Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
91.192.244.194

Network
91.192.244.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

URL

http://91.192.244.194:4369/ 400

HTTP Title
400 Bad Request

ASN
AS42636

Organization
Severnet Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
Apache HTTP Server 2.4.58

HTTP Component(s)
Apache HTTP Server 2.4.58

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7333e0b38441bbd6535066a86728e6c7

HTTP Header MD5
9160d1655d8573fc60db67e7cf921138

HTTP Body MD5
0977a32e2d8fdc2da0c173ca066c97e4

HTTP/1.1 400 Bad Request
Date: Thu, 07 Nov 2024 03:27:03 GMT
Server: Apache/2.4.58 (Ubuntu)
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Content-Length: 439
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>400 Bad Request</title>
</head><body>
<h1>Bad Request</h1>
<p>Your browser sent a request that this server could not understand.<br />
Reason: You're speaking plain HTTP to an SSL-enabled server port.<br />
 Instead use the HTTPS scheme to access this URL, please.<br />
</p>
<hr>
<address>Apache/2.4.58 (Ubuntu) Server at kayatana.ru Port 80</address>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:04.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "0977a32e2d8fdc2da0c173ca066c97e4",
         "bodymmh3" : 130683350,
         "component" : [
            {
               "product" : "HTTP Server",
               "productvendor" : "Apache",
               "productversion" : "2.4.58"
            }
         ],
         "headermd5" : "9160d1655d8573fc60db67e7cf921138",
         "headermmh3" : -936657295,
         "title" : "400 Bad Request"
      },
      "length" : 694
   },
   "asn" : "AS42636",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 07 Nov 2024 03:27:03 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nContent-Length: 439\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>400 Bad Request</title>\n</head><body>\n<h1>Bad Request</h1>\n<p>Your browser sent a request that this server could not understand.<br />\nReason: You're speaking plain HTTP to an SSL-enabled server port.<br />\n Instead use the HTTPS scheme to access this URL, please.<br />\n</p>\n<hr>\n<address>Apache/2.4.58 (Ubuntu) Server at kayatana.ru Port 80</address>\n</body></html>\n",
   "datamd5" : "7333e0b38441bbd6535066a86728e6c7",
   "datammh3" : -1228951133,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "91.192.244.194",
   "ipv6" : "false",
   "latitude" : "55.7386",
   "location" : "55.7386,37.6068",
   "longitude" : "37.6068",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Severnet Ltd.",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.58",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "91.192.244.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
85.198.26.250

Network
85.198.24.0/22

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://85.198.26.250:4369/ 302

HTTP Title
Object moved

ASN
AS44285

Organization
Sefroyek Pardaz Engineering PJSC

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f0e2a1d082616fcae558a99078ffc516

HTTP Header MD5
fbb1c8d9278ff033a70353edbaf5ac36

HTTP Body MD5
c572469abd9efd1ae2afa441bf6b4cde

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Expires: Thu, 07 Nov 2024 03:27:02 GMT,0
Location: /UserLogin.dap
Set-Cookie: ASP.NET_SessionId=v5zkgrftz02pchm0ktnhbkkq; path=/; HttpOnly; SameSite=Lax
Set-Cookie: __ChargoonAntiXsrfToken4369=mPYM5Oq9ah-AHZrmlrpFhOzmabRE-tEbDsuih_TxSeeASqbLnLZ7xJbdFYlJfgGQ; path=/; HttpOnly
X-UA-Compatible: IE=edge
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
Date: Thu, 07 Nov 2024 03:27:02 GMT
Connection: close
Content-Length: 131

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/UserLogin.dap">here</a>.</h2>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:03.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "c572469abd9efd1ae2afa441bf6b4cde",
         "bodymmh3" : 1087665912,
         "headermd5" : "fbb1c8d9278ff033a70353edbaf5ac36",
         "headermmh3" : 784277271,
         "title" : "Object moved"
      },
      "length" : 811
   },
   "asn" : "AS44285",
   "country" : "IR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nCache-Control: private\r\nContent-Type: text/html; charset=utf-8\r\nExpires: Thu, 07 Nov 2024 03:27:02 GMT,0\r\nLocation: /UserLogin.dap\r\nSet-Cookie: ASP.NET_SessionId=v5zkgrftz02pchm0ktnhbkkq; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: __ChargoonAntiXsrfToken4369=mPYM5Oq9ah-AHZrmlrpFhOzmabRE-tEbDsuih_TxSeeASqbLnLZ7xJbdFYlJfgGQ; path=/; HttpOnly\r\nX-UA-Compatible: IE=edge\r\nStrict-Transport-Security: max-age=31536000\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'\r\nDate: Thu, 07 Nov 2024 03:27:02 GMT\r\nConnection: close\r\nContent-Length: 131\r\n\r\n<html><head><title>Object moved</title></head><body>\r\n<h2>Object moved to <a href=\"/UserLogin.dap\">here</a>.</h2>\r\n</body></html>\r\n",
   "datamd5" : "f0e2a1d082616fcae558a99078ffc516",
   "datammh3" : 2070803378,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS44285",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IR",
      "countryname" : "Iran",
      "domain" : [
         "0-1.ir"
      ],
      "isineu" : "false",
      "latitude" : "32.427908",
      "location" : "32.427908,53.688046",
      "longitude" : "53.688046",
      "netname" : "IR-SEFROYEKPARDAZENG-20050131",
      "organization" : "Sefroyek Pardaz Engineering PJSC",
      "subnet" : "85.198.24.0/22"
   },
   "ip" : "85.198.26.250",
   "ipv6" : "false",
   "latitude" : "35.6980",
   "location" : "35.6980,51.4115",
   "longitude" : "51.4115",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Sefroyek Pardaz Engineering PJSC",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "85.198.24.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
5.134.195.197

Network
5.134.192.0/21

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://5.134.195.197:4369/ 404

ASN
AS43754

Organization
Asiatech Data Transmission company

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft IIS 10.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3a1f1a509fe7d18e270b2414dd7eb5a2

HTTP Header MD5
219332637f060056c51093b73da9774e

HTTP Body MD5
465981b2c7142b9fb660b39e2de874c1

HTTP/1.1 404 Not Found
Transfer-Encoding: chunked
Server: Microsoft-IIS/10.0
Date: Thu, 07 Nov 2024 03:26:18 GMT
Connection: close

0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:26:19.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "465981b2c7142b9fb660b39e2de874c1",
         "bodymmh3" : -421333641,
         "headermd5" : "219332637f060056c51093b73da9774e",
         "headermmh3" : 492090641
      },
      "length" : 143
   },
   "asn" : "AS43754",
   "country" : "IR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nTransfer-Encoding: chunked\r\nServer: Microsoft-IIS/10.0\r\nDate: Thu, 07 Nov 2024 03:26:18 GMT\r\nConnection: close\r\n\r\n0\r\n\r\n",
   "datamd5" : "3a1f1a509fe7d18e270b2414dd7eb5a2",
   "datammh3" : -2062502376,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS43754",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IR",
      "countryname" : "Iran",
      "domain" : [
         "asiatech.ir"
      ],
      "isineu" : "false",
      "latitude" : "32.427908",
      "location" : "32.427908,53.688046",
      "longitude" : "53.688046",
      "netname" : "IR-ASIATECH-NET",
      "organization" : "Asiatech IPv4 Route",
      "subnet" : "5.134.192.0/21"
   },
   "ip" : "5.134.195.197",
   "ipv6" : "false",
   "latitude" : "35.6980",
   "location" : "35.6980,51.4115",
   "longitude" : "51.4115",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Asiatech Data Transmission company",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2016",
      10
   ],
   "port" : 4369,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "10.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 404,
   "subnet" : "5.134.192.0/21",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
221.152.161.241

Network
221.152.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS4766

Organization
Korea Telecom

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
77a1f92a371eabd4682415eccaff6dfb

RFJS\x00\x00\x00\x00X\x00\x00\x00\x01\x00\x00\x00\x00PROTOCOL_JSON1 ver=2.2 authkey=20F7FE552ACCA5E80AC3 slevel=0 oem=34 kttv=2.0 kttlevel=3\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:25:38.000Z",
   "app" : {
      "length" : 105
   },
   "asn" : "AS4766",
   "city" : "Busanjin-gu",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "RFJS\\x00\\x00\\x00\\x00X\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00PROTOCOL_JSON1 ver=2.2 authkey=20F7FE552ACCA5E80AC3 slevel=0 oem=34 kttv=2.0 kttlevel=3\\x00",
   "datamd5" : "77a1f92a371eabd4682415eccaff6dfb",
   "datammh3" : -873992768,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4766",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "kt.com",
         "nic.or.kr"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "KORNET",
      "organization" : "Korea Telecom",
      "subnet" : "221.152.0.0/14"
   },
   "ip" : "221.152.161.241",
   "ipv6" : "false",
   "latitude" : "35.1637",
   "location" : "35.1637,129.0175",
   "longitude" : "129.0175",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Korea Telecom",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "221.152.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
146.190.163.40

Network
146.190.160.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux sUse

URL

http://146.190.163.40:4369/

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http

Source
datascan
Operating System
Linux Linux sUse

Product
ConnectWise Control 23.2.9.8466

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
49eab9e205612a0f4919c3fe1c018f72

HTTP Header MD5
2ed1d4fb9b05fad4a548cc785a4f3855

HTTP Body MD5
931e7ce8ad0e3e0e866f4dc47c151ecd

HTTP/2 200 
cache-control: private
content-type: text/html; charset=utf-8
server: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0
x-robots-tag: noindex
p3p: CP="NON CUR OUR STP STA PRE"


