Returning 10 result(s) out of 170 in 0.038 second(s)

  • 198.58.120.25:1741 (tcp/http) - last seen on 2024-11-21 at 08:17:01 UTC

    • IP
      198.58.120.25
      Network
      198.58.96.0/19
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Juniper JunOS
      URL

      http://198.58.120.25:1741/ 302

      Reverse DNS
      198-58-120-25.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Juniper JunOS
      HTTP Component(s)
      PulseSecure Pulse Connect Secure
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      69d9ec1d2d90d96aaf19a01a8e999ace
      HTTP Header MD5
      20dd8e34a95f4c9b73d19038a53be7f8
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e
    • HTTP/1.1 302 Found
      Location: /dana-na/auth/url_11/welcome.cgi
      Content-Type: text/html; charset=utf-8
      Set-Cookie: DSSIGNIN=url_11; path=/dana-na/; expires=Thu, 31-Dec-2037 00:00:00 GMT; secure
      Set-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure
      Set-Cookie: DSSignInURL=/; path=/; secure
      Connection: close
      Content-Length: 0
      Strict-Transport-Security: max-age=31536000
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:17:01.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
               "bodymmh3" : -1636538602,
               "component" : [
                  {
                     "product" : "Pulse Connect Secure",
                     "productvendor" : "PulseSecure"
                  }
               ],
               "headermd5" : "20dd8e34a95f4c9b73d19038a53be7f8",
               "headermmh3" : 1103171666
            },
            "length" : 399
         },
         "asn" : "AS63949",
         "city" : "Richardson",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 302 Found\r\nLocation: /dana-na/auth/url_11/welcome.cgi\r\nContent-Type: text/html; charset=utf-8\r\nSet-Cookie: DSSIGNIN=url_11; path=/dana-na/; expires=Thu, 31-Dec-2037 00:00:00 GMT; secure\r\nSet-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure\r\nSet-Cookie: DSSignInURL=/; path=/; secure\r\nConnection: close\r\nContent-Length: 0\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n",
         "datamd5" : "69d9ec1d2d90d96aaf19a01a8e999ace",
         "datammh3" : -343912989,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "198.58.96.0/19"
         },
         "host" : [
            "198-58-120-25"
         ],
         "hostname" : [
            "198-58-120-25.ip.linodeusercontent.com"
         ],
         "ip" : "198.58.120.25",
         "ipv6" : "false",
         "latitude" : "32.9473",
         "location" : "32.9473,-96.7028",
         "longitude" : "-96.7028",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "JunOS",
         "osvendor" : "Juniper",
         "port" : 1741,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Found",
         "reverse" : [
            "198-58-120-25.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-21",
         "source" : "datascan",
         "status" : 302,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "198.58.96.0/19",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 185.3.94.63:1741 (tcp/http) - last seen on 2024-11-21 at 08:10:15 UTC

    • IP
      185.3.94.63
      Network
      185.3.92.0/22
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS sUse
      URL

      http://185.3.94.63:1741/ 200

      HTTP Title
      中国联通家庭网关
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      Reverse DNS
      185-3-94-63.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Cisco IOS sUse
      Product
      Cisco WebVPN 19.7.0
      HTTP Component(s)
      Drupal Drupal 8 Oracle Java SPIP SPIP 4.1.11 Atlassian Confluence Jenkins Jenkins 2.121.3 Gitlab Gitlab Roundcube Webmail MobileIron Core
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      9d2c61b02c1d086f2a8bac5af31d15a9
      HTTP Header MD5
      b4fa1797b6a827da18b41ef201c24949
      HTTP Body MD5
      3355006c1299f3df884ac080a943d7dd
    • HTTP/1.1 200 OK
      Cf-Cache-Status: DYNAMIC
      Cf-Ray: 55611f709b975f5b-LAS
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 106378
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      Pragma: private
      Server: gunicorn/19.7.0
      Set-Cookie: Set-Cookie: sessionNonceCookie-91c537b4-8e24-3455-8f0c-225b8fcc3641=16a09f29-a4ff-4be2-b4a5-913c7880d677; Max-Age=4800; Expires=Thu, 01-Jan-1970 00:00:01 GMT; Path=/; Secure; HttpOnly; SameSite=None
      Set-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;
      Set-Cookie: laravel_session=a0ffeb;
      Set-Cookie: webvpnaac=1; path=/; secure;
      Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
      Set-Cookie: id=A67B8F9C;
      Set-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;
      Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
      Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
      Set-Cookie: webvpn=A9790AFEACDEFA01FAAEAFEWFF390AE; path=/; secure;
      Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
      Set-Cookie: PHC_DISABLED=1; path=/; secure;
      Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
      Set-Cookie: swap=vFuUpy5thP2HBPenIBJZtmjQHvBP2UiSJNhstyNXrAs=; path=/; secure; HttpOnly;
      Set-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains
      Set-Cookie: CLIENT_ID=7214
      Set-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;
      Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
      X-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5
      X-Backside-Transport: FAIL FAIL
      X-Cache: miss
      X-Cache-Lookup: MISS from Hello:8080
      X-Cacheable: SHORT
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 8 (https://www.drupal.org)
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Language: english
      X-Seen-By: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==,YQo=,YQo=,YQo=,YQo=,YQo=,YQo=
      X-Shopid: 25693290577
      X-Timer: S1579233182.306174,VS0,VE0
      X-Xss-Protection: 1; mode=block
      Date: Thu, 21 Nov 2024 08:10:14 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240d24==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>中国联通家庭网关</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
      <h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
      <span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZDI0PT0=
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:               
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:10:15.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "drupal.org",
                  "micros-hosting.com"
               ],
               "file" : [
                  "dvfplayer.zip",
                  "cloud_index.php",
                  "dvrremoteap_x64.exe",
                  "admin-ajax.php",
                  "index.php",
                  "dvrremoteap.exe"
               ],
               "hostname" : [
                  "micros-hosting.com",
                  "www.drupal.org"
               ],
               "ip" : [
                  "192.168.0.1",
                  "7.7.31.1",
                  "192.168.1.10",
                  "1.0.0.36",
                  "192.168.1.4",
                  "192.168.1.1"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4",
                  "https://www.drupal.org"
               ]
            },
            "http" : {
               "bodymd5" : "3355006c1299f3df884ac080a943d7dd",
               "bodymmh3" : 916158658,
               "component" : [
                  {
                     "product" : "SPIP",
                     "productvendor" : "SPIP",
                     "productversion" : "4.1.11"
                  },
                  {
                     "productvendor" : "Gitlab",
                     "product" : "Gitlab"
                  },
                  {
                     "productvendor" : "MobileIron",
                     "product" : "Core"
                  },
                  {
                     "product" : "Jenkins",
                     "productvendor" : "Jenkins",
                     "productversion" : "2.121.3"
                  },
                  {
                     "product" : "Confluence",
                     "productvendor" : "Atlassian"
                  },
                  {
                     "product" : "Webmail",
                     "productvendor" : "Roundcube"
                  },
                  {
                     "productversion" : "8",
                     "productvendor" : "Drupal",
                     "product" : "Drupal"
                  },
                  {
                     "productvendor" : "Oracle",
                     "product" : "Java"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT",
                     "name" : "Last-Modified"
                  }
               ],
               "headermd5" : "b4fa1797b6a827da18b41ef201c24949",
               "headermmh3" : 1454357021,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "title" : "\u4e2d\u56fd\u8054\u901a\u5bb6\u5ead\u7f51\u5173"
            },
            "length" : 16315
         },
         "asn" : "AS63949",
         "city" : "London",
         "country" : "GB",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 55611f709b975f5b-LAS\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 106378\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: gunicorn/19.7.0\r\nSet-Cookie: Set-Cookie: sessionNonceCookie-91c537b4-8e24-3455-8f0c-225b8fcc3641=16a09f29-a4ff-4be2-b4a5-913c7880d677; Max-Age=4800; Expires=Thu, 01-Jan-1970 00:00:01 GMT; Path=/; Secure; HttpOnly; SameSite=None\r\nSet-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;\r\nSet-Cookie: laravel_session=a0ffeb;\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: id=A67B8F9C;\r\nSet-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nSet-Cookie: webvpn=A9790AFEACDEFA01FAAEAFEWFF390AE; path=/; secure;\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: PHC_DISABLED=1; path=/; secure;\r\nSet-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: swap=vFuUpy5thP2HBPenIBJZtmjQHvBP2UiSJNhstyNXrAs=; path=/; secure; HttpOnly;\r\nSet-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains\r\nSet-Cookie: CLIENT_ID=7214\r\nSet-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nX-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5\r\nX-Backside-Transport: FAIL FAIL\r\nX-Cache: miss\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Language: english\r\nX-Seen-By: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==,YQo=,YQo=,YQo=,YQo=,YQo=,YQo=\r\nX-Shopid: 25693290577\r\nX-Timer: S1579233182.306174,VS0,VE0\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 21 Nov 2024 08:10:14 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240d24==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>\u4e2d\u56fd\u8054\u901a\u5bb6\u5ead\u7f51\u5173</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZDI0PT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:               ",
         "datamd5" : "9d2c61b02c1d086f2a8bac5af31d15a9",
         "datammh3" : -1007403172,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS15830",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "GB",
            "countryname" : "United Kingdom",
            "domain" : [
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "55.378051",
            "location" : "55.378051,-3.435973",
            "longitude" : "-3.435973",
            "netname" : "US-LINODE-20120920",
            "organization" : "Linode, LLC",
            "subnet" : "185.3.92.0/22"
         },
         "host" : [
            "185-3-94-63"
         ],
         "hostname" : [
            "185-3-94-63.ip.linodeusercontent.com"
         ],
         "ip" : "185.3.94.63",
         "ipv6" : "false",
         "latitude" : "51.5074",
         "location" : "51.5074,-0.1196",
         "longitude" : "-0.1196",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "IOS",
         "osdistribution" : "sUse",
         "osvendor" : "Cisco",
         "port" : 1741,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "productversion" : "19.7.0",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "185-3-94-63.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-21",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "185.3.92.0/22",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 45.79.90.54:1741 (tcp/http) - last seen on 2024-11-21 at 03:37:11 UTC

