ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 10,248 in 0.378 second(s)

  • 54.67.81.6:3780 (tcp/http) - last seen on 2024-11-07 at 05:46:40 UTC

    • IP
      54.67.81.6
      Network
      54.64.0.0/12
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      http://54.67.81.6:3780/ 200

      Reverse DNS
      ec2-54-67-81-6.us-west-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Cisco IOS
      Product
      OpenResty OpenResty
      HTTP Component(s)
      Cisco IOS XE
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      bf30ac4101ee330c7315cd4c018c3d4d
      HTTP Header MD5
      030240e8ece0250e4166ae73021509cb
      HTTP Body MD5
      4380b92ac066d98f21676309230edcca 
    • HTTP/1.1 200 OK
Connection: keep-alive
Date: Thu, 07 Nov 2024 05:46:40 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Expires: Thu, 07 Nov 2024 05:46:40 GMT
Last-Modified: Thu, 07 Nov 2024 05:46:40 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

<script>window.onload=function(){ url ='/webui/';window.location.href=url;}</script>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:46:40.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4380b92ac066d98f21676309230edcca",
         "bodymmh3" : -1371971370,
         "component" : [
            {
               "product" : "IOS XE",
               "productvendor" : "Cisco"
            }
         ],
         "header" : [
            {
               "value" : "Thu, 07 Nov 2024 05:46:40 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "030240e8ece0250e4166ae73021509cb",
         "headermmh3" : 2046988098
      },
      "length" : 541
   },
   "asn" : "AS16509",
   "city" : "San Jose",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 05:46:40 GMT\r\nServer: openresty\r\nContent-Type: text/html; charset=utf-8\r\nExpires: Thu, 07 Nov 2024 05:46:40 GMT\r\nLast-Modified: Thu, 07 Nov 2024 05:46:40 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nAccept-Ranges: none\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=7884000\r\nContent-Length: 84\r\n\r\n<script>window.onload=function(){ url ='/webui/';window.location.href=url;}</script>",
   "datamd5" : "bf30ac4101ee330c7315cd4c018c3d4d",
   "datammh3" : -1802201109,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZON-2011L",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "54.67.0.0/16"
   },
   "host" : [
      "ec2-54-67-81-6"
   ],
   "hostname" : [
      "ec2-54-67-81-6.us-west-1.compute.amazonaws.com"
   ],
   "ip" : "54.67.81.6",
   "ipv6" : "false",
   "latitude" : "37.1835",
   "location" : "37.1835,-121.7714",
   "longitude" : "-121.7714",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "IOS",
   "osvendor" : "Cisco",
   "port" : 3780,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-54-67-81-6.us-west-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-west-1.compute.amazonaws.com"
   ],
   "subnet" : "54.64.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 13.244.97.126:3780 (tcp/http) - last seen on 2024-11-07 at 05:41:51 UTC

    • IP
      13.244.97.126
      Network
      13.244.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Linux Linux Kernel
      URL

      http://13.244.97.126:3780/ 200

      HTTP Title
      AiCloud
      Reverse DNS
      ec2-13-244-97-126.af-south-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      eec2f4120ab9a23d5cfaf3bfdc2425a1
      HTTP Header MD5
      9f060a9cb1b31c417a3a68e629ae97e3
      HTTP Body MD5
      5ca568bf96622aad854cce25a37f12ad
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324 
    • HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 04:54:33 GMT
Server: nginx
Content-Length: 16915
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Cache-control" content="no-cache">
<meta name="viewport" content="width=device-width, minimum-scale=1.0, maximum-scale=1, user-scalable=no" />
<meta name="apple-mobile-web-app-capable" content="yes">
<meta name="apple-mobile-web-app-status-bar-style" content="black">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="X-Frame-Options" content="SAMEORIGIN">
<title>AiCloud</title>
<style>
html{
margin:0 0;
padding:0px;
font-family:"Segoe UI",Arial;
}
body{
display: block;
overflow: hidden;
}

input,#ok {
background:transparent url("/smb/css/style-theme.png") no-repeat top left;
}

#login_logo{
width:300px;
height:76px;
background:transparent url("/smb/css/logo.jpg") no-repeat top left;
position: absolute;
top: 60px;
}

#ok{
background-position: -200px -390px;
width:40px;
height:40px;
float:right;
}
#title1{
color:#fff;
font-size:30px
}
#title2{
color:#fff;
font-size:20px
}
input {
font-size: 14px;
text-shadow: 0px 1px 0px white;
outline: none;
background-position: 0 -540px;
-webkit-border-radius: 0;
-moz-border-radius: 0;
border-radius: 0;
border: 0;
-webkit-box-shadow: 0 0 0;
-moz-box-shadow: 0 0 0;
box-shadow: 0 0 0;
padding-left:3px;
}
div.cap_num{
width:40px;
height:40px;
float:right;
}
.unselectable {
-moz-user-select: -moz-none;
-khtml-user-select: none;
-webkit-user-select: none;
-o-user-select: none;
user-select: none;
}
.table_x{
position: relative;
padding: 20px 40px 0 40px;
font-size: 20px;
display:none;
}
.table_x input{
width:220px;
height:36px;
font-size: 20px;
}
.table_x .table_label_x{
color:#ffffff;
}
</style>
<script type="text/javascript" src="/smb/js/tools.js"></script>
<script type='text/javascript' src='/smb/js/davclient_tools.js'></script>
<script type="text/javascript">
var this_url;
var m = new lang();
var g_storage = new myStorage();
var g_captcha = -1;

function makeid(){
    var text = "";
    var possible = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";

    for( var i=0; i < 20; i++ )
        text += possible.charAt(Math.floor(Math.random() * possible.length));

    return text;
}

$("document").ready(function() {
        //- create access token
        var asus_token = ( g_storage.gett('asus_token') == undefined ) ? '' : g_storage.gett('asus_token');
        if(asus_token==""){
                asus_token = makeid();
                g_storage.sett('asus_token', asus_token);
        }

        var loc_lan = String(window.navigator.userLanguage || window.navigator.language).toLowerCase();
        var lan = ( g_storage.get('lan') == undefined ) ? loc_lan : g_storage.get('lan');
        m.setLanguage(lan);

        $('label#username').text(m.getString('title_username2'));
        $('label#password').text(m.getString('title_password2'));
        // $('label#captcha').text(m.getString('title_captcha'));

        this_url = $("input.urlInfo").attr("value");

        if(this_url!="/"){
                $("div#title1").text(m.getString('title_login'));
                $("div#title2").text(this_url);
        }

        var browserVer = navigator.userAgent.toLowerCase();
        if( isIE() &&
                getInternetExplorerVersion() <= 7 ){

                $("table#table_login").remove();

                var append_html = '<table border="0" cellpadding="0" cellspacing="3" style="position: relative;left:40px;padding-top:20px"><tbody><tr><td width="240px">';
                append_html += '<font color="white" size="4">';
                append_html += '<label>';
                append_html += m.getString('msg_browsersupport');
                append_html += '</label>';
                append_html += '</font>';
                append_html += '</td>';
                append_html += '</tr>';
                append_html += '</tbody>';
                append_html += '</table>';
                $(append_html).appendTo($("#main"));

                return;
        }

        // $(".captcha").css("display","none");
        // generateCaptcha();

        adjustUI();

        $(window).resize(adjustUI);

        $("table#table_login").css("display", "block");

        $("input#username").focus();
});

function sanitize(input) {
    //- Use replacement methods to remove or encode potentially malicious characters
    return input
        .replace(/&/g, "&amp;")
        .replace(/</g, "&lt;")
        .replace(/>/g, "&gt;")
        .replace(/"/g, "&quot;")
        .replace(/'/g, "&#x27;")
        .replace(/\//g, "&#x2F;");
}

function generateCaptcha(){

        if(this_url!="/")
                return;

        $.ajax({
                url: 'GetCaptchaImage',
                data: '',
                type: 'GET',
                dataType: 'xml',
                timeout: 20000,
                error: function(){
                        //alert('Error loading XML document');
                },
                success: function(xml){

                        var data = parseXml(xml);
                        var captcha_enable = sanitize($(data).find('enable').text());
                        if(captcha_enable==1){
                                var image_data1 = sanitize($(data).find('img1').text());
                                var image_data1 = sanitize($(data).find('img1').text());
                                var image_data2 = sanitize($(data).find('img2').text());
                                var image_data3 = sanitize($(data).find('img3').text());
                                var image_data4 = sanitize($(data).find('img4').text());
                                g_captcha = sanitize($(data).find('code').text());

                                var captcha_pattern = "";
                                $("#captcha_pattern").empty();

                                captcha_pattern += "<div class='cap_num' style='background-image: url(" + image_data4 + ")'></div>";
                                captcha_pattern += "<div class='cap_num' style='background-image: url(" + image_data3 + ")'></div>";
                                captcha_pattern += "<div class='cap_num' style='background-image: url(" + image_data2 + ")'></div>";
                                captcha_pattern += "<div class='cap_num' style='background-image: url(" + image_data1 + ")'></div>";

                                $(captcha_pattern).appendTo("#captcha_pattern");

                                $(".captcha").css("display","block");

                                $("#main").css("height",420);
                        }

                }
        });
}

function adjustUI(){
        var logo_left = ($(document).width() - $("div#login_logo").width())/2;
        $("div#login_logo").css("left", logo_left);
}

function doOK(e) {
        var captcha = "";//$('input#captcha').val();
        var user = "";
        var pass = "";
        var auth = "";

        if(g_captcha!=-1&&captcha!=g_captcha){
                alert(m.getString('msg_error_captcha'));
        }
        else{
                user = $('input#username').val();
                pass = $('input#password').val();
                auth = "Basic " + Base64.encode(user + ":" + pass);
        }

        var client = new davlib.DavClient();
        client.initialize();

        g_storage.set('openurl', this_url);

        /*
        //var enc = "crypt:6166393232616536393164633730316238643463326264313735363031393961:3d593c297c1c6539356237383035663530353462633939646666313138643561";
        var enc = "";
        g_storage.set('openurl', this_url);

        client.OAUTH(this_url, auth, enc, function(error, statusstring, content){

                if(error==401){

                        $('input#password').attr("value","");

                        var the_left = parseInt($('div#login_logo').css("left"));

                        for(var i=0; i<6; i++){

                                var x = i%2;
                                var new_left = 0;
                                if(x==0)
                                        new_left = the_left + i*5;
                                else if(x==1)
                                        new_left = the_left - i*5;

                                $('div#login_logo').animate({
                                left: new_left
                                }, 100, function(){
                                        if(i=5)
                                                adjustUI();
                                });
                        }

                }
                else{
                        $.cookie("TestAuth", content);

                        setTimeout(function(){
                                window.location.reload(true);
                        }, 100);

                }
        });
        */

        client.PROPFIND(this_url, auth, function(error, statusstring, content){
                if(error==401){
                        $('input#password').attr("value","");

                        var the_left = parseInt($('div#login_logo').css("left"));

                        for(var i=0; i<6; i++){

                                var x = i%2;
                                var new_left = 0;
                                if(x==0)
                                        new_left = the_left + i*5;
                                else if(x==1)
                                        new_left = the_left - i*5;

                                $('div#login_logo').animate({
                                left: new_left
                                }, 100, function(){
                                        if(i=5)
                                                adjustUI();
                                });
                        }

                }
                else{
                        setTimeout(function(){
                                window.location.reload(true);
                        }, 100);
                }
        });
}

function onKeyHandler(e){
        if(e.keyCode==13)
                doOK(e);
}

</script>
</head>
<body style='padding-top:20px;margin:0;background-color:#313131'>

<table id="logo" width="100%" border="0" valign="middle" align="center" cellpadding="0" cellspacing="0">
        <tbody><tr height="128px">
                <tr><td valign="middle" align="center"><div id="login_logo"></div></td></tr>
        </tr></tbody>
</table>

<table width="100%" border="0" valign="middle" align="center" cellpadding="0" cellspacing="0">
        <tbody>
                <tr>
                <td valign="middle" align="center">
                        <div style="width:300px;height:88px;background-color:#595F62;padding-top:10px">
                                <div id="title1">Welcome.</div>
                                <div id="title2">Who’s coming home?</div>
                        </div>
                </td>
                </tr>
                <tr height="7px"></tr>
        </tbody>
</table>

<table width="100%" height="100%">
        <tbody><tr>
                <td valign="middle" align="center">

                        <table valign="middle" align="center" border="0" cellpadding="0" cellspacing="0">
                                <tbody><tr>
                                        <td align="left" background="" height="106" alt="">
                                                <div id="main" style="width:300px;height:385px;background-color:#595F62">
                                                        <table id="table_login" class="table_x" border="0" cellpadding="0" cellspacing="3">
                                                                <tbody>
                                                                        <tr>
                                                                                <td>
                                                                                        <label class="table_label_x" id="username">Username :</label>
                                                                                </td>
                                                                        </tr>
                                                                        <tr height="5px"></tr>
                                                                        <tr>
                                                                        <td>
                                                                                <input id="username" name="username" type="text" maxlength="32" autocapitalize="off">
                                                                        </td>
                                                                </tr>
                                                                <tr style="height:10px"></tr>
                                        <tr>
                                        <td>
                                                <label class="table_label_x" id="password">Password :</label>
                                        </td>
                                        </tr>
                                                                <tr height="5px"></tr>
                                                                <tr>
                                                                <td>
                                                                        <input id="password" name="password" type="password" maxlength="32" onkeydown="return onKeyHandler(event)">
                                                                </td>
                                                                </tr>
                                                                        <tr style="height:10px"></tr>
                                                                        <!--
                                                                <tr class="captcha" style="display:none">
                                                                                <td>
                                                                                        <font color="white" size="4">
                                                                                                <label id="captcha">Random no. :</label>
                                                                                        </font>
                                                                                </td>
                                                                        </tr>
                                                                        <tr class="captcha" height="5px" style="display:none"></tr>
                                                                        <tr class="captcha" style="display:none">
                                                                        <td>
                                                                                <input id="captcha" name="captcha" type="text" autocapitalize="off" maxlength="4" style="font-size:20px;width:220px;height:36px" onkeydown="return onKeyHandler(event)">
                                                                        </td>
                                                                </tr>
                                                                <tr class="captcha" height="5px" style="display:none"></tr>
                                                                 <tr class="captcha" style="display:none">
                                                                        <td>
                                                                                <div id="captcha_pattern" class="unselectable" name="captcha_pattern" style="width:220px;height:40px;float:left" onclick="generateCaptcha()"></div>
                                                                        </td>
                                                                </tr>
                                                                        <tr style="height:10px"></tr>
                                                          