<!DOCTYPE html>
<html>
<head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" />
	<script>

		function setTaggedSessionInfo(tag, taggedSessionInfo) {
			var oldTaggedSessionInfo = window._taggedSessionInfos[tag];
			window._taggedSessionInfos[tag] = taggedSessionInfo;

			if (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)
				SC.pagedata.notifyDirty();
		}

		// backwards compatibility with extensions
		function setTaggedSessionID(tag, sessionID) {
			window.setTaggedSessionInfo(tag, { SessionID: sessionID });
		}

		function getTaggedSessionInfo(tag) {
			return window._taggedSessionInfos[tag];
		}

	</script>
<script src="Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296" id="defaultScript"></script>
<link href="App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231" type="text/css" rel="stylesheet" /><link href="FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3" rel="shortcut icon" />
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {
if (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)
	SC.service.GetThemeInfo(function (themeInfo) {
		SC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');
	});

SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
	switch (eventArgs.commandName) {
		case 'WebConfigSave':
			SC.dialog.showModalButtonDialog(
				'Prompt',
				SC.res['AdvancedConfig.ApplyChanges'],
				'OK',
				'Default',
				function (container) {
					SC.ui.setContents(container, [
						eventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])
					]);
				},
				function () {
					var appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));
					var pageSettings = JSON.parse(JSON.stringify(appSettings.location));
					delete appSettings.location;

					SC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {
						if (result === 'OK') {
							sessionStorage.removeItem('WebConfigAppSettings');
							SC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);
						} else {
							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);
						}
					});
				}
			);
			break;
		case 'AppConfigSave':
			SC.dialog.showModalButtonDialog(
				'Prompt',
				SC.res['AdvancedConfig.ApplyChanges'],
				'OK',
				'Default',
				function (container) {
					SC.ui.setContents(container, [
						eventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])
					]);
				},
				function () {
					var systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;
					var userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;

					SC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {
						if (result === 'OK') {
							sessionStorage.removeItem('AppConfigAppSettings');
							window.location.reload();
						} else {
							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);
						}
					});
				}
			);
			break;
	}
});


});</script>
<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
// Add: Options | Help
var x=extensionContext.baseUrl.split('/').splice(-2)[0];
SC.res['HelpPanel.Link'+x+'.Url']="https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1";
SC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' ▽','')});}});

});</script>
<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
/*
    The following is currently ripped from the Hosted Integration Template per Control
    Potential to one day not need this and use some core functionality

    File will hide the UI and display the fourth column only
*/
var sendCommandToParent = function (commandName, commandData) {
    if (commandName)
        window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');
};

SC.event.addGlobalHandler(SC.event.PreRender, function () {
    window.addEventListener('message', function (eventArgs) {
        SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');
        switch (eventArgs.data._externalCommand) {
            case 'RenderSessionDetailsFullWidthCommand':
                var applicablePaths = ['/', '/Guest', '/Host', '/Login'];
                if (!applicablePaths.includes(window.location.pathname))
                    break;

                var elementsToHide = [
                    $('.HeaderPanel'),
                    $('.GlobalBar'),
                    $('.NavigationPanel'),
                    $('.MasterPanel'),
                    $('.MainDetailHeaderPanel'),
                    $('.MainDetailPanel'),
                    $('.ToggleDetailPanelButton'),
                ];

                for (var i = 0; i < elementsToHide.length; i++)
                    if (elementsToHide[i])
                        SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);

                var outerPanel = $('.OuterPanel');
                var mainPanel = $('.MainPanel');
                var subDetailHeader = $('.SubDetailHeaderPanel');

                if (outerPanel)
                    SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);

                if (mainPanel)
                    SC.css.ensureClass(mainPanel, 'GridOverride', true);

                if (subDetailHeader)
                    SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);

                var notifyPaths = ['/', '/Guest'];

                if (notifyPaths.includes(window.location.pathname))
                    sendCommandToParent('OnPreRenderComplete');

                break;

            case 'LoadSessionCommand':
                var sessionID = eventArgs.data._externalCommandData;

                if (sessionID) {
                    // call our LiveDataService
                    SC.service.GetSessionDetailsUrl(
                        sessionID,
                        function (url) {
                            if (url)
                                window.location.href = url;
                        }
                    );
                }

                sendCommandToParent('OnLoadSessionComplete');
                break;
        }
    });

    sendCommandToParent('OnPreRender');
});

});</script>
<script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {
var connectWiseUserSourceName = 'ConnectWise';

var userSourceConfiguration = {
	IdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,
	ExtraScopes: 'roles',
	ClientID: null,
	ClientSecret: null,
	UserInfoRoleNamesPath: 'roles',
	ExtraRoleNames: '',
	DisplayName: 'ConnectWise SSO',
	ExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,
}

userSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;

SC.event.addGlobalHandler(SC.event.PreRender, function () {
	if (SC.context.pageType === 'AdministrationPage')
		SC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');
});

SC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {
	switch (eventArgs.area) {
		case 'AddUserSourcePopoutPanel':
			eventArgs.buttonDefinitions.push({
				commandName: 'AddConnectWiseSSOUserSource',
				text: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']
			});
			break;
	}
});

SC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {
	switch (eventArgs.commandName) {
		case 'AddConnectWiseSSOUserSource':
			eventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);
			break;
	}
});

SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
	switch (eventArgs.commandName) {
		case 'AddConnectWiseSSOUserSource':
			SC.dialog.showModalButtonDialog(
				'ConnectWiseSsoSetup',
				SC.res['ConnectWiseSSO.SetupModal.Title'],
				SC.res['ConnectWiseSSO.SetupModal.Button'],
				null,
				function (container) {
					SC.ui.addContent(container, [
						$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),
						$div($textarea({ className: 'RegistrationTokenInput' }))
					]);
				},
				function () {
					SC.service.MakeDynamicClientRegistrationRequest(
						$('.RegistrationTokenInput').value,
						SC.context.instanceID || SC.context.instanceUrlScheme,
						SC.context.scriptBaseUrl,
						connectWiseUserSourceName,
						function (registrationResponse) {
							userSourceConfiguration.ClientID = registrationResponse.client_id;
							userSourceConfiguration.ClientSecret = registrationResponse.client_secret;

							var configKeys = Object.keys(userSourceConfiguration);
							var configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });

							SC.service.AddUserSource(
								'ScreenConnect.OpenIDConnectMembershipProvider',
								connectWiseUserSourceName,
								true,
								false,
								configKeys,
								configValues,
								() => SC.pagedata.notifyDirty()
							);
						});

					SC.dialog.hideModalDialog();
				}
			);
			break;
	}
});

function compareVersions(version1, version2) {
	var versionNumbers1 = version1.toString().split('.');
	var versionNumbers2 = version2.toString().split('.');

	for (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {
		var versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);
		var versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);
		if (versionNumber1 > versionNumber2) return 1;
		if (versionNumber2 > versionNumber1) return -1;
	}

	return 0;
}

function isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {
	return (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0
		&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));
}

function isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {
	return isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);
}

});</script>
<script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {
/** Edit App.Config Settings **/

/** Global Extension Variables **/
var extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];

const numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);

/** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/
function setupTopModalDialog(disable){
	if (!disable) {
		eval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));
		eval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));
		SC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };
	} else {
		delete SC.dialog.showModalDialogRawOnTop;
		delete SC.dialog.hideTopModalDialog;
		delete SC.dialog.getTopModalDialog;
	}
}

function alertModal(message){
	if (!SC.dialog.showModalDialogRawOnTop)
		setupTopModalDialog();

	SC.dialog.showModalDialogRawOnTop(
		message.subClass || 'MessageBox',
		[
			message.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),
			message.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),
			message.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)
		],
		message.onExecProc || function(eventArgs){
			SC.dialog.hideTopModalDialog();
		},
		message.onQueryProc || null,
		message.onHideProc || function(){
			if (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())
				setupTopModalDialog(true);
		}
	);
}
/**********************************************/

/** Table Sorting Functions **/
var sortBy = {};
function sortTable(table, col) {
	if (sortBy.table){
		var oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];
		SC.css.ensureClass(oldSortCol,'Ascending',false);
		SC.css.ensureClass(oldSortCol,'Descending',false);
	}
	
	if (sortBy.table == table.id && sortBy.col == col){
		sortBy.dir = -((+sortBy.dir) || -1);
	}
	else {
		sortBy.table = table.id;
		sortBy.col = col;
		sortBy.dir = 1;
	}
	if (sortBy.dir !== 0)
		SC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);

	var tb = table.tBodies[0];
	var tr = Array.prototype.slice.call(tb.rows, 0);
	tr = tr.sort(function (a, b) {
		var aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;
		var bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;
		return sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));
	});
	for(var i=0; i<tr.length; ++i){
		tb.appendChild(tr[i]);
	}
}

function makeSortable(table) {
	var th = table.tHead, i;
	th && (th = th.rows[0]) && (th = th.cells);
	if (th) i = th.length;
	else return; // if no `<thead>` then do nothing
	while (--i >= 0) (function (i) {
		SC.css.ensureClass(th[i],'Sortable',true);
		th[i].addEventListener('click', function () {sortTable(table, i)});
	}(i));
}

function makeAllSortable(parent) {
	parent = parent || document.body;
	var t = parent.getElementsByTagName('table'), i = t.length;
	while (--i >= 0) makeSortable(t[i]);
}
/*****************************/