    • IP
      45.79.90.54
      Network
      45.79.64.0/19
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://45.79.90.54:1741/ 200

      HTTP Title
      code-server login
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      Reverse DNS
      45-79-90-54.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      HTTP Component(s)
      Roundcube Webmail Gitlab Gitlab Drupal Drupal 8 SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3 Atlassian Confluence Apache org.apache.sling.servlets.post 3.0
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      2fb14c16509e1ff9a2a4d88c4a7b1a5a
      HTTP Header MD5
      fd2f8cdd4aabeb262c2dc03437c0eae7
      HTTP Body MD5
      fc605c8d9939a0c8132b71afa05029f0
    • HTTP/1.1 200 OK
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 105818
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      P3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
      Pragma: private
      Report-To: {'group': 'network-errors', 'max_age': 2592000, 'endpoints': [{'url': 'https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify'}]}
      Server: Cam-Webs
      Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
      Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
      Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
      Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
      Set-Cookie: sesskey=21263a2bf; path=/;
      Set-Cookie: acSamlv2Token=; path=/; secure;
      Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
      Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
      Set-Cookie: webvpn_as=; path=/; secure;
      Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
      Set-Cookie: webvpnaac=1; path=/; secure;
      Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
      Set-Cookie: samlPreauthSessionHash=; path=/; secure;
      Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
      Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
      Set-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;
      Set-Cookie: did=A67B8F9C;
      Set-Cookie: CLIENT_ID=7214
      X-Ac: 3.bur _bur
      X-Cache: MISS from Hello
      X-Cache-Hits: 0
      X-Cache-Lookup: MISS from Hello:8080
      X-Cacheable: SHORT
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 8 (https://www.drupal.org)
      X-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Powered-By: Servlet/3.0; JBossAS-6
      X-Qlik-Xrfkey: ef00
      X-Robots-Tag: none
      X-Root: root
      X-Ua-Compatible: IE=EmulateIE7
      X-Xss-Protection: 1; mode=block
      Date: Thu, 21 Nov 2024 03:37:11 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240c22==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>code-server login</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
      <h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
      <span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwYzIyPT0=
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:                 60 kB
      Rss:                  52 kB
      Pss:                  52 kB
      Shared_C
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T03:37:11.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "drupal.org",
                  "shopifycloud.com",
                  "micros-hosting.com"
               ],
               "file" : [
                  "index.php",
                  "cloud_index.php",
                  "admin-ajax.php",
                  "p3p.xml",
                  "dvrremoteap.exe",
                  "dvrremoteap_x64.exe",
                  "dvfplayer.zip"
               ],
               "hostname" : [
                  "micros-hosting.com",
                  "monorail-edge.shopifycloud.com",
                  "www.drupal.org"
               ],
               "ip" : [
                  "7.7.31.1",
                  "1.0.0.36",
                  "192.168.1.10",
                  "192.168.1.1",
                  "192.168.0.1",
                  "192.168.1.4"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4",
                  "https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify",
                  "https://www.drupal.org"
               ]
            },
            "http" : {
               "bodymd5" : "fc605c8d9939a0c8132b71afa05029f0",
               "bodymmh3" : -1676715647,
               "component" : [
                  {
                     "product" : "Drupal",
                     "productvendor" : "Drupal",
                     "productversion" : "8"
                  },
                  {
                     "productvendor" : "Gitlab",
                     "product" : "Gitlab"
                  },
                  {
                     "product" : "SPIP",
                     "productvendor" : "SPIP",
                     "productversion" : "4.1.11"
                  },
                  {
                     "product" : "Webmail",
                     "productvendor" : "Roundcube"
                  },
                  {
                     "product" : "Jenkins",
                     "productversion" : "2.121.3",
                     "productvendor" : "Jenkins"
                  },
                  {
                     "product" : "Confluence",
                     "productvendor" : "Atlassian"
                  },
                  {
                     "productversion" : "3.0",
                     "productvendor" : "Apache",
                     "product" : "org.apache.sling.servlets.post"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "name" : "Last-Modified",
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
                  }
               ],
               "headermd5" : "fd2f8cdd4aabeb262c2dc03437c0eae7",
               "headermmh3" : 1105809403,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "title" : "code-server login"
            },
            "length" : 16315
         },
         "asn" : "AS63949",
         "city" : "Fremont",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105818\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nP3p: policyref=\"/bitrix/p3p.xml\", CP=\"NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA\"\r\nPragma: private\r\nReport-To: {'group': 'network-errors', 'max_age': 2592000, 'endpoints': [{'url': 'https://monorail-edge.shopifycloud.com/v1/reports/nel/20190325/shopify'}]}\r\nServer: Cam-Webs\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: sesskey=21263a2bf; path=/;\r\nSet-Cookie: acSamlv2Token=; path=/; secure;\r\nSet-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nSet-Cookie: webvpn_as=; path=/; secure;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: samlPreauthSessionHash=; path=/; secure;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;\r\nSet-Cookie: did=A67B8F9C;\r\nSet-Cookie: CLIENT_ID=7214\r\nX-Ac: 3.bur _bur\r\nX-Cache: MISS from Hello\r\nX-Cache-Hits: 0\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: Servlet/3.0; JBossAS-6\r\nX-Qlik-Xrfkey: ef00\r\nX-Robots-Tag: none\r\nX-Root: root\r\nX-Ua-Compatible: IE=EmulateIE7\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 21 Nov 2024 03:37:11 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240c22==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>code-server login</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwYzIyPT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_C",
         "datamd5" : "2fb14c16509e1ff9a2a4d88c4a7b1a5a",
         "datammh3" : 2146367907,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "45.79.64.0/19"
         },
         "host" : [
            "45-79-90-54"
         ],
         "hostname" : [
            "45-79-90-54.ip.linodeusercontent.com"
         ],
         "ip" : "45.79.90.54",
         "ipv6" : "false",
         "latitude" : "37.5625",
         "location" : "37.5625,-122.0004",
         "longitude" : "-122.0004",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 1741,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "45-79-90-54.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-21",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "45.79.64.0/19",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 139.162.189.251:1741 (tcp/http) - last seen on 2024-11-21 at 03:37:07 UTC