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:41:51.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "5ca568bf96622aad854cce25a37f12ad",
         "bodymmh3" : 2122725594,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : 800665944,
         "title" : "AiCloud"
      },
      "length" : 16384
   },
   "asn" : "AS16509",
   "city" : "Cape Town",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 04:54:33 GMT\r\nServer: nginx\r\nContent-Length: 16915\r\nContent-Type: text/html\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta http-equiv=\"Cache-control\" content=\"no-cache\">\n<meta name=\"viewport\" content=\"width=device-width, minimum-scale=1.0, maximum-scale=1, user-scalable=no\" />\n<meta name=\"apple-mobile-web-app-capable\" content=\"yes\">\n<meta name=\"apple-mobile-web-app-status-bar-style\" content=\"black\">\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"X-Frame-Options\" content=\"SAMEORIGIN\">\n<title>AiCloud</title>\n<style>\nhtml{\nmargin:0 0;\npadding:0px;\nfont-family:\"Segoe UI\",Arial;\n}\nbody{\ndisplay: block;\noverflow: hidden;\n}\n\ninput,#ok {\nbackground:transparent url(\"/smb/css/style-theme.png\") no-repeat top left;\n}\n\n#login_logo{\nwidth:300px;\nheight:76px;\nbackground:transparent url(\"/smb/css/logo.jpg\") no-repeat top left;\nposition: absolute;\ntop: 60px;\n}\n\n#ok{\nbackground-position: -200px -390px;\nwidth:40px;\nheight:40px;\nfloat:right;\n}\n#title1{\ncolor:#fff;\nfont-size:30px\n}\n#title2{\ncolor:#fff;\nfont-size:20px\n}\ninput {\nfont-size: 14px;\ntext-shadow: 0px 1px 0px white;\noutline: none;\nbackground-position: 0 -540px;\n-webkit-border-radius: 0;\n-moz-border-radius: 0;\nborder-radius: 0;\nborder: 0;\n-webkit-box-shadow: 0 0 0;\n-moz-box-shadow: 0 0 0;\nbox-shadow: 0 0 0;\npadding-left:3px;\n}\ndiv.cap_num{\nwidth:40px;\nheight:40px;\nfloat:right;\n}\n.unselectable {\n-moz-user-select: -moz-none;\n-khtml-user-select: none;\n-webkit-user-select: none;\n-o-user-select: none;\nuser-select: none;\n}\n.table_x{\nposition: relative;\npadding: 20px 40px 0 40px;\nfont-size: 20px;\ndisplay:none;\n}\n.table_x input{\nwidth:220px;\nheight:36px;\nfont-size: 20px;\n}\n.table_x .table_label_x{\ncolor:#ffffff;\n}\n</style>\n<script type=\"text/javascript\" src=\"/smb/js/tools.js\"></script>\n<script type='text/javascript' src='/smb/js/davclient_tools.js'></script>\n<script type=\"text/javascript\">\nvar this_url;\nvar m = new lang();\nvar g_storage = new myStorage();\nvar g_captcha = -1;\n\nfunction makeid(){\n    var text = \"\";\n    var possible = \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789\";\n\n    for( var i=0; i < 20; i++ )\n        text += possible.charAt(Math.floor(Math.random() * possible.length));\n\n    return text;\n}\n\n$(\"document\").ready(function() {\n        //- create access token\n        var asus_token = ( g_storage.gett('asus_token') == undefined ) ? '' : g_storage.gett('asus_token');\n        if(asus_token==\"\"){\n                asus_token = makeid();\n                g_storage.sett('asus_token', asus_token);\n        }\n\n        var loc_lan = String(window.navigator.userLanguage || window.navigator.language).toLowerCase();\n        var lan = ( g_storage.get('lan') == undefined ) ? loc_lan : g_storage.get('lan');\n        m.setLanguage(lan);\n\n        $('label#username').text(m.getString('title_username2'));\n        $('label#password').text(m.getString('title_password2'));\n        // $('label#captcha').text(m.getString('title_captcha'));\n\n        this_url = $(\"input.urlInfo\").attr(\"value\");\n\n        if(this_url!=\"/\"){\n                $(\"div#title1\").text(m.getString('title_login'));\n                $(\"div#title2\").text(this_url);\n        }\n\n        var browserVer = navigator.userAgent.toLowerCase();\n        if( isIE() &&\n                getInternetExplorerVersion() <= 7 ){\n\n                $(\"table#table_login\").remove();\n\n                var append_html = '<table border=\"0\" cellpadding=\"0\" cellspacing=\"3\" style=\"position: relative;left:40px;padding-top:20px\"><tbody><tr><td width=\"240px\">';\n                append_html += '<font color=\"white\" size=\"4\">';\n                append_html += '<label>';\n                append_html += m.getString('msg_browsersupport');\n                append_html += '</label>';\n                append_html += '</font>';\n                append_html += '</td>';\n                append_html += '</tr>';\n                append_html += '</tbody>';\n                append_html += '</table>';\n                $(append_html).appendTo($(\"#main\"));\n\n                return;\n        }\n\n        // $(\".captcha\").css(\"display\",\"none\");\n        // generateCaptcha();\n\n        adjustUI();\n\n        $(window).resize(adjustUI);\n\n        $(\"table#table_login\").css(\"display\", \"block\");\n\n        $(\"input#username\").focus();\n});\n\nfunction sanitize(input) {\n    //- Use replacement methods to remove or encode potentially malicious characters\n    return input\n        .replace(/&/g, \"&amp;\")\n        .replace(/</g, \"&lt;\")\n        .replace(/>/g, \"&gt;\")\n        .replace(/\"/g, \"&quot;\")\n        .replace(/'/g, \"&#x27;\")\n        .replace(/\\//g, \"&#x2F;\");\n}\n\nfunction generateCaptcha(){\n\n        if(this_url!=\"/\")\n                return;\n\n        $.ajax({\n                url: 'GetCaptchaImage',\n                data: '',\n                type: 'GET',\n                dataType: 'xml',\n                timeout: 20000,\n                error: function(){\n                        //alert('Error loading XML document');\n                },\n                success: function(xml){\n\n                        var data = parseXml(xml);\n                        var captcha_enable = sanitize($(data).find('enable').text());\n                        if(captcha_enable==1){\n                                var image_data1 = sanitize($(data).find('img1').text());\n                                var image_data1 = sanitize($(data).find('img1').text());\n                                var image_data2 = sanitize($(data).find('img2').text());\n                                var image_data3 = sanitize($(data).find('img3').text());\n                                var image_data4 = sanitize($(data).find('img4').text());\n                                g_captcha = sanitize($(data).find('code').text());\n\n                                var captcha_pattern = \"\";\n                                $(\"#captcha_pattern\").empty();\n\n                                captcha_pattern += \"<div class='cap_num' style='background-image: url(\" + image_data4 + \")'></div>\";\n                                captcha_pattern += \"<div class='cap_num' style='background-image: url(\" + image_data3 + \")'></div>\";\n                                captcha_pattern += \"<div class='cap_num' style='background-image: url(\" + image_data2 + \")'></div>\";\n                                captcha_pattern += \"<div class='cap_num' style='background-image: url(\" + image_data1 + \")'></div>\";\n\n                                $(captcha_pattern).appendTo(\"#captcha_pattern\");\n\n                                $(\".captcha\").css(\"display\",\"block\");\n\n                                $(\"#main\").css(\"height\",420);\n                        }\n\n                }\n        });\n}\n\nfunction adjustUI(){\n        var logo_left = ($(document).width() - $(\"div#login_logo\").width())/2;\n        $(\"div#login_logo\").css(\"left\", logo_left);\n}\n\nfunction doOK(e) {\n        var captcha = \"\";//$('input#captcha').val();\n        var user = \"\";\n        var pass = \"\";\n        var auth = \"\";\n\n        if(g_captcha!=-1&&captcha!=g_captcha){\n                alert(m.getString('msg_error_captcha'));\n        }\n        else{\n                user = $('input#username').val();\n                pass = $('input#password').val();\n                auth = \"Basic \" + Base64.encode(user + \":\" + pass);\n        }\n\n        var client = new davlib.DavClient();\n        client.initialize();\n\n        g_storage.set('openurl', this_url);\n\n        /*\n        //var enc = \"crypt:6166393232616536393164633730316238643463326264313735363031393961:3d593c297c1c6539356237383035663530353462633939646666313138643561\";\n        var enc = \"\";\n        g_storage.set('openurl', this_url);\n\n        client.OAUTH(this_url, auth, enc, function(error, statusstring, content){\n\n                if(error==401){\n\n                        $('input#password').attr(\"value\",\"\");\n\n                        var the_left = parseInt($('div#login_logo').css(\"left\"));\n\n                        for(var i=0; i<6; i++){\n\n                                var x = i%2;\n                                var new_left = 0;\n                                if(x==0)\n                                        new_left = the_left + i*5;\n                                else if(x==1)\n                                        new_left = the_left - i*5;\n\n                                $('div#login_logo').animate({\n                                left: new_left\n                                }, 100, function(){\n                                        if(i=5)\n                                                adjustUI();\n                                });\n                        }\n\n                }\n                else{\n                        $.cookie(\"TestAuth\", content);\n\n                        setTimeout(function(){\n                                window.location.reload(true);\n                        }, 100);\n\n                }\n        });\n        */\n\n        client.PROPFIND(this_url, auth, function(error, statusstring, content){\n                if(error==401){\n                        $('input#password').attr(\"value\",\"\");\n\n                        var the_left = parseInt($('div#login_logo').css(\"left\"));\n\n                        for(var i=0; i<6; i++){\n\n                                var x = i%2;\n                                var new_left = 0;\n                                if(x==0)\n                                        new_left = the_left + i*5;\n                                else if(x==1)\n                                        new_left = the_left - i*5;\n\n                                $('div#login_logo').animate({\n                                left: new_left\n                                }, 100, function(){\n                                        if(i=5)\n                                                adjustUI();\n                                });\n                        }\n\n                }\n                else{\n                        setTimeout(function(){\n                                window.location.reload(true);\n                        }, 100);\n                }\n        });\n}\n\nfunction onKeyHandler(e){\n        if(e.keyCode==13)\n                doOK(e);\n}\n\n</script>\n</head>\n<body style='padding-top:20px;margin:0;background-color:#313131'>\n\n<table id=\"logo\" width=\"100%\" border=\"0\" valign=\"middle\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\n        <tbody><tr height=\"128px\">\n                <tr><td valign=\"middle\" align=\"center\"><div id=\"login_logo\"></div></td></tr>\n        </tr></tbody>\n</table>\n\n<table width=\"100%\" border=\"0\" valign=\"middle\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\n        <tbody>\n                <tr>\n                <td valign=\"middle\" align=\"center\">\n                        <div style=\"width:300px;height:88px;background-color:#595F62;padding-top:10px\">\n                                <div id=\"title1\">Welcome.</div>\n                                <div id=\"title2\">Who\u2019s coming home?</div>\n                        </div>\n                </td>\n                </tr>\n                <tr height=\"7px\"></tr>\n        </tbody>\n</table>\n\n<table width=\"100%\" height=\"100%\">\n        <tbody><tr>\n                <td valign=\"middle\" align=\"center\">\n\n                        <table valign=\"middle\" align=\"center\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n                                <tbody><tr>\n                                        <td align=\"left\" background=\"\" height=\"106\" alt=\"\">\n                                                <div id=\"main\" style=\"width:300px;height:385px;background-color:#595F62\">\n                                                        <table id=\"table_login\" class=\"table_x\" border=\"0\" cellpadding=\"0\" cellspacing=\"3\">\n                                                                <tbody>\n                                                                        <tr>\n                                                                                <td>\n                                                                                        <label class=\"table_label_x\" id=\"username\">Username :</label>\n                                                                                </td>\n                                                                        </tr>\n                                                                        <tr height=\"5px\"></tr>\n                                                                        <tr>\n                                                                        <td>\n                                                                                <input id=\"username\" name=\"username\" type=\"text\" maxlength=\"32\" autocapitalize=\"off\">\n                                                                        </td>\n                                                                </tr>\n                                                                <tr style=\"height:10px\"></tr>\n                                        <tr>\n                                        <td>\n                                                <label class=\"table_label_x\" id=\"password\">Password :</label>\n                                        </td>\n                                        </tr>\n                                                                <tr height=\"5px\"></tr>\n                                                                <tr>\n                                                                <td>\n                                                                        <input id=\"password\" name=\"password\" type=\"password\" maxlength=\"32\" onkeydown=\"return onKeyHandler(event)\">\n                                                                </td>\n                                                                </tr>\n                                                                        <tr style=\"height:10px\"></tr>\n                                                                        <!--\n                                                                <tr class=\"captcha\" style=\"display:none\">\n                                                                                <td>\n                                                                                        <font color=\"white\" size=\"4\">\n                                                                                                <label id=\"captcha\">Random no. :</label>\n                                                                                        </font>\n                                                                                </td>\n                                                                        </tr>\n                                                                        <tr class=\"captcha\" height=\"5px\" style=\"display:none\"></tr>\n                                                                        <tr class=\"captcha\" style=\"display:none\">\n                                                                        <td>\n                                                                                <input id=\"captcha\" name=\"captcha\" type=\"text\" autocapitalize=\"off\" maxlength=\"4\" style=\"font-size:20px;width:220px;height:36px\" onkeydown=\"return onKeyHandler(event)\">\n                                                                        </td>\n                                                                </tr>\n                                                                <tr class=\"captcha\" height=\"5px\" style=\"display:none\"></tr>\n                                                                 <tr class=\"captcha\" style=\"display:none\">\n                                                                        <td>\n                                                                                <div id=\"captcha_pattern\" class=\"unselectable\" name=\"captcha_pattern\" style=\"width:220px;height:40px;float:left\" onclick=\"generateCaptcha()\"></div>\n                                                                        </td>\n                                                                </tr>\n                                                                        <tr style=\"height:10px\"></tr>\n                                                          ",
   "datamd5" : "eec2f4120ab9a23d5cfaf3bfdc2425a1",
   "datammh3" : -58520762,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "AMAZON-CPT",
      "organization" : "Amazon Data Services South Africa",
      "subnet" : "13.244.0.0/14"
   },
   "host" : [
      "ec2-13-244-97-126"
   ],
   "hostname" : [
      "ec2-13-244-97-126.af-south-1.compute.amazonaws.com"
   ],
   "ip" : "13.244.97.126",
   "ipv6" : "false",
   "latitude" : "-34.0486",
   "location" : "-34.0486,18.4811",
   "longitude" : "18.4811",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-13-244-97-126.af-south-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "af-south-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "13.244.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 191.241.145.145:3780 (tcp/http) - last seen on 2024-11-07 at 05:37:59 UTC

    • IP
      191.241.145.145
      Network
      191.241.144.0/20
      Domain(s)
      dstech.com.br
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://191.241.145.145:3780/ 200

      HTTP Title
      Intelbras
      Reverse DNS
      191-241-145-145-reverso.dstech.com.br
      ASN
      AS262784
      Organization
      SATURNO COMUNICACOES LTDA
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      9fa4b27462470108fc698e0b5f730525
      HTTP Header MD5
      ab2c30c3d2109d1b0cc2ab75870be810
      HTTP Body MD5
      79473621960b86115bc3551527173c27 
    • HTTP/1.1 200 OK
CONNECTION: close
Date: Thu, 07 Nov 2024 02:34:13 GMT
Last-Modified: Mon, 18 Oct 2021 11:39:41 GMT
Etag: "1634557181:bf8"
CONTENT-LENGTH: 3064
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=604800; includeSubDomains
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: text/html

<!DOCTYPE HTML> <html> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta charset="UTF-8"> <title>Intelbras</title> <link href="./baseProj/images/favicon.ico" type="image/x-icon" rel="shortcut icon"> <script src="ext/ext-all.js"></script> <script type="text/javascript" src="./projectPath.js"></script> <script type="text/javascript" src="/app/libs/require.js"></script> <script type="text/javascript" src="/app/jsCore/require-config.js"></script> <script type="text/javascript">Ext.onReady(function () {
            //启用缓存
            Ext.Loader.setConfig({
                "disableCaching": true,
                "paths":{
                    "basePath": BASEURL, //配置基础项目的文件路径
                    "projectPath": PROJECT_URL //配置定制项目的文件路径
                }
            });

            //定义项目的加载路径
            var basePath = Ext.Loader.getPath('basePath'),
                projectPath = Ext.Loader.getPath('projectPath');

            //设置类的地址路径
            Ext.Loader.setPath({
                "jsCore": "app/jsCore",
                'component': "baseProj/js/component",
                'js': 'baseProj/js',
                'plugin': 'app/plugin',
                'widget': 'baseProj/js/widget',
                'baseCls':'app/baseCls',
				'app': 'baseCls', //各个项目统一一个app
                'customJs': projectPath+'js', // 非基线项目引用的js路径
                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //加载指定项目的Desktop.js
                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //加载指定项目的数据文件
            });
            //桌面内容不可选择
            Ext.getBody().unselectable();