/** General Extension Functions **/
function checkVersion(minVer, curVer) {
	if (typeof curVer + typeof minVer != 'stringstring')
		return false;
	var a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);
	for (; i < len; i++) {
		if ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {
			return true;
		} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {
			return false;
		}
	}
	return true;
}

function checkLongBitmask(flagInput,maskInput) {
	var maxJSMaskLength = 8;
	flags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));
	mask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));

	if (isNaN(flags) || isNaN(mask)){
		return false;
	}

	if (parseInt(mask,16) === 0) {
		if (maskInput.length > maxJSMaskLength) {

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:25:05.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "connectwise.com"
         ],
         "hostname" : [
            "docs.connectwise.com"
         ],
         "url" : [
            "https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1"
         ]
      },
      "http" : {
         "bodymd5" : "931e7ce8ad0e3e0e866f4dc47c151ecd",
         "bodymmh3" : 747461957,
         "headermd5" : "2ed1d4fb9b05fad4a548cc785a4f3855",
         "headermmh3" : -1098840062
      },
      "length" : 16384
   },
   "asn" : "AS14061",
   "city" : "San Francisco",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/2 200 \ncache-control: private\ncontent-type: text/html; charset=utf-8\nserver: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0\nx-robots-tag: noindex\np3p: CP=\"NON CUR OUR STP STA PRE\"\n\n\n<!DOCTYPE html>\n<html>\n<head><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" /><meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no\" />\n\t<script>\n\n\t\tfunction setTaggedSessionInfo(tag, taggedSessionInfo) {\n\t\t\tvar oldTaggedSessionInfo = window._taggedSessionInfos[tag];\n\t\t\twindow._taggedSessionInfos[tag] = taggedSessionInfo;\n\n\t\t\tif (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)\n\t\t\t\tSC.pagedata.notifyDirty();\n\t\t}\n\n\t\t// backwards compatibility with extensions\n\t\tfunction setTaggedSessionID(tag, sessionID) {\n\t\t\twindow.setTaggedSessionInfo(tag, { SessionID: sessionID });\n\t\t}\n\n\t\tfunction getTaggedSessionInfo(tag) {\n\t\t\treturn window._taggedSessionInfos[tag];\n\t\t}\n\n\t</script>\n<script src=\"Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296\" id=\"defaultScript\"></script>\n<link href=\"App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3\" rel=\"shortcut icon\" />\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {\nif (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)\n\tSC.service.GetThemeInfo(function (themeInfo) {\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');\n\t});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'WebConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));\n\t\t\t\t\tvar pageSettings = JSON.parse(JSON.stringify(appSettings.location));\n\t\t\t\t\tdelete appSettings.location;\n\n\t\t\t\t\tSC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('WebConfigAppSettings');\n\t\t\t\t\t\t\tSC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t\tcase 'AppConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;\n\t\t\t\t\tvar userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;\n\n\t\t\t\t\tSC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('AppConfigAppSettings');\n\t\t\t\t\t\t\twindow.location.reload();\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n// Add: Options | Help\nvar x=extensionContext.baseUrl.split('/').splice(-2)[0];\nSC.res['HelpPanel.Link'+x+'.Url']=\"https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1\";\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' \u25bd','')});}});\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n/*\n    The following is currently ripped from the Hosted Integration Template per Control\n    Potential to one day not need this and use some core functionality\n\n    File will hide the UI and display the fourth column only\n*/\nvar sendCommandToParent = function (commandName, commandData) {\n    if (commandName)\n        window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');\n};\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n    window.addEventListener('message', function (eventArgs) {\n        SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');\n        switch (eventArgs.data._externalCommand) {\n            case 'RenderSessionDetailsFullWidthCommand':\n                var applicablePaths = ['/', '/Guest', '/Host', '/Login'];\n                if (!applicablePaths.includes(window.location.pathname))\n                    break;\n\n                var elementsToHide = [\n                    $('.HeaderPanel'),\n                    $('.GlobalBar'),\n                    $('.NavigationPanel'),\n                    $('.MasterPanel'),\n                    $('.MainDetailHeaderPanel'),\n                    $('.MainDetailPanel'),\n                    $('.ToggleDetailPanelButton'),\n                ];\n\n                for (var i = 0; i < elementsToHide.length; i++)\n                    if (elementsToHide[i])\n                        SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);\n\n                var outerPanel = $('.OuterPanel');\n                var mainPanel = $('.MainPanel');\n                var subDetailHeader = $('.SubDetailHeaderPanel');\n\n                if (outerPanel)\n                    SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);\n\n                if (mainPanel)\n                    SC.css.ensureClass(mainPanel, 'GridOverride', true);\n\n                if (subDetailHeader)\n                    SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);\n\n                var notifyPaths = ['/', '/Guest'];\n\n                if (notifyPaths.includes(window.location.pathname))\n                    sendCommandToParent('OnPreRenderComplete');\n\n                break;\n\n            case 'LoadSessionCommand':\n                var sessionID = eventArgs.data._externalCommandData;\n\n                if (sessionID) {\n                    // call our LiveDataService\n                    SC.service.GetSessionDetailsUrl(\n                        sessionID,\n                        function (url) {\n                            if (url)\n                                window.location.href = url;\n                        }\n                    );\n                }\n\n                sendCommandToParent('OnLoadSessionComplete');\n                break;\n        }\n    });\n\n    sendCommandToParent('OnPreRender');\n});\n\n});</script>\n<script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {\nvar connectWiseUserSourceName = 'ConnectWise';\n\nvar userSourceConfiguration = {\n\tIdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,\n\tExtraScopes: 'roles',\n\tClientID: null,\n\tClientSecret: null,\n\tUserInfoRoleNamesPath: 'roles',\n\tExtraRoleNames: '',\n\tDisplayName: 'ConnectWise SSO',\n\tExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,\n}\n\nuserSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n\tif (SC.context.pageType === 'AdministrationPage')\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {\n\tswitch (eventArgs.area) {\n\t\tcase 'AddUserSourcePopoutPanel':\n\t\t\teventArgs.buttonDefinitions.push({\n\t\t\t\tcommandName: 'AddConnectWiseSSOUserSource',\n\t\t\t\ttext: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']\n\t\t\t});\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\teventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'ConnectWiseSsoSetup',\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Title'],\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Button'],\n\t\t\t\tnull,\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.addContent(container, [\n\t\t\t\t\t\t$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),\n\t\t\t\t\t\t$div($textarea({ className: 'RegistrationTokenInput' }))\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tSC.service.MakeDynamicClientRegistrationRequest(\n\t\t\t\t\t\t$('.RegistrationTokenInput').value,\n\t\t\t\t\t\tSC.context.instanceID || SC.context.instanceUrlScheme,\n\t\t\t\t\t\tSC.context.scriptBaseUrl,\n\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\tfunction (registrationResponse) {\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientID = registrationResponse.client_id;\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientSecret = registrationResponse.client_secret;\n\n\t\t\t\t\t\t\tvar configKeys = Object.keys(userSourceConfiguration);\n\t\t\t\t\t\t\tvar configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });\n\n\t\t\t\t\t\t\tSC.service.AddUserSource(\n\t\t\t\t\t\t\t\t'ScreenConnect.OpenIDConnectMembershipProvider',\n\t\t\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\t\t\ttrue,\n\t\t\t\t\t\t\t\tfalse,\n\t\t\t\t\t\t\t\tconfigKeys,\n\t\t\t\t\t\t\t\tconfigValues,\n\t\t\t\t\t\t\t\t() => SC.pagedata.notifyDirty()\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t});\n\n\t\t\t\t\tSC.dialog.hideModalDialog();\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\nfunction compareVersions(version1, version2) {\n\tvar versionNumbers1 = version1.toString().split('.');\n\tvar versionNumbers2 = version2.toString().split('.');\n\n\tfor (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {\n\t\tvar versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);\n\t\tvar versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);\n\t\tif (versionNumber1 > versionNumber2) return 1;\n\t\tif (versionNumber2 > versionNumber1) return -1;\n\t}\n\n\treturn 0;\n}\n\nfunction isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {\n\treturn (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0\n\t\t&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));\n}\n\nfunction isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {\n\treturn isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);\n}\n\n});</script>\n<script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {\n/** Edit App.Config Settings **/\n\n/** Global Extension Variables **/\nvar extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];\n\nconst numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);\n\n/** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/\nfunction setupTopModalDialog(disable){\n\tif (!disable) {\n\t\teval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));\n\t\teval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));\n\t\tSC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };\n\t} else {\n\t\tdelete SC.dialog.showModalDialogRawOnTop;\n\t\tdelete SC.dialog.hideTopModalDialog;\n\t\tdelete SC.dialog.getTopModalDialog;\n\t}\n}\n\nfunction alertModal(message){\n\tif (!SC.dialog.showModalDialogRawOnTop)\n\t\tsetupTopModalDialog();\n\n\tSC.dialog.showModalDialogRawOnTop(\n\t\tmessage.subClass || 'MessageBox',\n\t\t[\n\t\t\tmessage.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),\n\t\t\tmessage.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),\n\t\t\tmessage.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)\n\t\t],\n\t\tmessage.onExecProc || function(eventArgs){\n\t\t\tSC.dialog.hideTopModalDialog();\n\t\t},\n\t\tmessage.onQueryProc || null,\n\t\tmessage.onHideProc || function(){\n\t\t\tif (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())\n\t\t\t\tsetupTopModalDialog(true);\n\t\t}\n\t);\n}\n/**********************************************/\n\n/** Table Sorting Functions **/\nvar sortBy = {};\nfunction sortTable(table, col) {\n\tif (sortBy.table){\n\t\tvar oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];\n\t\tSC.css.ensureClass(oldSortCol,'Ascending',false);\n\t\tSC.css.ensureClass(oldSortCol,'Descending',false);\n\t}\n\t\n\tif (sortBy.table == table.id && sortBy.col == col){\n\t\tsortBy.dir = -((+sortBy.dir) || -1);\n\t}\n\telse {\n\t\tsortBy.table = table.id;\n\t\tsortBy.col = col;\n\t\tsortBy.dir = 1;\n\t}\n\tif (sortBy.dir !== 0)\n\t\tSC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);\n\n\tvar tb = table.tBodies[0];\n\tvar tr = Array.prototype.slice.call(tb.rows, 0);\n\ttr = tr.sort(function (a, b) {\n\t\tvar aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;\n\t\tvar bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;\n\t\treturn sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));\n\t});\n\tfor(var i=0; i<tr.length; ++i){\n\t\ttb.appendChild(tr[i]);\n\t}\n}\n\nfunction makeSortable(table) {\n\tvar th = table.tHead, i;\n\tth && (th = th.rows[0]) && (th = th.cells);\n\tif (th) i = th.length;\n\telse return; // if no `<thead>` then do nothing\n\twhile (--i >= 0) (function (i) {\n\t\tSC.css.ensureClass(th[i],'Sortable',true);\n\t\tth[i].addEventListener('click', function () {sortTable(table, i)});\n\t}(i));\n}\n\nfunction makeAllSortable(parent) {\n\tparent = parent || document.body;\n\tvar t = parent.getElementsByTagName('table'), i = t.length;\n\twhile (--i >= 0) makeSortable(t[i]);\n}\n/*****************************/\n\n/** General Extension Functions **/\nfunction checkVersion(minVer, curVer) {\n\tif (typeof curVer + typeof minVer != 'stringstring')\n\t\treturn false;\n\tvar a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);\n\tfor (; i < len; i++) {\n\t\tif ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {\n\t\t\treturn true;\n\t\t} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {\n\t\t\treturn false;\n\t\t}\n\t}\n\treturn true;\n}\n\nfunction checkLongBitmask(flagInput,maskInput) {\n\tvar maxJSMaskLength = 8;\n\tflags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));\n\tmask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));\n\n\tif (isNaN(flags) || isNaN(mask)){\n\t\treturn false;\n\t}\n\n\tif (parseInt(mask,16) === 0) {\n\t\tif (maskInput.length > maxJSMaskLength) {",
   "datamd5" : "49eab9e205612a0f4919c3fe1c018f72",
   "datammh3" : 1942039422,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DO-13",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "146.190.160.0/20"
   },
   "ip" : "146.190.163.40",
   "ipv6" : "false",
   "latitude" : "37.7809",
   "location" : "37.7809,-122.4245",
   "longitude" : "-122.4245",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Control",
   "productvendor" : "ConnectWise",
   "productversion" : "23.2.9.8466",
   "protocol" : "http",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "146.190.160.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
165.90.193.16