    • IP
      139.162.189.251
      Network
      139.162.0.0/16
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://139.162.189.251:1741/ 200

      HTTP Title
      Quickly a Blogging Category Flat Bootstarp Resposive Website Template | Home :: w3layouts
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      Reverse DNS
      139-162-189-251.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      Product
      tr069 http server
      HTTP Component(s)
      SPIP SPIP 4.1.11 PHP PHP Drupal Drupal 8 Jenkins Jenkins 2.121.3 Atlassian Confluence Metabase Metabase Gitlab Gitlab
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c7bd6f8d2574bda1b7cc3320519be4aa
      HTTP Header MD5
      5c88c25ed056cfd7f12a89bf3b5a4453
      HTTP Body MD5
      c2b5e2acebbdd4459984162861204359
    • HTTP/1.1 200 OK
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 106885
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      Pragma: private
      Server: tr069 http server
      Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
      Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
      Set-Cookie: rememberMe=deleteMe; path=/;
      Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
      Set-Cookie: cepcAdminID=25263a2bf; path=/;
      Set-Cookie: SUPPORTCHROMEOS=1; path=/; secure;
      Set-Cookie: did=A67B8F9C;
      Set-Cookie: CLIENT_ID=7214
      Set-Cookie: token=21263a2bf; path=/;
      Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
      Set-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure
      Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
      Set-Cookie: RUIJIEID=A67B8F9C228E095723A97C6A977BE2B3; Path=/;
      Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
      Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
      Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
      Set-Cookie: webvpnaac=1; path=/; secure;
      Set-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;
      Strict-Transport-Security: max-age=31536000
      X-Akaunting: Free Accounting Software
      X-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5
      X-Cache: MISS from Hello
      X-Cache-Lookup: MISS from Hello:8080
      X-Cache-Miss-From: parking-74c5b8d946-dhmw5
      X-Confluence-Request-Time: 1698802372064
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 8 (https://www.drupal.org)
      X-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Powered-By: BoidCMS
      X-Runtime: 0.00985
      X-Seen-By: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==,YQo=,YQo=,YQo=,YQo=,YQo=,YQo=
      X-Xss-Protection: 1; mode=block
      Date: Thu, 21 Nov 2024 03:37:07 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240d22==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>Quickly a Blogging Category Flat Bootstarp Resposive Website Template | Home :: w3layouts</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
      <h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
      <span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZDIyPT0=
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:                 60 kB
      Rss:                  52 kB
      Pss:                  52 kB
      Shared_Clean:        
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T03:37:07.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "micros-hosting.com",
                  "drupal.org"
               ],
               "file" : [
                  "index.php",
                  "cloud_index.php",
                  "admin-ajax.php",
                  "dvrremoteap.exe",
                  "dvfplayer.zip",
                  "dvrremoteap_x64.exe"
               ],
               "hostname" : [
                  "micros-hosting.com",
                  "www.drupal.org"
               ],
               "ip" : [
                  "192.168.1.4",
                  "192.168.1.1",
                  "192.168.0.1",
                  "192.168.1.10",
                  "1.0.0.36",
                  "7.7.31.1"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4",
                  "https://www.drupal.org"
               ]
            },
            "http" : {
               "bodymd5" : "c2b5e2acebbdd4459984162861204359",
               "bodymmh3" : -695718827,
               "component" : [
                  {
                     "productversion" : "2.121.3",
                     "productvendor" : "Jenkins",
                     "product" : "Jenkins"
                  },
                  {
                     "product" : "Confluence",
                     "productvendor" : "Atlassian"
                  },
                  {
                     "productvendor" : "SPIP",
                     "productversion" : "4.1.11",
                     "product" : "SPIP"
                  },
                  {
                     "productvendor" : "PHP",
                     "product" : "PHP"
                  },
                  {
                     "productvendor" : "Gitlab",
                     "product" : "Gitlab"
                  },
                  {
                     "productvendor" : "Drupal",
                     "productversion" : "8",
                     "product" : "Drupal"
                  },
                  {
                     "product" : "Metabase",
                     "productvendor" : "Metabase"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT",
                     "name" : "Last-Modified"
                  }
               ],
               "headermd5" : "5c88c25ed056cfd7f12a89bf3b5a4453",
               "headermmh3" : -983277750,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "title" : "Quickly a Blogging Category Flat Bootstarp Resposive Website Template | Home :: w3layouts"
            },
            "length" : 16279
         },
         "asn" : "AS63949",
         "city" : "Frankfurt am Main",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 106885\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: tr069 http server\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: rememberMe=deleteMe; path=/;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: cepcAdminID=25263a2bf; path=/;\r\nSet-Cookie: SUPPORTCHROMEOS=1; path=/; secure;\r\nSet-Cookie: did=A67B8F9C;\r\nSet-Cookie: CLIENT_ID=7214\r\nSet-Cookie: token=21263a2bf; path=/;\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: RUIJIEID=A67B8F9C228E095723A97C6A977BE2B3; Path=/;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;\r\nStrict-Transport-Security: max-age=31536000\r\nX-Akaunting: Free Accounting Software\r\nX-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cache-Miss-From: parking-74c5b8d946-dhmw5\r\nX-Confluence-Request-Time: 1698802372064\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: BoidCMS\r\nX-Runtime: 0.00985\r\nX-Seen-By: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==,YQo=,YQo=,YQo=,YQo=,YQo=,YQo=\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 21 Nov 2024 03:37:07 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240d22==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Quickly a Blogging Category Flat Bootstarp Resposive Website Template | Home :: w3layouts</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZDIyPT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:        ",
         "datamd5" : "c7bd6f8d2574bda1b7cc3320519be4aa",
         "datammh3" : 1211523514,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "EU-LINODE-20141229",
            "organization" : "Linode, LLC",
            "subnet" : "139.162.0.0/16"
         },
         "host" : [
            "139-162-189-251"
         ],
         "hostname" : [
            "139-162-189-251.ip.linodeusercontent.com"
         ],
         "ip" : "139.162.189.251",
         "ipv6" : "false",
         "latitude" : "50.1187",
         "location" : "50.1187,8.6842",
         "longitude" : "8.6842",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 1741,
         "product" : "tr069 http server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "139-162-189-251.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-21",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "139.162.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 172.105.94.43:1741 (tcp/http) - last seen on 2024-11-20 at 23:01:55 UTC

    • IP
      172.105.94.43
      Network
      172.105.0.0/17
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://172.105.94.43:1741/

      Reverse DNS
      172-105-94-43.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      Product
      ConnectWise Control 23.2.9.8466
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      49eab9e205612a0f4919c3fe1c018f72
      HTTP Header MD5
      2ed1d4fb9b05fad4a548cc785a4f3855
      HTTP Body MD5
      931e7ce8ad0e3e0e866f4dc47c151ecd
    • HTTP/2 200 
      cache-control: private
      content-type: text/html; charset=utf-8
      server: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0
      x-robots-tag: noindex
      p3p: CP="NON CUR OUR STP STA PRE"
      
      
      <!DOCTYPE html>
      <html>
      <head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" />
      	<script>
      
      		function setTaggedSessionInfo(tag, taggedSessionInfo) {
      			var oldTaggedSessionInfo = window._taggedSessionInfos[tag];
      			window._taggedSessionInfos[tag] = taggedSessionInfo;
      
      			if (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)
      				SC.pagedata.notifyDirty();
      		}
      
      		// backwards compatibility with extensions
      		function setTaggedSessionID(tag, sessionID) {
      			window.setTaggedSessionInfo(tag, { SessionID: sessionID });
      		}
      
      		function getTaggedSessionInfo(tag) {
      			return window._taggedSessionInfos[tag];
      		}
      
      	</script>
      <script src="Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296" id="defaultScript"></script>
      <link href="App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231" type="text/css" rel="stylesheet" /><link href="FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3" rel="shortcut icon" />
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {
      if (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)
      	SC.service.GetThemeInfo(function (themeInfo) {
      		SC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');
      	});
      
      SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'WebConfigSave':
      			SC.dialog.showModalButtonDialog(
      				'Prompt',
      				SC.res['AdvancedConfig.ApplyChanges'],
      				'OK',
      				'Default',
      				function (container) {
      					SC.ui.setContents(container, [
      						eventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])
      					]);
      				},
      				function () {
      					var appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));
      					var pageSettings = JSON.parse(JSON.stringify(appSettings.location));
      					delete appSettings.location;
      
      					SC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {
      						if (result === 'OK') {
      							sessionStorage.removeItem('WebConfigAppSettings');
      							SC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);
      						} else {
      							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);
      						}
      					});
      				}
      			);
      			break;
      		case 'AppConfigSave':
      			SC.dialog.showModalButtonDialog(
      				'Prompt',
      				SC.res['AdvancedConfig.ApplyChanges'],
      				'OK',
      				'Default',
      				function (container) {
      					SC.ui.setContents(container, [
      						eventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])
      					]);
      				},
      				function () {
      					var systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;
      					var userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;
      
      					SC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {
      						if (result === 'OK') {
      							sessionStorage.removeItem('AppConfigAppSettings');
      							window.location.reload();
      						} else {
      							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);
      						}
      					});
      				}
      			);
      			break;
      	}
      });
      
      
      });</script>
      <script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
      // Add: Options | Help
      var x=extensionContext.baseUrl.split('/').splice(-2)[0];
      SC.res['HelpPanel.Link'+x+'.Url']="https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1";
      SC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' ▽','')});}});
      
      });</script>
      <script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
      /*
          The following is currently ripped from the Hosted Integration Template per Control
          Potential to one day not need this and use some core functionality
      
          File will hide the UI and display the fourth column only
      */
      var sendCommandToParent = function (commandName, commandData) {
          if (commandName)
              window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');
      };
      
      SC.event.addGlobalHandler(SC.event.PreRender, function () {
          window.addEventListener('message', function (eventArgs) {
              SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');
              switch (eventArgs.data._externalCommand) {
                  case 'RenderSessionDetailsFullWidthCommand':
                      var applicablePaths = ['/', '/Guest', '/Host', '/Login'];
                      if (!applicablePaths.includes(window.location.pathname))
                          break;
      
                      var elementsToHide = [
                          $('.HeaderPanel'),
                          $('.GlobalBar'),
                          $('.NavigationPanel'),
                          $('.MasterPanel'),
                          $('.MainDetailHeaderPanel'),
                          $('.MainDetailPanel'),
                          $('.ToggleDetailPanelButton'),
                      ];
      
                      for (var i = 0; i < elementsToHide.length; i++)
                          if (elementsToHide[i])
                              SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);
      
                      var outerPanel = $('.OuterPanel');
                      var mainPanel = $('.MainPanel');
                      var subDetailHeader = $('.SubDetailHeaderPanel');
      
                      if (outerPanel)
                          SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);
      
                      if (mainPanel)
                          SC.css.ensureClass(mainPanel, 'GridOverride', true);
      
                      if (subDetailHeader)
                          SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);
      
                      var notifyPaths = ['/', '/Guest'];
      
                      if (notifyPaths.includes(window.location.pathname))
                          sendCommandToParent('OnPreRenderComplete');
      
                      break;
      
                  case 'LoadSessionCommand':
                      var sessionID = eventArgs.data._externalCommandData;
      
                      if (sessionID) {
                          // call our LiveDataService
                          SC.service.GetSessionDetailsUrl(
                              sessionID,
                              function (url) {
                                  if (url)
                                      window.location.href = url;
                              }
                          );
                      }
      
                      sendCommandToParent('OnLoadSessionComplete');
                      break;
              }
          });
      
          sendCommandToParent('OnPreRender');
      });
      
      });</script>
      <script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {
      var connectWiseUserSourceName = 'ConnectWise';
      
      var userSourceConfiguration = {
      	IdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,
      	ExtraScopes: 'roles',
      	ClientID: null,
      	ClientSecret: null,
      	UserInfoRoleNamesPath: 'roles',
      	ExtraRoleNames: '',
      	DisplayName: 'ConnectWise SSO',
      	ExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,
      }
      
      userSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;
      
      SC.event.addGlobalHandler(SC.event.PreRender, function () {
      	if (SC.context.pageType === 'AdministrationPage')
      		SC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');
      });
      
      SC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {
      	switch (eventArgs.area) {
      		case 'AddUserSourcePopoutPanel':
      			eventArgs.buttonDefinitions.push({
      				commandName: 'AddConnectWiseSSOUserSource',
      				text: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']
      			});
      			break;
      	}
      });
      
      SC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'AddConnectWiseSSOUserSource':
      			eventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);
      			break;
      	}
      });
      
      SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'AddConnectWiseSSOUserSource':
      			SC.dialog.showModalButtonDialog(
      				'ConnectWiseSsoSetup',
      				SC.res['ConnectWiseSSO.SetupModal.Title'],
      				SC.res['ConnectWiseSSO.SetupModal.Button'],
      				null,
      				function (container) {
      					SC.ui.addContent(container, [
      						$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),
      						$div($textarea({ className: 'RegistrationTokenInput' }))
      					]);
      				},
      				function () {
      					SC.service.MakeDynamicClientRegistrationRequest(
      						$('.RegistrationTokenInput').value,
      						SC.context.instanceID || SC.context.instanceUrlScheme,
      						SC.context.scriptBaseUrl,
      						connectWiseUserSourceName,
      						function (registrationResponse) {
      							userSourceConfiguration.ClientID = registrationResponse.client_id;
      							userSourceConfiguration.ClientSecret = registrationResponse.client_secret;
      
      							var configKeys = Object.keys(userSourceConfiguration);
      							var configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });
      
      							SC.service.AddUserSource(
      								'ScreenConnect.OpenIDConnectMembershipProvider',
      								connectWiseUserSourceName,
      								true,
      								false,
      								configKeys,
      								configValues,
      								() => SC.pagedata.notifyDirty()
      							);
      						});
      
      					SC.dialog.hideModalDialog();
      				}
      			);
      			break;
      	}
      });
      
      function compareVersions(version1, version2) {
      	var versionNumbers1 = version1.toString().split('.');
      	var versionNumbers2 = version2.toString().split('.');
      
      	for (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {
      		var versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);
      		var versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);
      		if (versionNumber1 > versionNumber2) return 1;
      		if (versionNumber2 > versionNumber1) return -1;
      	}
      
      	return 0;
      }
      
      function isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {
      	return (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0
      		&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));
      }
      
      function isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {
      	return isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);
      }
      
      });</script>
      <script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {
      /** Edit App.Config Settings **/
      
      /** Global Extension Variables **/
      var extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];
      
      const numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);
      
      /** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/
      function setupTopModalDialog(disable){
      	if (!disable) {
      		eval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));
      		eval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));
      		SC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };
      	} else {
      		delete SC.dialog.showModalDialogRawOnTop;
      		delete SC.dialog.hideTopModalDialog;
      		delete SC.dialog.getTopModalDialog;
      	}
      }
      
      function alertModal(message){
      	if (!SC.dialog.showModalDialogRawOnTop)
      		setupTopModalDialog();
      
      	SC.dialog.showModalDialogRawOnTop(
      		message.subClass || 'MessageBox',
      		[
      			message.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),
      			message.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),
      			message.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)
      		],
      		message.onExecProc || function(eventArgs){
      			SC.dialog.hideTopModalDialog();
      		},
      		message.onQueryProc || null,
      		message.onHideProc || function(){
      			if (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())
      				setupTopModalDialog(true);
      		}
      	);
      }
      /**********************************************/
      
