremoteap.exe"
         ],
         "hostname" : [
            "example.com",
            "micros-hosting.com",
            "monorail-edge.shopifycloud.com",
            "www.drupal.org"
         ],
         "ip" : [
            "1.0.0.36",
            "192.168.0.1",
            "192.168.1.1",
            "10.76.118.67",
            "7.7.31.1",
            "192.168.1.10",
            "192.168.1.4"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4",
            "https://example.com/xmlrpc.php",
            "https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify",
            "https://www.drupal.org"
         ]
      },
      "http" : {
         "bodymd5" : "9829f0b8f386d753e0abdaf32fdaf6e6",
         "bodymmh3" : 178601268,
         "component" : [
            {
               "productversion" : "4.1.11",
               "productvendor" : "SPIP",
               "product" : "SPIP"
            },
            {
               "product" : "Drupal",
               "productvendor" : "Drupal",
               "productversion" : "8"
            },
            {
               "product" : "Core",
               "productvendor" : "MobileIron"
            },
            {
               "productvendor" : "Oracle",
               "product" : "Java"
            },
            {
               "product" : "PHP",
               "productvendor" : "PHP"
            },
            {
               "product" : "Gitlab",
               "productvendor" : "Gitlab"
            },
            {
               "productvendor" : "Roundcube",
               "product" : "Webmail"
            },
            {
               "productvendor" : "Jenkins",
               "productversion" : "2.121.3",
               "product" : "Jenkins"
            },
            {
               "product" : "Confluence",
               "productvendor" : "Atlassian"
            },
            {
               "product" : "CentOS Web Panel",
               "productvendor" : "CentOS-WebPanel"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "5f9114bab314e16475103e1d954da593",
         "headermmh3" : 162675134,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "realm" : "Tinyproxy",
         "title" : "K2P"
      },
      "length" : 16288
   },
   "asn" : "AS136907",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 104957\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nP3p: policyref=\"/bitrix/p3p.xml\", CP=\"NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA\"\r\nPragma: private\r\nProxy-Authenticate: Basic realm=\"Tinyproxy\"\r\nReport-To: {'group': 'network-errors', 'max_age': 2592000, 'endpoints': [{'url': 'https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify'}]}\r\nServer: cwpsrv\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: laravel_session=a0ffeb;\r\nSet-Cookie: Session=10.76.118.67.ff37fe7ceeca9a0ebedcf6549e8275d9; path=/\r\nSet-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nSet-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: samlPreauthSessionHash=; path=/; secure;\r\nSet-Cookie: id=A67B8F9C;\r\nX-Aspnetmvc-Version: 5.2\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Confluence-Request-Time: 1698802372064\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.\r\nX-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Pingback: https://example.com/xmlrpc.php\r\nX-Powered-By-Plesk: PleskWin\r\nX-Proxy-Cache: MISS\r\nX-Served-By: cache-xsp21434-XSP\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 05:25:53 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0827==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>K2P</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwODI3PT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared",
   "datamd5" : "51450cb310d6d7b3d94b8b8b26a49d74",
   "datammh3" : 1205898265,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS136907",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SG",
      "countryname" : "Singapore",
      "domain" : [
         "huawei.com",
         "huaweicloud.com",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "1.352083",
      "location" : "1.352083,103.819836",
      "longitude" : "103.819836",
      "netname" : "Huawei-Cloud-Singapore",
      "organization" : "HUAWEI INTERNATIONAL PTE. LTD.",
      "subnet" : "119.13.96.0/20"
   },
   "host" : [
      "ecs-119-13-111-169"
   ],
   "hostname" : [
      "ecs-119-13-111-169.compute.hwclouds-dns.com"
   ],
   "ip" : "119.13.111.169",
   "ipv6" : "false",
   "latitude" : "1.2868",
   "location" : "1.2868,103.8503",
   "longitude" : "103.8503",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "HUAWEI CLOUDS",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 63210,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ecs-119-13-111-169.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "119.13.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
190.1.200.157

Network
190.1.192.0/18

Domain(s)
emcali.net.co

Device

<enterprise field>: device.class

URL

http://190.1.200.157:63210/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
dsl-emcali-190.1.200.157.emcali.net.co

ASN
AS10299

Organization
EMPRESAS MUNICIPALES DE CALI E.I.C.E. E.S.P.

Protocol
http

Source
datascan
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:25:50 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:25:51.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1398096396,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS10299",
   "city" : "Santiago de Cali",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:25:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "emcali.net.co"
   ],
   "geolocus" : {
      "asn" : "AS10299",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "emcali.com.co",
         "emcali.net.co"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-EMCA2-LACNIC",
      "organization" : "EMPRESAS MUNICIPALES DE CALI E.I.C.E. E.S.P.",
      "subnet" : "190.1.192.0/18"
   },
   "host" : [
      "dsl-emcali-190"
   ],
   "hostname" : [
      "dsl-emcali-190.1.200.157.emcali.net.co"
   ],
   "ip" : "190.1.200.157",
   "ipv6" : "false",
   "latitude" : "3.4129",
   "location" : "3.4129,-76.5191",
   "longitude" : "-76.5191",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "EMPRESAS MUNICIPALES DE CALI E.I.C.E. E.S.P.",
   "port" : 63210,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "dsl-emcali-190.1.200.157.emcali.net.co"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "1.200.157.emcali.net.co",
      "157.emcali.net.co",
      "200.157.emcali.net.co"
   ],
   "subnet" : "190.1.192.0/18",
   "tld" : [
      "net.co"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 25,369 in 0.046 second(s)

116.202.243.100:63210 (tcp/http) - last seen on 2024-11-07 at 05:36:58 UTC

211.83.6.71:63210 (tcp/http) - last seen on 2024-11-07 at 05:36:58 UTC

94.59.189.106:63210 (tcp/http) - last seen on 2024-11-07 at 05:35:45 UTC

139.129.231.228:63210 (tcp/http) - last seen on 2024-11-07 at 05:35:06 UTC

3.149.234.195:63210 (tcp/http) - last seen on 2024-11-07 at 05:35:05 UTC

58.71.192.127:63210 (tcp/http) - last seen on 2024-11-07 at 05:35:04 UTC

103.179.84.94:63210 (tcp/http) - last seen on 2024-11-07 at 05:34:16 UTC

79.112.11.97:63210 (tcp/http) - last seen on 2024-11-07 at 05:26:19 UTC

119.13.111.169:63210 (tcp/http) - last seen on 2024-11-07 at 05:25:53 UTC

190.1.200.157:63210 (tcp/http) - last seen on 2024-11-07 at 05:25:51 UTC