Network
165.90.192.0/20

Domain(s)
izwi.net.za

Device

<enterprise field>: device.class

URL

http://165.90.193.16:4369/cookiechecker?uri=/ 302

Reverse DNS
16-193-90-165.izwi.net.za

ASN
AS327950

Organization
AS-IZWI

Protocol
http

Source
urlscan::redirect
Product
lighttpd lighttpd 1.4.39

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
95eccc64fd50632523eb843815d2f768

HTTP Header MD5
71236a8e836d06d832adb96629aabe96

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Location: /nocookies.html
Content-Length: 0
Connection: close
Date: Tue, 03 Sep 2024 10:41:48 GMT
Server: lighttpd/1.4.39

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:21:19.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "71236a8e836d06d832adb96629aabe96",
         "headermmh3" : -165387445
      },
      "length" : 149
   },
   "asn" : "AS327950",
   "city" : "Rustenburg",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nLocation: /nocookies.html\r\nContent-Length: 0\r\nConnection: close\r\nDate: Tue, 03 Sep 2024 10:41:48 GMT\r\nServer: lighttpd/1.4.39\r\n\r\n",
   "datamd5" : "95eccc64fd50632523eb843815d2f768",
   "datammh3" : -796841231,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "izwi.net.za"
   ],
   "forward" : "165.90.193.16",
   "geolocus" : {
      "asn" : "AS327950",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "izwi.net.za"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "IZWI-JHB-NET",
      "organization" : "IZWI",
      "subnet" : "165.90.192.0/20"
   },
   "host" : [
      "16-193-90-165"
   ],
   "hostname" : [
      "16-193-90-165.izwi.net.za",
      "165.90.193.16"
   ],
   "ip" : "165.90.193.16",
   "ipv6" : "false",
   "latitude" : "-25.6608",
   "location" : "-25.6608,27.2526",
   "longitude" : "27.2526",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-IZWI",
   "port" : 4369,
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.39",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "16-193-90-165.izwi.net.za"
   ],
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 302,
   "subnet" : "165.90.192.0/20",
   "tld" : [
      "net.za"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/cookiechecker?uri=/"
}

IP
18.117.139.86

Network
18.116.0.0/14

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://18.117.139.86:4369/ 200

Reverse DNS
ec2-18-117-139-86.us-east-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f192c778ba9971cccb2fcec90e21e379

HTTP Header MD5
9f060a9cb1b31c417a3a68e629ae97e3

HTTP Body MD5
852141068209c03fdeb5dacc5a9c52e3

HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 03:10:25 GMT
Server: nginx
Content-Length: 69
Content-Type: text/html

<html><body><script>top.location='/p/login/';</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:10:25.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "852141068209c03fdeb5dacc5a9c52e3",
         "bodymmh3" : -1124668290,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : -742141583
      },
      "length" : 204
   },
   "asn" : "AS16509",
   "city" : "Columbus",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:10:25 GMT\r\nServer: nginx\r\nContent-Length: 69\r\nContent-Type: text/html\r\n\r\n<html><body><script>top.location='/p/login/';</script></body></html>\n",
   "datamd5" : "f192c778ba9971cccb2fcec90e21e379",
   "datammh3" : -1092385355,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "18.116.0.0/14"
   },
   "host" : [
      "ec2-18-117-139-86"
   ],
   "hostname" : [
      "ec2-18-117-139-86.us-east-2.compute.amazonaws.com"
   ],
   "ip" : "18.117.139.86",
   "ipv6" : "false",
   "latitude" : "39.9625",
   "location" : "39.9625,-83.0061",
   "longitude" : "-83.0061",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-18-117-139-86.us-east-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-east-2.compute.amazonaws.com"
   ],
   "subnet" : "18.116.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
13.246.45.76

Network
13.244.0.0/14

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://13.246.45.76:4369/ 200

HTTP Title
PaperCut Login

HTTP Description
PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.

HTTP Keyword(s)
print accounting print control print management print quota software

Reverse DNS
ec2-13-246-45-76.af-south-1.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

HTTP Component(s)
jQuery jQuery 3.5.1 Oracle Java

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
6602a320a278b26f544c1f7e9b11bbae

HTTP Header MD5
fa25c4eea42a342854fe45cdc0273a72

HTTP Body MD5
8c5529452ed2e5ae1d4f29e7345687a7

HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 03:09:35 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node0r6ehocjx9u6arp89g18i3mcvq24pez81qhggqar2.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

<!DOCTYPE HTML>
<!-- Application: app-server -->
<!-- Page: Home -->
<!-- Generated: Mon Nov 20 12:34:06 EST 2023 -->
<html lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html;charset=UTF-8"/>
<title>PaperCut Login</title>
<link rel="shortcut icon" href="/images/icons3/favicon.ico" type="image/vnd.microsoft.icon"/>
<meta http-equiv="X-UA-Compatible" content="IE=Edge"/>
<meta name="description" content="PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system."/>
<meta name="keywords" content="print quota, print control, print management, print accounting, software"/>
<meta name="viewport" content="width=device-width, initial-scale=0.8"/>
<link rel="stylesheet" type="text/css" href="/css/style.css?66961papercut-mf" />
<link rel="stylesheet" type="text/css" href="/css/style-override.css?66961papercut-mf" />
<link rel="stylesheet" type="text/css" href="/css/refresh.css?66961papercut-mf" />
<!--[if IE 9]><link rel="stylesheet" type="text/css" href="/css/style-ie9.css?66961papercut-mf" />
<![endif]-->
<!--[if IE 8]><link rel="stylesheet" type="text/css" href="/css/style-ie8.css?66961papercut-mf" />
<![endif]-->
<!--[if IE 7]><link rel="stylesheet" type="text/css" href="/css/style-ie7.css?66961papercut-mf" />
<![endif]-->
<!--[if IE 6]><link rel="stylesheet" type="text/css" href="/css/style-ie6.css?66961papercut-mf" />
<![endif]-->
<script type="text/javascript">var CacheParam = "66961papercut-mf";</script>
<script type="text/javascript" src="/js/jquery/jquery-3.5.1.min.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/jquery/jquery-migrate-3.3.1.min.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/jquery/config.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/lib/underscore/underscore-min.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/common.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/lib/require.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/pages/configure.js?66961papercut-mf"></script>
<script type="text/javascript" src="/js/refresh.js?66961papercut-mf"></script>
</head>

<body id="loginBody">
<script language="JavaScript" type="text/javascript"><!--

window.onload = function ()
{
document.Form0.inputUsername.focus();
document.Form0.inputUsername.select();
}