      /** Table Sorting Functions **/
      var sortBy = {};
      function sortTable(table, col) {
      	if (sortBy.table){
      		var oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];
      		SC.css.ensureClass(oldSortCol,'Ascending',false);
      		SC.css.ensureClass(oldSortCol,'Descending',false);
      	}
      	
      	if (sortBy.table == table.id && sortBy.col == col){
      		sortBy.dir = -((+sortBy.dir) || -1);
      	}
      	else {
      		sortBy.table = table.id;
      		sortBy.col = col;
      		sortBy.dir = 1;
      	}
      	if (sortBy.dir !== 0)
      		SC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);
      
      	var tb = table.tBodies[0];
      	var tr = Array.prototype.slice.call(tb.rows, 0);
      	tr = tr.sort(function (a, b) {
      		var aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;
      		var bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;
      		return sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));
      	});
      	for(var i=0; i<tr.length; ++i){
      		tb.appendChild(tr[i]);
      	}
      }
      
      function makeSortable(table) {
      	var th = table.tHead, i;
      	th && (th = th.rows[0]) && (th = th.cells);
      	if (th) i = th.length;
      	else return; // if no `<thead>` then do nothing
      	while (--i >= 0) (function (i) {
      		SC.css.ensureClass(th[i],'Sortable',true);
      		th[i].addEventListener('click', function () {sortTable(table, i)});
      	}(i));
      }
      
      function makeAllSortable(parent) {
      	parent = parent || document.body;
      	var t = parent.getElementsByTagName('table'), i = t.length;
      	while (--i >= 0) makeSortable(t[i]);
      }
      /*****************************/
      
      /** General Extension Functions **/
      function checkVersion(minVer, curVer) {
      	if (typeof curVer + typeof minVer != 'stringstring')
      		return false;
      	var a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);
      	for (; i < len; i++) {
      		if ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {
      			return true;
      		} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {
      			return false;
      		}
      	}
      	return true;
      }
      
      function checkLongBitmask(flagInput,maskInput) {
      	var maxJSMaskLength = 8;
      	flags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));
      	mask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));
      
      	if (isNaN(flags) || isNaN(mask)){
      		return false;
      	}
      
      	if (parseInt(mask,16) === 0) {
      		if (maskInput.length > maxJSMaskLength) {
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T23:01:55.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "connectwise.com"
               ],
               "hostname" : [
                  "docs.connectwise.com"
               ],
               "url" : [
                  "https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1"
               ]
            },
            "http" : {
               "bodymd5" : "931e7ce8ad0e3e0e866f4dc47c151ecd",
               "bodymmh3" : 747461957,
               "headermd5" : "2ed1d4fb9b05fad4a548cc785a4f3855",
               "headermmh3" : -1098840062
            },
            "length" : 16384
         },
         "asn" : "AS63949",
         "city" : "Frankfurt am Main",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/2 200 \ncache-control: private\ncontent-type: text/html; charset=utf-8\nserver: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0\nx-robots-tag: noindex\np3p: CP=\"NON CUR OUR STP STA PRE\"\n\n\n<!DOCTYPE html>\n<html>\n<head><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" /><meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no\" />\n\t<script>\n\n\t\tfunction setTaggedSessionInfo(tag, taggedSessionInfo) {\n\t\t\tvar oldTaggedSessionInfo = window._taggedSessionInfos[tag];\n\t\t\twindow._taggedSessionInfos[tag] = taggedSessionInfo;\n\n\t\t\tif (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)\n\t\t\t\tSC.pagedata.notifyDirty();\n\t\t}\n\n\t\t// backwards compatibility with extensions\n\t\tfunction setTaggedSessionID(tag, sessionID) {\n\t\t\twindow.setTaggedSessionInfo(tag, { SessionID: sessionID });\n\t\t}\n\n\t\tfunction getTaggedSessionInfo(tag) {\n\t\t\treturn window._taggedSessionInfos[tag];\n\t\t}\n\n\t</script>\n<script src=\"Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296\" id=\"defaultScript\"></script>\n<link href=\"App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3\" rel=\"shortcut icon\" />\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {\nif (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)\n\tSC.service.GetThemeInfo(function (themeInfo) {\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');\n\t});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'WebConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));\n\t\t\t\t\tvar pageSettings = JSON.parse(JSON.stringify(appSettings.location));\n\t\t\t\t\tdelete appSettings.location;\n\n\t\t\t\t\tSC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('WebConfigAppSettings');\n\t\t\t\t\t\t\tSC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t\tcase 'AppConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;\n\t\t\t\t\tvar userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;\n\n\t\t\t\t\tSC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('AppConfigAppSettings');\n\t\t\t\t\t\t\twindow.location.reload();\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n// Add: Options | Help\nvar x=extensionContext.baseUrl.split('/').splice(-2)[0];\nSC.res['HelpPanel.Link'+x+'.Url']=\"https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1\";\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' \u25bd','')});}});\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n/*\n    The following is currently ripped from the Hosted Integration Template per Control\n    Potential to one day not need this and use some core functionality\n\n    File will hide the UI and display the fourth column only\n*/\nvar sendCommandToParent = function (commandName, commandData) {\n    if (commandName)\n        window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');\n};\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n    window.addEventListener('message', function (eventArgs) {\n        SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');\n        switch (eventArgs.data._externalCommand) {\n            case 'RenderSessionDetailsFullWidthCommand':\n                var applicablePaths = ['/', '/Guest', '/Host', '/Login'];\n                if (!applicablePaths.includes(window.location.pathname))\n                    break;\n\n                var elementsToHide = [\n                    $('.HeaderPanel'),\n                    $('.GlobalBar'),\n                    $('.NavigationPanel'),\n                    $('.MasterPanel'),\n                    $('.MainDetailHeaderPanel'),\n                    $('.MainDetailPanel'),\n                    $('.ToggleDetailPanelButton'),\n                ];\n\n                for (var i = 0; i < elementsToHide.length; i++)\n                    if (elementsToHide[i])\n                        SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);\n\n                var outerPanel = $('.OuterPanel');\n                var mainPanel = $('.MainPanel');\n                var subDetailHeader = $('.SubDetailHeaderPanel');\n\n                if (outerPanel)\n                    SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);\n\n                if (mainPanel)\n                    SC.css.ensureClass(mainPanel, 'GridOverride', true);\n\n                if (subDetailHeader)\n                    SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);\n\n                var notifyPaths = ['/', '/Guest'];\n\n                if (notifyPaths.includes(window.location.pathname))\n                    sendCommandToParent('OnPreRenderComplete');\n\n                break;\n\n            case 'LoadSessionCommand':\n                var sessionID = eventArgs.data._externalCommandData;\n\n                if (sessionID) {\n                    // call our LiveDataService\n                    SC.service.GetSessionDetailsUrl(\n                        sessionID,\n                        function (url) {\n                            if (url)\n                                