            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',
                'libs/base64', 'libs/md5', 'libs/aes', 'libs/rsa', 'libs/moment',
                'timeaxes/TimeAxes',
                'timeaxes/TimeAxesAdaptor',
                'timeaxes/TimeGridLayer',
                'h5Player'
            ], function () {
                //载入必要的模块,字符串文件加载完成后,初始化和加载应用
                Ext.require(['jsCore.Common'], function () {
                    jsCore.Common.getJsonLanguage().done(function () {
                        //自验问题修改:设备初始化界面,密码输入框输入时,报js错误,修改为先设置规则
                        jsCore.Common.setFieldVtype();
                        Ext.require(['baseCls.App']);
                        //***密码输入框输入时,报js错误 END***//
                    });
                });
            });
        });</script> </head> <body></body> <script type="text/javascript" src="./pluginVersion.js"></script> <script type="text/javascript" src="./webVersion.js"></script> <script type="text/javascript" src="./cap.js"></script> </html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:37:59.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "79473621960b86115bc3551527173c27",
         "bodymmh3" : 1648532334,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Mon, 18 Oct 2021 11:39:41 GMT"
            },
            {
               "name" : "Etag",
               "value" : "1634557181:bf8"
            }
         ],
         "headermd5" : "ab2c30c3d2109d1b0cc2ab75870be810",
         "headermmh3" : -110107323,
         "title" : "Intelbras"
      },
      "length" : 3507
   },
   "asn" : "AS262784",
   "city" : "Teixeira de Freitas",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCONNECTION: close\r\nDate: Thu, 07 Nov 2024 02:34:13 GMT\r\nLast-Modified: Mon, 18 Oct 2021 11:39:41 GMT\r\nEtag: \"1634557181:bf8\"\r\nCONTENT-LENGTH: 3064\r\nP3P: CP=CAO PSA OUR\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=604800; includeSubDomains\r\nX-XSS-Protection: 1;mode=block\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'\r\nX-Content-Type-Options: nosniff\r\nCONTENT-TYPE: text/html\r\n\r\n<!DOCTYPE HTML> <html> <head> <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"> <meta charset=\"UTF-8\"> <title>Intelbras</title> <link href=\"./baseProj/images/favicon.ico\" type=\"image/x-icon\" rel=\"shortcut icon\"> <script src=\"ext/ext-all.js\"></script> <script type=\"text/javascript\" src=\"./projectPath.js\"></script> <script type=\"text/javascript\" src=\"/app/libs/require.js\"></script> <script type=\"text/javascript\" src=\"/app/jsCore/require-config.js\"></script> <script type=\"text/javascript\">Ext.onReady(function () {\n            //\u542f\u7528\u7f13\u5b58\n            Ext.Loader.setConfig({\n                \"disableCaching\": true,\n                \"paths\":{\n                    \"basePath\": BASEURL, //\u914d\u7f6e\u57fa\u7840\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                    \"projectPath\": PROJECT_URL //\u914d\u7f6e\u5b9a\u5236\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                }\n            });\n\n            //\u5b9a\u4e49\u9879\u76ee\u7684\u52a0\u8f7d\u8def\u5f84\n            var basePath = Ext.Loader.getPath('basePath'),\n                projectPath = Ext.Loader.getPath('projectPath');\n\n            //\u8bbe\u7f6e\u7c7b\u7684\u5730\u5740\u8def\u5f84\n            Ext.Loader.setPath({\n                \"jsCore\": \"app/jsCore\",\n                'component': \"baseProj/js/component\",\n                'js': 'baseProj/js',\n                'plugin': 'app/plugin',\n                'widget': 'baseProj/js/widget',\n                'baseCls':'app/baseCls',\n\t\t\t\t'app': 'baseCls', //\u5404\u4e2a\u9879\u76ee\u7edf\u4e00\u4e00\u4e2aapp\n                'customJs': projectPath+'js', // \u975e\u57fa\u7ebf\u9879\u76ee\u5f15\u7528\u7684js\u8def\u5f84\n                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684Desktop.js\n                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684\u6570\u636e\u6587\u4ef6\n            });\n            //\u684c\u9762\u5185\u5bb9\u4e0d\u53ef\u9009\u62e9\n            Ext.getBody().unselectable();\n\n            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',\n                'libs/base64', 'libs/md5', 'libs/aes', 'libs/rsa', 'libs/moment',\n                'timeaxes/TimeAxes',\n                'timeaxes/TimeAxesAdaptor',\n                'timeaxes/TimeGridLayer',\n                'h5Player'\n            ], function () {\n                //\u8f7d\u5165\u5fc5\u8981\u7684\u6a21\u5757\uff0c\u5b57\u7b26\u4e32\u6587\u4ef6\u52a0\u8f7d\u5b8c\u6210\u540e\uff0c\u521d\u59cb\u5316\u548c\u52a0\u8f7d\u5e94\u7528\n                Ext.require(['jsCore.Common'], function () {\n                    jsCore.Common.getJsonLanguage().done(function () {\n                        //\u81ea\u9a8c\u95ee\u9898\u4fee\u6539\uff1a\u8bbe\u5907\u521d\u59cb\u5316\u754c\u9762\uff0c\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef,\u4fee\u6539\u4e3a\u5148\u8bbe\u7f6e\u89c4\u5219\n                        jsCore.Common.setFieldVtype();\n                        Ext.require(['baseCls.App']);\n                        //***\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef END***//\n                    });\n                });\n            });\n        });</script> </head> <body></body> <script type=\"text/javascript\" src=\"./pluginVersion.js\"></script> <script type=\"text/javascript\" src=\"./webVersion.js\"></script> <script type=\"text/javascript\" src=\"./cap.js\"></script> </html>",
   "datamd5" : "9fa4b27462470108fc698e0b5f730525",
   "datammh3" : 1150895319,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "dstech.com.br"
   ],
   "geolocus" : {
      "asn" : "AS262784",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "dstech.com.br",
         "live.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "00.587.795/0001-86",
      "organization" : "SATURNO COMUNICACOES LTDA",
      "subnet" : "191.241.144.0/20"
   },
   "host" : [
      "191-241-145-145-reverso"
   ],
   "hostname" : [
      "191-241-145-145-reverso.dstech.com.br"
   ],
   "ip" : "191.241.145.145",
   "ipv6" : "false",
   "latitude" : "-17.5321",
   "location" : "-17.5321,-39.7379",
   "longitude" : "-39.7379",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SATURNO COMUNICACOES LTDA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "191-241-145-145-reverso.dstech.com.br"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "191.241.144.0/20",
   "tld" : [
      "com.br"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 112.135.187.185:3780 (tcp/http) - last seen on 2024-11-07 at 05:37:08 UTC

    • IP
      112.135.187.185
      Network
      112.134.0.0/15
      Domain(s)
      slt.lk
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux 2
      URL

      http://112.135.187.185:3780/ 200

      HTTP Title
      Remote Surveillance, Any time &amp; Any where
      Reverse DNS
      v4.dns.slt.lk
      ASN
      AS9329
      Organization
      Sri Lanka Telecom Internet
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux 2
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      97fc3fec8a97ccca4188f7f67e4556e2
      HTTP Header MD5
      15514d09ab3a6e41ccb6a3bff154ef8a
      HTTP Body MD5
      ef58cb59a6c6a6c05dc86ebd15a798cf 
    • HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 11:07:07 GMT
Server: Linux/2.x UPnP/1.0 Avtech/1.0
Connection: close
Last-Modified: Tue, 22 Nov 2022 09:54:11 GMT
Content-Type: text/html
ETag: 231-54171-1669110851
Content-Length: 54171

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<link rel="icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="shortcut icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="bookmark" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="googlebot" content="nosnippet">
<meta name="robots" content="noarchive">
<title>Remote Surveillance, Any time &amp; Any where</title>
<style>

body {
	margin-left: 0px;
	margin-top: 0px;
	margin-right: 0px;
	margin-bottom: 0px;
	font-family: "Century Gothic";
	color: #fff;
	font-size: 19px;
	background-color: #333;
	
}

.BOX1 {
	position:absolute;
	left:50%;
	top:50%;
	margin-top:-225px;
	margin-left:-360px;
	visibility: visible;
}

.BOX2 {
	background-color: #333;
	color: #fff;
	text-align: center;
	padding: 12px;
	width: 100%;
	overflow: auto;
	height: auto;
	position: fixed;
	bottom: 0px;
}

a:hover {
	font-size: 100%;
	text-decoration: underline;
	font-weight: bold;
}

.input {
	font-family: "Century Gothic";
	color: #666;
	background-color: #F0F0F0;
	margin: 1px;
	padding: 6px;
	border-top-style: none;
	border-right-style: none;
	border-bottom-style: none;
	border-left-style: none;
	width: 85px;
	font-size: 14px;
	}

.button {
	font-family: "Century Gothic";
	color: #FFFFFF;
	background-color: #0CF;
	padding: 6px;
	text-align: center;
	width: 170px;
	border: 1px inset #09F;
	border-radius: 28px;
	font-size: 14px;
	}

.input_osg {
	font-family: "Century Gothic";
	color: #666;
	background-color: #F0F0F0;
	height: 20px;
	margin: 1px;
	padding: 6px;
	text-align: center;
	width: 72px;
	font-size: 15px;
	border-top-style: none;
	border-right-style: none;
	border-bottom-style: none;
	border-left-style: none;
	}


.button_osg {
  font-family: Century Gothic;
  width: 300px;
  background: #3498db;
  border: 1px inset #3498db;
  border-radius: 28px;
  color: #ffffff;
  font-size: 15px;
  padding: 6px;
}

.button_osg:hover {
  background: #3cb0fd;
  border: 1px inset #3cb0fd;
}

.font_note {
	font-size: 13px;
}

.round{
	border-collapse: separate;
	border: 0px solid #333333;
	background-color: #F0F0F0;
	border-radius: 28px;
}

</style>
<script language="JavaScript">
//Kelvin++ 2014-08-07 check is it opening from EZ server, then auto-login use ez.htm
if(document.URL.indexOf("?a=") > 0){
	location.href="/nobody/aplogin.htm?parameter="+Base64.encode(document.URL.split("?")[1])+"&InitPath=EZ_LOGIN"+"&rnd="+Math.random();
}
/* ========== loginDevice.js ========== */
function getCookie(c_name){
	if (document.cookie.length>0){
		c_start=document.cookie.indexOf(c_name + "=");
		if (c_start!=-1){ 
			c_start=c_start + c_name.length+1; 
			c_end=document.cookie.indexOf(";",c_start);
			if (c_end==-1) c_end=document.cookie.length;
			return unescape(document.cookie.substring(c_start,c_end));
		} 
	}
	return "";
}

function setCookie(c_name,value,expiredays){
	var exdate=new Date();
	exdate.setDate(exdate.getDate()+expiredays);
	document.cookie=c_name+ "=" +escape(value)+((expiredays==null) ? "" : ";expires="+exdate.toGMTString());
}

function delCookie(name){
	var exp = new Date();
	exp.setTime(exp.getTime() - 1);
	var cval = getCookie(name);
	if(cval != null)
		document.cookie = name + "="+cval+";expires="+exp.toGMTString();
}

function getURL(){
	var a = document.URL.split("//");
	a = (a[1] ? a[1] : a[0]).split("/"); 
	return a[0];
}

function getPort(){
	urlArr = getURL().split(":");
	if(urlArr.length == 1)
		return "80";
	else
		return urlArr[1];
}

var w = window.screen.availWidth;

if(getCookie("ViewMode")!="Classic"){
	if(w <= 800){//mobile screen width < 800
		if(w > 320)
			location.href="/nobody/mobile480.htm?Login=Captcha";
		else if(w <= 240)
			location.href="/nobody/mobile240.htm?Login=Captcha";
		else
			location.href="/nobody/mobile.htm?Login=Captcha";
	}
}

//no use
function isMobileBrowser(){
	var u = navigator.userAgent.toLowerCase();
	
	if(u.indexOf("midp") != -1)
		return true;
	else if(u.indexOf("mobile") != -1)
		return true;
	else if(u.indexOf("iphone") != -1 || u.indexOf("ipod") != -1)
		return true;
	else if(u.indexOf("series60") != -1 || u.indexOf("symbian") != -1)
		return true;
	else if(u.indexOf("blackberry") != -1)
		return true;
	else if(u.indexOf("android") != -1)
		return true;
	else if(u.indexOf("windows ce") != -1 || u.indexOf("windows phone") != -1)
		return true;
	else if(u.indexOf("htc") != -1 || u.indexOf("hd2_") != -1)
		return true;
	else if(u.indexOf("palm") != -1)
		return true;
	else
		return false;
}

/* ========== webtoolkit.base64.js ========== */
var Base64={_keyStr:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",encode:function(c){var a="";var k,h,f,j,g,e,d;var b=0;c=Base64._utf8_encode(c);while(b<c.length){k=c.charCodeAt(b++);h=c.charCodeAt(b++);f=c.charCodeAt(b++);j=k>>2;g=((k&3)<<4)|(h>>4);e=((h&15)<<2)|(f>>6);d=f&63;if(isNaN(h)){e=d=64}else{if(isNaN(f)){d=64}}a=a+this._keyStr.charAt(j)+this._keyStr.charAt(g)+this._keyStr.charAt(e)+this._keyStr.charAt(d)}return a},decode:function(c){var a="";var k,h,f;var j,g,e,d;var b=0;c=c.replace(/[^A-Za-z0-9\+\/\=]/g,"");while(b<c.length){j=this._keyStr.indexOf(c.charAt(b++));g=this._keyStr.indexOf(c.charAt(b++));e=this._keyStr.indexOf(c.charAt(b++));d=this._keyStr.indexOf(c.charAt(b++));k=(j<<2)|(g>>4);h=((g&15)<<4)|(e>>2);f=((e&3)<<6)|d;a=a+String.fromCharCode(k);if(e!=64){a=a+String.fromCharCode(h)}if(d!=64){a=a+String.fromCharCode(f)}}a=Base64._utf8_decode(a);return a},_utf8_encode:function(b){b=b.replace(/\r\n/g,"\n");var a="";for(var e=0;e<b.length;e++){var d=b.charCodeAt(e);if(d<128){a+=String.fromCharCode(d)}else{if((d>127)&&(d<2048)){a+=String.fromCharCode((d>>6)|192);a+=String.fromCharCode((d&63)|128)}else{a+=String.fromCharCode((d>>12)|224);a+=String.fromCharCode(((d>>6)&63)|128);a+=String.fromCharCode((d&63)|128)}}}return a},_utf8_decode:function(a){var b="";var d=0;var e=c1=c2=0;while(d<a.length){e=a.charCodeAt(d);if(e<128){b+=String.fromCharCode(e);d++}else{if((e>191)&&(e<224)){c2=a.charCodeAt(d+1);b+=String.fromCharCode(((e&31)<<6)|(c2&63));d+=2}else{c2=a.charCodeAt(d+1);c3=a.charCodeAt(d+2);b+=String.fromCharCode(((e&15)<<12)|((c2&63)<<6)|(c3&63));d+=3}}}return b}};

/* ========== login.js ========== */
var ff;
var CheckOnlySupportIE = false;
var DVR_ONLY_SUPPORT_IE = "_042_082_162_046_";
var isIEBrowser = false;

if ((navigator.appName == "Microsoft Internet Explorer") && (navigator.platform != "MacPPC") && (navigator.platform != "Mac68k")) {
  isIEBrowser = true;
}

/* disabled backspace key */
if(typeof window.event != 'undefined'){
	document.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}
}else{
	document.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}
}

function init(){
	ff = document.myForm;
	ff.Username.value = "";
	ff.Password.value = "";
	/*
	setTimeout("getCaptchaImg()", 1000);
	
	document.body.style.display = "none";
	var NW = getCookie(idURL+"NW");
	if(NW != "" && NW != null){
		var aaa = Base64.decode(NW).split(":");
		ff.Username.value = aaa[0];
		ff.Password.value = aaa[1];
		if(getCookie(idURL+"StaySign") == "1"){
			document.getElementById("StaySignedIn").checked = true;
			if(getCookie(idURL+"StaySignErr") != "1"){
				delCookie("captcha");
				check();
			}else{
				delCookie(idURL+"StaySignErr");
				document.body.style.display = "block";
				ff.Password.value = "";
				ff.Password.focus();
			}
		}else{
			document.getElementById("StaySignedIn").checked = false;
			document.body.style.display = "block";
		}
	}else{
		document.body.style.display = "block";
	}
	*/
	ff.Username.focus();
}

function getCaptchaImg(){
	document.getElementById("Captcha").src = "/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp";
}

function goCheck(e){
	if(window.event && e.keyCode ==13) //IE
		check(); 
	else if(e.which == 13) // Netscape/Firefox/Opera
		check();
}

function ToUpperCase(obj){
	obj.value = obj.value.toUpperCase();
}

function check(){
	if(!ff){return false;}
	
	document.cookie = "x=1";
	if (document.cookie.indexOf("x=")==-1){
		document.body.style.display = "block";
		alert("Browser Cookie not supported.");
		frmReload();
		return false;
	}
	var actionStr = "/cgi-bin/nobody/VerifyCode.cgi"
	actionStr += "?account="+Base64.encode(ff.Username.value+":"+ff.Password.value);
	//actionStr += "&captcha_code="+ff.CaptchaCode.value.toUpperCase();
	//actionStr += "&verify_code="+getCookie("captcha");
	actionStr += "&rnd="+Math.random();
	var httpObj = createHttpRequestObj();
	httpObj.onreadystatechange = function(){
		if (httpObj.readyState == 4 && httpObj.status == 200){
			var objStr    = new Object();
			objStr.strSrc = httpObj.responseText;
			tmpStr = objStr.strSrc.split("\n");
			if (tmpStr[1] == "OK"){
				//if(document.getElementById("StaySignedIn").checked)
				//	setLastUserSignIn();
				//setCookie("brokenhdd", "");
				setCookie("LifeTime", "");
				//setCookie("ReloWebTime", 0);
				location.href="/index.htm";
			}else{
				//setCookie(idURL+"StaySignErr", "1");
				//document.body.style.display = "block";
				alert(tmpStr[1]);
				frmReload();
			}
		}
	};
	httpObj.open("get", actionStr, true);
	httpObj.send(null);
	return false;
}

var idURL = getURL()+":"+getPort();
function setLastUserSignIn(){
	setCookie(idURL+"NW", Base64.encode(ff.Username.value+":"+ff.Password.value), 30);
	setCookie(idURL+"StaySign", (document.getElementById("StaySignedIn").checked)?"1":"0", 30);
	setCookie(idURL+"StaySignErr", "0");
}

function getUserLevel(){
	var httpObj = createHttpRequestObj();
	requestData = "/cgi-bin/guest/Login.cgi?rnd="+Math.random();
	httpObj.onreadystatechange = function(){
		if (httpObj.readyState == 4 && httpObj.status == 200){
			var objStr    = new Object();
			objStr.strSrc = httpObj.responseText;
			
			if (CheckOnlySupportIE && GetCgiParam(objStr, "Product-ID-Minor=") == 1){
				var pid = objStr.strGet;
				var pidc = "_"+pid+"_";
				if(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){
					//alert("This machine is not supported, please visit 'www.avtech.com.tw' for more details.");
					if(confirm("This machine is not supported.\nDo you want to get more details?")){
						location.href = "http://www.eagleeyescctv.com/jump/dvr.htm";
					}
					return false;
				}
			}
			
			if (GetCgiParam(objStr, "User-Level=") == 1){
				setCookie("LifeTime", "");
				setCookie("ReloWebTime", 0);
				if(objStr.strGet == "SUPERVISOR")
					location.href="/index.htm";
				else
					location.href="/index.htm";
			}else{alert('Login Failed.');}
		}
	};
	httpObj.open("get", requestData, true);
	httpObj.send(null);
}

function frmReload(){
	ff.Username.value="";
	ff.Password.value="";
	//ff.CaptchaCode.value="";
	location.reload();
}

function createHttpRequestObj(){
	var XMLhttpObject = null;
	try {XMLhttpObject = new XMLHttpRequest();}
	catch(e){
		try {XMLhttpObject = new ActiveXObject("Msxml2.XMLHTTP");}
		catch(e){
			try {XMLhttpObject = new ActiveXObject("Microsoft.XMLHTTP");}
			catch(e) {return null;}
		}
	}
	return XMLhttpObject;
}

function GetCgiParam(objStr, strSearch){
	var curr_pos;var result;
	objStr.strSearch=strSearch;
	objStr.curr_pos=0;
	do{
		result = 1;
		curr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);
		if (curr_pos < 0){
			result = 0;
			break;
		}
		objStr.curr_pos = curr_pos + objStr.strSearch.length;
		curr_pos = objStr.strSrc.indexOf('\n', objStr.curr_pos);
		if (curr_pos < 0){
			if (objStr.curr_pos < objStr.strSrc.length){
				objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);
				objStr.curr_pos = curr_pos;	
				break;
			}
			result = 0;
			break;
		}
		objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, curr_pos);
		objStr.curr_pos = curr_pos;
	} while(0);
	return result;
}

function goMobile(){
	setCookie("ViewMode", "Mobile");
	var w = window.screen.availWidth;
	//alert(w);
	if(w > 320)
		location.href="/nobody/mobile480.htm?Login=Captcha";
	else if(w <= 240)
		location.href="/nobody/mobile240.htm?Login=Captcha";
	else
		location.href="/nobody/mobile.htm?Login=Captcha";
}
</script>
</head>
<body onload="init()">
	<div class="BOX1">
		<table border="0" cellspacing="0" cellpadding="0">
			<tr>
				<td valign="middle"><img width="300" height="90" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAASwAAABaCAYAAAACcWsdAAAACXBIWXMAAAsTAAALEwEAmpwYAAAKTWlDQ1BQaG90b3Nob3AgSUNDIHByb2ZpbGUAAHjanVN3WJP3Fj7f92UPVkLY8LGXbIEAIiOsCMgQWaIQkgBhhBASQMWFiApWFBURnEhVxILVCkidiOKgKLhnQYqIWotVXDjuH9yntX167+3t+9f7vOec5/zOec8PgBESJpHmomoAOVKFPDrYH49PSMTJvYACFUjgBCAQ5svCZwXFAADwA3l4fnSwP/wBr28AAgBw1S4kEsfh/4O6UCZXACCRAOAiEucLAZBSAMguVMgUAMgYALBTs2QKAJQAAGx5fEIiAKoNAOz0ST4FANipk9wXANiiHKkIAI0BAJkoRyQCQLsAYFWBUiwCwMIAoKxAIi4EwK4BgFm2MkcCgL0FAHaOWJAPQGAAgJlCLMwAIDgCAEMeE80DIEwDoDDSv+CpX3CFuEgBAMDLlc2XS9IzFLiV0Bp38vDg4iHiwmyxQmEXKRBmCeQinJebIxNI5wNMzgwAABr50cH+OD+Q5+bk4eZm52zv9MWi/mvwbyI+IfHf/ryMAgQAEE7P79pf5eXWA3DHAbB1v2upWwDaVgBo3/ldM9sJoFoK0Hr5i3k4/EAenqFQyDwdHAoLC+0lYqG9MOOLPv8z4W/gi372/EAe/tt68ABxmkCZrcCjg/1xYW52rlKO58sEQjFu9+cj/seFf/2OKdHiNLFcLBWK8ViJuFAiTcd5uVKRRCHJleIS6X8y8R+W/QmTdw0ArIZPwE62B7XLbMB+7gECiw5Y0nYAQH7zLYwaC5EAEGc0Mnn3AACTv/mPQCsBAM2XpOMAALzoGFyolBdMxggAAESggSqwQQcMwRSswA6cwR28wBcCYQZEQAwkwDwQQgbkgBwKoRiWQRlUwDrYBLWwAxqgEZrhELTBMTgN5+ASXIHrcBcGYBiewhi8hgkEQcgIE2EhOogRYo7YIs4IF5mOBCJhSDSSgKQg6YgUUSLFyHKkAqlCapFdSCPyLXIUOY1cQPqQ28ggMor8irxHMZSBslED1AJ1QLmoHxqKxqBz0XQ0D12AlqJr0Rq0Hj2AtqKn0UvodXQAfYqOY4DRMQ5mjNlhXIyHRWCJWBomxxZj5Vg1Vo81Yx1YN3YVG8CeYe8IJAKLgBPsCF6EEMJsgpCQR1hMWEOoJewjtBK6CFcJg4Qxwicik6hPtCV6EvnEeGI6sZBYRqwm7iEeIZ4lXicOE1+TSCQOyZLkTgohJZAySQtJa0jbSC2kU6Q+0hBpnEwm65Btyd7kCLKArCCXkbeQD5BPkvvJw+S3FDrFiOJMCaIkUqSUEko1ZT/lBKWfMkKZoKpRzame1AiqiDqfWkltoHZQL1OHqRM0dZolzZsWQ8ukLaPV0JppZ2n3aC/pdLoJ3YMeRZfQl9Jr6Afp5+mD9HcMDYYNg8dIYigZaxl7GacYtxkvmUymBdOXmchUMNcyG5lnmA+Yb1VYKvYqfBWRyhKVOpVWlX6V56pUVXNVP9V5qgtUq1UPq15WfaZGVbNQ46kJ1Bar1akdVbupNq7OUndSj1DPUV+jvl/9gvpjDbKGhUaghkijVGO3xhmNIRbGMmXxWELWclYD6yxrmE1iW7L57Ex2Bfsbdi97TFNDc6pmrGaRZp3mcc0BDsax4PA52ZxKziHODc57LQMtPy2x1mqtZq1+rTfaetq+2mLtcu0W7eva73VwnUCdLJ31Om0693UJuja6UbqFutt1z+o+02PreekJ9cr1Dund0Uf1bfSj9Rfq79bv0R83MDQINpAZbDE4Y/DMkGPoa5hpuNHwhOGoEctoupHEaKPRSaMnuCbuh2fjNXgXPmasbxxirDTeZdxrPGFiaTLbpMSkxeS+Kc2Ua5pmutG003TMzMgs3KzYrMnsjjnVnGueYb7ZvNv8jYWlRZzFSos2i8eW2pZ8ywWWTZb3rJhWPlZ5VvVW16xJ1lzrLOtt1ldsUBtXmwybOpvLtqitm63Edptt3xTiFI8p0in1U27aMez87ArsmuwG7Tn2YfYl9m32zx3MHBId1jt0O3xydHXMdmxwvOuk4TTDqcSpw+lXZxtnoXOd8zUXpkuQyxKXdpcXU22niqdun3rLleUa7rrStdP1o5u7m9yt2W3U3cw9xX2r+00umxvJXcM970H08PdY4nHM452nm6fC85DnL152Xlle+70eT7OcJp7WMG3I28Rb4L3Le2A6Pj1l+s7pAz7GPgKfep+Hvqa+It89viN+1n6Zfgf8nvs7+sv9j/i/4XnyFvFOBWABwQHlAb2BGoGzA2sDHwSZBKUHNQWNBbsGLww+FUIMCQ1ZH3KTb8AX8hv5YzPcZyya0RXKCJ0VWhv6MMwmTB7WEY6GzwjfEH5vpvlM6cy2CIjgR2yIuB9pGZkX+X0UKSoyqi7qUbRTdHF09yzWrORZ+2e9jvGPqYy5O9tqtnJ2Z6xqbFJsY+ybuIC4qriBeIf4RfGXEnQTJAntieTE2MQ9ieNzAudsmjOc5JpUlnRjruXcorkX5unOy553PFk1WZB8OIWYEpeyP+WDIEJQLxhP5aduTR0T8oSbhU9FvqKNolGxt7hKPJLmnVaV9jjdO31D+miGT0Z1xjMJT1IreZEZkrkj801WRNberM/ZcdktOZSclJyjUg1plrQr1zC3KLdPZisrkw3keeZtyhuTh8r35CP5c/PbFWyFTNGjtFKuUA4WTC+oK3hbGFt4uEi9SFrUM99m/ur5IwuCFny9kLBQuLCz2Lh4WfHgIr9FuxYji1MXdy4xXVK6ZHhp8NJ9y2jLspb9UOJYUlXyannc8o5Sg9KlpUMrglc0lamUycturvRauWMVYZVkVe9ql9VbVn8qF5VfrHCsqK74sEa45uJXTl/VfPV5bdra3kq3yu3rSOuk626s91m/r0q9akHV0IbwDa0b8Y3lG19tSt50oXpq9Y7NtM3KzQM1YTXtW8y2rNvyoTaj9nqdf13LVv2tq7e+2Sba1r/dd3vzDoMdFTve75TsvLUreFdrvUV99W7S7oLdjxpiG7q/5n7duEd3T8Wej3ulewf2Re/ranRvbNyvv7+yCW1SNo0eSDpw5ZuAb9qb7Zp3tXBaKg7CQeXBJ9+mfHvjUOihzsPcw83fmX+39QjrSHkr0jq/
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:37:08.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org",
            "eagleeyescctv.com"
         ],
         "file" : [
            "verifycode.cgi"
         ],
         "hostname" : [
            "www.eagleeyescctv.com",
            "www.w3.org"
         ],
         "url" : [
            "http://www.eagleeyescctv.com/jump/dvr.htm",
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "favicon" : {
         "url" : "/nobody/favicon.ico"
      },
      "http" : {
         "bodymd5" : "ef58cb59a6c6a6c05dc86ebd15a798cf",
         "bodymmh3" : 210328465,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Tue, 22 Nov 2022 09:54:11 GMT"
            },
            {
               "name" : "ETag",
               "value" : "231-54171-1669110851"
            }
         ],
         "headermd5" : "15514d09ab3a6e41ccb6a3bff154ef8a",
         "headermmh3" : 448492440,
         "title" : "Remote Surveillance, Any time &amp; Any where"
      },
      "length" : 16384
   },
   "asn" : "AS9329",
   "city" : "Colombo",
   "country" : "LK",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 11:07:07 GMT\r\nServer: Linux/2.x UPnP/1.0 Avtech/1.0\r\nConnection: close\r\nLast-Modified: Tue, 22 Nov 2022 09:54:11 GMT\r\nContent-Type: text/html\r\nETag: 231-54171-1669110851\r\nContent-Length: 54171\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<link rel=\"icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"shortcut icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"bookmark\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\r\n<meta name=\"googlebot\" content=\"nosnippet\">\r\n<meta name=\"robots\" content=\"noarchive\">\r\n<title>Remote Surveillance, Any time &amp; Any where</title>\r\n<style>\r\n\r\nbody {\r\n\tmargin-left: 0px;\r\n\tmargin-top: 0px;\r\n\tmargin-right: 0px;\r\n\tmargin-bottom: 0px;\r\n\tfont-family: \"Century Gothic\";\r\n\tcolor: #fff;\r\n\tfont-size: 19px;\r\n\tbackground-color: #333;\r\n\t\r\n}\r\n\r\n.BOX1 {\r\n\tposition:absolute;\r\n\tleft:50%;\r\n\ttop:50%;\r\n\tmargin-top:-225px;\r\n\tmargin-left:-360px;\r\n\tvisibility: visible;\r\n}\r\n\r\n.BOX2 {\r\n\tbackground-color: #333;\r\n\tcolor: #fff;\r\n\ttext-align: center;\r\n\tpadding: 12px;\r\n\twidth: 100%;\r\n\toverflow: auto;\r\n\theight: auto;\r\n\tposition: fixed;\r\n\tbottom: 0px;\r\n}\r\n\r\na:hover {\r\n\tfont-size: 100%;\r\n\ttext-decoration: underline;\r\n\tfont-weight: bold;\r\n}\r\n\r\n.input {\r\n\tfont-family: \"Century Gothic\";\r\n\tcolor: #666;\r\n\tbackground-color: #F0F0F0;\r\n\tmargin: 1px;\r\n\tpadding: 6px;\r\n\tborder-top-style: none;\r\n\tborder-right-style: none;\r\n\tborder-bottom-style: none;\r\n\tborder-left-style: none;\r\n\twidth: 85px;\r\n\tfont-size: 14px;\r\n\t}\r\n\r\n.button {\r\n\tfont-family: \"Century Gothic\";\r\n\tcolor: #FFFFFF;\r\n\tbackground-color: #0CF;\r\n\tpadding: 6px;\r\n\ttext-align: center;\r\n\twidth: 170px;\r\n\tborder: 1px inset #09F;\r\n\tborder-radius: 28px;\r\n\tfont-size: 14px;\r\n\t}\r\n\r\n.input_osg {\r\n\tfont-family: \"Century Gothic\";\r\n\tcolor: #666;\r\n\tbackground-color: #F0F0F0;\r\n\theight: 20px;\r\n\tmargin: 1px;\r\n\tpadding: 6px;\r\n\ttext-align: center;\r\n\twidth: 72px;\r\n\tfont-size: 15px;\r\n\tborder-top-style: none;\r\n\tborder-right-style: none;\r\n\tborder-bottom-style: none;\r\n\tborder-left-style: none;\r\n\t}\r\n\r\n\r\n.button_osg {\r\n  font-family: Century Gothic;\r\n  width: 300px;\r\n  background: #3498db;\r\n  border: 1px inset #3498db;\r\n  border-radius: 28px;\r\n  color: #ffffff;\r\n  font-size: 15px;\r\n  padding: 6px;\r\n}\r\n\r\n.button_osg:hover {\r\n  background: #3cb0fd;\r\n  border: 1px inset #3cb0fd;\r\n}\r\n\r\n.font_note {\r\n\tfont-size: 13px;\r\n}\r\n\r\n.round{\r\n\tborder-collapse: separate;\r\n\tborder: 0px solid #333333;\r\n\tbackground-color: #F0F0F0;\r\n\tborder-radius: 28px;\r\n}\r\n\r\n</style>\r\n<script language=\"JavaScript\">\r\n//Kelvin++ 2014-08-07 check is it opening from EZ server, then auto-login use ez.htm\r\nif(document.URL.indexOf(\"?a=\") > 0){\r\n\tlocation.href=\"/nobody/aplogin.htm?parameter=\"+Base64.encode(document.URL.split(\"?\")[1])+\"&InitPath=EZ_LOGIN\"+\"&rnd=\"+Math.random();\r\n}\r\n/* ========== loginDevice.js ========== */\r\nfunction getCookie(c_name){\r\n\tif (document.cookie.length>0){\r\n\t\tc_start=document.cookie.indexOf(c_name + \"=\");\r\n\t\tif (c_start!=-1){ \r\n\t\t\tc_start=c_start + c_name.length+1; \r\n\t\t\tc_end=document.cookie.indexOf(\";\",c_start);\r\n\t\t\tif (c_end==-1) c_end=document.cookie.length;\r\n\t\t\treturn unescape(document.cookie.substring(c_start,c_end));\r\n\t\t} \r\n\t}\r\n\treturn \"\";\r\n}\r\n\r\nfunction setCookie(c_name,value,expiredays){\r\n\tvar exdate=new Date();\r\n\texdate.setDate(exdate.getDate()+expiredays);\r\n\tdocument.cookie=c_name+ \"=\" +escape(value)+((expiredays==null) ? \"\" : \";expires=\"+exdate.toGMTString());\r\n}\r\n\r\nfunction delCookie(name){\r\n\tvar exp = new Date();\r\n\texp.setTime(exp.getTime() - 1);\r\n\tvar cval = getCookie(name);\r\n\tif(cval != null)\r\n\t\tdocument.cookie = name + \"=\"+cval+\";expires=\"+exp.toGMTString();\r\n}\r\n\r\nfunction getURL(){\r\n\tvar a = document.URL.split(\"//\");\r\n\ta = (a[1] ? a[1] : a[0]).split(\"/\"); \r\n\treturn a[0];\r\n}\r\n\r\nfunction getPort(){\r\n\turlArr = getURL().split(\":\");\r\n\tif(urlArr.length == 1)\r\n\t\treturn \"80\";\r\n\telse\r\n\t\treturn urlArr[1];\r\n}\r\n\r\nvar w = window.screen.availWidth;\r\n\r\nif(getCookie(\"ViewMode\")!=\"Classic\"){\r\n\tif(w <= 800){//mobile screen width < 800\r\n\t\tif(w > 320)\r\n\t\t\tlocation.href=\"/nobody/mobile480.htm?Login=Captcha\";\r\n\t\telse if(w <= 240)\r\n\t\t\tlocation.href=\"/nobody/mobile240.htm?Login=Captcha\";\r\n\t\telse\r\n\t\t\tlocation.href=\"/nobody/mobile.htm?Login=Captcha\";\r\n\t}\r\n}\r\n\r\n//no use\r\nfunction isMobileBrowser(){\r\n\tvar u = navigator.userAgent.toLowerCase();\r\n\t\r\n\tif(u.indexOf(\"midp\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"mobile\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"iphone\") != -1 || u.indexOf(\"ipod\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"series60\") != -1 || u.indexOf(\"symbian\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"blackberry\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"android\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"windows ce\") != -1 || u.indexOf(\"windows phone\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"htc\") != -1 || u.indexOf(\"hd2_\") != -1)\r\n\t\treturn true;\r\n\telse if(u.indexOf(\"palm\") != -1)\r\n\t\treturn true;\r\n\telse\r\n\t\treturn false;\r\n}\r\n\r\n/* ========== webtoolkit.base64.js ========== */\r\nvar Base64={_keyStr:\"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=\",encode:function(c){var a=\"\";var k,h,f,j,g,e,d;var b=0;c=Base64._utf8_encode(c);while(b<c.length){k=c.charCodeAt(b++);h=c.charCodeAt(b++);f=c.charCodeAt(b++);j=k>>2;g=((k&3)<<4)|(h>>4);e=((h&15)<<2)|(f>>6);d=f&63;if(isNaN(h)){e=d=64}else{if(isNaN(f)){d=64}}a=a+this._keyStr.charAt(j)+this._keyStr.charAt(g)+this._keyStr.charAt(e)+this._keyStr.charAt(d)}return a},decode:function(c){var a=\"\";var k,h,f;var j,g,e,d;var b=0;c=c.replace(/[^A-Za-z0-9\\+\\/\\=]/g,\"\");while(b<c.length){j=this._keyStr.indexOf(c.charAt(b++));g=this._keyStr.indexOf(c.charAt(b++));e=this._keyStr.indexOf(c.charAt(b++));d=this._keyStr.indexOf(c.charAt(b++));k=(j<<2)|(g>>4);h=((g&15)<<4)|(e>>2);f=((e&3)<<6)|d;a=a+String.fromCharCode(k);if(e!=64){a=a+String.fromCharCode(h)}if(d!=64){a=a+String.fromCharCode(f)}}a=Base64._utf8_decode(a);return a},_utf8_encode:function(b){b=b.replace(/\\r\\n/g,\"\\n\");var a=\"\";for(var e=0;e<b.length;e++){var d=b.charCodeAt(e);if(d<128){a+=String.fromCharCode(d)}else{if((d>127)&&(d<2048)){a+=String.fromCharCode((d>>6)|192);a+=String.fromCharCode((d&63)|128)}else{a+=String.fromCharCode((d>>12)|224);a+=String.fromCharCode(((d>>6)&63)|128);a+=String.fromCharCode((d&63)|128)}}}return a},_utf8_decode:function(a){var b=\"\";var d=0;var e=c1=c2=0;while(d<a.length){e=a.charCodeAt(d);if(e<128){b+=String.fromCharCode(e);d++}else{if((e>191)&&(e<224)){c2=a.charCodeAt(d+1);b+=String.fromCharCode(((e&31)<<6)|(c2&63));d+=2}else{c2=a.charCodeAt(d+1);c3=a.charCodeAt(d+2);b+=String.fromCharCode(((e&15)<<12)|((c2&63)<<6)|(c3&63));d+=3}}}return b}};\r\n\r\n/* ========== login.js ========== */\r\nvar ff;\r\nvar CheckOnlySupportIE = false;\r\nvar DVR_ONLY_SUPPORT_IE = \"_042_082_162_046_\";\r\nvar isIEBrowser = false;\r\n\r\nif ((navigator.appName == \"Microsoft Internet Explorer\") && (navigator.platform != \"MacPPC\") && (navigator.platform != \"Mac68k\")) {\r\n  isIEBrowser = true;\r\n}\r\n\r\n/* disabled backspace key */\r\nif(typeof window.event != 'undefined'){\r\n\tdocument.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}\r\n}else{\r\n\tdocument.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}\r\n}\r\n\r\nfunction init(){\r\n\tff = document.myForm;\r\n\tff.Username.value = \"\";\r\n\tff.Password.value = \"\";\r\n\t/*\r\n\tsetTimeout(\"getCaptchaImg()\", 1000);\r\n\t\r\n\tdocument.body.style.display = \"none\";\r\n\tvar NW = getCookie(idURL+\"NW\");\r\n\tif(NW != \"\" && NW != null){\r\n\t\tvar aaa = Base64.decode(NW).split(\":\");\r\n\t\tff.Username.value = aaa[0];\r\n\t\tff.Password.value = aaa[1];\r\n\t\tif(getCookie(idURL+\"StaySign\") == \"1\"){\r\n\t\t\tdocument.getElementById(\"StaySignedIn\").checked = true;\r\n\t\t\tif(getCookie(idURL+\"StaySignErr\") != \"1\"){\r\n\t\t\t\tdelCookie(\"captcha\");\r\n\t\t\t\tcheck();\r\n\t\t\t}else{\r\n\t\t\t\tdelCookie(idURL+\"StaySignErr\");\r\n\t\t\t\tdocument.body.style.display = \"block\";\r\n\t\t\t\tff.Password.value = \"\";\r\n\t\t\t\tff.Password.focus();\r\n\t\t\t}\r\n\t\t}else{\r\n\t\t\tdocument.getElementById(\"StaySignedIn\").checked = false;\r\n\t\t\tdocument.body.style.display = \"block\";\r\n\t\t}\r\n\t}else{\r\n\t\tdocument.body.style.display = \"block\";\r\n\t}\r\n\t*/\r\n\tff.Username.focus();\r\n}\r\n\r\nfunction getCaptchaImg(){\r\n\tdocument.getElementById(\"Captcha\").src = \"/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp\";\r\n}\r\n\r\nfunction goCheck(e){\r\n\tif(window.event && e.keyCode ==13) //IE\r\n\t\tcheck(); \r\n\telse if(e.which == 13) // Netscape/Firefox/Opera\r\n\t\tcheck();\r\n}\r\n\r\nfunction ToUpperCase(obj){\r\n\tobj.value = obj.value.toUpperCase();\r\n}\r\n\r\nfunction check(){\r\n\tif(!ff){return false;}\r\n\t\r\n\tdocument.cookie = \"x=1\";\r\n\tif (document.cookie.indexOf(\"x=\")==-1){\r\n\t\tdocument.body.style.display = \"block\";\r\n\t\talert(\"Browser Cookie not supported.\");\r\n\t\tfrmReload();\r\n\t\treturn false;\r\n\t}\r\n\tvar actionStr = \"/cgi-bin/nobody/VerifyCode.cgi\"\r\n\tactionStr += \"?account=\"+Base64.encode(ff.Username.value+\":\"+ff.Password.value);\r\n\t//actionStr += \"&captcha_code=\"+ff.CaptchaCode.value.toUpperCase();\r\n\t//actionStr += \"&verify_code=\"+getCookie(\"captcha\");\r\n\tactionStr += \"&rnd=\"+Math.random();\r\n\tvar httpObj = createHttpRequestObj();\r\n\thttpObj.onreadystatechange = function(){\r\n\t\tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n\t\t\tvar objStr    = new Object();\r\n\t\t\tobjStr.strSrc = httpObj.responseText;\r\n\t\t\ttmpStr = objStr.strSrc.split(\"\\n\");\r\n\t\t\tif (tmpStr[1] == \"OK\"){\r\n\t\t\t\t//if(document.getElementById(\"StaySignedIn\").checked)\r\n\t\t\t\t//\tsetLastUserSignIn();\r\n\t\t\t\t//setCookie(\"brokenhdd\", \"\");\r\n\t\t\t\tsetCookie(\"LifeTime\", \"\");\r\n\t\t\t\t//setCookie(\"ReloWebTime\", 0);\r\n\t\t\t\tlocation.href=\"/index.htm\";\r\n\t\t\t}else{\r\n\t\t\t\t//setCookie(idURL+\"StaySignErr\", \"1\");\r\n\t\t\t\t//document.body.style.display = \"block\";\r\n\t\t\t\talert(tmpStr[1]);\r\n\t\t\t\tfrmReload();\r\n\t\t\t}\r\n\t\t}\r\n\t};\r\n\thttpObj.open(\"get\", actionStr, true);\r\n\thttpObj.send(null);\r\n\treturn false;\r\n}\r\n\r\nvar idURL = getURL()+\":\"+getPort();\r\nfunction setLastUserSignIn(){\r\n\tsetCookie(idURL+\"NW\", Base64.encode(ff.Username.value+\":\"+ff.Password.value), 30);\r\n\tsetCookie(idURL+\"StaySign\", (document.getElementById(\"StaySignedIn\").checked)?\"1\":\"0\", 30);\r\n\tsetCookie(idURL+\"StaySignErr\", \"0\");\r\n}\r\n\r\nfunction getUserLevel(){\r\n\tvar httpObj = createHttpRequestObj();\r\n\trequestData = \"/cgi-bin/guest/Login.cgi?rnd=\"+Math.random();\r\n\thttpObj.onreadystatechange = function(){\r\n\t\tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n\t\t\tvar objStr    = new Object();\r\n\t\t\tobjStr.strSrc = httpObj.responseText;\r\n\t\t\t\r\n\t\t\tif (CheckOnlySupportIE && GetCgiParam(objStr, \"Product-ID-Minor=\") == 1){\r\n\t\t\t\tvar pid = objStr.strGet;\r\n\t\t\t\tvar pidc = \"_\"+pid+\"_\";\r\n\t\t\t\tif(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){\r\n\t\t\t\t\t//alert(\"This machine is not supported, please visit 'www.avtech.com.tw' for more details.\");\r\n\t\t\t\t\tif(confirm(\"This machine is not supported.\\nDo you want to get more details?\")){\r\n\t\t\t\t\t\tlocation.href = \"http://www.eagleeyescctv.com/jump/dvr.htm\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\treturn false;\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\t\r\n\t\t\tif (GetCgiParam(objStr, \"User-Level=\") == 1){\r\n\t\t\t\tsetCookie(\"LifeTime\", \"\");\r\n\t\t\t\tsetCookie(\"ReloWebTime\", 0);\r\n\t\t\t\tif(objStr.strGet == \"SUPERVISOR\")\r\n\t\t\t\t\tlocation.href=\"/index.htm\";\r\n\t\t\t\telse\r\n\t\t\t\t\tlocation.href=\"/index.htm\";\r\n\t\t\t}else{alert('Login Failed.');}\r\n\t\t}\r\n\t};\r\n\thttpObj.open(\"get\", requestData, true);\r\n\thttpObj.send(null);\r\n}\r\n\r\nfunction frmReload(){\r\n\tff.Username.value=\"\";\r\n\tff.Password.value=\"\";\r\n\t//ff.CaptchaCode.value=\"\";\r\n\tlocation.reload();\r\n}\r\n\r\nfunction createHttpRequestObj(){\r\n\tvar XMLhttpObject = null;\r\n\ttry {XMLhttpObject = new XMLHttpRequest();}\r\n\tcatch(e){\r\n\t\ttry {XMLhttpObject = new ActiveXObject(\"Msxml2.XMLHTTP\");}\r\n\t\tcatch(e){\r\n\t\t\ttry {XMLhttpObject = new ActiveXObject(\"Microsoft.XMLHTTP\");}\r\n\t\t\tcatch(e) {return null;}\r\n\t\t}\r\n\t}\r\n\treturn XMLhttpObject;\r\n}\r\n\r\nfunction GetCgiParam(objStr, strSearch){\r\n\tvar curr_pos;var result;\r\n\tobjStr.strSearch=strSearch;\r\n\tobjStr.curr_pos=0;\r\n\tdo{\r\n\t\tresult = 1;\r\n\t\tcurr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.curr_pos = curr_pos + objStr.strSearch.length;\r\n\t\tcurr_pos = objStr.strSrc.indexOf('\\n', objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tif (objStr.curr_pos < objStr.strSrc.length){\r\n\t\t\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);\r\n\t\t\t\tobjStr.curr_pos = curr_pos;\t\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, curr_pos);\r\n\t\tobjStr.curr_pos = curr_pos;\r\n\t} while(0);\r\n\treturn result;\r\n}\r\n\r\nfunction goMobile(){\r\n\tsetCookie(\"ViewMode\", \"Mobile\");\r\n\tvar w = window.screen.availWidth;\r\n\t//alert(w);\r\n\tif(w > 320)\r\n\t\tlocation.href=\"/nobody/mobile480.htm?Login=Captcha\";\r\n\telse if(w <= 240)\r\n\t\tlocation.href=\"/nobody/mobile240.htm?Login=Captcha\";\r\n\telse\r\n\t\tlocation.href=\"/nobody/mobile.htm?Login=Captcha\";\r\n}\r\n</script>\r\n</head>\r\n<body onload=\"init()\">\r\n\t<div class=\"BOX1\">\r\n\t\t<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n\t\t\t<tr>\r\n\t\t\t\t<td valign=\"middle\"><img width=\"300\" height=\"90\" src=\"data:image/png;base64,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",
   "datamd5" : "97fc3fec8a97ccca4188f7f67e4556e2",
   "datammh3" : -28330540,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "slt.lk"
   ],
   "geolocus" : {
      "asn" : "AS9329",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "LK",
      "countryname" : "Sri Lanka",
      "domain" : [
         "slt.com.lk",
         "slt.lk"
      ],
      "isineu" : "false",
      "latitude" : "7.873054",
      "location" : "7.873054,80.771797",
      "longitude" : "80.771797",
      "netname" : "SLTADSL-SLT-LK",
      "organization" : "Sri Lanka Telecom Ltd",
      "subnet" : "112.135.187.0/24"
   },
   "host" : [
      "v4"
   ],
   "hostname" : [
      "v4.dns.slt.lk"
   ],
   "ip" : "112.135.187.185",
   "ipv6" : "false",
   "latitude" : "6.9200",
   "location" : "6.9200,79.8772",
   "longitude" : "79.8772",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Sri Lanka Telecom Internet",
   "os" : "Linux",
   "osvendor" : "Linux",
   "osversion" : "2",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "v4.dns.slt.lk"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "dns.slt.lk"
   ],
   "subnet" : "112.134.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "lk"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 121.121.183.29:3780 (tcp/http) - last seen on 2024-11-07 at 05:35:52 UTC

    • IP
      121.121.183.29
      Network
      121.120.0.0/14
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://121.121.183.29:3780/ 200

      HTTP Title
      SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363
      ASN
      AS9534
      Organization
      Binariang Berhad
      Protocol
      http
      Source
      datascan
    • Operating System
      Microsoft Windows
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c73df22159fa1add03f7b584e7896e6d
      HTTP Header MD5
      3ca0601b9e171437df1cbed04159884a
      HTTP Body MD5
      6dd0a7badb4c64472952c3ebf3f8982e 
    • HTTP/1.1 200 OK
Server: RemObjects SDK for .NET HTTP Server/5.0
Connection: Close
Content-Type: text/html; charset=utf-8
Content-Length: 1700

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>
    <meta name="GENERATOR" content="Remoting SDK for .NET v9.4.107.1363">
    <style>
        body
        {
            background-color: #f7f7f7;
            margin: 0;
            padding: 0;
            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;
            font-size: 10pt;
        }
        .header
        {
            padding: 5px;
            background-color: #c0c0c0;
            border-bottom: 5px solid #808080;
            font-size: 1.5em;
        }
        .body
        {
            padding: 5px;
        }
        .footer
        {
            padding: 5px;
            border-top: 1px solid #808080;
            font-size: 0.8em;
        }
        .h2
        {
            font-weight: bold;
        }
    </style>
</head>
<body>
    <div class="header">
        <img src="/favicon.ico" style="padding-right: 5px;" />SmartIMSLibrary
    </div>
    <div class="body">
        
        <p>
            <a href="/doc">View full documentation</a> | <a href="/rodl">View RODL</a>
        </p>
        <p>
            
        </p>
        <p class="h2">Service Dispatchers:</p>
        <ul>
            <li><a href="/bin">/bin</a> <i>(BinMessage)</i></li>
        </ul>
        
    </div>
    <div class="footer">
        Framework Version v4.0.30319.42000
        <br />
        Remoting SDK for .NET v9.4.107.1363
        <br /><br />
        RemObjects Software, LLC. <a href="http://www.remobjects.com">remobjects.com</a>.
    </div>
</body>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:52.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "remobjects.com"
         ],
         "hostname" : [
            "www.remobjects.com"
         ],
         "ip" : [
            "9.4.107.136"
         ],
         "url" : [
            "http://www.remobjects.com"
         ]
      },
      "http" : {
         "bodymd5" : "6dd0a7badb4c64472952c3ebf3f8982e",
         "bodymmh3" : -100720350,
         "headermd5" : "3ca0601b9e171437df1cbed04159884a",
         "headermmh3" : 841912321,
         "title" : "SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363"
      },
      "length" : 1849
   },
   "asn" : "AS9534",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: RemObjects SDK for .NET HTTP Server/5.0\r\nConnection: Close\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 1700\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Transitional//EN\">\r\n<html>\r\n<head>\r\n    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>\r\n    <meta name=\"GENERATOR\" content=\"Remoting SDK for .NET v9.4.107.1363\">\r\n    <style>\r\n        body\r\n        {\r\n            background-color: #f7f7f7;\r\n            margin: 0;\r\n            padding: 0;\r\n            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;\r\n            font-size: 10pt;\r\n        }\r\n        .header\r\n        {\r\n            padding: 5px;\r\n            background-color: #c0c0c0;\r\n            border-bottom: 5px solid #808080;\r\n            font-size: 1.5em;\r\n        }\r\n        .body\r\n        {\r\n            padding: 5px;\r\n        }\r\n        .footer\r\n        {\r\n            padding: 5px;\r\n            border-top: 1px solid #808080;\r\n            font-size: 0.8em;\r\n        }\r\n        .h2\r\n        {\r\n            font-weight: bold;\r\n        }\r\n    </style>\r\n</head>\r\n<body>\r\n    <div class=\"header\">\r\n        <img src=\"/favicon.ico\" style=\"padding-right: 5px;\" />SmartIMSLibrary\r\n    </div>\r\n    <div class=\"body\">\r\n        \r\n        <p>\r\n            <a href=\"/doc\">View full documentation</a> | <a href=\"/rodl\">View RODL</a>\r\n        </p>\r\n        <p>\r\n            \r\n        </p>\r\n        <p class=\"h2\">Service Dispatchers:</p>\r\n        <ul>\r\n            <li><a href=\"/bin\">/bin</a> <i>(BinMessage)</i></li>\r\n        </ul>\r\n        \r\n    </div>\r\n    <div class=\"footer\">\r\n        Framework Version v4.0.30319.42000\r\n        <br />\r\n        Remoting SDK for .NET v9.4.107.1363\r\n        <br /><br />\r\n        RemObjects Software, LLC. <a href=\"http://www.remobjects.com\">remobjects.com</a>.\r\n    </div>\r\n</body>\r\n</html>",
   "datamd5" : "c73df22159fa1add03f7b584e7896e6d",
   "datammh3" : -1125533508,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9534",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "maxis.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "MAXISNET-HSDPA",
      "organization" : "Maxis Broadband Sdn.Bhd",
      "subnet" : "121.121.0.0/16"
   },
   "ip" : "121.121.183.29",
   "ipv6" : "false",
   "latitude" : "3.1418",
   "location" : "3.1418,101.6727",
   "longitude" : "101.6727",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Binariang Berhad",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "121.120.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 47.89.187.81:3780 (tcp/http) - last seen on 2024-11-07 at 05:28:25 UTC

    • IP
      47.89.187.81
      Network
      47.89.128.0/17
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS sUse
      URL

      http://47.89.187.81:3780/ 200

      HTTP Title
      WatchGuard Access Portal
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      ASN
      AS45102
      Organization
      Alibaba US Technology Co., Ltd.
      Protocol
      http
      Source
      datascan
    • Operating System
      Cisco IOS sUse
      Product
      Cisco WebVPN
      HTTP Component(s)
      Microsoft ASP.NET 4.0.30319 Metabase Metabase Atlassian Confluence Drupal Drupal 8 PHP PHP Gitlab Gitlab Roundcube Webmail Jenkins Jenkins 2.121.3 SPIP SPIP 4.1.11 MobileIron Core Oracle Java
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      5cb65315546f0a528020a4ee538f7e1e
      HTTP Header MD5
      01e91c33636652b6f93ad6a195e011e1
      HTTP Body MD5
      b0b0cd891720f184e042caae7c7d4b6e 
    • HTTP/1.1 200 OK
Cf-Cache-Status: DYNAMIC
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 105460
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Nel: {'report_to': 'network-errors', 'max_age': 2592000, 'failure_fraction': 0.01, 'success_fraction': 0.0001}
Pragma: private
Server: Linux,STUNNEL/1.0,DIR-850LVer1.06
Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
Set-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure
Set-Cookie: acSamlv2Token=; path=/; secure;
Set-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;
Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
Set-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;
Set-Cookie: SUPPORTCHROMEOS=1; path=/; secure;
Set-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;
Set-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: webvpn=A9790AFEACDEFA01FAAEAFEWFF390AE; path=/; secure;
Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
Set-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains
Set-Cookie: sesskey=21263a2bf; path=/;
Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
Via: 1.1 51766bfb56389c696c1525db90e16f23.cloudfront.net (CloudFront)
X-Akaunting: Free Accounting Software
X-Aspnet-Version: 4.0.30319
X-Backside-Transport: FAIL FAIL
X-Cache: MISS from Hello
X-Cache-Lookup: NONE from ezproxies.com:3128
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 8 (https://www.drupal.org)
X-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)
X-Influxdb-Build: OSS
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Permitted-Cross-Domain-Policies: none
X-Root: root
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 05:28:25 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e0d==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>WatchGuard Access Portal</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwZD09
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 k
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:28:25.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "drupal.org",
            "micros-hosting.com"
         ],
         "file" : [
            "admin-ajax.php",
            "dvrremoteap.exe",
            "index.php",
            "dvfplayer.zip",
            "dvrremoteap_x64.exe",
            "cloud_index.php"
         ],
         "hostname" : [
            "micros-hosting.com",
            "www.drupal.org"
         ],
         "ip" : [
            "192.168.1.4",
            "1.0.0.36",
            "192.168.0.1",
            "192.168.1.10",
            "192.168.1.1",
            "7.7.31.1"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4",
            "https://www.drupal.org"
         ]
      },
      "http" : {
         "bodymd5" : "b0b0cd891720f184e042caae7c7d4b6e",
         "bodymmh3" : 1517655726,
         "component" : [
            {
               "productversion" : "4.0.30319",
               "productvendor" : "Microsoft",
               "product" : "ASP.NET"
            },
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            },
            {
               "productvendor" : "Oracle",
               "product" : "Java"
            },
            {
               "productvendor" : "Roundcube",
               "product" : "Webmail"
            },
            {
               "product" : "Jenkins",
               "productvendor" : "Jenkins",
               "productversion" : "2.121.3"
            },
            {
               "product" : "Core",
               "productvendor" : "MobileIron"
            },
            {
               "product" : "Metabase",
               "productvendor" : "Metabase"
            },
            {
               "productvendor" : "Gitlab",
               "product" : "Gitlab"
            },
            {
               "productvendor" : "PHP",
               "product" : "PHP"
            },
            {
               "productvendor" : "SPIP",
               "productversion" : "4.1.11",
               "product" : "SPIP"
            },
            {
               "product" : "Drupal",
               "productvendor" : "Drupal",
               "productversion" : "8"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "01e91c33636652b6f93ad6a195e011e1",
         "headermmh3" : 1782157026,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "title" : "WatchGuard Access Portal"
      },
      "length" : 16307
   },
   "asn" : "AS45102",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCf-Cache-Status: DYNAMIC\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105460\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nNel: {'report_to': 'network-errors', 'max_age': 2592000, 'failure_fraction': 0.01, 'success_fraction': 0.0001}\r\nPragma: private\r\nServer: Linux,STUNNEL/1.0,DIR-850LVer1.06\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure\r\nSet-Cookie: acSamlv2Token=; path=/; secure;\r\nSet-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nSet-Cookie: JSESSIONID=818E3539F13611E2EA4D5BFB48AE058C.jvml; Path=/mifs; OFBiz.Visitor=10004; Secure; HttpOnly;SameSite=lax;\r\nSet-Cookie: SUPPORTCHROMEOS=1; path=/; secure;\r\nSet-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;\r\nSet-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;\r\nSet-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: webvpn=A9790AFEACDEFA01FAAEAFEWFF390AE; path=/; secure;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains\r\nSet-Cookie: sesskey=21263a2bf; path=/;\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nVia: 1.1 51766bfb56389c696c1525db90e16f23.cloudfront.net (CloudFront)\r\nX-Akaunting: Free Accounting Software\r\nX-Aspnet-Version: 4.0.30319\r\nX-Backside-Transport: FAIL FAIL\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: NONE from ezproxies.com:3128\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)\r\nX-Influxdb-Build: OSS\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Permitted-Cross-Domain-Policies: none\r\nX-Root: root\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 05:28:25 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e0d==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>WatchGuard Access Portal</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwZD09\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 k",
   "datamd5" : "5cb65315546f0a528020a4ee538f7e1e",
   "datammh3" : -968346294,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS45102",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "alibaba-inc.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "organization" : "Alibaba Cloud LLC",
      "subnet" : "47.89.128.0/18"
   },
   "ip" : "47.89.187.81",
   "ipv6" : "false",
   "latitude" : "38.6583",
   "location" : "38.6583,-77.2481",
   "longitude" : "-77.2481",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Alibaba US Technology Co., Ltd.",
   "os" : "IOS",
   "osdistribution" : "sUse",
   "osvendor" : "Cisco",
   "port" : 3780,
   "product" : "WebVPN",
   "productvendor" : "Cisco",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "47.89.128.0/17",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 18.233.170.57:3780 (tcp/http) - last seen on 2024-11-07 at 05:27:20 UTC

    • IP
      18.233.170.57
      Network
      18.232.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://18.233.170.57:3780/ 200

      HTTP Title
      KACE Systems Management Appliance Service Center
      Reverse DNS
      ec2-18-233-170-57.compute-1.amazonaws.com
      ASN
      AS14618
      Organization
      AMAZON-AES
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Apache HTTP Server
      HTTP Component(s)
      Quest KACE Systems Management Appliance Bootstrap Bootstrap
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      09d91c1b69c40818e7efdf0bf761862d
      HTTP Header MD5
      114e612087ffeaf5f76927dd76720718
      HTTP Body MD5
      d408fd011fef9e2daec83a8aa38ee7ab
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324 
    • HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 03:53:21 GMT
Server: Apache
Expires: Thu, 07 Nov 2024 03:53:21 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=2jz0qsqe055snp1ygwirp37e1w90im2j; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

<!DOCTYPE html>
<html data-template="welcome" data-page-type="welcome" data-area="user" lang="en" ><head>
        <script id="fr-fek">try{(function (k){localStorage.FEK=k;t=document.getElementById('fr-fek');t.parentNode.removeChild(t);})('mIBEVFBOHC1d2UNYVM==')}catch(e){}</script>
        <meta http-equiv="X-UA-Compatible" content="IE=9; IE=EDGE" /><meta http-equiv="content-type" content="text/html; charset=utf-8" /><meta name="robots" content="noindex"><title>KACE Systems Management Appliance Service Center</title><link rel="shortcut icon" href="/favicon.ico"><link type="text/css" rel="stylesheet" href="/common/css/minified/vendor/select2.css?build=10.1.99" /><link type="text/css" rel="stylesheet" media="print" href="/common/css/minified/print.css?build=10.1.99" /><link type="text/css" rel="stylesheet" href="/common/css/minified/vendor/froala_style.css?build=10.1.99" /><!--[if lte IE 9]><link rel="stylesheet" type="text/css" href="/common/css/minified/kace-theme-ie.css?build=10.1.99" /><![endif]--><link type="text/css" rel="stylesheet" href="/common/css/minified/kace-theme-light.css?build=10.1.99" /><!--[if IE]><script type="text/javascript" src="/common/js/minified/vendor/html5.js?build=10.1.99"></script><![endif]--><script type="text/javascript" src="/common/js/minified/kpolyfills.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/jquery.fixes.js?build=10.1.99"></script><script type="text/javascript">jQuery.noConflict();</script><script type="text/javascript" src="/common/js/minified/vendor/jquery.cookie.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery-ui.custom.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.json.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/bootstrap.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/select2.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.form.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.wheelmouse.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/bootbox.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/google.html-sanitizer.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/lang.php?locale=en&build=10.1.99"></script><script type="text/javascript" src="/common/js/scw.php?locale=en&build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/functions.js?build=10.1.99"></script></head><body id="welcome" ><div class="k-main k-main-collapsed">
<div class="k-page-message-box-container" style="visibility:collapse; display:none;">

    
        <div class="k-page-message-box k-error" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-warning" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-success" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-info" style="display:none;" >
                </div>
    </div>
        <form id="LoginForm" name="LoginForm" method="post" action="/userui/check_login.php" target="_self">
        <input type="hidden" name="CSRF_TOKEN" value="6446dz07g603fvw548hbqxozh7uzpcgrfi6y33e7ysdlh41yjb0t2jtwi6v2zgf7k2krgvup4xea52rpo97majpbr4wuyhqo50ww1p6b2nz6e1g7vda0q4sosiiud8ld" />
        <img class="k-logo k-user-logo" id="welcomeLogo" alt="K1000 Logo" src="/packages/partnerlogos/userportal_logo" data-interface="user" />
        <h1>Welcome and Login...</h1>
        <div class="wysiwyg fr-view"><p>Welcome to the User Console. The &quot;Downloads&quot; tab contains software available for you to download and install. You can search on software by title, vendor, or label. Please only download and install software that you require.</p><p><br></p><p>You must login in to the User Console to browse software. Please enter your organization&#39;s common user name and password below to login.&nbsp;</p></div>
                <div class="button_login">
            <div class="k-login">
                <div id='loginid'>
                    <label>Login (user name):</label>
                    <input type="text" maxlength="50" class="k-text-field" name="LOGIN_NAME" />
                </div>
                <div id='password'>
                    <label>Password:</label>
                    <input type="password" class="k-text-field" maxlength="50" name="LOGIN_PASSWORD" autocomplete="off" />
                </div>
            </div>
            <div class="k-login-note">
                (Note: Credentials will be saved on this computer between sessions unless you explicitly "Log Out")
            </div>
        </div>

        <div class="k-login" id="org_select">
                            <input id="orgtextbox" type="hidden" name="ORGANIZATION" value="Default" />
                    </div>

        <div id="samllogin" style="margin-top:10px;display:none;" class="button_saml">
            <button id="button_saml" name="saml" class="k-btn-dark button_saml">Login</button>
            <p style="margin-top:5px;"><a id="showotherlogin">Local Sign On</a></p>
        </div>

        <buttons>
            <button id="button_login" name="save" class="k-btn-dark button_login">Login</button>
            <p style="margin-top:5px;" class="button_login"><a id="showsamllogin">Single Sign On</a></p>
        </buttons>

    </form>
    </div><footer><span class="k-copyright">� 2023 Quest Software Inc. All Rights Reserved.</span></footer><div id="alert-div"></div><script type="text/javascript" src="/common/js/minified/nav.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/core.js?build=10.1.99"></script><script type="text/javascript">ShowMessageBox();</script>

<script type="text/javascript">var loginmode="local";var login_timeout_active=false;const saml_orgs={ 'Default':{ 'name':'Default','id':'1','required':'','enabled':''},};function all_orgs_saml_enabled(){ var rval=false;for(var key in saml_orgs){ if(saml_orgs.hasOwnProperty(key)){ if(saml_orgs[key].enabled==false){ return false;}else{ rval=true;}}}return rval;}function show_hide_saml(org){ var saml=false;for(var key in saml_orgs){ if(saml_orgs.hasOwnProperty(key)){ if((key==org)&&(saml_orgs[key].enabled==true)){ saml=true;}}}if(saml||all_orgs_saml_enabled()){ loginmode="saml";jQuery('.button_login').hide();jQuery('.button_saml').show();jQuery('#org_select').attr('class','');jQuery('#showsamllogin').show();}else{ loginmode="local";jQuery('.button_login').show();jQuery('.button_saml').hide();jQuery('#showsamllogin').hide();jQuery('#org_select').attr('class','k-login');jQuery('[name="LOGIN_NAME"]').focus();}};function set_local_focue(){ var last_user='';if(last_user!=''){ jQuery('[name="LOGIN_NAME"]').val(last_user);jQuery('[name="LOGIN_PASSWORD"]').focus();}else{ jQuery('[name="LOGIN_NAME"]').focus();}};function lockout_timer(){ jQuery('[name="LOGIN_NAME"]').removeAttr('disabled');jQuery('[name="LOGIN_PASSWORD"]').removeAttr('disabled');jQuery('#button_login').removeAttr('disabled');jQuery('.k-error-explanation').hide();jQuery('div').removeClass("k-error-explanation");jQuery('.k-login-locked').hide();jQuery('div').removeClass("k-loader");login_timeout_active=false;}jQuery(document).ready(function(){ jQuery(document).on('keypress',function(e){ if((e.which&&e.which==13)||(e.keyCode&&e.keyCode==13)){ if(login_timeout_active==true){ return false;}if(loginmode=='local'){ jQuery('#LoginForm').submit();}else if(loginmode=='saml'){ jQuery('#button_saml').click();}return false;}else{ return true;}});jQuery('#orgselect').change(function(){ show_hide_saml(this.value);});jQuery('#showotherlogin').on('click',function(event){ jQuery('.button_saml').hide();jQuery('.button_login').show();jQuery('[name="LOGIN_NAME"]').focus();jQuery('#org_select').attr('class','k-login');loginmode="local";event.preventDefault();});jQuery('#showsamllogin').on('click',function(event){ jQuery('.button_saml').show();jQuery('.button_login').hide();jQuery('#org_select').attr('class','');loginmode='saml';event.preventDefault();});jQuery('#button_saml').on('click',function(event){ if(typeof(jQuery('[name="ORGANIZATION"]').select2('val'))=='string'){ var torg=jQuery('[name="ORGANIZATION"]').select2('val');}else{ var torg=jQuery("#orgtextbox").val();}if(torg.length==0){ torg="Default";}event.preventDefault();window.location.href="/common/saml_login.php?active="+torg;});if(typeof(torg=jQuery('[name="ORGANIZATION"]').select2('val'))=='string'){ show_hide_saml(jQuery('[name="ORGANIZATION"]').select2('val'));}else{ show_hide_saml(jQuery('#orgtextbox').val());}});</script>
</body></html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:27:20.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "check_login.php"
         ]
      },
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "d408fd011fef9e2daec83a8aa38ee7ab",
         "bodymmh3" : -1117409595,
         "component" : [
            {
               "product" : "KACE Systems Management Appliance",
               "productvendor" : "Quest"
            },
            {
               "productvendor" : "Bootstrap",
               "product" : "Bootstrap"
            }
         ],
         "headermd5" : "114e612087ffeaf5f76927dd76720718",
         "headermmh3" : -1187318504,
         "title" : "KACE Systems Management Appliance Service Center"
      },
      "length" : 9734
   },
   "asn" : "AS14618",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:53:21 GMT\r\nServer: Apache\r\nExpires: Thu, 07 Nov 2024 03:53:21 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: kboxid=2jz0qsqe055snp1ygwirp37e1w90im2j; path=/; secure; HttpOnly; SameSite=Lax\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: sameorigin\r\nX-XSS-Protection: 1; mode=block\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains; preload\r\nAccess-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type\r\nAccess-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS\r\nX-Kace-Appliance: K1000\r\nX-Ua-Compatible: IE=9,EDGE\r\nContent-Length: 8986\r\nContent-Type: text/html\r\n\r\n<!DOCTYPE html>\n<html data-template=\"welcome\" data-page-type=\"welcome\" data-area=\"user\" lang=\"en\" ><head>\n        <script id=\"fr-fek\">try{(function (k){localStorage.FEK=k;t=document.getElementById('fr-fek');t.parentNode.removeChild(t);})('mIBEVFBOHC1d2UNYVM==')}catch(e){}</script>\n        <meta http-equiv=\"X-UA-Compatible\" content=\"IE=9; IE=EDGE\" /><meta http-equiv=\"content-type\" content=\"text/html; charset=utf-8\" /><meta name=\"robots\" content=\"noindex\"><title>KACE Systems Management Appliance Service Center</title><link rel=\"shortcut icon\" href=\"/favicon.ico\"><link type=\"text/css\" rel=\"stylesheet\" href=\"/common/css/minified/vendor/select2.css?build=10.1.99\" /><link type=\"text/css\" rel=\"stylesheet\" media=\"print\" href=\"/common/css/minified/print.css?build=10.1.99\" /><link type=\"text/css\" rel=\"stylesheet\" href=\"/common/css/minified/vendor/froala_style.css?build=10.1.99\" /><!--[if lte IE 9]><link rel=\"stylesheet\" type=\"text/css\" href=\"/common/css/minified/kace-theme-ie.css?build=10.1.99\" /><![endif]--><link type=\"text/css\" rel=\"stylesheet\" href=\"/common/css/minified/kace-theme-light.css?build=10.1.99\" /><!--[if IE]><script type=\"text/javascript\" src=\"/common/js/minified/vendor/html5.js?build=10.1.99\"></script><![endif]--><script type=\"text/javascript\" src=\"/common/js/minified/kpolyfills.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/jquery.fixes.js?build=10.1.99\"></script><script type=\"text/javascript\">jQuery.noConflict();</script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery.cookie.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery-ui.custom.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery.json.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/bootstrap.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/select2.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery.form.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/jquery.wheelmouse.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/bootbox.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/vendor/google.html-sanitizer.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/lang.php?locale=en&build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/scw.php?locale=en&build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/functions.js?build=10.1.99\"></script></head><body id=\"welcome\" ><div class=\"k-main k-main-collapsed\">\n<div class=\"k-page-message-box-container\" style=\"visibility:collapse; display:none;\">\n\n    \n        <div class=\"k-page-message-box k-error\" style=\"display:none;\" >\n                </div>\n    \n    \n        <div class=\"k-page-message-box k-warning\" style=\"display:none;\" >\n                </div>\n    \n    \n        <div class=\"k-page-message-box k-success\" style=\"display:none;\" >\n                </div>\n    \n    \n        <div class=\"k-page-message-box k-info\" style=\"display:none;\" >\n                </div>\n    </div>\n        <form id=\"LoginForm\" name=\"LoginForm\" method=\"post\" action=\"/userui/check_login.php\" target=\"_self\">\n        <input type=\"hidden\" name=\"CSRF_TOKEN\" value=\"6446dz07g603fvw548hbqxozh7uzpcgrfi6y33e7ysdlh41yjb0t2jtwi6v2zgf7k2krgvup4xea52rpo97majpbr4wuyhqo50ww1p6b2nz6e1g7vda0q4sosiiud8ld\" />\n        <img class=\"k-logo k-user-logo\" id=\"welcomeLogo\" alt=\"K1000 Logo\" src=\"/packages/partnerlogos/userportal_logo\" data-interface=\"user\" />\n        <h1>Welcome and Login...</h1>\n        <div class=\"wysiwyg fr-view\"><p>Welcome to the User Console. The &quot;Downloads&quot; tab contains software available for you to download and install. You can search on software by title, vendor, or label. Please only download and install software that you require.</p><p><br></p><p>You must login in to the User Console to browse software. Please enter your organization&#39;s common user name and password below to login.&nbsp;</p></div>\n                <div class=\"button_login\">\n            <div class=\"k-login\">\n                <div id='loginid'>\n                    <label>Login (user name):</label>\n                    <input type=\"text\" maxlength=\"50\" class=\"k-text-field\" name=\"LOGIN_NAME\" />\n                </div>\n                <div id='password'>\n                    <label>Password:</label>\n                    <input type=\"password\" class=\"k-text-field\" maxlength=\"50\" name=\"LOGIN_PASSWORD\" autocomplete=\"off\" />\n                </div>\n            </div>\n            <div class=\"k-login-note\">\n                (Note: Credentials will be saved on this computer between sessions unless you explicitly \"Log Out\")\n            </div>\n        </div>\n\n        <div class=\"k-login\" id=\"org_select\">\n                            <input id=\"orgtextbox\" type=\"hidden\" name=\"ORGANIZATION\" value=\"Default\" />\n                    </div>\n\n        <div id=\"samllogin\" style=\"margin-top:10px;display:none;\" class=\"button_saml\">\n            <button id=\"button_saml\" name=\"saml\" class=\"k-btn-dark button_saml\">Login</button>\n            <p style=\"margin-top:5px;\"><a id=\"showotherlogin\">Local Sign On</a></p>\n        </div>\n\n        <buttons>\n            <button id=\"button_login\" name=\"save\" class=\"k-btn-dark button_login\">Login</button>\n            <p style=\"margin-top:5px;\" class=\"button_login\"><a id=\"showsamllogin\">Single Sign On</a></p>\n        </buttons>\n\n    </form>\n    </div><footer><span class=\"k-copyright\">\ufffd 2023 Quest Software Inc. All Rights Reserved.</span></footer><div id=\"alert-div\"></div><script type=\"text/javascript\" src=\"/common/js/minified/nav.js?build=10.1.99\"></script><script type=\"text/javascript\" src=\"/common/js/minified/core.js?build=10.1.99\"></script><script type=\"text/javascript\">ShowMessageBox();</script>\n\n<script type=\"text/javascript\">var loginmode=\"local\";var login_timeout_active=false;const saml_orgs={ 'Default':{ 'name':'Default','id':'1','required':'','enabled':''},};function all_orgs_saml_enabled(){ var rval=false;for(var key in saml_orgs){ if(saml_orgs.hasOwnProperty(key)){ if(saml_orgs[key].enabled==false){ return false;}else{ rval=true;}}}return rval;}function show_hide_saml(org){ var saml=false;for(var key in saml_orgs){ if(saml_orgs.hasOwnProperty(key)){ if((key==org)&&(saml_orgs[key].enabled==true)){ saml=true;}}}if(saml||all_orgs_saml_enabled()){ loginmode=\"saml\";jQuery('.button_login').hide();jQuery('.button_saml').show();jQuery('#org_select').attr('class','');jQuery('#showsamllogin').show();}else{ loginmode=\"local\";jQuery('.button_login').show();jQuery('.button_saml').hide();jQuery('#showsamllogin').hide();jQuery('#org_select').attr('class','k-login');jQuery('[name=\"LOGIN_NAME\"]').focus();}};function set_local_focue(){ var last_user='';if(last_user!=''){ jQuery('[name=\"LOGIN_NAME\"]').val(last_user);jQuery('[name=\"LOGIN_PASSWORD\"]').focus();}else{ jQuery('[name=\"LOGIN_NAME\"]').focus();}};function lockout_timer(){ jQuery('[name=\"LOGIN_NAME\"]').removeAttr('disabled');jQuery('[name=\"LOGIN_PASSWORD\"]').removeAttr('disabled');jQuery('#button_login').removeAttr('disabled');jQuery('.k-error-explanation').hide();jQuery('div').removeClass(\"k-error-explanation\");jQuery('.k-login-locked').hide();jQuery('div').removeClass(\"k-loader\");login_timeout_active=false;}jQuery(document).ready(function(){ jQuery(document).on('keypress',function(e){ if((e.which&&e.which==13)||(e.keyCode&&e.keyCode==13)){ if(login_timeout_active==true){ return false;}if(loginmode=='local'){ jQuery('#LoginForm').submit();}else if(loginmode=='saml'){ jQuery('#button_saml').click();}return false;}else{ return true;}});jQuery('#orgselect').change(function(){ show_hide_saml(this.value);});jQuery('#showotherlogin').on('click',function(event){ jQuery('.button_saml').hide();jQuery('.button_login').show();jQuery('[name=\"LOGIN_NAME\"]').focus();jQuery('#org_select').attr('class','k-login');loginmode=\"local\";event.preventDefault();});jQuery('#showsamllogin').on('click',function(event){ jQuery('.button_saml').show();jQuery('.button_login').hide();jQuery('#org_select').attr('class','');loginmode='saml';event.preventDefault();});jQuery('#button_saml').on('click',function(event){ if(typeof(jQuery('[name=\"ORGANIZATION\"]').select2('val'))=='string'){ var torg=jQuery('[name=\"ORGANIZATION\"]').select2('val');}else{ var torg=jQuery(\"#orgtextbox\").val();}if(torg.length==0){ torg=\"Default\";}event.preventDefault();window.location.href=\"/common/saml_login.php?active=\"+torg;});if(typeof(torg=jQuery('[name=\"ORGANIZATION\"]').select2('val'))=='string'){ show_hide_saml(jQuery('[name=\"ORGANIZATION\"]').select2('val'));}else{ show_hide_saml(jQuery('#orgtextbox').val());}});</script>\n</body></html>\n",
   "datamd5" : "09d91c1b69c40818e7efdf0bf761862d",
   "datammh3" : 834723639,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS14618",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "18.232.0.0/14"
   },
   "host" : [
      "ec2-18-233-170-57"
   ],
   "hostname" : [
      "ec2-18-233-170-57.compute-1.amazonaws.com"
   ],
   "ip" : "18.233.170.57",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-AES",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-18-233-170-57.compute-1.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute-1.amazonaws.com"
   ],
   "subnet" : "18.232.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 3.123.30.35:3780 (tcp/http) - last seen on 2024-11-07 at 05:10:50 UTC

    • IP
      3.123.30.35
      Network
      3.120.0.0/13
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      http://3.123.30.35:3780/ 200

      Reverse DNS
      ec2-3-123-30-35.eu-central-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Cisco IOS
      Product
      OpenResty OpenResty
      HTTP Component(s)
      Cisco IOS XE
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      bf30ac4101ee330c7315cd4c018c3d4d
      HTTP Header MD5
      030240e8ece0250e4166ae73021509cb
      HTTP Body MD5
      4380b92ac066d98f21676309230edcca 
    • HTTP/1.1 200 OK
Connection: keep-alive
Date: Thu, 07 Nov 2024 05:10:50 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Expires: Thu, 07 Nov 2024 05:10:50 GMT
Last-Modified: Thu, 07 Nov 2024 05:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

<script>window.onload=function(){ url ='/webui/';window.location.href=url;}</script>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:10:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4380b92ac066d98f21676309230edcca",
         "bodymmh3" : -1371971370,
         "component" : [
            {
               "productvendor" : "Cisco",
               "product" : "IOS XE"
            }
         ],
         "header" : [
            {
               "value" : "Thu, 07 Nov 2024 05:10:50 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "030240e8ece0250e4166ae73021509cb",
         "headermmh3" : -2063943512
      },
      "length" : 541
   },
   "asn" : "AS16509",
   "city" : "Frankfurt am Main",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 05:10:50 GMT\r\nServer: openresty\r\nContent-Type: text/html; charset=utf-8\r\nExpires: Thu, 07 Nov 2024 05:10:50 GMT\r\nLast-Modified: Thu, 07 Nov 2024 05:10:50 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nAccept-Ranges: none\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=7884000\r\nContent-Length: 84\r\n\r\n<script>window.onload=function(){ url ='/webui/';window.location.href=url;}</script>",
   "datamd5" : "bf30ac4101ee330c7315cd4c018c3d4d",
   "datammh3" : -1802201109,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "AMAZO-ZFRA",
      "organization" : "A100 ROW GmbH",
      "subnet" : "3.120.0.0/14"
   },
   "host" : [
      "ec2-3-123-30-35"
   ],
   "hostname" : [
      "ec2-3-123-30-35.eu-central-1.compute.amazonaws.com"
   ],
   "ip" : "3.123.30.35",
   "ipv6" : "false",
   "latitude" : "50.1187",
   "location" : "50.1187,8.6842",
   "longitude" : "8.6842",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "IOS",
   "osvendor" : "Cisco",
   "port" : 3780,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-123-30-35.eu-central-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-central-1.compute.amazonaws.com"
   ],
   "subnet" : "3.120.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 189.180.119.10:3780 (tcp/http) - last seen on 2024-11-07 at 05:10:27 UTC

    • IP
      189.180.119.10
      Network
      189.180.0.0/16
      Domain(s)
      prod-infinitum.com.mx
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://189.180.119.10:3780/ 200

      Reverse DNS
      dsl-189-180-119-10-dyn.prod-infinitum.com.mx
      ASN
      AS8151
      Organization
      UNINET
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1d313db9ca5b83c6badf4f422f10543c
      HTTP Header MD5
      cd310b3fdf998a09765a955c8e06ee38
      HTTP Body MD5
      5396d46e2e196acffd2cbbbe308c1726 
    • HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 13:17:36 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
ETag: "1802b-a35-61c971ca"
Content-Length: 2613
Content-Type: text/html
Connection: close
Last-Modified: Mon, 27 Dec 2021 07:56:58 GMT

<!DOCTYPE html>
<html lang="en" ng-app="webApp">

<head>
    <meta charset="UTF-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta http-equiv="Pragma" content="no-cache" />
	<meta http-equiv="Cache-Control" content="no-cache, must-revalidate" />
	<meta http-equiv="Expires" content="0" />
    <title></title>
    <!-- 中性化打包 -->
    <link type='text/css' href='doc/neutral/neutral.css' rel='stylesheet'>
    <!-- <link type='text/css' href='doc/thirdLib/colorPicker/colorpicker.css' rel='stylesheet'> -->
    </link>
</head>

<body>
    <div id="main" ui-view="main" style="height:100%;overflow-y:hidden;"></div>
    <script src="doc/thirdLib/angular/polyfill.min.js"></script>
    <script src="doc/thirdLib/jquery/jquery.min.js"></script>
    <script src="doc/thirdLib/jquery/jquery.qrcode.min.js"></script>
    <script src="doc/thirdLib/jquery/jquery.cookie.js"></script>
    <script src="doc/thirdLib/jquery/jquery-ui.min.js"></script>
    <script src="doc/thirdLib/angular/angular.min.js"></script>
    <script src="doc/thirdLib/timebar/timebar.js"></script>
    <script src="doc/thirdLib/dialog/layer/layer.js"></script>
    <script src="doc/thirdLib/multiVideo/jsVideoPlugin-1.0.0.min.js"></script>
    <script src="doc/thirdLib/layDate/laydate.js"></script>
    <script src="doc/thirdLib/laypage/layui.js"></script>
    <script src="doc/thirdLib/echarts.min.js"></script>
    <script src="doc/thirdLib/nicescroll/jquery.nicescroll.js"></script>
    <script src="doc/thirdLib/webUploader/webuploader.js"></script>
    <script src="doc/thirdLib/smartTable/smart-table.js"></script>
    <script src="doc/thirdLib/xlsx/xlsx.full.min.js"></script>
    <script src="doc/app.js"></script>
</body>
<script for=playbackbar event="GetMovePlaybackTime(szGetTime)">
    TimebarMouseUp(szGetTime);
</script>
<script for=main_plugin_multiVideoActiveX event="GetSelectWndInfo(SelectWndInfo)">
    GetSelectWndInfo(SelectWndInfo);
</script>
<script for=main_plugin_multiVideoActiveX event="PluginEventHandler(iEventType, iParam1, iParam2)">
    PluginEventHandler(iEventType, iParam1, iParam2);
</script>
<script for=main_plugin_multiVideoActiveX event="ZoomInfoCallback(szZoomInfo)">
    ZoomInfoCallback(szZoomInfo);
</script>
<script for=main_plugin_multiVideoActiveX event="SetZeroChanEnlarge(EnlargeInfo)">
    SetZeroChanEnlarge(EnlargeInfo);
</script>
<!-- <script for=main_plugin_multiVideoActiveX event="MouseEvent(szXml)">
    	MouseEvent(szXml);
    </script> -->

<script for=main_plugin_multiVideoActiveX event="KeyBoardEvent(szXml)">
    KeyBoardEvent(szXml);
</script>

</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:10:27.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "5396d46e2e196acffd2cbbbe308c1726",
         "bodymmh3" : -614099933,
         "header" : [
            {
               "name" : "ETag",
               "value" : "1802b-a35-61c971ca"
            },
            {
               "value" : "Mon, 27 Dec 2021 07:56:58 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "cd310b3fdf998a09765a955c8e06ee38",
         "headermmh3" : -266656668
      },
      "length" : 2904
   },
   "asn" : "AS8151",
   "city" : "Quer\u00e9taro City",
   "country" : "MX",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 13:17:36 GMT\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nETag: \"1802b-a35-61c971ca\"\r\nContent-Length: 2613\r\nContent-Type: text/html\r\nConnection: close\r\nLast-Modified: Mon, 27 Dec 2021 07:56:58 GMT\r\n\r\n<!DOCTYPE html>\n<html lang=\"en\" ng-app=\"webApp\">\n\n<head>\n    <meta charset=\"UTF-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n    <meta http-equiv=\"Pragma\" content=\"no-cache\" />\n\t<meta http-equiv=\"Cache-Control\" content=\"no-cache, must-revalidate\" />\n\t<meta http-equiv=\"Expires\" content=\"0\" />\n    <title></title>\n    <!-- \u4e2d\u6027\u5316\u6253\u5305 -->\n    <link type='text/css' href='doc/neutral/neutral.css' rel='stylesheet'>\n    <!-- <link type='text/css' href='doc/thirdLib/colorPicker/colorpicker.css' rel='stylesheet'> -->\n    </link>\n</head>\n\n<body>\n    <div id=\"main\" ui-view=\"main\" style=\"height:100%;overflow-y:hidden;\"></div>\n    <script src=\"doc/thirdLib/angular/polyfill.min.js\"></script>\n    <script src=\"doc/thirdLib/jquery/jquery.min.js\"></script>\n    <script src=\"doc/thirdLib/jquery/jquery.qrcode.min.js\"></script>\n    <script src=\"doc/thirdLib/jquery/jquery.cookie.js\"></script>\n    <script src=\"doc/thirdLib/jquery/jquery-ui.min.js\"></script>\n    <script src=\"doc/thirdLib/angular/angular.min.js\"></script>\n    <script src=\"doc/thirdLib/timebar/timebar.js\"></script>\n    <script src=\"doc/thirdLib/dialog/layer/layer.js\"></script>\n    <script src=\"doc/thirdLib/multiVideo/jsVideoPlugin-1.0.0.min.js\"></script>\n    <script src=\"doc/thirdLib/layDate/laydate.js\"></script>\n    <script src=\"doc/thirdLib/laypage/layui.js\"></script>\n    <script src=\"doc/thirdLib/echarts.min.js\"></script>\n    <script src=\"doc/thirdLib/nicescroll/jquery.nicescroll.js\"></script>\n    <script src=\"doc/thirdLib/webUploader/webuploader.js\"></script>\n    <script src=\"doc/thirdLib/smartTable/smart-table.js\"></script>\n    <script src=\"doc/thirdLib/xlsx/xlsx.full.min.js\"></script>\n    <script src=\"doc/app.js\"></script>\n</body>\n<script for=playbackbar event=\"GetMovePlaybackTime(szGetTime)\">\n    TimebarMouseUp(szGetTime);\n</script>\n<script for=main_plugin_multiVideoActiveX event=\"GetSelectWndInfo(SelectWndInfo)\">\n    GetSelectWndInfo(SelectWndInfo);\n</script>\n<script for=main_plugin_multiVideoActiveX event=\"PluginEventHandler(iEventType, iParam1, iParam2)\">\n    PluginEventHandler(iEventType, iParam1, iParam2);\n</script>\n<script for=main_plugin_multiVideoActiveX event=\"ZoomInfoCallback(szZoomInfo)\">\n    ZoomInfoCallback(szZoomInfo);\n</script>\n<script for=main_plugin_multiVideoActiveX event=\"SetZeroChanEnlarge(EnlargeInfo)\">\n    SetZeroChanEnlarge(EnlargeInfo);\n</script>\n<!-- <script for=main_plugin_multiVideoActiveX event=\"MouseEvent(szXml)\">\n    \tMouseEvent(szXml);\n    </script> -->\n\n<script for=main_plugin_multiVideoActiveX event=\"KeyBoardEvent(szXml)\">\n    KeyBoardEvent(szXml);\n</script>\n\n</html>",
   "datamd5" : "1d313db9ca5b83c6badf4f422f10543c",
   "datammh3" : 1474638021,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "prod-infinitum.com.mx"
   ],
   "host" : [
      "dsl-189-180-119-10-dyn"
   ],
   "hostname" : [
      "dsl-189-180-119-10-dyn.prod-infinitum.com.mx"
   ],
   "ip" : "189.180.119.10",
   "ipv6" : "false",
   "latitude" : "20.6311",
   "location" : "20.6311,-100.3744",
   "longitude" : "-100.3744",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNINET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "dsl-189-180-119-10-dyn.prod-infinitum.com.mx"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "189.180.0.0/16",
   "tld" : [
      "com.mx"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 113.176.213.27:3780 (tcp/http) - last seen on 2024-11-07 at 05:10:19 UTC

    • IP
      113.176.213.27
      Alternative IP(s)
      203.162.0.78
      Network
      113.160.0.0/11
      Domain(s)
      vnpt.vn
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://113.176.213.27:3780/ 200

      Reverse DNS
      static.vnpt.vn
      ASN
      AS45899
      Organization
      VNPT Corp
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      43f617e14b1cb912245557db598906db
      HTTP Header MD5
      f620e9aa6fa885cb3ba70c96073f3028
      HTTP Body MD5
      13b8369f911fb613be01e0f8564c9b79 
    • HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 04:13:29 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-5bd-1e0"
Content-Length: 480
Content-Type: text/html
Connection: close
Last-Modified: Sun, 28 Jun 2020 02:17:11 GMT

<!doctype html>
<html>
<head>
	<title></title>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta http-equiv="X-UA-Compatible" content="IE=edge" >
	<meta http-equiv="Pragma" content="no-cache" />
	<meta http-equiv="Cache-Control" content="no-cache, must-revalidate" />
	<meta http-equiv="Expires" content="0" />
</head>
<body>
</body>
<script>
	window.location.href = "/doc/page/login.asp?_" + (new Date()).getTime();
</script>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:10:19.000Z",
   "alternativeip" : [
      "203.162.0.78"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "13b8369f911fb613be01e0f8564c9b79",
         "bodymmh3" : 1400196417,
         "header" : [
            {
               "value" : "0-5bd-1e0",
               "name" : "ETag"
            },
            {
               "value" : "Sun, 28 Jun 2020 02:17:11 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "f620e9aa6fa885cb3ba70c96073f3028",
         "headermmh3" : 621834970
      },
      "length" : 709
   },
   "asn" : "AS45899",
   "city" : "Buon Ma Thuot",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 04:13:29 GMT\r\nServer: Webs\r\nX-Frame-Options: SAMEORIGIN\r\nETag: \"0-5bd-1e0\"\r\nContent-Length: 480\r\nContent-Type: text/html\r\nConnection: close\r\nLast-Modified: Sun, 28 Jun 2020 02:17:11 GMT\r\n\r\n\ufeff<!doctype html>\r\n<html>\r\n<head>\r\n\t<title></title>\r\n\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\r\n\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" >\r\n\t<meta http-equiv=\"Pragma\" content=\"no-cache\" />\r\n\t<meta http-equiv=\"Cache-Control\" content=\"no-cache, must-revalidate\" />\r\n\t<meta http-equiv=\"Expires\" content=\"0\" />\r\n</head>\r\n<body>\r\n</body>\r\n<script>\r\n\twindow.location.href = \"/doc/page/login.asp?_\" + (new Date()).getTime();\r\n</script>\r\n</html>",
   "datamd5" : "43f617e14b1cb912245557db598906db",
   "datammh3" : -1984802626,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vnpt.vn"
   ],
   "geolocus" : {
      "asn" : "AS45899",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "vnnic.vn",
         "vnpt.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VNPT-VN",
      "organization" : "VNPT",
      "subnet" : "113.176.0.0/12"
   },
   "host" : [
      "static"
   ],
   "hostname" : [
      "static.vnpt.vn"
   ],
   "ip" : "113.176.213.27",
   "ipv6" : "false",
   "latitude" : "12.6674",
   "location" : "12.6674,108.0528",
   "longitude" : "108.0528",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "VNPT Corp",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "static.vnpt.vn"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "113.160.0.0/11",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "vn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}