// --></script> <div class="wrap">
    <script type="text/javascript">
    insertScript('/js/pages/Home.js');
    insertScript('/js/pages/LoginPages.js');
    </script>
      <svg viewBox="0 0 280.7 198.5" class="pc-shards">
<polygon points="96.3,136.3 140.4,198.5 162.4,198.5 183.9,130.1 134.9,95.4 "/>
<polygon points="45,63.6 74.9,53 0,0 "/>
<polygon points="134.9,95.4 96.3,136.3 45,63.6 74.9,53 "/>
<polygon points="74.9,53 224.8,0 134.9,95.4 "/>
<polygon points="224.8,0 183.9,130.1 134.9,95.4 "/>
<polygon points="224.8,0 224.8,0 224.8,159 183.9,130.1 "/>
<polygon points="162.4,198.5 224.8,198.5 224.8,159 183.9,130.1 "/>
<polygon points="37.7,198.5 140.4,198.5 96.3,136.3 "/>
<polygon points="0,79.5 0,198.5 37.7,198.5 96.3,136.3 45,63.6 "/>
<polygon points="0,79.5 45,63.6 0,0 "/>
<polygon points="0,79.5 0,79.5 0,79.5 "/>
<polygon points="262.3,198.5 280.7,198.5 265.7,187.9 "/>
<polygon points="224.8,198.5 262.3,198.5 265.7,187.9 224.8,159 "/>
</svg>
<form method="post" name="Form0" action="/app" onsubmit="recordLocale()" autocomplete="off">
<input type="hidden" name="service" value="direct/1/Home/$Form"/>
<input type="hidden" name="sp" value="S0"/>
<input type="hidden" name="Form0" value="$Hidden$0,$Hidden$1,inputUsername,inputPassword,$Submit$0,$PropertySelection"/>
<input type="hidden" name="$Hidden$0" id="javascript-enabled" value="F"/>
<input type="hidden" name="$Hidden$1" value="X"/>
 <div class="login" role="main">
      <div class="box">
        <table class="box-table" title="Login" role="presentation">
          <tr role="row">
            <th class="box-nw" aria-label="No value" role="columnheader" scope="col"></th>
            <th class="box-n" aria-label="No value" role="columnheader" scope="col"></th>
            <th class="box-ne" aria-label="No value" role="columnheader" scope="col"></th>
          </tr>
          <tr role="row">
            <td class="box-w"></td>
            <td class="box-content">

              <div id="login">
 <h1><img alt="PaperCut Logo" src="/custom/login-logo.png?1667504163324" class="logo"></img></h1>

 <h1 id="papercut-user-login-title">Log in</h1>
 <table style="margin-bottom:5px;" title="Username and Password" role="presentation">
                        <tbody>
                          <tr role="row">
                            <th role="rowheader"><label for="inputUsername">Username</label></th>
                            <td><input type="text" name="inputUsername" autocorrect="off" maxlength="50" aria-describedby="login-feedback-message" style="width: 150px;" id="inputUsername" autocapitalize="off" class="field"/></td>
                          </tr>
                          <tr role="row">
                            <th role="rowheader"><label for="inputPassword">Password</label></th>
                            <td><input type="password" name="inputPassword" style="width: 150px;" id="inputPassword" class="field" aria-describedby="login-feedback-message"/></td>
                          </tr>
                        </tbody>
                      </table>


                    <div id="login-feedback-message">



 </div>
<input type="submit" name="$Submit$0" value="Log in" class="loginSubmit" aria-describedby="login-feedback-message"/>



<a href="/app?service=direct/1/Home/oAuth2LoginSuccess" style="display:none" class="btn secondary google">Sign in with Google</a>
<a href="/app?service=direct/1/Home/oAuth2LoginCancel" style="display:none" class="btn secondary microsoft">Sign in with Microsoft</a>
 <a style="display:block; margin-top: 10px;" id="forgot-link" href="/app?service=external/ForgotLoginDetails">
Forgot username or password?</a>

 </div>


            </td>
            <td class="box-e"></td>
          </tr>
          <tr role="row">
            <td class="box-sw"></td>
            <td class="box-s"></td>
            <td class="box-se"></td>
          </tr>
        </table>
      </div>
 <div class="language-box">
          <p id="language-select-text">Language Select</p>
          <svg width="24" height="24" viewBox="50 1777 24 24" class="global" alt="Globe Language Icon">
                <path fill="gray" d="M62,1777c-6.627,0-12,5.373-12,12s5.373,12,12,12s12-5.373,12-12S68.627,1777,62,1777z M58.129,1780.116
        c-0.665,0.732-1.359,1.699-1.925,2.94h-1.833C55.355,1781.79,56.643,1780.771,58.129,1780.116z M53.217,1784.957h2.304
        c-0.251,0.918-0.417,1.954-0.481,3.1h-2.664C52.48,1786.959,52.775,1785.918,53.217,1784.957z M53.236,1793.057
        c-0.447-0.96-0.749-2.001-0.859-3.1h2.662c0.064,1.146,0.23,2.182,0.481,3.1H53.236z M54.401,1794.957h1.803
        c0.549,1.204,1.218,2.146,1.865,2.87C56.624,1797.179,55.369,1796.188,54.401,1794.957z M61.05,1798.054
        c-0.541-0.34-1.814-1.283-2.828-3.097h2.828V1798.054z M61.05,1793.057h-3.645c-0.288-0.893-0.493-1.921-0.566-3.1h4.211V1793.057z
         M61.05,1788.057h-4.211c0.073-1.179,0.278-2.207,0.566-3.1h3.645V1788.057z M61.05,1783.057h-2.828
        c1.014-1.813,2.287-2.757,2.828-3.097V1783.057z M70.823,1784.957c0.441,0.961,0.736,2.002,0.842,3.1h-2.704
        c-0.064-1.146-0.23-2.182-0.481-3.1H70.823z M69.669,1783.057h-1.873c-0.574-1.259-1.279-2.237-1.953-2.974
        C67.358,1780.736,68.669,1781.77,69.669,1783.057z M62.95,1779.96c0.541,0.34,1.814,1.283,2.828,3.097H62.95V1779.96z
         M62.95,1784.957h3.645c0.288,0.893,0.493,1.921,0.566,3.1H62.95V1784.957z M62.95,1789.957h4.211
        c-0.073,1.179-0.278,2.207-0.566,3.1H62.95V1789.957z M62.95,1798.055v-3.098h2.828
        C64.764,1796.772,63.488,1797.716,62.95,1798.055z M65.902,1797.86c0.656-0.729,1.337-1.682,1.894-2.903h1.843
        C68.656,1796.208,67.376,1797.213,65.902,1797.86z M70.804,1793.057h-2.324c0.251-0.918,0.417-1.954,0.481-3.1h2.702
        C71.553,1791.056,71.251,1792.097,70.804,1793.057z"/>
          </svg>
<select name="$PropertySelection" alt="Select language" role="listbox" id="language" aria-label="Select language">
<option value="en" selected="selected">English</option>
<option value="ca">catal&#224;</option>
<option value="zh_CN">&#20013;&#25991; (&#20013;&#22269;)</option>
<option value="zh_HK">&#20013;&#25991; (&#39321;&#28207;)</option>
<option value="zh_TW">&#20013;&#25991; (&#21488;&#28771;)</option>
<option value="hr">hrvatski</option>
<option value="cs">&#269;e&#353;tina</option>
<option value="da">Dansk</option>
<option value="nl">Nederlands</option>
<option value="fi">suomi</option>
<option value="fr">fran&#231;ais</option>
<option value="de">Deutsch</option>
<option value="iw">&#1506;&#1489;&#1512;&#1497;&#1514;</option>
<option value="hu">magyar</option>
<option value="it">italiano</option>
<option value="ja">&#26085;&#26412;&#35486;</option>
<option value="ko">&#54620;&#44397;&#50612;</option>
<option value="lv">Latvie&#353;u</option>
<option value="lt">Lietuvi&#371;</option>
<option value="no">norsk</option>
<option value="pl">polski</option>
<option value="pt">portugu&#234;s (Brasil)</option>
<option value="pt_PT">portugu&#234;s (Portugal)</option>
<option value="ru">&#1088;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081;</option>
<option value="sr">&#1057;&#1088;&#1087;&#1089;&#1082;&#1080;</option>
<option value="sk">Sloven&#269;ina</option>
<option value="sl">Sloven&#353;&#269;ina</option>
<option value="es">espa&#241;ol</option>
<option value="es_ES">espa&#241;ol (Espa&#241;a)</option>
<option value="sv">svenska</option>
<option value="th_TH">&#3652;&#3607;&#3618; (&#3611;&#3619;&#3632;&#3648;&#3607;&#3624;&#3652;&#3607;&#3618;)</option>
<option value="tr">T&#252;rk&#231;e</option>
<option value="cy_GB">Welsh (United Kingdom)</option>
</select> </div>
 <script>
            let languageOptions = document.getElementById("language").children;
            for (let languageOption of languageOptions)
            {
                let lang = languageOption.getAttribute("value");
                if (lang.includes("_")) lang = lang.substr(0, lang.indexOf("_")); // to remove region if specified
                languageOption.setAttribute("lang", lang);
            }
        </script>
<span data-background-uri="/images/login-bg.jpg?66961papercut-mf" data-background-selection="COLOR" data-background-color="#FFFFFF" id="loginCustomization" data-button-color="#01B256" data-forgot-link-text=""></span> <!-- The license has expired!  -->
 </div>
</form>

 <div id="footer" style="position:absolute; bottom: 0px; left: 0px; right: 0px; width: 100%;">
 <div class="product-details">
    <div class="logo"><img src="/images/footer-logo2.png?66961papercut-mf" border="0"/></div>

    <div class="text">
<span class="product"><a href="https://www.papercut.com/products/mf/?clicked=app-footer">PaperCut MF</a></span>