window.location.href = url;\n                        }\n                    );\n                }\n\n                sendCommandToParent('OnLoadSessionComplete');\n                break;\n        }\n    });\n\n    sendCommandToParent('OnPreRender');\n});\n\n});</script>\n<script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {\nvar connectWiseUserSourceName = 'ConnectWise';\n\nvar userSourceConfiguration = {\n\tIdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,\n\tExtraScopes: 'roles',\n\tClientID: null,\n\tClientSecret: null,\n\tUserInfoRoleNamesPath: 'roles',\n\tExtraRoleNames: '',\n\tDisplayName: 'ConnectWise SSO',\n\tExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,\n}\n\nuserSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n\tif (SC.context.pageType === 'AdministrationPage')\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {\n\tswitch (eventArgs.area) {\n\t\tcase 'AddUserSourcePopoutPanel':\n\t\t\teventArgs.buttonDefinitions.push({\n\t\t\t\tcommandName: 'AddConnectWiseSSOUserSource',\n\t\t\t\ttext: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']\n\t\t\t});\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\teventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'ConnectWiseSsoSetup',\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Title'],\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Button'],\n\t\t\t\tnull,\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.addContent(container, [\n\t\t\t\t\t\t$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),\n\t\t\t\t\t\t$div($textarea({ className: 'RegistrationTokenInput' }))\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tSC.service.MakeDynamicClientRegistrationRequest(\n\t\t\t\t\t\t$('.RegistrationTokenInput').value,\n\t\t\t\t\t\tSC.context.instanceID || SC.context.instanceUrlScheme,\n\t\t\t\t\t\tSC.context.scriptBaseUrl,\n\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\tfunction (registrationResponse) {\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientID = registrationResponse.client_id;\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientSecret = registrationResponse.client_secret;\n\n\t\t\t\t\t\t\tvar configKeys = Object.keys(userSourceConfiguration);\n\t\t\t\t\t\t\tvar configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });\n\n\t\t\t\t\t\t\tSC.service.AddUserSource(\n\t\t\t\t\t\t\t\t'ScreenConnect.OpenIDConnectMembershipProvider',\n\t\t\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\t\t\ttrue,\n\t\t\t\t\t\t\t\tfalse,\n\t\t\t\t\t\t\t\tconfigKeys,\n\t\t\t\t\t\t\t\tconfigValues,\n\t\t\t\t\t\t\t\t() => SC.pagedata.notifyDirty()\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t});\n\n\t\t\t\t\tSC.dialog.hideModalDialog();\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\nfunction compareVersions(version1, version2) {\n\tvar versionNumbers1 = version1.toString().split('.');\n\tvar versionNumbers2 = version2.toString().split('.');\n\n\tfor (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {\n\t\tvar versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);\n\t\tvar versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);\n\t\tif (versionNumber1 > versionNumber2) return 1;\n\t\tif (versionNumber2 > versionNumber1) return -1;\n\t}\n\n\treturn 0;\n}\n\nfunction isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {\n\treturn (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0\n\t\t&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));\n}\n\nfunction isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {\n\treturn isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);\n}\n\n});</script>\n<script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {\n/** Edit App.Config Settings **/\n\n/** Global Extension Variables **/\nvar extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];\n\nconst numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);\n\n/** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/\nfunction setupTopModalDialog(disable){\n\tif (!disable) {\n\t\teval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));\n\t\teval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));\n\t\tSC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };\n\t} else {\n\t\tdelete SC.dialog.showModalDialogRawOnTop;\n\t\tdelete SC.dialog.hideTopModalDialog;\n\t\tdelete SC.dialog.getTopModalDialog;\n\t}\n}\n\nfunction alertModal(message){\n\tif (!SC.dialog.showModalDialogRawOnTop)\n\t\tsetupTopModalDialog();\n\n\tSC.dialog.showModalDialogRawOnTop(\n\t\tmessage.subClass || 'MessageBox',\n\t\t[\n\t\t\tmessage.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),\n\t\t\tmessage.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),\n\t\t\tmessage.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)\n\t\t],\n\t\tmessage.onExecProc || function(eventArgs){\n\t\t\tSC.dialog.hideTopModalDialog();\n\t\t},\n\t\tmessage.onQueryProc || null,\n\t\tmessage.onHideProc || function(){\n\t\t\tif (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())\n\t\t\t\tsetupTopModalDialog(true);\n\t\t}\n\t);\n}\n/**********************************************/\n\n/** Table Sorting Functions **/\nvar sortBy = {};\nfunction sortTable(table, col) {\n\tif (sortBy.table){\n\t\tvar oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];\n\t\tSC.css.ensureClass(oldSortCol,'Ascending',false);\n\t\tSC.css.ensureClass(oldSortCol,'Descending',false);\n\t}\n\t\n\tif (sortBy.table == table.id && sortBy.col == col){\n\t\tsortBy.dir = -((+sortBy.dir) || -1);\n\t}\n\telse {\n\t\tsortBy.table = table.id;\n\t\tsortBy.col = col;\n\t\tsortBy.dir = 1;\n\t}\n\tif (sortBy.dir !== 0)\n\t\tSC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);\n\n\tvar tb = table.tBodies[0];\n\tvar tr = Array.prototype.slice.call(tb.rows, 0);\n\ttr = tr.sort(function (a, b) {\n\t\tvar aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;\n\t\tvar bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;\n\t\treturn sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));\n\t});\n\tfor(var i=0; i<tr.length; ++i){\n\t\ttb.appendChild(tr[i]);\n\t}\n}\n\nfunction makeSortable(table) {\n\tvar th = table.tHead, i;\n\tth && (th = th.rows[0]) && (th = th.cells);\n\tif (th) i = th.length;\n\telse return; // if no `<thead>` then do nothing\n\twhile (--i >= 0) (function (i) {\n\t\tSC.css.ensureClass(th[i],'Sortable',true);\n\t\tth[i].addEventListener('click', function () {sortTable(table, i)});\n\t}(i));\n}\n\nfunction makeAllSortable(parent) {\n\tparent = parent || document.body;\n\tvar t = parent.getElementsByTagName('table'), i = t.length;\n\twhile (--i >= 0) makeSortable(t[i]);\n}\n/*****************************/\n\n/** General Extension Functions **/\nfunction checkVersion(minVer, curVer) {\n\tif (typeof curVer + typeof minVer != 'stringstring')\n\t\treturn false;\n\tvar a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);\n\tfor (; i < len; i++) {\n\t\tif ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {\n\t\t\treturn true;\n\t\t} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {\n\t\t\treturn false;\n\t\t}\n\t}\n\treturn true;\n}\n\nfunction checkLongBitmask(flagInput,maskInput) {\n\tvar maxJSMaskLength = 8;\n\tflags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));\n\tmask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));\n\n\tif (isNaN(flags) || isNaN(mask)){\n\t\treturn false;\n\t}\n\n\tif (parseInt(mask,16) === 0) {\n\t\tif (maskInput.length > maxJSMaskLength) {",
         "datamd5" : "49eab9e205612a0f4919c3fe1c018f72",
         "datammh3" : 1942039422,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "172.105.64.0/19"
         },
         "host" : [
            "172-105-94-43"
         ],
         "hostname" : [
            "172-105-94-43.ip.linodeusercontent.com"
         ],
         "ip" : "172.105.94.43",
         "ipv6" : "false",
         "latitude" : "50.1187",
         "location" : "50.1187,8.6842",
         "longitude" : "8.6842",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 1741,
         "product" : "Control",
         "productvendor" : "ConnectWise",
         "productversion" : "23.2.9.8466",
         "protocol" : "http",
         "reverse" : [
            "172-105-94-43.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "172.105.0.0/17",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 45.56.79.78:1741 (tcp/http) - last seen on 2024-11-20 at 21:27:24 UTC