 <div>
Print Management Software</div>
 <!-- analytic purpose -->
<span class="analytic-license-expiry-date" style="display:none"></span>
<span class="analytic-product-build-number" style="display:none">66961</span>
<span class="analytic-product-version" style="display:none">22.1.3</span>
<span class="analytic-product" style="display:none">PaperCut MF</span>
<span class="analytic-product-edition" style="display:none">MF</span> <div class="copyright">
        &copy; Copyright 1999-2023. PaperCut Software Pty Ltd. All rights reserved. </div>
    </div>
  </div>
 </div>
 </div>
  <script language="JavaScript" type="text/javascript">
  var oldonload = window.onload;
  if (typeof window.onload != 'function') {
    window.onload = applyLoginCustomization;
  } else {
    window.onload = function () {
      if (oldonload) {
        oldonload();
      }
        applyLoginCustomization();
    }
  }

  /*
   Apply login customization
   */
  function applyLoginCustomization() {
      var loginCustomization = $("#loginCustomization");
      if (loginCustomization.attr("data-background-selection") == 'IMAGE') {
          loadBackground(loginCustomization.attr("data-background-uri"));
      } else {
          $('#loginBody').find('.wrap').css('background-color', loginCustomization.attr("data-background-color"))
                  .css('background-image', 'none');
      }
      if (loginCustomization.attr("data-button-color") != "") {
          $('#loginBody input[type="submit"].loginSubmit').removeClass('loginSubmit')
                  .css('background-color', loginCustomization.attr("data-button-color"))
                  .css('border-color', loginCustomization.attr("data-button-color"));
      }
      if (loginCustomization.attr("data-forgot-link-text") != "") {
          $('a#forgot-link').text(loginCustomization.attr("data-forgot-link-text"));
      }
  }

  function recordLocale() {
      var languageElement = document.getElementById("language");
      if (languageElement) {
          document.cookie = "ui.locale=" + languageElement.value;
      }
  }
  </script>
</body>
</html>
<!-- Render time: ~ 20 ms -->

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:09:35.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "papercut.com"
         ],
         "hostname" : [
            "www.papercut.com"
         ],
         "url" : [
            "https://www.papercut.com/products/mf/?clicked=app-footer"
         ]
      },
      "http" : {
         "bodymd5" : "8c5529452ed2e5ae1d4f29e7345687a7",
         "bodymmh3" : -856371065,
         "component" : [
            {
               "product" : "Java",
               "productvendor" : "Oracle"
            },
            {
               "product" : "jQuery",
               "productvendor" : "jQuery",
               "productversion" : "3.5.1"
            }
         ],
         "description" : "PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.",
         "headermd5" : "fa25c4eea42a342854fe45cdc0273a72",
         "headermmh3" : 1933740734,
         "keywords" : [
            "print accounting",
            "print control",
            "print management",
            "print quota",
            "software"
         ],
         "title" : "PaperCut Login"
      },
      "length" : 13610
   },
   "asn" : "AS16509",
   "city" : "Cape Town",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:09:35 GMT\r\nServer: nginx\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nExpires: Thu, 01 Jan 1970 00:00:00 UTC\r\nCache-Control: no-cache\r\nSet-Cookie: JSESSIONID=node0r6ehocjx9u6arp89g18i3mcvq24pez81qhggqar2.node0; Path=/; Secure; HttpOnly\r\nContent-Length: 13222\r\n\r\n<!DOCTYPE HTML>\n<!-- Application: app-server -->\n<!-- Page: Home -->\n<!-- Generated: Mon Nov 20 12:34:06 EST 2023 -->\n<html lang=\"en\">\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html;charset=UTF-8\"/>\n<title>PaperCut Login</title>\n<link rel=\"shortcut icon\" href=\"/images/icons3/favicon.ico\" type=\"image/vnd.microsoft.icon\"/>\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\"/>\n<meta name=\"description\" content=\"PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.\"/>\n<meta name=\"keywords\" content=\"print quota, print control, print management, print accounting, software\"/>\n<meta name=\"viewport\" content=\"width=device-width, initial-scale=0.8\"/>\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style.css?66961papercut-mf\" />\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-override.css?66961papercut-mf\" />\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/refresh.css?66961papercut-mf\" />\n<!--[if IE 9]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie9.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 8]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie8.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 7]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie7.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 6]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie6.css?66961papercut-mf\" />\n<![endif]-->\n<script type=\"text/javascript\">var CacheParam = \"66961papercut-mf\";</script>\n<script type=\"text/javascript\" src=\"/js/jquery/jquery-3.5.1.min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/jquery/jquery-migrate-3.3.1.min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/jquery/config.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/lib/underscore/underscore-min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/common.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/lib/require.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/pages/configure.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/refresh.js?66961papercut-mf\"></script>\n</head>\n\n<body id=\"loginBody\">\n<script language=\"JavaScript\" type=\"text/javascript\"><!--\n\nwindow.onload = function ()\n{\ndocument.Form0.inputUsername.focus();\ndocument.Form0.inputUsername.select();\n}\n\n// --></script> <div class=\"wrap\">\n    <script type=\"text/javascript\">\n    insertScript('/js/pages/Home.js');\n    insertScript('/js/pages/LoginPages.js');\n    </script>\n      <svg viewBox=\"0 0 280.7 198.5\" class=\"pc-shards\">\n<polygon points=\"96.3,136.3 140.4,198.5 162.4,198.5 183.9,130.1 134.9,95.4 \"/>\n<polygon points=\"45,63.6 74.9,53 0,0 \"/>\n<polygon points=\"134.9,95.4 96.3,136.3 45,63.6 74.9,53 \"/>\n<polygon points=\"74.9,53 224.8,0 134.9,95.4 \"/>\n<polygon points=\"224.8,0 183.9,130.1 134.9,95.4 \"/>\n<polygon points=\"224.8,0 224.8,0 224.8,159 183.9,130.1 \"/>\n<polygon points=\"162.4,198.5 224.8,198.5 224.8,159 183.9,130.1 \"/>\n<polygon points=\"37.7,198.5 140.4,198.5 96.3,136.3 \"/>\n<polygon points=\"0,79.5 0,198.5 37.7,198.5 96.3,136.3 45,63.6 \"/>\n<polygon points=\"0,79.5 45,63.6 0,0 \"/>\n<polygon points=\"0,79.5 0,79.5 0,79.5 \"/>\n<polygon points=\"262.3,198.5 280.7,198.5 265.7,187.9 \"/>\n<polygon points=\"224.8,198.5 262.3,198.5 265.7,187.9 224.8,159 \"/>\n</svg>\n<form method=\"post\" name=\"Form0\" action=\"/app\" onsubmit=\"recordLocale()\" autocomplete=\"off\">\n<input type=\"hidden\" name=\"service\" value=\"direct/1/Home/$Form\"/>\n<input type=\"hidden\" name=\"sp\" value=\"S0\"/>\n<input type=\"hidden\" name=\"Form0\" value=\"$Hidden$0,$Hidden$1,inputUsername,inputPassword,$Submit$0,$PropertySelection\"/>\n<input type=\"hidden\" name=\"$Hidden$0\" id=\"javascript-enabled\" value=\"F\"/>\n<input type=\"hidden\" name=\"$Hidden$1\" value=\"X\"/>\n <div class=\"login\" role=\"main\">\n      <div class=\"box\">\n        <table class=\"box-table\" title=\"Login\" role=\"presentation\">\n          <tr role=\"row\">\n            <th class=\"box-nw\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n            <th class=\"box-n\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n            <th class=\"box-ne\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n          </tr>\n          <tr role=\"row\">\n            <td class=\"box-w\"></td>\n            <td class=\"box-content\">\n\n              <div id=\"login\">\n <h1><img alt=\"PaperCut Logo\" src=\"/custom/login-logo.png?1667504163324\" class=\"logo\"></img></h1>\n\n <h1 id=\"papercut-user-login-title\">Log in</h1>\n <table style=\"margin-bottom:5px;\" title=\"Username and Password\" role=\"presentation\">\n                        <tbody>\n                          <tr role=\"row\">\n                            <th role=\"rowheader\"><label for=\"inputUsername\">Username</label></th>\n                            <td><input type=\"text\" name=\"inputUsername\" autocorrect=\"off\" maxlength=\"50\" aria-describedby=\"login-feedback-message\" style=\"width: 150px;\" id=\"inputUsername\" autocapitalize=\"off\" class=\"field\"/></td>\n                          </tr>\n                          <tr role=\"row\">\n                            <th role=\"rowheader\"><label for=\"inputPassword\">Password</label></th>\n                            <td><input type=\"password\" name=\"inputPassword\" style=\"width: 150px;\" id=\"inputPassword\" class=\"field\" aria-describedby=\"login-feedback-message\"/></td>\n                          </tr>\n                        </tbody>\n                      </table>\n\n\n                    <div id=\"login-feedback-message\">\n\n\n\n </div>\n<input type=\"submit\" name=\"$Submit$0\" value=\"Log in\" class=\"loginSubmit\" aria-describedby=\"login-feedback-message\"/>\n\n\n\n<a href=\"/app?service=direct/1/Home/oAuth2LoginSuccess\" style=\"display:none\" class=\"btn secondary google\">Sign in with Google</a>\n<a href=\"/app?service=direct/1/Home/oAuth2LoginCancel\" style=\"display:none\" class=\"btn secondary microsoft\">Sign in with Microsoft</a>\n <a style=\"display:block; margin-top: 10px;\" id=\"forgot-link\" href=\"/app?service=external/ForgotLoginDetails\">\nForgot username or password?</a>\n\n </div>\n\n\n            </td>\n            <td class=\"box-e\"></td>\n          </tr>\n          <tr role=\"row\">\n            <td class=\"box-sw\"></td>\n            <td class=\"box-s\"></td>\n            <td class=\"box-se\"></td>\n          </tr>\n        </table>\n      </div>\n <div class=\"language-box\">\n          <p id=\"language-select-text\">Language Select</p>\n          <svg width=\"24\" height=\"24\" viewBox=\"50 1777 24 24\" class=\"global\" alt=\"Globe Language Icon\">\n                <path fill=\"gray\" d=\"M62,1777c-6.627,0-12,5.373-12,12s5.373,12,12,12s12-5.373,12-12S68.627,1777,62,1777z M58.129,1780.116\n        c-0.665,0.732-1.359,1.699-1.925,2.94h-1.833C55.355,1781.79,56.643,1780.771,58.129,1780.116z M53.217,1784.957h2.304\n        c-0.251,0.918-0.417,1.954-0.481,3.1h-2.664C52.48,1786.959,52.775,1785.918,53.217,1784.957z M53.236,1793.057\n        c-0.447-0.96-0.749-2.001-0.859-3.1h2.662c0.064,1.146,0.23,2.182,0.481,3.1H53.236z M54.401,1794.957h1.803\n        c0.549,1.204,1.218,2.146,1.865,2.87C56.624,1797.179,55.369,1796.188,54.401,1794.957z M61.05,1798.054\n        c-0.541-0.34-1.814-1.283-2.828-3.097h2.828V1798.054z M61.05,1793.057h-3.645c-0.288-0.893-0.493-1.921-0.566-3.1h4.211V1793.057z\n         M61.05,1788.057h-4.211c0.073-1.179,0.278-2.207,0.566-3.1h3.645V1788.057z M61.05,1783.057h-2.828\n        c1.014-1.813,2.287-2.757,2.828-3.097V1783.057z M70.823,1784.957c0.441,0.961,0.736,2.002,0.842,3.1h-2.704\n        c-0.064-1.146-0.23-2.182-0.481-3.1H70.823z M69.669,1783.057h-1.873c-0.574-1.259-1.279-2.237-1.953-2.974\n        C67.358,1780.736,68.669,1781.77,69.669,1783.057z M62.95,1779.96c0.541,0.34,1.814,1.283,2.828,3.097H62.95V1779.96z\n         M62.95,1784.957h3.645c0.288,0.893,0.493,1.921,0.566,3.1H62.95V1784.957z M62.95,1789.957h4.211\n        c-0.073,1.179-0.278,2.207-0.566,3.1H62.95V1789.957z M62.95,1798.055v-3.098h2.828\n        C64.764,1796.772,63.488,1797.716,62.95,1798.055z M65.902,1797.86c0.656-0.729,1.337-1.682,1.894-2.903h1.843\n        C68.656,1796.208,67.376,1797.213,65.902,1797.86z M70.804,1793.057h-2.324c0.251-0.918,0.417-1.954,0.481-3.1h2.702\n        C71.553,1791.056,71.251,1792.097,70.804,1793.057z\"/>\n          </svg>\n<select name=\"$PropertySelection\" alt=\"Select language\" role=\"listbox\" id=\"language\" aria-label=\"Select language\">\n<option value=\"en\" selected=\"selected\">English</option>\n<option value=\"ca\">catal&#224;</option>\n<option value=\"zh_CN\">&#20013;&#25991; (&#20013;&#22269;)</option>\n<option value=\"zh_HK\">&#20013;&#25991; (&#39321;&#28207;)</option>\n<option value=\"zh_TW\">&#20013;&#25991; (&#21488;&#28771;)</option>\n<option value=\"hr\">hrvatski</option>\n<option value=\"cs\">&#269;e&#353;tina</option>\n<option value=\"da\">Dansk</option>\n<option value=\"nl\">Nederlands</option>\n<option value=\"fi\">suomi</option>\n<option value=\"fr\">fran&#231;ais</option>\n<option value=\"de\">Deutsch</option>\n<option value=\"iw\">&#1506;&#1489;&#1512;&#1497;&#1514;</option>\n<option value=\"hu\">magyar</option>\n<option value=\"it\">italiano</option>\n<option value=\"ja\">&#26085;&#26412;&#35486;</option>\n<option value=\"ko\">&#54620;&#44397;&#50612;</option>\n<option value=\"lv\">Latvie&#353;u</option>\n<option value=\"lt\">Lietuvi&#371;</option>\n<option value=\"no\">norsk</option>\n<option value=\"pl\">polski</option>\n<option value=\"pt\">portugu&#234;s (Brasil)</option>\n<option value=\"pt_PT\">portugu&#234;s (Portugal)</option>\n<option value=\"ru\">&#1088;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081;</option>\n<option value=\"sr\">&#1057;&#1088;&#1087;&#1089;&#1082;&#1080;</option>\n<option value=\"sk\">Sloven&#269;ina</option>\n<option value=\"sl\">Sloven&#353;&#269;ina</option>\n<option value=\"es\">espa&#241;ol</option>\n<option value=\"es_ES\">espa&#241;ol (Espa&#241;a)</option>\n<option value=\"sv\">svenska</option>\n<option value=\"th_TH\">&#3652;&#3607;&#3618; (&#3611;&#3619;&#3632;&#3648;&#3607;&#3624;&#3652;&#3607;&#3618;)</option>\n<option value=\"tr\">T&#252;rk&#231;e</option>\n<option value=\"cy_GB\">Welsh (United Kingdom)</option>\n</select> </div>\n <script>\n            let languageOptions = document.getElementById(\"language\").children;\n            for (let languageOption of languageOptions)\n            {\n                let lang = languageOption.getAttribute(\"value\");\n                if (lang.includes(\"_\")) lang = lang.substr(0, lang.indexOf(\"_\")); // to remove region if specified\n                languageOption.setAttribute(\"lang\", lang);\n            }\n        </script>\n<span data-background-uri=\"/images/login-bg.jpg?66961papercut-mf\" data-background-selection=\"COLOR\" data-background-color=\"#FFFFFF\" id=\"loginCustomization\" data-button-color=\"#01B256\" data-forgot-link-text=\"\"></span> <!-- The license has expired!  -->\n </div>\n</form>\n\n <div id=\"footer\" style=\"position:absolute; bottom: 0px; left: 0px; right: 0px; width: 100%;\">\n <div class=\"product-details\">\n    <div class=\"logo\"><img src=\"/images/footer-logo2.png?66961papercut-mf\" border=\"0\"/></div>\n\n    <div class=\"text\">\n<span class=\"product\"><a href=\"https://www.papercut.com/products/mf/?clicked=app-footer\">PaperCut MF</a></span>\n\n <div>\nPrint Management Software</div>\n <!-- analytic purpose -->\n<span class=\"analytic-license-expiry-date\" style=\"display:none\"></span>\n<span class=\"analytic-product-build-number\" style=\"display:none\">66961</span>\n<span class=\"analytic-product-version\" style=\"display:none\">22.1.3</span>\n<span class=\"analytic-product\" style=\"display:none\">PaperCut MF</span>\n<span class=\"analytic-product-edition\" style=\"display:none\">MF</span> <div class=\"copyright\">\n        &copy; Copyright 1999-2023. PaperCut Software Pty Ltd. All rights reserved. </div>\n    </div>\n  </div>\n </div>\n </div>\n  <script language=\"JavaScript\" type=\"text/javascript\">\n  var oldonload = window.onload;\n  if (typeof window.onload != 'function') {\n    window.onload = applyLoginCustomization;\n  } else {\n    window.onload = function () {\n      if (oldonload) {\n        oldonload();\n      }\n        applyLoginCustomization();\n    }\n  }\n\n  /*\n   Apply login customization\n   */\n  function applyLoginCustomization() {\n      var loginCustomization = $(\"#loginCustomization\");\n      if (loginCustomization.attr(\"data-background-selection\") == 'IMAGE') {\n          loadBackground(loginCustomization.attr(\"data-background-uri\"));\n      } else {\n          $('#loginBody').find('.wrap').css('background-color', loginCustomization.attr(\"data-background-color\"))\n                  .css('background-image', 'none');\n      }\n      if (loginCustomization.attr(\"data-button-color\") != \"\") {\n          $('#loginBody input[type=\"submit\"].loginSubmit').removeClass('loginSubmit')\n                  .css('background-color', loginCustomization.attr(\"data-button-color\"))\n                  .css('border-color', loginCustomization.attr(\"data-button-color\"));\n      }\n      if (loginCustomization.attr(\"data-forgot-link-text\") != \"\") {\n          $('a#forgot-link').text(loginCustomization.attr(\"data-forgot-link-text\"));\n      }\n  }\n\n  function recordLocale() {\n      var languageElement = document.getElementById(\"language\");\n      if (languageElement) {\n          document.cookie = \"ui.locale=\" + languageElement.value;\n      }\n  }\n  </script>\n</body>\n</html>\n<!-- Render time: ~ 20 ms -->\n\n\n",
   "datamd5" : "6602a320a278b26f544c1f7e9b11bbae",
   "datammh3" : 1404482669,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "AMAZON-CPT",
      "organization" : "Amazon Data Services South Africa",
      "subnet" : "13.244.0.0/14"
   },
   "host" : [
      "ec2-13-246-45-76"
   ],
   "hostname" : [
      "ec2-13-246-45-76.af-south-1.compute.amazonaws.com"
   ],
   "ip" : "13.246.45.76",
   "ipv6" : "false",
   "latitude" : "-34.0486",
   "location" : "-34.0486,18.4811",
   "longitude" : "18.4811",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-13-246-45-76.af-south-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "af-south-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "13.244.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
47.91.109.17

Network
47.91.0.0/16

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux sUse

URL

http://47.91.109.17:4369/ 401

HTTP Title
Default Site

HTTP Keyword(s)
voip vos3000

HTTP Copyright
www.linknat.com, 昆石网络

ASN
AS45102

Organization
Alibaba US Technology Co., Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux sUse

HTTP Component(s)
Cacti Cacti Atlassian Confluence PHP PHP 5.6.40 Gitlab Gitlab Drupal Drupal 7 Roundcube Webmail SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
14313f1d713f3bcdb38ca4c11b24f3e7

HTTP Header MD5
9a7792d4c7f79c62dceac587b9bfddc2

HTTP Body MD5
c542fc506232f5bf75693c5c63aecb18

HTTP/1.1 401 Unauthorized
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 105232
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Pragma: private
Server: Linux/#33 SMP PREEMPT Mon Mar 21 11:19:42 CST 2022 UPnP/1.0 Broadcom UPNP/0.9
Set-Cookie: acSamlv2Error=; path=/; secure;
Set-Cookie: fsm_u=admin; Path=/;
Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
Set-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
Set-Cookie: rememberMe=deleteMe; path=/;
Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: zbx_session=eyJzZXNzaW9uaWQiOiI1MDU2ZTlkYTFmZjkxZDAyMGEwMGEwMzhjNTliY2I2OCIsInNpZ24iOiJiMDVjNDJjNzQ4Y2IzZGRkNjExMWE4NDVhMDJhOWMxMWE5ODVjYTZmNDRhY2QxY2I3MjA5ZjIxZmExMDg3YjQ5In0%3D; secure; HttpOnly
Set-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly
Set-Cookie: webvpnlogin=; path=/; secure;
Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
Set-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;
Set-Cookie: DSSignInURL=/; path=/; secure;
Set-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: SUPPORTCHROMEOS=1; path=/; secure;
Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
Teamcity-Node-Id: MAIN_SERVER
Www-Authenticate: Basic realm="TP-LINK Wireless N Router WR840N"
X-Adblock-Key: YQo=
X-Cache: MISS from Hello
X-Cache-Enabled: False
X-Cache-Lookup: MISS from Hello:8080
X-Cacheable: SHORT
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 7 (http://drupal.org)
X-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B
X-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Powered-By: PHP/5.6.40
X-Request-Id: ecff8573-23ca-4dbc-a0a9-e8af7876c4ae
X-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372
X-Shopify-Stage: production
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 03:09:15 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e09==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>Default Site</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwOT09
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared_Clean:          0 kB
Shared_Dirty:          0 kB
Private_Clean:         0 kB
Private_Dirty:        52 kB
Referenced:           52

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:09:15.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "micros-hosting.com",
            "drupal.org"
         ],
         "file" : [
            "cloud_index.php",
            "dvrremoteap_x64.exe",
            "dvfplayer.zip",
            "admin-ajax.php",
            "dvrremoteap.exe",
            "index.php"
         ],
         "hostname" : [
            "drupal.org",
            "micros-hosting.com"
         ],
         "ip" : [
            "192.168.1.1",
            "1.0.0.36",
            "192.168.1.10",
            "192.168.0.1",
            "192.168.1.4",
            "7.7.31.1"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://drupal.org",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4"
         ]
      },
      "http" : {
         "bodymd5" : "c542fc506232f5bf75693c5c63aecb18",
         "bodymmh3" : 1523892688,
         "component" : [
            {
               "productversion" : "2.121.3",
               "productvendor" : "Jenkins",
               "product" : "Jenkins"
            },
            {
               "product" : "Cacti",
               "productvendor" : "Cacti"
            },
            {
               "productversion" : "5.6.40",
               "productvendor" : "PHP",
               "product" : "PHP"
            },
            {
               "productversion" : "4.1.11",
               "productvendor" : "SPIP",
               "product" : "SPIP"
            },
            {
               "product" : "Webmail",
               "productvendor" : "Roundcube"
            },
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            },
            {
               "product" : "Drupal",
               "productversion" : "7",
               "productvendor" : "Drupal"
            },
            {
               "productvendor" : "Gitlab",
               "product" : "Gitlab"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "9a7792d4c7f79c62dceac587b9bfddc2",
         "headermmh3" : 1697223582,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "realm" : "TP-LINK Wireless N Router WR840N",
         "title" : "Default Site"
      },
      "length" : 16307
   },
   "asn" : "AS45102",
   "city" : "Dubai",
   "country" : "AE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105232\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: Linux/#33 SMP PREEMPT Mon Mar 21 11:19:42 CST 2022 UPnP/1.0 Broadcom UPNP/0.9\r\nSet-Cookie: acSamlv2Error=; path=/; secure;\r\nSet-Cookie: fsm_u=admin; Path=/;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/\r\nSet-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: rememberMe=deleteMe; path=/;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: zbx_session=eyJzZXNzaW9uaWQiOiI1MDU2ZTlkYTFmZjkxZDAyMGEwMGEwMzhjNTliY2I2OCIsInNpZ24iOiJiMDVjNDJjNzQ4Y2IzZGRkNjExMWE4NDVhMDJhOWMxMWE5ODVjYTZmNDRhY2QxY2I3MjA5ZjIxZmExMDg3YjQ5In0%3D; secure; HttpOnly\r\nSet-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly\r\nSet-Cookie: webvpnlogin=; path=/; secure;\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;\r\nSet-Cookie: DSSignInURL=/; path=/; secure;\r\nSet-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: SUPPORTCHROMEOS=1; path=/; secure;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nTeamcity-Node-Id: MAIN_SERVER\r\nWww-Authenticate: Basic realm=\"TP-LINK Wireless N Router WR840N\"\r\nX-Adblock-Key: YQo=\r\nX-Cache: MISS from Hello\r\nX-Cache-Enabled: False\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 7 (http://drupal.org)\r\nX-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B\r\nX-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: PHP/5.6.40\r\nX-Request-Id: ecff8573-23ca-4dbc-a0a9-e8af7876c4ae\r\nX-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372\r\nX-Shopify-Stage: production\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 03:09:15 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e09==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Default Site</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwOT09\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52",
   "datamd5" : "14313f1d713f3bcdb38ca4c11b24f3e7",
   "datammh3" : -986140752,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS45102",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "alibaba-inc.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "ALICLOUD-UAE",
      "organization" : "Alibaba Cloud LLC",
      "subnet" : "47.91.96.0/19"
   },
   "ip" : "47.91.109.17",
   "ipv6" : "false",
   "latitude" : "25.0731",
   "location" : "25.0731,55.2980",
   "longitude" : "55.2980",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Alibaba US Technology Co., Ltd.",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "47.91.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
3.27.132.230

Network
3.16.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://3.27.132.230:4369/ 301

Reverse DNS
ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

HTTP Component(s)
Oracle Java Atlassian Confluence

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b2b20dcc2aa8243558e5cb84e0d971ee

HTTP Header MD5
ad9ee95ebe61acda2f9558fbd21686ee

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

Favicon MD5
2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3
-1216248324

HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Date: Thu, 07 Nov 2024 01:51:39 GMT
Server: nginx
X-Confluence-Request-Time: 1730944299
Content-Type: text/html;charset=UTF-8
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=rpan0c2ajz51jdshal3qqlndj4r090qd; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Location: ./login.action
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:07:05.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "product" : "Java",
               "productvendor" : "Oracle"
            },
            {
               "product" : "Confluence",
               "productvendor" : "Atlassian"
            }
         ],
         "headermd5" : "ad9ee95ebe61acda2f9558fbd21686ee",
         "headermmh3" : 1676646550
      },
      "length" : 587
   },
   "asn" : "AS16509",
   "city" : "Sydney",
   "country" : "AU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 01:51:39 GMT\r\nServer: nginx\r\nX-Confluence-Request-Time: 1730944299\r\nContent-Type: text/html;charset=UTF-8\r\nCache-Control: no-cache, must-revalidate\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nSet-Cookie: JSESSIONID=rpan0c2ajz51jdshal3qqlndj4r090qd; Path=/; Secure; HttpOnly\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nStrict-Transport-Security: max-age=63072000\r\nLocation: ./login.action\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "b2b20dcc2aa8243558e5cb84e0d971ee",
   "datammh3" : 920886836,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "AMAZO-SYD",
      "organization" : "Amazon Corporate Services Pty Ltd",
      "subnet" : "3.24.0.0/14"
   },
   "host" : [
      "ec2-3-27-132-230"
   ],
   "hostname" : [
      "ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com"
   ],
   "ip" : "3.27.132.230",
   "ipv6" : "false",
   "latitude" : "-33.8715",
   "location" : "-33.8715,151.2006",
   "longitude" : "151.2006",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 301,
   "subdomains" : [
      "ap-southeast-2.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "3.16.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 23,486 in 0.034 second(s)

91.192.244.194:4369 (tcp/http) - last seen on 2024-11-07 at 03:27:04 UTC

85.198.26.250:4369 (tcp/http) - last seen on 2024-11-07 at 03:27:03 UTC

5.134.195.197:4369 (tcp/http) - last seen on 2024-11-07 at 03:26:19 UTC

221.152.161.241:4369 (tcp/unknown) - last seen on 2024-11-07 at 03:25:38 UTC

146.190.163.40:4369 (tcp/http) - last seen on 2024-11-07 at 03:25:05 UTC

165.90.193.16:4369 (tcp/http) - last seen on 2024-11-07 at 03:21:19 UTC

18.117.139.86:4369 (tcp/http) - last seen on 2024-11-07 at 03:10:25 UTC

13.246.45.76:4369 (tcp/http) - last seen on 2024-11-07 at 03:09:35 UTC

47.91.109.17:4369 (tcp/http) - last seen on 2024-11-07 at 03:09:15 UTC

3.27.132.230:4369 (tcp/http) - last seen on 2024-11-07 at 03:07:05 UTC