    • IP
      45.56.79.78
      Network
      45.56.64.0/18
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://45.56.79.78:1741/ 200

      HTTP Title
      Dashboard Ginkgo Gingko
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      Reverse DNS
      45-56-79-78.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      Product
      Mortbay Jetty
      HTTP Component(s)
      Microsoft ASP.NET 4.0.30319 Gitlab Gitlab Atlassian Confluence Jenkins Jenkins 2.121.3 PHP PHP 5.6.40 Drupal Drupal 8 SPIP SPIP 4.1.11
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      14357d58c125225bef2c71667d2ecc4b
      HTTP Header MD5
      6085ea13612bc0e3facf066f7bea263a
      HTTP Body MD5
      bad5d8f0e455a2445a8650ecba838fd3
    • HTTP/1.1 200 OK
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 106360
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      Pragma: private
      Server: Jetty(i-jetty 3.8)
      Set-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/
      Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
      Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
      Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
      Set-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;
      Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
      Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
      Set-Cookie: _indexVersion=2; path=/
      Set-Cookie: csrf=8t9ADqIogbjKRK6; Path=/; HttpOnly;
      Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
      Set-Cookie: webvpnlogin=; path=/; secure;
      Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
      Set-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
      Set-Cookie: fsm_login=37dfe4372f3867d7c134d618cbef137b; Path=/;
      Set-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;
      Set-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;
      Set-Cookie: token=21263a2bf; path=/;
      Set-Cookie: acSamlv2Error=; path=/; secure;
      X-Ac: 3.bur _bur
      X-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5
      X-Aspnet-Version: 4.0.30319
      X-Cache: MISS from Hello
      X-Cache-Lookup: MISS from Hello:8080
      X-Cacheable: SHORT
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 8 (https://www.drupal.org)
      X-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Powered-By: PHP/5.6.40
      X-Proxy-Cache: MISS
      X-Qlik-Xrfkey: ef00
      X-Shardid: 80
      X-T-Location: /iam
      X-Turbo-Charged-By: LiteSpeed
      X-Varnish-Cache: Miss
      X-Xss-Protection: 1; mode=block
      Date: Wed, 20 Nov 2024 21:27:23 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240e24==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>Dashboard        Ginkgo        Gingko</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
      <h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
      <span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZTI0PT0=
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:                 60 kB
      Rss:                  52 kB
      Pss:                  52 kB
      Shared_Clean:          0 kB
      Shared_Dirty:          0 kB
      Private_Clean:         0 kB
      Private_Dirty:        52 kB
      Referenced:           52 kB
      Anonymous:            52 kB
      AnonHugePages:  
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T21:27:24.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "drupal.org",
                  "micros-hosting.com"
               ],
               "file" : [
                  "dvrremoteap.exe",
                  "cloud_index.php",
                  "dvrremoteap_x64.exe",
                  "admin-ajax.php",
                  "dvfplayer.zip",
                  "index.php"
               ],
               "hostname" : [
                  "micros-hosting.com",
                  "www.drupal.org"
               ],
               "ip" : [
                  "192.168.0.1",
                  "192.168.1.10",
                  "7.7.31.1",
                  "192.168.1.1",
                  "192.168.1.4",
                  "1.0.0.36"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4",
                  "https://www.drupal.org"
               ]
            },
            "http" : {
               "bodymd5" : "bad5d8f0e455a2445a8650ecba838fd3",
               "bodymmh3" : -1949495630,
               "component" : [
                  {
                     "productvendor" : "Atlassian",
                     "product" : "Confluence"
                  },
                  {
                     "product" : "PHP",
                     "productvendor" : "PHP",
                     "productversion" : "5.6.40"
                  },
                  {
                     "product" : "Jenkins",
                     "productvendor" : "Jenkins",
                     "productversion" : "2.121.3"
                  },
                  {
                     "product" : "ASP.NET",
                     "productversion" : "4.0.30319",
                     "productvendor" : "Microsoft"
                  },
                  {
                     "productversion" : "8",
                     "productvendor" : "Drupal",
                     "product" : "Drupal"
                  },
                  {
                     "product" : "Gitlab",
                     "productvendor" : "Gitlab"
                  },
                  {
                     "product" : "SPIP",
                     "productversion" : "4.1.11",
                     "productvendor" : "SPIP"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "name" : "Last-Modified",
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
                  }
               ],
               "headermd5" : "6085ea13612bc0e3facf066f7bea263a",
               "headermmh3" : 1985821632,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "title" : "Dashboard        Ginkgo        Gingko"
            },
            "length" : 16315
         },
         "asn" : "AS63949",
         "city" : "Richardson",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 106360\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: Jetty(i-jetty 3.8)\r\nSet-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nSet-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nSet-Cookie: _indexVersion=2; path=/\r\nSet-Cookie: csrf=8t9ADqIogbjKRK6; Path=/; HttpOnly;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: webvpnlogin=; path=/; secure;\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: fsm_login=37dfe4372f3867d7c134d618cbef137b; Path=/;\r\nSet-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;\r\nSet-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;\r\nSet-Cookie: token=21263a2bf; path=/;\r\nSet-Cookie: acSamlv2Error=; path=/; secure;\r\nX-Ac: 3.bur _bur\r\nX-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5\r\nX-Aspnet-Version: 4.0.30319\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: PHP/5.6.40\r\nX-Proxy-Cache: MISS\r\nX-Qlik-Xrfkey: ef00\r\nX-Shardid: 80\r\nX-T-Location: /iam\r\nX-Turbo-Charged-By: LiteSpeed\r\nX-Varnish-Cache: Miss\r\nX-Xss-Protection: 1; mode=block\r\nDate: Wed, 20 Nov 2024 21:27:23 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240e24==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Dashboard        Ginkgo        Gingko</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZTI0PT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:  ",
         "datamd5" : "14357d58c125225bef2c71667d2ecc4b",
         "datammh3" : -1703210525,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "45.56.64.0/18"
         },
         "host" : [
            "45-56-79-78"
         ],
         "hostname" : [
            "45-56-79-78.ip.linodeusercontent.com"
         ],
         "ip" : "45.56.79.78",
         "ipv6" : "false",
         "latitude" : "32.9473",
         "location" : "32.9473,-96.7028",
         "longitude" : "-96.7028",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 1741,
         "product" : "Jetty",
         "productvendor" : "Mortbay",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "45-56-79-78.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "45.56.64.0/18",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 139.162.120.150:1741 (tcp/unknown) - last seen on 2024-11-20 at 21:27:00 UTC

    • IP
      139.162.120.150
      Alternative IP(s)
      2400:8902:0:0:f03c:91ff:fed0:a4de
      Network
      139.162.0.0/16
      Domain(s)
      linode.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      li1604-150.members.linode.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Linux Linux Kernel
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      e5687217a796461810afe90fdd56b43f
    • sinkhole
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T21:27:00.000Z",
         "alternativeip" : [
            "2400:8902:0:0:f03c:91ff:fed0:a4de"
         ],
         "app" : {
            "length" : 8
         },
         "asn" : "AS63949",
         "city" : "Tokyo",
         "country" : "JP",
         "data" : "sinkhole",
         "datamd5" : "e5687217a796461810afe90fdd56b43f",
         "datammh3" : -47060287,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linode.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "EU-LINODE-20141229",
            "organization" : "Linode, LLC",
            "subnet" : "139.162.0.0/16"
         },
         "host" : [
            "li1604-150"
         ],
         "hostname" : [
            "li1604-150.members.linode.com"
         ],
         "ip" : "139.162.120.150",
         "ipv6" : "false",
         "latitude" : "35.6893",
         "location" : "35.6893,139.6899",
         "longitude" : "139.6899",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 1741,
         "protocol" : "unknown",
         "reverse" : [
            "li1604-150.members.linode.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "subdomains" : [
            "members.linode.com"
         ],
         "subnet" : "139.162.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 66.175.219.53:1741 (tcp/http) - last seen on 2024-11-20 at 16:54:18 UTC

    • IP
      66.175.219.53
      Network
      66.175.208.0/20
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux
      URL

      http://66.175.219.53:1741/ 200

      Reverse DNS
      66-175-219-53.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      4ae3fabb3ae8903461470e5f1b1de385
      HTTP Header MD5
      1eed6b07a9f0bf9c1a4f94213292ee23
      HTTP Body MD5
      465981b2c7142b9fb660b39e2de874c1
    • HTTP/1.1 200 OK
      content-type: text/html; charset=UTF-8
      transfer-encoding: chunked
      server: Linux, HTTP/1.1, DIR-850L Ver 1.14WW WEBACCESS/1.0
      connection: close
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T16:54:18.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "465981b2c7142b9fb660b39e2de874c1",
               "bodymmh3" : 721386996,
               "headermd5" : "1eed6b07a9f0bf9c1a4f94213292ee23",
               "headermmh3" : 732993404
            },
            "length" : 171
         },
         "asn" : "AS63949",
         "city" : "Fremont",
         "country" : "US",
         "data" : "HTTP/1.1 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ntransfer-encoding: chunked\r\nserver: Linux, HTTP/1.1, DIR-850L Ver 1.14WW WEBACCESS/1.0\r\nconnection: close\r\n\r\n0\r\n\r\n",
         "datamd5" : "4ae3fabb3ae8903461470e5f1b1de385",
         "datammh3" : 1715505806,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "66.175.208.0/20"
         },
         "host" : [
            "66-175-219-53"
         ],
         "hostname" : [
            "66-175-219-53.ip.linodeusercontent.com"
         ],
         "ip" : "66.175.219.53",
         "ipv6" : "false",
         "latitude" : "37.5625",
         "location" : "37.5625,-122.0004",
         "longitude" : "-122.0004",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osvendor" : "Linux",
         "port" : 1741,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "66-175-219-53.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "66.175.208.0/20",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 23.239.26.231:1741 (tcp/http) - last seen on 2024-11-20 at 13:51:52 UTC

    • IP
      23.239.26.231
      Network
      23.239.0.0/19
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://23.239.26.231:1741/ 200

      HTTP Title
      BUFFALO SmartWeb Switch
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      Reverse DNS
      23-239-26-231.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      HTTP Component(s)
      Gitlab Gitlab Roundcube Webmail Drupal Drupal 8 PHP PHP SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3 Atlassian Confluence
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      533d211286998224a0f60182c9097f38
      HTTP Header MD5
      10c1749c484712f184814d83fc103d03
      HTTP Body MD5
      ea7b711e4dbb04deb7fe5d66f9d09fa8
    • HTTP/1.1 200 OK
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 107019
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      Pragma: private
      Server: GWS/100.0
      Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
      Set-Cookie: SESSID=22363a2bf; path=/;
      Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
      Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
      Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
      Set-Cookie: laravel_session=a0ffeb;
      Set-Cookie: DSSIGNIN=url_default; path=/dana-na/; expires=Thu, 31-Dec-2037 00:00:00 GMT; secure;
      Set-Cookie: CLIENT_ID=7214
      Set-Cookie: jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c; path=/
      Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
      Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
      Set-Cookie: did=A67B8F9C;
      Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
      Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
      Set-Cookie: fsm_login=37dfe4372f3867d7c134d618cbef137b; Path=/;
      Set-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly
      Set-Cookie: webvpnaac=1; path=/; secure;
      Set-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;
      X-Adblock-Key: YQo=
      X-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5
      X-Cache: MISS from Hello
      X-Cache-Lookup: MISS from Hello:8080
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 8 (https://www.drupal.org)
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Powered-By-Plesk: PleskWin
      X-Redirect-By: WordPress
      X-Robots-Tag: none
      X-Runtime: 0.00985
      X-Server-Powered-By: Engintron
      X-Shopify-Stage: production
      X-T-Location: /iam
      X-Timer: S1579233182.306174,VS0,VE0
      X-Turbo-Charged-By: LiteSpeed
      X-Xss-Protection: 1; mode=block
      Date: Wed, 20 Nov 2024 13:51:52 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240c22==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>BUFFALO SmartWeb Switch</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
      <h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
      <span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwYzIyPT0=
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:                 60 kB
      Rss:                  52 kB
      Pss:                  52 kB
      Shared_Clean:          0 kB
      Shared_Dirty:          0 kB
      Private_Clean:         0 kB
      Private_Dirty:        52 kB
      Referenced:           52 kB
      Anonymous:            52 kB
      AnonHugePages:         0 kB
      Sw
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T13:51:52.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "drupal.org",
                  "micros-hosting.com"
               ],
               "file" : [
                  "dvrremoteap_x64.exe",
                  "index.php",
                  "dvfplayer.zip",
                  "cloud_index.php",
                  "admin-ajax.php",
                  "dvrremoteap.exe"
               ],
               "hostname" : [
                  "micros-hosting.com",
                  "www.drupal.org"
               ],
               "ip" : [
                  "192.168.1.4",
                  "192.168.1.10",
                  "192.168.1.1",
                  "7.7.31.1",
                  "1.0.0.36",
                  "192.168.0.1"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4",
                  "https://www.drupal.org"
               ]
            },
            "http" : {
               "bodymd5" : "ea7b711e4dbb04deb7fe5d66f9d09fa8",
               "bodymmh3" : 345089883,
               "component" : [
                  {
                     "product" : "PHP",
                     "productvendor" : "PHP"
                  },
                  {
                     "productvendor" : "Gitlab",
                     "product" : "Gitlab"
                  },
                  {
                     "product" : "Confluence",
                     "productvendor" : "Atlassian"
                  },
                  {
                     "product" : "SPIP",
                     "productvendor" : "SPIP",
                     "productversion" : "4.1.11"
                  },
                  {
                     "product" : "Webmail",
                     "productvendor" : "Roundcube"
                  },
                  {
                     "product" : "Drupal",
                     "productvendor" : "Drupal",
                     "productversion" : "8"
                  },
                  {
                     "productversion" : "2.121.3",
                     "productvendor" : "Jenkins",
                     "product" : "Jenkins"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "name" : "Last-Modified",
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
                  }
               ],
               "headermd5" : "10c1749c484712f184814d83fc103d03",
               "headermmh3" : -372926324,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "title" : "BUFFALO SmartWeb Switch"
            },
            "length" : 16297
         },
         "asn" : "AS63949",
         "city" : "Richardson",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 107019\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: GWS/100.0\r\nSet-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: SESSID=22363a2bf; path=/;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nSet-Cookie: laravel_session=a0ffeb;\r\nSet-Cookie: DSSIGNIN=url_default; path=/dana-na/; expires=Thu, 31-Dec-2037 00:00:00 GMT; secure;\r\nSet-Cookie: CLIENT_ID=7214\r\nSet-Cookie: jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c; path=/\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: did=A67B8F9C;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nSet-Cookie: fsm_login=37dfe4372f3867d7c134d618cbef137b; Path=/;\r\nSet-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;\r\nX-Adblock-Key: YQo=\r\nX-Alternate-Cache-Key: cacheable:ba92b39be043e3c90d2fd075057dd3e5\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By-Plesk: PleskWin\r\nX-Redirect-By: WordPress\r\nX-Robots-Tag: none\r\nX-Runtime: 0.00985\r\nX-Server-Powered-By: Engintron\r\nX-Shopify-Stage: production\r\nX-T-Location: /iam\r\nX-Timer: S1579233182.306174,VS0,VE0\r\nX-Turbo-Charged-By: LiteSpeed\r\nX-Xss-Protection: 1; mode=block\r\nDate: Wed, 20 Nov 2024 13:51:52 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240c22==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>BUFFALO SmartWeb Switch</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwYzIyPT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:         0 kB\nSw",
         "datamd5" : "533d211286998224a0f60182c9097f38",
         "datammh3" : -1928518527,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "23.239.0.0/19"
         },
         "host" : [
            "23-239-26-231"
         ],
         "hostname" : [
            "23-239-26-231.ip.linodeusercontent.com"
         ],
         "ip" : "23.239.26.231",
         "ipv6" : "false",
         "latitude" : "32.9473",
         "location" : "32.9473,-96.7028",
         "longitude" : "-96.7028",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 1741,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "23-239-26-231.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "23.239.0.0/19",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 45.79.239.204:1741 (tcp/http) - last seen on 2024-11-20 at 12:15:39 UTC

    • IP
      45.79.239.204
      Alternative IP(s)
      2400:8907:0:0:f03c:92ff:fe91:6b1e
      Network
      45.79.236.0/22
      Domain(s)
      linode.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://45.79.239.204:1741/ 500

      Reverse DNS
      li2164-204.members.linode.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      2cdc0b495903262e0c04a5fd256bf8d9
      HTTP Header MD5
      10a7c827d52d3a556525506be056b026
      HTTP Body MD5
      e00754153789188d68ab69c52f3a11a8
    • HTTP/1.1 500 Internal Server Error
      content-type: text/html;charset=UTF-8
      content-length: 27
      connection: close
      
      SOAP-ENV:Server
      <faultcode>
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T12:15:39.000Z",
         "alternativeip" : [
            "2400:8907:0:0:f03c:92ff:fe91:6b1e"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "e00754153789188d68ab69c52f3a11a8",
               "bodymmh3" : -1090514484,
               "headermd5" : "10a7c827d52d3a556525506be056b026",
               "headermmh3" : 1698209066
            },
            "length" : 143
         },
         "asn" : "AS63949",
         "city" : "Sydney",
         "country" : "AU",
         "data" : "HTTP/1.1 500 Internal Server Error\r\ncontent-type: text/html;charset=UTF-8\r\ncontent-length: 27\r\nconnection: close\r\n\r\nSOAP-ENV:Server\n<faultcode>",
         "datamd5" : "2cdc0b495903262e0c04a5fd256bf8d9",
         "datammh3" : -1437462329,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linode.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "45.79.236.0/22"
         },
         "host" : [
            "li2164-204"
         ],
         "hostname" : [
            "li2164-204.members.linode.com"
         ],
         "ip" : "45.79.239.204",
         "ipv6" : "false",
         "latitude" : "-33.8715",
         "location" : "-33.8715,151.2006",
         "longitude" : "151.2006",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 1741,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Internal Server Error",
         "reverse" : [
            "li2164-204.members.linode.com"
         ],
         "seen_date" : "2024-11-20",
         "source" : "datascan",
         "status" : 500,
         "subdomains" : [
            "members.linode.com"
         ],
         "subnet" : "45.79.236.0/22",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }