Returning 10 result(s) out of 23,486 in 0.034 second(s)

  • 91.192.244.194:4369 (tcp/http) - last seen on 2024-11-07 at 03:27:04 UTC

    • IP
      91.192.244.194
      Network
      91.192.244.0/22
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Ubuntu
      URL

      http://91.192.244.194:4369/ 400

      HTTP Title
      400 Bad Request
      ASN
      AS42636
      Organization
      Severnet Ltd.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Ubuntu
      Product
      Apache HTTP Server 2.4.58
      HTTP Component(s)
      Apache HTTP Server 2.4.58
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      7333e0b38441bbd6535066a86728e6c7
      HTTP Header MD5
      9160d1655d8573fc60db67e7cf921138
      HTTP Body MD5
      0977a32e2d8fdc2da0c173ca066c97e4
    • HTTP/1.1 400 Bad Request
      Date: Thu, 07 Nov 2024 03:27:03 GMT
      Server: Apache/2.4.58 (Ubuntu)
      Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
      Content-Length: 439
      Connection: close
      Content-Type: text/html; charset=iso-8859-1
      
      <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
      <html><head>
      <title>400 Bad Request</title>
      </head><body>
      <h1>Bad Request</h1>
      <p>Your browser sent a request that this server could not understand.<br />
      Reason: You're speaking plain HTTP to an SSL-enabled server port.<br />
       Instead use the HTTPS scheme to access this URL, please.<br />
      </p>
      <hr>
      <address>Apache/2.4.58 (Ubuntu) Server at kayatana.ru Port 80</address>
      </body></html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:04.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "0977a32e2d8fdc2da0c173ca066c97e4",
               "bodymmh3" : 130683350,
               "component" : [
                  {
                     "product" : "HTTP Server",
                     "productvendor" : "Apache",
                     "productversion" : "2.4.58"
                  }
               ],
               "headermd5" : "9160d1655d8573fc60db67e7cf921138",
               "headermmh3" : -936657295,
               "title" : "400 Bad Request"
            },
            "length" : 694
         },
         "asn" : "AS42636",
         "country" : "RU",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 07 Nov 2024 03:27:03 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nContent-Length: 439\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>400 Bad Request</title>\n</head><body>\n<h1>Bad Request</h1>\n<p>Your browser sent a request that this server could not understand.<br />\nReason: You're speaking plain HTTP to an SSL-enabled server port.<br />\n Instead use the HTTPS scheme to access this URL, please.<br />\n</p>\n<hr>\n<address>Apache/2.4.58 (Ubuntu) Server at kayatana.ru Port 80</address>\n</body></html>\n",
         "datamd5" : "7333e0b38441bbd6535066a86728e6c7",
         "datammh3" : -1228951133,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "ip" : "91.192.244.194",
         "ipv6" : "false",
         "latitude" : "55.7386",
         "location" : "55.7386,37.6068",
         "longitude" : "37.6068",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Severnet Ltd.",
         "os" : "Linux",
         "osdistribution" : "Ubuntu",
         "osvendor" : "Linux",
         "port" : 4369,
         "product" : "HTTP Server",
         "productvendor" : "Apache",
         "productversion" : "2.4.58",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "91.192.244.0/22",
         "tag" : "<enterprise field>: tag",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 85.198.26.250:4369 (tcp/http) - last seen on 2024-11-07 at 03:27:03 UTC

    • IP
      85.198.26.250
      Network
      85.198.24.0/22
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      URL

      http://85.198.26.250:4369/ 302

      HTTP Title
      Object moved
      ASN
      AS44285
      Organization
      Sefroyek Pardaz Engineering PJSC
      Protocol
      http
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f0e2a1d082616fcae558a99078ffc516
      HTTP Header MD5
      fbb1c8d9278ff033a70353edbaf5ac36
      HTTP Body MD5
      c572469abd9efd1ae2afa441bf6b4cde
    • HTTP/1.1 302 Found
      Cache-Control: private
      Content-Type: text/html; charset=utf-8
      Expires: Thu, 07 Nov 2024 03:27:02 GMT,0
      Location: /UserLogin.dap
      Set-Cookie: ASP.NET_SessionId=v5zkgrftz02pchm0ktnhbkkq; path=/; HttpOnly; SameSite=Lax
      Set-Cookie: __ChargoonAntiXsrfToken4369=mPYM5Oq9ah-AHZrmlrpFhOzmabRE-tEbDsuih_TxSeeASqbLnLZ7xJbdFYlJfgGQ; path=/; HttpOnly
      X-UA-Compatible: IE=edge
      Strict-Transport-Security: max-age=31536000
      X-XSS-Protection: 1; mode=block
      X-Frame-Options: SAMEORIGIN
      Referrer-Policy: same-origin
      Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
      Date: Thu, 07 Nov 2024 03:27:02 GMT
      Connection: close
      Content-Length: 131
      
      <html><head><title>Object moved</title></head><body>
      <h2>Object moved to <a href="/UserLogin.dap">here</a>.</h2>
      </body></html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:03.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "c572469abd9efd1ae2afa441bf6b4cde",
               "bodymmh3" : 1087665912,
               "headermd5" : "fbb1c8d9278ff033a70353edbaf5ac36",
               "headermmh3" : 784277271,
               "title" : "Object moved"
            },
            "length" : 811
         },
         "asn" : "AS44285",
         "country" : "IR",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 302 Found\r\nCache-Control: private\r\nContent-Type: text/html; charset=utf-8\r\nExpires: Thu, 07 Nov 2024 03:27:02 GMT,0\r\nLocation: /UserLogin.dap\r\nSet-Cookie: ASP.NET_SessionId=v5zkgrftz02pchm0ktnhbkkq; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: __ChargoonAntiXsrfToken4369=mPYM5Oq9ah-AHZrmlrpFhOzmabRE-tEbDsuih_TxSeeASqbLnLZ7xJbdFYlJfgGQ; path=/; HttpOnly\r\nX-UA-Compatible: IE=edge\r\nStrict-Transport-Security: max-age=31536000\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'\r\nDate: Thu, 07 Nov 2024 03:27:02 GMT\r\nConnection: close\r\nContent-Length: 131\r\n\r\n<html><head><title>Object moved</title></head><body>\r\n<h2>Object moved to <a href=\"/UserLogin.dap\">here</a>.</h2>\r\n</body></html>\r\n",
         "datamd5" : "f0e2a1d082616fcae558a99078ffc516",
         "datammh3" : 2070803378,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS44285",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "IR",
            "countryname" : "Iran",
            "domain" : [
               "0-1.ir"
            ],
            "isineu" : "false",
            "latitude" : "32.427908",
            "location" : "32.427908,53.688046",
            "longitude" : "53.688046",
            "netname" : "IR-SEFROYEKPARDAZENG-20050131",
            "organization" : "Sefroyek Pardaz Engineering PJSC",
            "subnet" : "85.198.24.0/22"
         },
         "ip" : "85.198.26.250",
         "ipv6" : "false",
         "latitude" : "35.6980",
         "location" : "35.6980,51.4115",
         "longitude" : "51.4115",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Sefroyek Pardaz Engineering PJSC",
         "os" : "FreeBSD",
         "osvendor" : "FreeBSD",
         "port" : 4369,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Found",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 302,
         "subnet" : "85.198.24.0/22",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 5.134.195.197:4369 (tcp/http) - last seen on 2024-11-07 at 03:26:19 UTC

    • IP
      5.134.195.197
      Network
      5.134.192.0/21
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://5.134.195.197:4369/ 404

      ASN
      AS43754
      Organization
      Asiatech Data Transmission company
      Protocol
      http
      Source
      datascan
    • Operating System
      Microsoft Windows
      Product
      Microsoft IIS 10.0
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      3a1f1a509fe7d18e270b2414dd7eb5a2
      HTTP Header MD5
      219332637f060056c51093b73da9774e
      HTTP Body MD5
      465981b2c7142b9fb660b39e2de874c1
    • HTTP/1.1 404 Not Found
      Transfer-Encoding: chunked
      Server: Microsoft-IIS/10.0
      Date: Thu, 07 Nov 2024 03:26:18 GMT
      Connection: close
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:26:19.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "465981b2c7142b9fb660b39e2de874c1",
               "bodymmh3" : -421333641,
               "headermd5" : "219332637f060056c51093b73da9774e",
               "headermmh3" : 492090641
            },
            "length" : 143
         },
         "asn" : "AS43754",
         "country" : "IR",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 404 Not Found\r\nTransfer-Encoding: chunked\r\nServer: Microsoft-IIS/10.0\r\nDate: Thu, 07 Nov 2024 03:26:18 GMT\r\nConnection: close\r\n\r\n0\r\n\r\n",
         "datamd5" : "3a1f1a509fe7d18e270b2414dd7eb5a2",
         "datammh3" : -2062502376,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS43754",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "IR",
            "countryname" : "Iran",
            "domain" : [
               "asiatech.ir"
            ],
            "isineu" : "false",
            "latitude" : "32.427908",
            "location" : "32.427908,53.688046",
            "longitude" : "53.688046",
            "netname" : "IR-ASIATECH-NET",
            "organization" : "Asiatech IPv4 Route",
            "subnet" : "5.134.192.0/21"
         },
         "ip" : "5.134.195.197",
         "ipv6" : "false",
         "latitude" : "35.6980",
         "location" : "35.6980,51.4115",
         "longitude" : "51.4115",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Asiatech Data Transmission company",
         "os" : "Windows",
         "osvendor" : "Microsoft",
         "osversion" : [
            "Server 2016",
            10
         ],
         "port" : 4369,
         "product" : "IIS",
         "productvendor" : "Microsoft",
         "productversion" : "10.0",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Not Found",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 404,
         "subnet" : "5.134.192.0/21",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 221.152.161.241:4369 (tcp/unknown) - last seen on 2024-11-07 at 03:25:38 UTC

    • IP
      221.152.161.241
      Network
      221.152.0.0/14
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS4766
      Organization
      Korea Telecom
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      77a1f92a371eabd4682415eccaff6dfb
    • RFJS\x00\x00\x00\x00X\x00\x00\x00\x01\x00\x00\x00\x00PROTOCOL_JSON1 ver=2.2 authkey=20F7FE552ACCA5E80AC3 slevel=0 oem=34 kttv=2.0 kttlevel=3\x00
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:25:38.000Z",
         "app" : {
            "length" : 105
         },
         "asn" : "AS4766",
         "city" : "Busanjin-gu",
         "country" : "KR",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "RFJS\\x00\\x00\\x00\\x00X\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00PROTOCOL_JSON1 ver=2.2 authkey=20F7FE552ACCA5E80AC3 slevel=0 oem=34 kttv=2.0 kttlevel=3\\x00",
         "datamd5" : "77a1f92a371eabd4682415eccaff6dfb",
         "datammh3" : -873992768,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS4766",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "KR",
            "countryname" : "South Korea",
            "domain" : [
               "kt.com",
               "nic.or.kr"
            ],
            "isineu" : "false",
            "latitude" : "35.907757",
            "location" : "35.907757,127.766922",
            "longitude" : "127.766922",
            "netname" : "KORNET",
            "organization" : "Korea Telecom",
            "subnet" : "221.152.0.0/14"
         },
         "ip" : "221.152.161.241",
         "ipv6" : "false",
         "latitude" : "35.1637",
         "location" : "35.1637,129.0175",
         "longitude" : "129.0175",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Korea Telecom",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 4369,
         "protocol" : "unknown",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "subnet" : "221.152.0.0/14",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 146.190.163.40:4369 (tcp/http) - last seen on 2024-11-07 at 03:25:05 UTC

    • IP
      146.190.163.40
      Network
      146.190.160.0/20
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://146.190.163.40:4369/

      ASN
      AS14061
      Organization
      DIGITALOCEAN-ASN
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      Product
      ConnectWise Control 23.2.9.8466
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      49eab9e205612a0f4919c3fe1c018f72
      HTTP Header MD5
      2ed1d4fb9b05fad4a548cc785a4f3855
      HTTP Body MD5
      931e7ce8ad0e3e0e866f4dc47c151ecd
    • HTTP/2 200 
      cache-control: private
      content-type: text/html; charset=utf-8
      server: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0
      x-robots-tag: noindex
      p3p: CP="NON CUR OUR STP STA PRE"
      
      
      <!DOCTYPE html>
      <html>
      <head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" />
      	<script>
      
      		function setTaggedSessionInfo(tag, taggedSessionInfo) {
      			var oldTaggedSessionInfo = window._taggedSessionInfos[tag];
      			window._taggedSessionInfos[tag] = taggedSessionInfo;
      
      			if (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)
      				SC.pagedata.notifyDirty();
      		}
      
      		// backwards compatibility with extensions
      		function setTaggedSessionID(tag, sessionID) {
      			window.setTaggedSessionInfo(tag, { SessionID: sessionID });
      		}
      
      		function getTaggedSessionInfo(tag) {
      			return window._taggedSessionInfos[tag];
      		}
      
      	</script>
      <script src="Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296" id="defaultScript"></script>
      <link href="App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231" type="text/css" rel="stylesheet" /><link href="FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3" rel="shortcut icon" />
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {
      if (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)
      	SC.service.GetThemeInfo(function (themeInfo) {
      		SC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');
      	});
      
      SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'WebConfigSave':
      			SC.dialog.showModalButtonDialog(
      				'Prompt',
      				SC.res['AdvancedConfig.ApplyChanges'],
      				'OK',
      				'Default',
      				function (container) {
      					SC.ui.setContents(container, [
      						eventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])
      					]);
      				},
      				function () {
      					var appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));
      					var pageSettings = JSON.parse(JSON.stringify(appSettings.location));
      					delete appSettings.location;
      
      					SC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {
      						if (result === 'OK') {
      							sessionStorage.removeItem('WebConfigAppSettings');
      							SC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);
      						} else {
      							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);
      						}
      					});
      				}
      			);
      			break;
      		case 'AppConfigSave':
      			SC.dialog.showModalButtonDialog(
      				'Prompt',
      				SC.res['AdvancedConfig.ApplyChanges'],
      				'OK',
      				'Default',
      				function (container) {
      					SC.ui.setContents(container, [
      						eventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])
      					]);
      				},
      				function () {
      					var systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;
      					var userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;
      
      					SC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {
      						if (result === 'OK') {
      							sessionStorage.removeItem('AppConfigAppSettings');
      							window.location.reload();
      						} else {
      							SC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);
      						}
      					});
      				}
      			);
      			break;
      	}
      });
      
      
      });</script>
      <script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
      // Add: Options | Help
      var x=extensionContext.baseUrl.split('/').splice(-2)[0];
      SC.res['HelpPanel.Link'+x+'.Url']="https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1";
      SC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' ▽','')});}});
      
      });</script>
      <script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {
      /*
          The following is currently ripped from the Hosted Integration Template per Control
          Potential to one day not need this and use some core functionality
      
          File will hide the UI and display the fourth column only
      */
      var sendCommandToParent = function (commandName, commandData) {
          if (commandName)
              window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');
      };
      
      SC.event.addGlobalHandler(SC.event.PreRender, function () {
          window.addEventListener('message', function (eventArgs) {
              SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');
              switch (eventArgs.data._externalCommand) {
                  case 'RenderSessionDetailsFullWidthCommand':
                      var applicablePaths = ['/', '/Guest', '/Host', '/Login'];
                      if (!applicablePaths.includes(window.location.pathname))
                          break;
      
                      var elementsToHide = [
                          $('.HeaderPanel'),
                          $('.GlobalBar'),
                          $('.NavigationPanel'),
                          $('.MasterPanel'),
                          $('.MainDetailHeaderPanel'),
                          $('.MainDetailPanel'),
                          $('.ToggleDetailPanelButton'),
                      ];
      
                      for (var i = 0; i < elementsToHide.length; i++)
                          if (elementsToHide[i])
                              SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);
      
                      var outerPanel = $('.OuterPanel');
                      var mainPanel = $('.MainPanel');
                      var subDetailHeader = $('.SubDetailHeaderPanel');
      
                      if (outerPanel)
                          SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);
      
                      if (mainPanel)
                          SC.css.ensureClass(mainPanel, 'GridOverride', true);
      
                      if (subDetailHeader)
                          SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);
      
                      var notifyPaths = ['/', '/Guest'];
      
                      if (notifyPaths.includes(window.location.pathname))
                          sendCommandToParent('OnPreRenderComplete');
      
                      break;
      
                  case 'LoadSessionCommand':
                      var sessionID = eventArgs.data._externalCommandData;
      
                      if (sessionID) {
                          // call our LiveDataService
                          SC.service.GetSessionDetailsUrl(
                              sessionID,
                              function (url) {
                                  if (url)
                                      window.location.href = url;
                              }
                          );
                      }
      
                      sendCommandToParent('OnLoadSessionComplete');
                      break;
              }
          });
      
          sendCommandToParent('OnPreRender');
      });
      
      });</script>
      <script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {
      var connectWiseUserSourceName = 'ConnectWise';
      
      var userSourceConfiguration = {
      	IdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,
      	ExtraScopes: 'roles',
      	ClientID: null,
      	ClientSecret: null,
      	UserInfoRoleNamesPath: 'roles',
      	ExtraRoleNames: '',
      	DisplayName: 'ConnectWise SSO',
      	ExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,
      }
      
      userSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;
      
      SC.event.addGlobalHandler(SC.event.PreRender, function () {
      	if (SC.context.pageType === 'AdministrationPage')
      		SC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');
      });
      
      SC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {
      	switch (eventArgs.area) {
      		case 'AddUserSourcePopoutPanel':
      			eventArgs.buttonDefinitions.push({
      				commandName: 'AddConnectWiseSSOUserSource',
      				text: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']
      			});
      			break;
      	}
      });
      
      SC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'AddConnectWiseSSOUserSource':
      			eventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);
      			break;
      	}
      });
      
      SC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {
      	switch (eventArgs.commandName) {
      		case 'AddConnectWiseSSOUserSource':
      			SC.dialog.showModalButtonDialog(
      				'ConnectWiseSsoSetup',
      				SC.res['ConnectWiseSSO.SetupModal.Title'],
      				SC.res['ConnectWiseSSO.SetupModal.Button'],
      				null,
      				function (container) {
      					SC.ui.addContent(container, [
      						$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),
      						$div($textarea({ className: 'RegistrationTokenInput' }))
      					]);
      				},
      				function () {
      					SC.service.MakeDynamicClientRegistrationRequest(
      						$('.RegistrationTokenInput').value,
      						SC.context.instanceID || SC.context.instanceUrlScheme,
      						SC.context.scriptBaseUrl,
      						connectWiseUserSourceName,
      						function (registrationResponse) {
      							userSourceConfiguration.ClientID = registrationResponse.client_id;
      							userSourceConfiguration.ClientSecret = registrationResponse.client_secret;
      
      							var configKeys = Object.keys(userSourceConfiguration);
      							var configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });
      
      							SC.service.AddUserSource(
      								'ScreenConnect.OpenIDConnectMembershipProvider',
      								connectWiseUserSourceName,
      								true,
      								false,
      								configKeys,
      								configValues,
      								() => SC.pagedata.notifyDirty()
      							);
      						});
      
      					SC.dialog.hideModalDialog();
      				}
      			);
      			break;
      	}
      });
      
      function compareVersions(version1, version2) {
      	var versionNumbers1 = version1.toString().split('.');
      	var versionNumbers2 = version2.toString().split('.');
      
      	for (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {
      		var versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);
      		var versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);
      		if (versionNumber1 > versionNumber2) return 1;
      		if (versionNumber2 > versionNumber1) return -1;
      	}
      
      	return 0;
      }
      
      function isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {
      	return (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0
      		&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));
      }
      
      function isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {
      	return isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);
      }
      
      });</script>
      <script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {
      /** Edit App.Config Settings **/
      
      /** Global Extension Variables **/
      var extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];
      
      const numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);
      
      /** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/
      function setupTopModalDialog(disable){
      	if (!disable) {
      		eval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));
      		eval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));
      		SC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };
      	} else {
      		delete SC.dialog.showModalDialogRawOnTop;
      		delete SC.dialog.hideTopModalDialog;
      		delete SC.dialog.getTopModalDialog;
      	}
      }
      
      function alertModal(message){
      	if (!SC.dialog.showModalDialogRawOnTop)
      		setupTopModalDialog();
      
      	SC.dialog.showModalDialogRawOnTop(
      		message.subClass || 'MessageBox',
      		[
      			message.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),
      			message.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),
      			message.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)
      		],
      		message.onExecProc || function(eventArgs){
      			SC.dialog.hideTopModalDialog();
      		},
      		message.onQueryProc || null,
      		message.onHideProc || function(){
      			if (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())
      				setupTopModalDialog(true);
      		}
      	);
      }
      /**********************************************/
      
      /** Table Sorting Functions **/
      var sortBy = {};
      function sortTable(table, col) {
      	if (sortBy.table){
      		var oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];
      		SC.css.ensureClass(oldSortCol,'Ascending',false);
      		SC.css.ensureClass(oldSortCol,'Descending',false);
      	}
      	
      	if (sortBy.table == table.id && sortBy.col == col){
      		sortBy.dir = -((+sortBy.dir) || -1);
      	}
      	else {
      		sortBy.table = table.id;
      		sortBy.col = col;
      		sortBy.dir = 1;
      	}
      	if (sortBy.dir !== 0)
      		SC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);
      
      	var tb = table.tBodies[0];
      	var tr = Array.prototype.slice.call(tb.rows, 0);
      	tr = tr.sort(function (a, b) {
      		var aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;
      		var bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;
      		return sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));
      	});
      	for(var i=0; i<tr.length; ++i){
      		tb.appendChild(tr[i]);
      	}
      }
      
      function makeSortable(table) {
      	var th = table.tHead, i;
      	th && (th = th.rows[0]) && (th = th.cells);
      	if (th) i = th.length;
      	else return; // if no `<thead>` then do nothing
      	while (--i >= 0) (function (i) {
      		SC.css.ensureClass(th[i],'Sortable',true);
      		th[i].addEventListener('click', function () {sortTable(table, i)});
      	}(i));
      }
      
      function makeAllSortable(parent) {
      	parent = parent || document.body;
      	var t = parent.getElementsByTagName('table'), i = t.length;
      	while (--i >= 0) makeSortable(t[i]);
      }
      /*****************************/
      
      /** General Extension Functions **/
      function checkVersion(minVer, curVer) {
      	if (typeof curVer + typeof minVer != 'stringstring')
      		return false;
      	var a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);
      	for (; i < len; i++) {
      		if ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {
      			return true;
      		} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {
      			return false;
      		}
      	}
      	return true;
      }
      
      function checkLongBitmask(flagInput,maskInput) {
      	var maxJSMaskLength = 8;
      	flags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));
      	mask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));
      
      	if (isNaN(flags) || isNaN(mask)){
      		return false;
      	}
      
      	if (parseInt(mask,16) === 0) {
      		if (maskInput.length > maxJSMaskLength) {
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:25:05.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "connectwise.com"
               ],
               "hostname" : [
                  "docs.connectwise.com"
               ],
               "url" : [
                  "https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1"
               ]
            },
            "http" : {
               "bodymd5" : "931e7ce8ad0e3e0e866f4dc47c151ecd",
               "bodymmh3" : 747461957,
               "headermd5" : "2ed1d4fb9b05fad4a548cc785a4f3855",
               "headermmh3" : -1098840062
            },
            "length" : 16384
         },
         "asn" : "AS14061",
         "city" : "San Francisco",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/2 200 \ncache-control: private\ncontent-type: text/html; charset=utf-8\nserver: ScreenConnect/23.2.9.8466-1894385917 Microsoft-HTTPAPI/2.0\nx-robots-tag: noindex\np3p: CP=\"NON CUR OUR STP STA PRE\"\n\n\n<!DOCTYPE html>\n<html>\n<head><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" /><meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no\" />\n\t<script>\n\n\t\tfunction setTaggedSessionInfo(tag, taggedSessionInfo) {\n\t\t\tvar oldTaggedSessionInfo = window._taggedSessionInfos[tag];\n\t\t\twindow._taggedSessionInfos[tag] = taggedSessionInfo;\n\n\t\t\tif (!oldTaggedSessionInfo || taggedSessionInfo.SessionID != oldTaggedSessionInfo.SessionID || taggedSessionInfo.Code != oldTaggedSessionInfo.Code)\n\t\t\t\tSC.pagedata.notifyDirty();\n\t\t}\n\n\t\t// backwards compatibility with extensions\n\t\tfunction setTaggedSessionID(tag, sessionID) {\n\t\t\twindow.setTaggedSessionInfo(tag, { SessionID: sessionID });\n\t\t}\n\n\t\tfunction getTaggedSessionInfo(tag) {\n\t\t\treturn window._taggedSessionInfos[tag];\n\t\t}\n\n\t</script>\n<script src=\"Script.ashx?__Cache=fd679076-5557-4f9b-a06d-abda51b45296\" id=\"defaultScript\"></script>\n<link href=\"App_Themes/Solid/Default.css?__Cache=c33594ec-f460-47ee-ba84-eb3315411231\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"FavIcon.axd?__Cache=9ba1a2d5-c5aa-4470-b2ec-d1eecab079c3\" rel=\"shortcut icon\" />\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"A2daa5gtl4xtLlHwTHY/HyY2S5T7XRgHJCWGYFLkHjEBAAChzigX0LotQg==\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<script>SC.extension.addInitializeProc('fa369545-ba27-4670-b053-a9f65f3269b0', function (extensionContext) {\nif (SC.context.pageType == 'AdministrationPage' && SC.context.isUserAuthenticated)\n\tSC.service.GetThemeInfo(function (themeInfo) {\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'css/Style.css');\n\t});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'WebConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'WebConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.WebConfigWarning']) : $p(SC.res['AdvancedConfig.RestartInstanceWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar appSettings = JSON.parse(sessionStorage.getItem('WebConfigAppSettings'));\n\t\t\t\t\tvar pageSettings = JSON.parse(JSON.stringify(appSettings.location));\n\t\t\t\t\tdelete appSettings.location;\n\n\t\t\t\t\tSC.service.WriteChangesToWebConfig(appSettings, pageSettings, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('WebConfigAppSettings');\n\t\t\t\t\t\t\tSC.dialog.showModalActivityAndReload('Save', true, window.location.href.split('#')[0]);\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.WebConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t\tcase 'AppConfigSave':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'Prompt',\n\t\t\t\tSC.res['AdvancedConfig.ApplyChanges'],\n\t\t\t\t'OK',\n\t\t\t\t'Default',\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.setContents(container, [\n\t\t\t\t\t\teventArgs.commandArgument === 'AppConfigRestore' ? $p(SC.res['AdvancedConfig.RestoreDefaults.AppConfigWarning']) : $p(SC.res['AdvancedConfig.ReinstallWarning'])\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tvar systemSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).SystemSettings;\n\t\t\t\t\tvar userInterfaceSettings = JSON.parse(sessionStorage.getItem('AppConfigAppSettings')).UserInterfaceSettings;\n\n\t\t\t\t\tSC.service.WriteChangesToAppConfig(systemSettings, userInterfaceSettings, AppConfigDefaults, function (result) {\n\t\t\t\t\t\tif (result === 'OK') {\n\t\t\t\t\t\t\tsessionStorage.removeItem('AppConfigAppSettings');\n\t\t\t\t\t\t\twindow.location.reload();\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\tSC.dialog.showModalMessageBox(SC.res['AdvancedConfig.SaveError.Title'], SC.res['AdvancedConfig.SaveError.AppConfigDescription'] + ' ' + result);\n\t\t\t\t\t\t}\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n// Add: Options | Help\nvar x=extensionContext.baseUrl.split('/').splice(-2)[0];\nSC.res['HelpPanel.Link'+x+'.Url']=\"https://docs.connectwise.com/ConnectWise_Automate/ConnectWise_Automate_Documentation/080/020/020?psa=1\";\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState,function(e){if(e.commandElement&&e.commandElement._commandName&&e.commandElement._commandName=='EditExtensionSettings'&&e.commandContext.extensionInfo.ExtensionID==x){SC.ui.addElement(e.target.parentElement,'A',{_commandName:'NavigateHelpLink',_commandArgument:x,_innerText:SC.res['Command.Help.Text'].replace(' \u25bd','')});}});\n\n});</script>\n<script>SC.extension.addInitializeProc('fc234f0e-2e8e-4a1f-b977-ba41b14031f7', function (extensionContext) {\n/*\n    The following is currently ripped from the Hosted Integration Template per Control\n    Potential to one day not need this and use some core functionality\n\n    File will hide the UI and display the fourth column only\n*/\nvar sendCommandToParent = function (commandName, commandData) {\n    if (commandName)\n        window.parent.postMessage({ _internalCommand: commandName, _internalCommandData: commandData ? commandData : {} }, '*');\n};\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n    window.addEventListener('message', function (eventArgs) {\n        SC.util.includeStyleSheet(extensionContext.baseUrl + 'LiveData/livedata.css');\n        switch (eventArgs.data._externalCommand) {\n            case 'RenderSessionDetailsFullWidthCommand':\n                var applicablePaths = ['/', '/Guest', '/Host', '/Login'];\n                if (!applicablePaths.includes(window.location.pathname))\n                    break;\n\n                var elementsToHide = [\n                    $('.HeaderPanel'),\n                    $('.GlobalBar'),\n                    $('.NavigationPanel'),\n                    $('.MasterPanel'),\n                    $('.MainDetailHeaderPanel'),\n                    $('.MainDetailPanel'),\n                    $('.ToggleDetailPanelButton'),\n                ];\n\n                for (var i = 0; i < elementsToHide.length; i++)\n                    if (elementsToHide[i])\n                        SC.css.ensureClass(elementsToHide[i], 'HiddenElement', true);\n\n                var outerPanel = $('.OuterPanel');\n                var mainPanel = $('.MainPanel');\n                var subDetailHeader = $('.SubDetailHeaderPanel');\n\n                if (outerPanel)\n                    SC.css.ensureClass(outerPanel, 'OuterPanelOverride', true);\n\n                if (mainPanel)\n                    SC.css.ensureClass(mainPanel, 'GridOverride', true);\n\n                if (subDetailHeader)\n                    SC.css.ensureClass(subDetailHeader, 'FullSizeHeaderElement', true);\n\n                var notifyPaths = ['/', '/Guest'];\n\n                if (notifyPaths.includes(window.location.pathname))\n                    sendCommandToParent('OnPreRenderComplete');\n\n                break;\n\n            case 'LoadSessionCommand':\n                var sessionID = eventArgs.data._externalCommandData;\n\n                if (sessionID) {\n                    // call our LiveDataService\n                    SC.service.GetSessionDetailsUrl(\n                        sessionID,\n                        function (url) {\n                            if (url)\n                                window.location.href = url;\n                        }\n                    );\n                }\n\n                sendCommandToParent('OnLoadSessionComplete');\n                break;\n        }\n    });\n\n    sendCommandToParent('OnPreRender');\n});\n\n});</script>\n<script>SC.extension.addInitializeProc('008c8fcf-2b14-4551-aa25-2177aa9a61e5', function (extensionContext) {\nvar connectWiseUserSourceName = 'ConnectWise';\n\nvar userSourceConfiguration = {\n\tIdentityProviderUri: extensionContext.settingValues.ConnectWiseSsoBaseUrl,\n\tExtraScopes: 'roles',\n\tClientID: null,\n\tClientSecret: null,\n\tUserInfoRoleNamesPath: 'roles',\n\tExtraRoleNames: '',\n\tDisplayName: 'ConnectWise SSO',\n\tExternalUserManagementUrl: extensionContext.settingValues.ConnectWiseSsoUserManagementUrl,\n}\n\nuserSourceConfiguration.ExternalUserManagementUrl = extensionContext.settingValues.ConnectWiseSsoUserManagementUrl;\n\nSC.event.addGlobalHandler(SC.event.PreRender, function () {\n\tif (SC.context.pageType === 'AdministrationPage')\n\t\tSC.util.includeStyleSheet(extensionContext.baseUrl + 'ConnectWiseSSO.css');\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtons, function (eventArgs) {\n\tswitch (eventArgs.area) {\n\t\tcase 'AddUserSourcePopoutPanel':\n\t\t\teventArgs.buttonDefinitions.push({\n\t\t\t\tcommandName: 'AddConnectWiseSSOUserSource',\n\t\t\t\ttext: SC.res['ConnectWiseSSO.AddUserSourcePopoutPanel.Button']\n\t\t\t});\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.QueryCommandButtonState, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\teventArgs.isEnabled = eventArgs.isVisible = SC.pagedata.get().UserSources.every(it => it.Name !== connectWiseUserSourceName);\n\t\t\tbreak;\n\t}\n});\n\nSC.event.addGlobalHandler(SC.event.ExecuteCommand, function (eventArgs) {\n\tswitch (eventArgs.commandName) {\n\t\tcase 'AddConnectWiseSSOUserSource':\n\t\t\tSC.dialog.showModalButtonDialog(\n\t\t\t\t'ConnectWiseSsoSetup',\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Title'],\n\t\t\t\tSC.res['ConnectWiseSSO.SetupModal.Button'],\n\t\t\t\tnull,\n\t\t\t\tfunction (container) {\n\t\t\t\t\tSC.ui.addContent(container, [\n\t\t\t\t\t\t$h2({ innerHTML: SC.res['ConnectWiseSSO.SetupModal.Instructions'], className: 'SettingHeader' }),\n\t\t\t\t\t\t$div($textarea({ className: 'RegistrationTokenInput' }))\n\t\t\t\t\t]);\n\t\t\t\t},\n\t\t\t\tfunction () {\n\t\t\t\t\tSC.service.MakeDynamicClientRegistrationRequest(\n\t\t\t\t\t\t$('.RegistrationTokenInput').value,\n\t\t\t\t\t\tSC.context.instanceID || SC.context.instanceUrlScheme,\n\t\t\t\t\t\tSC.context.scriptBaseUrl,\n\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\tfunction (registrationResponse) {\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientID = registrationResponse.client_id;\n\t\t\t\t\t\t\tuserSourceConfiguration.ClientSecret = registrationResponse.client_secret;\n\n\t\t\t\t\t\t\tvar configKeys = Object.keys(userSourceConfiguration);\n\t\t\t\t\t\t\tvar configValues = configKeys.map(function (key) { return userSourceConfiguration[key]; });\n\n\t\t\t\t\t\t\tSC.service.AddUserSource(\n\t\t\t\t\t\t\t\t'ScreenConnect.OpenIDConnectMembershipProvider',\n\t\t\t\t\t\t\t\tconnectWiseUserSourceName,\n\t\t\t\t\t\t\t\ttrue,\n\t\t\t\t\t\t\t\tfalse,\n\t\t\t\t\t\t\t\tconfigKeys,\n\t\t\t\t\t\t\t\tconfigValues,\n\t\t\t\t\t\t\t\t() => SC.pagedata.notifyDirty()\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t});\n\n\t\t\t\t\tSC.dialog.hideModalDialog();\n\t\t\t\t}\n\t\t\t);\n\t\t\tbreak;\n\t}\n});\n\nfunction compareVersions(version1, version2) {\n\tvar versionNumbers1 = version1.toString().split('.');\n\tvar versionNumbers2 = version2.toString().split('.');\n\n\tfor (let i = 0; i < Math.max(versionNumbers1.length, versionNumbers2.length); i++) {\n\t\tvar versionNumber1 = parseInt(versionNumbers1[i] || 0, 10);\n\t\tvar versionNumber2 = parseInt(versionNumbers2[i] || 0, 10);\n\t\tif (versionNumber1 > versionNumber2) return 1;\n\t\tif (versionNumber2 > versionNumber1) return -1;\n\t}\n\n\treturn 0;\n}\n\nfunction isVersionInRange(version, minVersionInclusive, maxVersionExclusive) {\n\treturn (minVersionInclusive == undefined || compareVersions(version, minVersionInclusive) >= 0\n\t\t&& (maxVersionExclusive == undefined || compareVersions(version, maxVersionExclusive) < 0));\n}\n\nfunction isProductVersionInRange(minVersionInclusive, maxVersionExclusive) {\n\treturn isVersionInRange(SC.context.productVersion, minVersionInclusive, maxVersionExclusive);\n}\n\n});</script>\n<script>SC.extension.addInitializeProc('75fe3a74-43ba-45eb-9eab-12ff335b91cb', function (extensionContext) {\n/** Edit App.Config Settings **/\n\n/** Global Extension Variables **/\nvar extensionId = extensionContext.baseUrl.split('/').slice(-2)[0];\n\nconst numberRegex = new RegExp(/(^[0-9]$)|(^[1-9][0-9]+$)/);\n\n/** Custom 'top' modal dialog to show alert type messages in modal dialog on top of existing modal dialogs **/\nfunction setupTopModalDialog(disable){\n\tif (!disable) {\n\t\teval('SC.dialog.showModalDialogRawOnTop = ' + SC.dialog.showModalDialogRaw.toString().replace('SC.dialog.hideModalDialog();','').replace(/hideModalDialog/g,'hideTopModalDialog'));\n\t\teval('SC.dialog.hideTopModalDialog = ' + SC.dialog.hideModalDialog.toString().replace(/getModalDialog/g,'getTopModalDialog'));\n\t\tSC.dialog.getTopModalDialog = function() { return Array.prototype.map.call(window.document.querySelectorAll('#dialog'),function(_){return _;}).pop(); };\n\t} else {\n\t\tdelete SC.dialog.showModalDialogRawOnTop;\n\t\tdelete SC.dialog.hideTopModalDialog;\n\t\tdelete SC.dialog.getTopModalDialog;\n\t}\n}\n\nfunction alertModal(message){\n\tif (!SC.dialog.showModalDialogRawOnTop)\n\t\tsetupTopModalDialog();\n\n\tSC.dialog.showModalDialogRawOnTop(\n\t\tmessage.subClass || 'MessageBox',\n\t\t[\n\t\t\tmessage.titlePanel || SC.dialog.createTitlePanel(message.title || SC.res['ErrorPanel.Title']),\n\t\t\tmessage.contentPanel || SC.dialog.createContentPanel($div(message.content || message)),\n\t\t\tmessage.buttonPanel || SC.dialog.createButtonPanel(message.button || 'OK',message.extraButtons || null)\n\t\t],\n\t\tmessage.onExecProc || function(eventArgs){\n\t\t\tSC.dialog.hideTopModalDialog();\n\t\t},\n\t\tmessage.onQueryProc || null,\n\t\tmessage.onHideProc || function(){\n\t\t\tif (SC.dialog.getTopModalDialog() == SC.dialog.getModalDialog())\n\t\t\t\tsetupTopModalDialog(true);\n\t\t}\n\t);\n}\n/**********************************************/\n\n/** Table Sorting Functions **/\nvar sortBy = {};\nfunction sortTable(table, col) {\n\tif (sortBy.table){\n\t\tvar oldSortCol = document.querySelector('#' + sortBy.table).tHead.rows[0].cells[sortBy.col || 0];\n\t\tSC.css.ensureClass(oldSortCol,'Ascending',false);\n\t\tSC.css.ensureClass(oldSortCol,'Descending',false);\n\t}\n\t\n\tif (sortBy.table == table.id && sortBy.col == col){\n\t\tsortBy.dir = -((+sortBy.dir) || -1);\n\t}\n\telse {\n\t\tsortBy.table = table.id;\n\t\tsortBy.col = col;\n\t\tsortBy.dir = 1;\n\t}\n\tif (sortBy.dir !== 0)\n\t\tSC.css.ensureClass(table.tHead.rows[0].cells[col],sortBy.dir > 0 ? 'Ascending' : 'Descending', true);\n\n\tvar tb = table.tBodies[0];\n\tvar tr = Array.prototype.slice.call(tb.rows, 0);\n\ttr = tr.sort(function (a, b) {\n\t\tvar aVal = a.cells[col].order ? a.cells[col].order : a.cells[col].textContent;\n\t\tvar bVal = b.cells[col].order ? b.cells[col].order : b.cells[col].textContent;\n\t\treturn sortBy.dir * (typeof aVal == 'number' ? aVal - bVal : aVal.localeCompare(bVal));\n\t});\n\tfor(var i=0; i<tr.length; ++i){\n\t\ttb.appendChild(tr[i]);\n\t}\n}\n\nfunction makeSortable(table) {\n\tvar th = table.tHead, i;\n\tth && (th = th.rows[0]) && (th = th.cells);\n\tif (th) i = th.length;\n\telse return; // if no `<thead>` then do nothing\n\twhile (--i >= 0) (function (i) {\n\t\tSC.css.ensureClass(th[i],'Sortable',true);\n\t\tth[i].addEventListener('click', function () {sortTable(table, i)});\n\t}(i));\n}\n\nfunction makeAllSortable(parent) {\n\tparent = parent || document.body;\n\tvar t = parent.getElementsByTagName('table'), i = t.length;\n\twhile (--i >= 0) makeSortable(t[i]);\n}\n/*****************************/\n\n/** General Extension Functions **/\nfunction checkVersion(minVer, curVer) {\n\tif (typeof curVer + typeof minVer != 'stringstring')\n\t\treturn false;\n\tvar a = curVer.split('.'), b = minVer.split('.'), i = 0, len = Math.max(a.length, b.length);\n\tfor (; i < len; i++) {\n\t\tif ((a[i] && !b[i] && parseInt(a[i]) > 0) || (parseInt(a[i]) > parseInt(b[i]))) {\n\t\t\treturn true;\n\t\t} else if ((b[i] && !a[i] && parseInt(b[i]) > 0) || (parseInt(a[i]) < parseInt(b[i]))) {\n\t\t\treturn false;\n\t\t}\n\t}\n\treturn true;\n}\n\nfunction checkLongBitmask(flagInput,maskInput) {\n\tvar maxJSMaskLength = 8;\n\tflags = flagInput.substring(flagInput.length,flagInput.length-(Math.min(maxJSMaskLength,flagInput.length)));\n\tmask = maskInput.substring(maskInput.length,maskInput.length-(Math.min(maxJSMaskLength,maskInput.length)));\n\n\tif (isNaN(flags) || isNaN(mask)){\n\t\treturn false;\n\t}\n\n\tif (parseInt(mask,16) === 0) {\n\t\tif (maskInput.length > maxJSMaskLength) {",
         "datamd5" : "49eab9e205612a0f4919c3fe1c018f72",
         "datammh3" : 1942039422,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS14061",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "digitalocean.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "DO-13",
            "organization" : "DigitalOcean, LLC",
            "subnet" : "146.190.160.0/20"
         },
         "ip" : "146.190.163.40",
         "ipv6" : "false",
         "latitude" : "37.7809",
         "location" : "37.7809,-122.4245",
         "longitude" : "-122.4245",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "DIGITALOCEAN-ASN",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 4369,
         "product" : "Control",
         "productvendor" : "ConnectWise",
         "productversion" : "23.2.9.8466",
         "protocol" : "http",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "subnet" : "146.190.160.0/20",
         "tag" : "<enterprise field>: tag",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 165.90.193.16:4369 (tcp/http) - last seen on 2024-11-07 at 03:21:19 UTC

    • IP
      165.90.193.16
      Network
      165.90.192.0/20
      Domain(s)
      izwi.net.za
      Device

      <enterprise field>: device.class

      URL

      http://165.90.193.16:4369/cookiechecker?uri=/ 302

      Reverse DNS
      16-193-90-165.izwi.net.za
      ASN
      AS327950
      Organization
      AS-IZWI
      Protocol
      http
      Source
      urlscan::redirect
    • Product
      lighttpd lighttpd 1.4.39
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      95eccc64fd50632523eb843815d2f768
      HTTP Header MD5
      71236a8e836d06d832adb96629aabe96
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e
    • HTTP/1.1 302 Found
      Location: /nocookies.html
      Content-Length: 0
      Connection: close
      Date: Tue, 03 Sep 2024 10:41:48 GMT
      Server: lighttpd/1.4.39
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:21:19.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
               "bodymmh3" : -1,
               "headermd5" : "71236a8e836d06d832adb96629aabe96",
               "headermmh3" : -165387445
            },
            "length" : 149
         },
         "asn" : "AS327950",
         "city" : "Rustenburg",
         "country" : "ZA",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 302 Found\r\nLocation: /nocookies.html\r\nContent-Length: 0\r\nConnection: close\r\nDate: Tue, 03 Sep 2024 10:41:48 GMT\r\nServer: lighttpd/1.4.39\r\n\r\n",
         "datamd5" : "95eccc64fd50632523eb843815d2f768",
         "datammh3" : -796841231,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "izwi.net.za"
         ],
         "forward" : "165.90.193.16",
         "geolocus" : {
            "asn" : "AS327950",
            "continent" : "AF",
            "continentname" : "Africa",
            "country" : "ZA",
            "countryname" : "South Africa",
            "domain" : [
               "izwi.net.za"
            ],
            "isineu" : "false",
            "latitude" : "-30.559482",
            "location" : "-30.559482,22.937506",
            "longitude" : "22.937506",
            "netname" : "IZWI-JHB-NET",
            "organization" : "IZWI",
            "subnet" : "165.90.192.0/20"
         },
         "host" : [
            "16-193-90-165"
         ],
         "hostname" : [
            "16-193-90-165.izwi.net.za",
            "165.90.193.16"
         ],
         "ip" : "165.90.193.16",
         "ipv6" : "false",
         "latitude" : "-25.6608",
         "location" : "-25.6608,27.2526",
         "longitude" : "27.2526",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AS-IZWI",
         "port" : 4369,
         "product" : "lighttpd",
         "productvendor" : "lighttpd",
         "productversion" : "1.4.39",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Found",
         "reverse" : [
            "16-193-90-165.izwi.net.za"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 302,
         "subnet" : "165.90.192.0/20",
         "tld" : [
            "net.za"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/cookiechecker?uri=/"
      }
      
  • 18.117.139.86:4369 (tcp/http) - last seen on 2024-11-07 at 03:10:25 UTC

    • IP
      18.117.139.86
      Network
      18.116.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://18.117.139.86:4369/ 200

      Reverse DNS
      ec2-18-117-139-86.us-east-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f192c778ba9971cccb2fcec90e21e379
      HTTP Header MD5
      9f060a9cb1b31c417a3a68e629ae97e3
      HTTP Body MD5
      852141068209c03fdeb5dacc5a9c52e3
    • HTTP/1.1 200 OK
      Connection: close
      Date: Thu, 07 Nov 2024 03:10:25 GMT
      Server: nginx
      Content-Length: 69
      Content-Type: text/html
      
      <html><body><script>top.location='/p/login/';</script></body></html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:10:25.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "852141068209c03fdeb5dacc5a9c52e3",
               "bodymmh3" : -1124668290,
               "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
               "headermmh3" : -742141583
            },
            "length" : 204
         },
         "asn" : "AS16509",
         "city" : "Columbus",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:10:25 GMT\r\nServer: nginx\r\nContent-Length: 69\r\nContent-Type: text/html\r\n\r\n<html><body><script>top.location='/p/login/';</script></body></html>\n",
         "datamd5" : "f192c778ba9971cccb2fcec90e21e379",
         "datammh3" : -1092385355,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "amazonaws.com"
         ],
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "18.116.0.0/14"
         },
         "host" : [
            "ec2-18-117-139-86"
         ],
         "hostname" : [
            "ec2-18-117-139-86.us-east-2.compute.amazonaws.com"
         ],
         "ip" : "18.117.139.86",
         "ipv6" : "false",
         "latitude" : "39.9625",
         "location" : "39.9625,-83.0061",
         "longitude" : "-83.0061",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 4369,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "ec2-18-117-139-86.us-east-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-east-2.compute.amazonaws.com"
         ],
         "subnet" : "18.116.0.0/14",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 13.246.45.76:4369 (tcp/http) - last seen on 2024-11-07 at 03:09:35 UTC

    • IP
      13.246.45.76
      Network
      13.244.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://13.246.45.76:4369/ 200

      HTTP Title
      PaperCut Login
      HTTP Description
      PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.
      HTTP Keyword(s)
      print accounting print control print management print quota software
      Reverse DNS
      ec2-13-246-45-76.af-south-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      HTTP Component(s)
      jQuery jQuery 3.5.1 Oracle Java
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      6602a320a278b26f544c1f7e9b11bbae
      HTTP Header MD5
      fa25c4eea42a342854fe45cdc0273a72
      HTTP Body MD5
      8c5529452ed2e5ae1d4f29e7345687a7
    • HTTP/1.1 200 OK
      Connection: close
      Date: Thu, 07 Nov 2024 03:09:35 GMT
      Server: nginx
      Content-Type: text/html
      X-Frame-Options: SAMEORIGIN
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Expires: Thu, 01 Jan 1970 00:00:00 UTC
      Cache-Control: no-cache
      Set-Cookie: JSESSIONID=node0r6ehocjx9u6arp89g18i3mcvq24pez81qhggqar2.node0; Path=/; Secure; HttpOnly
      Content-Length: 13222
      
      <!DOCTYPE HTML>
      <!-- Application: app-server -->
      <!-- Page: Home -->
      <!-- Generated: Mon Nov 20 12:34:06 EST 2023 -->
      <html lang="en">
      <head>
      <meta http-equiv="Content-Type" content="text/html;charset=UTF-8"/>
      <title>PaperCut Login</title>
      <link rel="shortcut icon" href="/images/icons3/favicon.ico" type="image/vnd.microsoft.icon"/>
      <meta http-equiv="X-UA-Compatible" content="IE=Edge"/>
      <meta name="description" content="PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system."/>
      <meta name="keywords" content="print quota, print control, print management, print accounting, software"/>
      <meta name="viewport" content="width=device-width, initial-scale=0.8"/>
      <link rel="stylesheet" type="text/css" href="/css/style.css?66961papercut-mf" />
      <link rel="stylesheet" type="text/css" href="/css/style-override.css?66961papercut-mf" />
      <link rel="stylesheet" type="text/css" href="/css/refresh.css?66961papercut-mf" />
      <!--[if IE 9]><link rel="stylesheet" type="text/css" href="/css/style-ie9.css?66961papercut-mf" />
      <![endif]-->
      <!--[if IE 8]><link rel="stylesheet" type="text/css" href="/css/style-ie8.css?66961papercut-mf" />
      <![endif]-->
      <!--[if IE 7]><link rel="stylesheet" type="text/css" href="/css/style-ie7.css?66961papercut-mf" />
      <![endif]-->
      <!--[if IE 6]><link rel="stylesheet" type="text/css" href="/css/style-ie6.css?66961papercut-mf" />
      <![endif]-->
      <script type="text/javascript">var CacheParam = "66961papercut-mf";</script>
      <script type="text/javascript" src="/js/jquery/jquery-3.5.1.min.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/jquery/jquery-migrate-3.3.1.min.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/jquery/config.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/lib/underscore/underscore-min.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/common.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/lib/require.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/pages/configure.js?66961papercut-mf"></script>
      <script type="text/javascript" src="/js/refresh.js?66961papercut-mf"></script>
      </head>
      
      <body id="loginBody">
      <script language="JavaScript" type="text/javascript"><!--
      
      window.onload = function ()
      {
      document.Form0.inputUsername.focus();
      document.Form0.inputUsername.select();
      }
      
      // --></script> <div class="wrap">
          <script type="text/javascript">
          insertScript('/js/pages/Home.js');
          insertScript('/js/pages/LoginPages.js');
          </script>
            <svg viewBox="0 0 280.7 198.5" class="pc-shards">
      <polygon points="96.3,136.3 140.4,198.5 162.4,198.5 183.9,130.1 134.9,95.4 "/>
      <polygon points="45,63.6 74.9,53 0,0 "/>
      <polygon points="134.9,95.4 96.3,136.3 45,63.6 74.9,53 "/>
      <polygon points="74.9,53 224.8,0 134.9,95.4 "/>
      <polygon points="224.8,0 183.9,130.1 134.9,95.4 "/>
      <polygon points="224.8,0 224.8,0 224.8,159 183.9,130.1 "/>
      <polygon points="162.4,198.5 224.8,198.5 224.8,159 183.9,130.1 "/>
      <polygon points="37.7,198.5 140.4,198.5 96.3,136.3 "/>
      <polygon points="0,79.5 0,198.5 37.7,198.5 96.3,136.3 45,63.6 "/>
      <polygon points="0,79.5 45,63.6 0,0 "/>
      <polygon points="0,79.5 0,79.5 0,79.5 "/>
      <polygon points="262.3,198.5 280.7,198.5 265.7,187.9 "/>
      <polygon points="224.8,198.5 262.3,198.5 265.7,187.9 224.8,159 "/>
      </svg>
      <form method="post" name="Form0" action="/app" onsubmit="recordLocale()" autocomplete="off">
      <input type="hidden" name="service" value="direct/1/Home/$Form"/>
      <input type="hidden" name="sp" value="S0"/>
      <input type="hidden" name="Form0" value="$Hidden$0,$Hidden$1,inputUsername,inputPassword,$Submit$0,$PropertySelection"/>
      <input type="hidden" name="$Hidden$0" id="javascript-enabled" value="F"/>
      <input type="hidden" name="$Hidden$1" value="X"/>
       <div class="login" role="main">
            <div class="box">
              <table class="box-table" title="Login" role="presentation">
                <tr role="row">
                  <th class="box-nw" aria-label="No value" role="columnheader" scope="col"></th>
                  <th class="box-n" aria-label="No value" role="columnheader" scope="col"></th>
                  <th class="box-ne" aria-label="No value" role="columnheader" scope="col"></th>
                </tr>
                <tr role="row">
                  <td class="box-w"></td>
                  <td class="box-content">
      
                    <div id="login">
       <h1><img alt="PaperCut Logo" src="/custom/login-logo.png?1667504163324" class="logo"></img></h1>
      
       <h1 id="papercut-user-login-title">Log in</h1>
       <table style="margin-bottom:5px;" title="Username and Password" role="presentation">
                              <tbody>
                                <tr role="row">
                                  <th role="rowheader"><label for="inputUsername">Username</label></th>
                                  <td><input type="text" name="inputUsername" autocorrect="off" maxlength="50" aria-describedby="login-feedback-message" style="width: 150px;" id="inputUsername" autocapitalize="off" class="field"/></td>
                                </tr>
                                <tr role="row">
                                  <th role="rowheader"><label for="inputPassword">Password</label></th>
                                  <td><input type="password" name="inputPassword" style="width: 150px;" id="inputPassword" class="field" aria-describedby="login-feedback-message"/></td>
                                </tr>
                              </tbody>
                            </table>
      
      
                          <div id="login-feedback-message">
      
      
      
       </div>
      <input type="submit" name="$Submit$0" value="Log in" class="loginSubmit" aria-describedby="login-feedback-message"/>
      
      
      
      <a href="/app?service=direct/1/Home/oAuth2LoginSuccess" style="display:none" class="btn secondary google">Sign in with Google</a>
      <a href="/app?service=direct/1/Home/oAuth2LoginCancel" style="display:none" class="btn secondary microsoft">Sign in with Microsoft</a>
       <a style="display:block; margin-top: 10px;" id="forgot-link" href="/app?service=external/ForgotLoginDetails">
      Forgot username or password?</a>
      
       </div>
      
      
                  </td>
                  <td class="box-e"></td>
                </tr>
                <tr role="row">
                  <td class="box-sw"></td>
                  <td class="box-s"></td>
                  <td class="box-se"></td>
                </tr>
              </table>
            </div>
       <div class="language-box">
                <p id="language-select-text">Language Select</p>
                <svg width="24" height="24" viewBox="50 1777 24 24" class="global" alt="Globe Language Icon">
                      <path fill="gray" d="M62,1777c-6.627,0-12,5.373-12,12s5.373,12,12,12s12-5.373,12-12S68.627,1777,62,1777z M58.129,1780.116
              c-0.665,0.732-1.359,1.699-1.925,2.94h-1.833C55.355,1781.79,56.643,1780.771,58.129,1780.116z M53.217,1784.957h2.304
              c-0.251,0.918-0.417,1.954-0.481,3.1h-2.664C52.48,1786.959,52.775,1785.918,53.217,1784.957z M53.236,1793.057
              c-0.447-0.96-0.749-2.001-0.859-3.1h2.662c0.064,1.146,0.23,2.182,0.481,3.1H53.236z M54.401,1794.957h1.803
              c0.549,1.204,1.218,2.146,1.865,2.87C56.624,1797.179,55.369,1796.188,54.401,1794.957z M61.05,1798.054
              c-0.541-0.34-1.814-1.283-2.828-3.097h2.828V1798.054z M61.05,1793.057h-3.645c-0.288-0.893-0.493-1.921-0.566-3.1h4.211V1793.057z
               M61.05,1788.057h-4.211c0.073-1.179,0.278-2.207,0.566-3.1h3.645V1788.057z M61.05,1783.057h-2.828
              c1.014-1.813,2.287-2.757,2.828-3.097V1783.057z M70.823,1784.957c0.441,0.961,0.736,2.002,0.842,3.1h-2.704
              c-0.064-1.146-0.23-2.182-0.481-3.1H70.823z M69.669,1783.057h-1.873c-0.574-1.259-1.279-2.237-1.953-2.974
              C67.358,1780.736,68.669,1781.77,69.669,1783.057z M62.95,1779.96c0.541,0.34,1.814,1.283,2.828,3.097H62.95V1779.96z
               M62.95,1784.957h3.645c0.288,0.893,0.493,1.921,0.566,3.1H62.95V1784.957z M62.95,1789.957h4.211
              c-0.073,1.179-0.278,2.207-0.566,3.1H62.95V1789.957z M62.95,1798.055v-3.098h2.828
              C64.764,1796.772,63.488,1797.716,62.95,1798.055z M65.902,1797.86c0.656-0.729,1.337-1.682,1.894-2.903h1.843
              C68.656,1796.208,67.376,1797.213,65.902,1797.86z M70.804,1793.057h-2.324c0.251-0.918,0.417-1.954,0.481-3.1h2.702
              C71.553,1791.056,71.251,1792.097,70.804,1793.057z"/>
                </svg>
      <select name="$PropertySelection" alt="Select language" role="listbox" id="language" aria-label="Select language">
      <option value="en" selected="selected">English</option>
      <option value="ca">catal&#224;</option>
      <option value="zh_CN">&#20013;&#25991; (&#20013;&#22269;)</option>
      <option value="zh_HK">&#20013;&#25991; (&#39321;&#28207;)</option>
      <option value="zh_TW">&#20013;&#25991; (&#21488;&#28771;)</option>
      <option value="hr">hrvatski</option>
      <option value="cs">&#269;e&#353;tina</option>
      <option value="da">Dansk</option>
      <option value="nl">Nederlands</option>
      <option value="fi">suomi</option>
      <option value="fr">fran&#231;ais</option>
      <option value="de">Deutsch</option>
      <option value="iw">&#1506;&#1489;&#1512;&#1497;&#1514;</option>
      <option value="hu">magyar</option>
      <option value="it">italiano</option>
      <option value="ja">&#26085;&#26412;&#35486;</option>
      <option value="ko">&#54620;&#44397;&#50612;</option>
      <option value="lv">Latvie&#353;u</option>
      <option value="lt">Lietuvi&#371;</option>
      <option value="no">norsk</option>
      <option value="pl">polski</option>
      <option value="pt">portugu&#234;s (Brasil)</option>
      <option value="pt_PT">portugu&#234;s (Portugal)</option>
      <option value="ru">&#1088;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081;</option>
      <option value="sr">&#1057;&#1088;&#1087;&#1089;&#1082;&#1080;</option>
      <option value="sk">Sloven&#269;ina</option>
      <option value="sl">Sloven&#353;&#269;ina</option>
      <option value="es">espa&#241;ol</option>
      <option value="es_ES">espa&#241;ol (Espa&#241;a)</option>
      <option value="sv">svenska</option>
      <option value="th_TH">&#3652;&#3607;&#3618; (&#3611;&#3619;&#3632;&#3648;&#3607;&#3624;&#3652;&#3607;&#3618;)</option>
      <option value="tr">T&#252;rk&#231;e</option>
      <option value="cy_GB">Welsh (United Kingdom)</option>
      </select> </div>
       <script>
                  let languageOptions = document.getElementById("language").children;
                  for (let languageOption of languageOptions)
                  {
                      let lang = languageOption.getAttribute("value");
                      if (lang.includes("_")) lang = lang.substr(0, lang.indexOf("_")); // to remove region if specified
                      languageOption.setAttribute("lang", lang);
                  }
              </script>
      <span data-background-uri="/images/login-bg.jpg?66961papercut-mf" data-background-selection="COLOR" data-background-color="#FFFFFF" id="loginCustomization" data-button-color="#01B256" data-forgot-link-text=""></span> <!-- The license has expired!  -->
       </div>
      </form>
      
       <div id="footer" style="position:absolute; bottom: 0px; left: 0px; right: 0px; width: 100%;">
       <div class="product-details">
          <div class="logo"><img src="/images/footer-logo2.png?66961papercut-mf" border="0"/></div>
      
          <div class="text">
      <span class="product"><a href="https://www.papercut.com/products/mf/?clicked=app-footer">PaperCut MF</a></span>
      
       <div>
      Print Management Software</div>
       <!-- analytic purpose -->
      <span class="analytic-license-expiry-date" style="display:none"></span>
      <span class="analytic-product-build-number" style="display:none">66961</span>
      <span class="analytic-product-version" style="display:none">22.1.3</span>
      <span class="analytic-product" style="display:none">PaperCut MF</span>
      <span class="analytic-product-edition" style="display:none">MF</span> <div class="copyright">
              &copy; Copyright 1999-2023. PaperCut Software Pty Ltd. All rights reserved. </div>
          </div>
        </div>
       </div>
       </div>
        <script language="JavaScript" type="text/javascript">
        var oldonload = window.onload;
        if (typeof window.onload != 'function') {
          window.onload = applyLoginCustomization;
        } else {
          window.onload = function () {
            if (oldonload) {
              oldonload();
            }
              applyLoginCustomization();
          }
        }
      
        /*
         Apply login customization
         */
        function applyLoginCustomization() {
            var loginCustomization = $("#loginCustomization");
            if (loginCustomization.attr("data-background-selection") == 'IMAGE') {
                loadBackground(loginCustomization.attr("data-background-uri"));
            } else {
                $('#loginBody').find('.wrap').css('background-color', loginCustomization.attr("data-background-color"))
                        .css('background-image', 'none');
            }
            if (loginCustomization.attr("data-button-color") != "") {
                $('#loginBody input[type="submit"].loginSubmit').removeClass('loginSubmit')
                        .css('background-color', loginCustomization.attr("data-button-color"))
                        .css('border-color', loginCustomization.attr("data-button-color"));
            }
            if (loginCustomization.attr("data-forgot-link-text") != "") {
                $('a#forgot-link').text(loginCustomization.attr("data-forgot-link-text"));
            }
        }
      
        function recordLocale() {
            var languageElement = document.getElementById("language");
            if (languageElement) {
                document.cookie = "ui.locale=" + languageElement.value;
            }
        }
        </script>
      </body>
      </html>
      <!-- Render time: ~ 20 ms -->
      
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:09:35.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "papercut.com"
               ],
               "hostname" : [
                  "www.papercut.com"
               ],
               "url" : [
                  "https://www.papercut.com/products/mf/?clicked=app-footer"
               ]
            },
            "http" : {
               "bodymd5" : "8c5529452ed2e5ae1d4f29e7345687a7",
               "bodymmh3" : -856371065,
               "component" : [
                  {
                     "product" : "Java",
                     "productvendor" : "Oracle"
                  },
                  {
                     "product" : "jQuery",
                     "productvendor" : "jQuery",
                     "productversion" : "3.5.1"
                  }
               ],
               "description" : "PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.",
               "headermd5" : "fa25c4eea42a342854fe45cdc0273a72",
               "headermmh3" : 1933740734,
               "keywords" : [
                  "print accounting",
                  "print control",
                  "print management",
                  "print quota",
                  "software"
               ],
               "title" : "PaperCut Login"
            },
            "length" : 13610
         },
         "asn" : "AS16509",
         "city" : "Cape Town",
         "country" : "ZA",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:09:35 GMT\r\nServer: nginx\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nExpires: Thu, 01 Jan 1970 00:00:00 UTC\r\nCache-Control: no-cache\r\nSet-Cookie: JSESSIONID=node0r6ehocjx9u6arp89g18i3mcvq24pez81qhggqar2.node0; Path=/; Secure; HttpOnly\r\nContent-Length: 13222\r\n\r\n<!DOCTYPE HTML>\n<!-- Application: app-server -->\n<!-- Page: Home -->\n<!-- Generated: Mon Nov 20 12:34:06 EST 2023 -->\n<html lang=\"en\">\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html;charset=UTF-8\"/>\n<title>PaperCut Login</title>\n<link rel=\"shortcut icon\" href=\"/images/icons3/favicon.ico\" type=\"image/vnd.microsoft.icon\"/>\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\"/>\n<meta name=\"description\" content=\"PaperCut MF is a print management system. Log in to manage your print quotas, see your print history and configure your system.\"/>\n<meta name=\"keywords\" content=\"print quota, print control, print management, print accounting, software\"/>\n<meta name=\"viewport\" content=\"width=device-width, initial-scale=0.8\"/>\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style.css?66961papercut-mf\" />\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-override.css?66961papercut-mf\" />\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/css/refresh.css?66961papercut-mf\" />\n<!--[if IE 9]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie9.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 8]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie8.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 7]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie7.css?66961papercut-mf\" />\n<![endif]-->\n<!--[if IE 6]><link rel=\"stylesheet\" type=\"text/css\" href=\"/css/style-ie6.css?66961papercut-mf\" />\n<![endif]-->\n<script type=\"text/javascript\">var CacheParam = \"66961papercut-mf\";</script>\n<script type=\"text/javascript\" src=\"/js/jquery/jquery-3.5.1.min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/jquery/jquery-migrate-3.3.1.min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/jquery/config.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/lib/underscore/underscore-min.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/common.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/lib/require.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/pages/configure.js?66961papercut-mf\"></script>\n<script type=\"text/javascript\" src=\"/js/refresh.js?66961papercut-mf\"></script>\n</head>\n\n<body id=\"loginBody\">\n<script language=\"JavaScript\" type=\"text/javascript\"><!--\n\nwindow.onload = function ()\n{\ndocument.Form0.inputUsername.focus();\ndocument.Form0.inputUsername.select();\n}\n\n// --></script> <div class=\"wrap\">\n    <script type=\"text/javascript\">\n    insertScript('/js/pages/Home.js');\n    insertScript('/js/pages/LoginPages.js');\n    </script>\n      <svg viewBox=\"0 0 280.7 198.5\" class=\"pc-shards\">\n<polygon points=\"96.3,136.3 140.4,198.5 162.4,198.5 183.9,130.1 134.9,95.4 \"/>\n<polygon points=\"45,63.6 74.9,53 0,0 \"/>\n<polygon points=\"134.9,95.4 96.3,136.3 45,63.6 74.9,53 \"/>\n<polygon points=\"74.9,53 224.8,0 134.9,95.4 \"/>\n<polygon points=\"224.8,0 183.9,130.1 134.9,95.4 \"/>\n<polygon points=\"224.8,0 224.8,0 224.8,159 183.9,130.1 \"/>\n<polygon points=\"162.4,198.5 224.8,198.5 224.8,159 183.9,130.1 \"/>\n<polygon points=\"37.7,198.5 140.4,198.5 96.3,136.3 \"/>\n<polygon points=\"0,79.5 0,198.5 37.7,198.5 96.3,136.3 45,63.6 \"/>\n<polygon points=\"0,79.5 45,63.6 0,0 \"/>\n<polygon points=\"0,79.5 0,79.5 0,79.5 \"/>\n<polygon points=\"262.3,198.5 280.7,198.5 265.7,187.9 \"/>\n<polygon points=\"224.8,198.5 262.3,198.5 265.7,187.9 224.8,159 \"/>\n</svg>\n<form method=\"post\" name=\"Form0\" action=\"/app\" onsubmit=\"recordLocale()\" autocomplete=\"off\">\n<input type=\"hidden\" name=\"service\" value=\"direct/1/Home/$Form\"/>\n<input type=\"hidden\" name=\"sp\" value=\"S0\"/>\n<input type=\"hidden\" name=\"Form0\" value=\"$Hidden$0,$Hidden$1,inputUsername,inputPassword,$Submit$0,$PropertySelection\"/>\n<input type=\"hidden\" name=\"$Hidden$0\" id=\"javascript-enabled\" value=\"F\"/>\n<input type=\"hidden\" name=\"$Hidden$1\" value=\"X\"/>\n <div class=\"login\" role=\"main\">\n      <div class=\"box\">\n        <table class=\"box-table\" title=\"Login\" role=\"presentation\">\n          <tr role=\"row\">\n            <th class=\"box-nw\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n            <th class=\"box-n\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n            <th class=\"box-ne\" aria-label=\"No value\" role=\"columnheader\" scope=\"col\"></th>\n          </tr>\n          <tr role=\"row\">\n            <td class=\"box-w\"></td>\n            <td class=\"box-content\">\n\n              <div id=\"login\">\n <h1><img alt=\"PaperCut Logo\" src=\"/custom/login-logo.png?1667504163324\" class=\"logo\"></img></h1>\n\n <h1 id=\"papercut-user-login-title\">Log in</h1>\n <table style=\"margin-bottom:5px;\" title=\"Username and Password\" role=\"presentation\">\n                        <tbody>\n                          <tr role=\"row\">\n                            <th role=\"rowheader\"><label for=\"inputUsername\">Username</label></th>\n                            <td><input type=\"text\" name=\"inputUsername\" autocorrect=\"off\" maxlength=\"50\" aria-describedby=\"login-feedback-message\" style=\"width: 150px;\" id=\"inputUsername\" autocapitalize=\"off\" class=\"field\"/></td>\n                          </tr>\n                          <tr role=\"row\">\n                            <th role=\"rowheader\"><label for=\"inputPassword\">Password</label></th>\n                            <td><input type=\"password\" name=\"inputPassword\" style=\"width: 150px;\" id=\"inputPassword\" class=\"field\" aria-describedby=\"login-feedback-message\"/></td>\n                          </tr>\n                        </tbody>\n                      </table>\n\n\n                    <div id=\"login-feedback-message\">\n\n\n\n </div>\n<input type=\"submit\" name=\"$Submit$0\" value=\"Log in\" class=\"loginSubmit\" aria-describedby=\"login-feedback-message\"/>\n\n\n\n<a href=\"/app?service=direct/1/Home/oAuth2LoginSuccess\" style=\"display:none\" class=\"btn secondary google\">Sign in with Google</a>\n<a href=\"/app?service=direct/1/Home/oAuth2LoginCancel\" style=\"display:none\" class=\"btn secondary microsoft\">Sign in with Microsoft</a>\n <a style=\"display:block; margin-top: 10px;\" id=\"forgot-link\" href=\"/app?service=external/ForgotLoginDetails\">\nForgot username or password?</a>\n\n </div>\n\n\n            </td>\n            <td class=\"box-e\"></td>\n          </tr>\n          <tr role=\"row\">\n            <td class=\"box-sw\"></td>\n            <td class=\"box-s\"></td>\n            <td class=\"box-se\"></td>\n          </tr>\n        </table>\n      </div>\n <div class=\"language-box\">\n          <p id=\"language-select-text\">Language Select</p>\n          <svg width=\"24\" height=\"24\" viewBox=\"50 1777 24 24\" class=\"global\" alt=\"Globe Language Icon\">\n                <path fill=\"gray\" d=\"M62,1777c-6.627,0-12,5.373-12,12s5.373,12,12,12s12-5.373,12-12S68.627,1777,62,1777z M58.129,1780.116\n        c-0.665,0.732-1.359,1.699-1.925,2.94h-1.833C55.355,1781.79,56.643,1780.771,58.129,1780.116z M53.217,1784.957h2.304\n        c-0.251,0.918-0.417,1.954-0.481,3.1h-2.664C52.48,1786.959,52.775,1785.918,53.217,1784.957z M53.236,1793.057\n        c-0.447-0.96-0.749-2.001-0.859-3.1h2.662c0.064,1.146,0.23,2.182,0.481,3.1H53.236z M54.401,1794.957h1.803\n        c0.549,1.204,1.218,2.146,1.865,2.87C56.624,1797.179,55.369,1796.188,54.401,1794.957z M61.05,1798.054\n        c-0.541-0.34-1.814-1.283-2.828-3.097h2.828V1798.054z M61.05,1793.057h-3.645c-0.288-0.893-0.493-1.921-0.566-3.1h4.211V1793.057z\n         M61.05,1788.057h-4.211c0.073-1.179,0.278-2.207,0.566-3.1h3.645V1788.057z M61.05,1783.057h-2.828\n        c1.014-1.813,2.287-2.757,2.828-3.097V1783.057z M70.823,1784.957c0.441,0.961,0.736,2.002,0.842,3.1h-2.704\n        c-0.064-1.146-0.23-2.182-0.481-3.1H70.823z M69.669,1783.057h-1.873c-0.574-1.259-1.279-2.237-1.953-2.974\n        C67.358,1780.736,68.669,1781.77,69.669,1783.057z M62.95,1779.96c0.541,0.34,1.814,1.283,2.828,3.097H62.95V1779.96z\n         M62.95,1784.957h3.645c0.288,0.893,0.493,1.921,0.566,3.1H62.95V1784.957z M62.95,1789.957h4.211\n        c-0.073,1.179-0.278,2.207-0.566,3.1H62.95V1789.957z M62.95,1798.055v-3.098h2.828\n        C64.764,1796.772,63.488,1797.716,62.95,1798.055z M65.902,1797.86c0.656-0.729,1.337-1.682,1.894-2.903h1.843\n        C68.656,1796.208,67.376,1797.213,65.902,1797.86z M70.804,1793.057h-2.324c0.251-0.918,0.417-1.954,0.481-3.1h2.702\n        C71.553,1791.056,71.251,1792.097,70.804,1793.057z\"/>\n          </svg>\n<select name=\"$PropertySelection\" alt=\"Select language\" role=\"listbox\" id=\"language\" aria-label=\"Select language\">\n<option value=\"en\" selected=\"selected\">English</option>\n<option value=\"ca\">catal&#224;</option>\n<option value=\"zh_CN\">&#20013;&#25991; (&#20013;&#22269;)</option>\n<option value=\"zh_HK\">&#20013;&#25991; (&#39321;&#28207;)</option>\n<option value=\"zh_TW\">&#20013;&#25991; (&#21488;&#28771;)</option>\n<option value=\"hr\">hrvatski</option>\n<option value=\"cs\">&#269;e&#353;tina</option>\n<option value=\"da\">Dansk</option>\n<option value=\"nl\">Nederlands</option>\n<option value=\"fi\">suomi</option>\n<option value=\"fr\">fran&#231;ais</option>\n<option value=\"de\">Deutsch</option>\n<option value=\"iw\">&#1506;&#1489;&#1512;&#1497;&#1514;</option>\n<option value=\"hu\">magyar</option>\n<option value=\"it\">italiano</option>\n<option value=\"ja\">&#26085;&#26412;&#35486;</option>\n<option value=\"ko\">&#54620;&#44397;&#50612;</option>\n<option value=\"lv\">Latvie&#353;u</option>\n<option value=\"lt\">Lietuvi&#371;</option>\n<option value=\"no\">norsk</option>\n<option value=\"pl\">polski</option>\n<option value=\"pt\">portugu&#234;s (Brasil)</option>\n<option value=\"pt_PT\">portugu&#234;s (Portugal)</option>\n<option value=\"ru\">&#1088;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081;</option>\n<option value=\"sr\">&#1057;&#1088;&#1087;&#1089;&#1082;&#1080;</option>\n<option value=\"sk\">Sloven&#269;ina</option>\n<option value=\"sl\">Sloven&#353;&#269;ina</option>\n<option value=\"es\">espa&#241;ol</option>\n<option value=\"es_ES\">espa&#241;ol (Espa&#241;a)</option>\n<option value=\"sv\">svenska</option>\n<option value=\"th_TH\">&#3652;&#3607;&#3618; (&#3611;&#3619;&#3632;&#3648;&#3607;&#3624;&#3652;&#3607;&#3618;)</option>\n<option value=\"tr\">T&#252;rk&#231;e</option>\n<option value=\"cy_GB\">Welsh (United Kingdom)</option>\n</select> </div>\n <script>\n            let languageOptions = document.getElementById(\"language\").children;\n            for (let languageOption of languageOptions)\n            {\n                let lang = languageOption.getAttribute(\"value\");\n                if (lang.includes(\"_\")) lang = lang.substr(0, lang.indexOf(\"_\")); // to remove region if specified\n                languageOption.setAttribute(\"lang\", lang);\n            }\n        </script>\n<span data-background-uri=\"/images/login-bg.jpg?66961papercut-mf\" data-background-selection=\"COLOR\" data-background-color=\"#FFFFFF\" id=\"loginCustomization\" data-button-color=\"#01B256\" data-forgot-link-text=\"\"></span> <!-- The license has expired!  -->\n </div>\n</form>\n\n <div id=\"footer\" style=\"position:absolute; bottom: 0px; left: 0px; right: 0px; width: 100%;\">\n <div class=\"product-details\">\n    <div class=\"logo\"><img src=\"/images/footer-logo2.png?66961papercut-mf\" border=\"0\"/></div>\n\n    <div class=\"text\">\n<span class=\"product\"><a href=\"https://www.papercut.com/products/mf/?clicked=app-footer\">PaperCut MF</a></span>\n\n <div>\nPrint Management Software</div>\n <!-- analytic purpose -->\n<span class=\"analytic-license-expiry-date\" style=\"display:none\"></span>\n<span class=\"analytic-product-build-number\" style=\"display:none\">66961</span>\n<span class=\"analytic-product-version\" style=\"display:none\">22.1.3</span>\n<span class=\"analytic-product\" style=\"display:none\">PaperCut MF</span>\n<span class=\"analytic-product-edition\" style=\"display:none\">MF</span> <div class=\"copyright\">\n        &copy; Copyright 1999-2023. PaperCut Software Pty Ltd. All rights reserved. </div>\n    </div>\n  </div>\n </div>\n </div>\n  <script language=\"JavaScript\" type=\"text/javascript\">\n  var oldonload = window.onload;\n  if (typeof window.onload != 'function') {\n    window.onload = applyLoginCustomization;\n  } else {\n    window.onload = function () {\n      if (oldonload) {\n        oldonload();\n      }\n        applyLoginCustomization();\n    }\n  }\n\n  /*\n   Apply login customization\n   */\n  function applyLoginCustomization() {\n      var loginCustomization = $(\"#loginCustomization\");\n      if (loginCustomization.attr(\"data-background-selection\") == 'IMAGE') {\n          loadBackground(loginCustomization.attr(\"data-background-uri\"));\n      } else {\n          $('#loginBody').find('.wrap').css('background-color', loginCustomization.attr(\"data-background-color\"))\n                  .css('background-image', 'none');\n      }\n      if (loginCustomization.attr(\"data-button-color\") != \"\") {\n          $('#loginBody input[type=\"submit\"].loginSubmit').removeClass('loginSubmit')\n                  .css('background-color', loginCustomization.attr(\"data-button-color\"))\n                  .css('border-color', loginCustomization.attr(\"data-button-color\"));\n      }\n      if (loginCustomization.attr(\"data-forgot-link-text\") != \"\") {\n          $('a#forgot-link').text(loginCustomization.attr(\"data-forgot-link-text\"));\n      }\n  }\n\n  function recordLocale() {\n      var languageElement = document.getElementById(\"language\");\n      if (languageElement) {\n          document.cookie = \"ui.locale=\" + languageElement.value;\n      }\n  }\n  </script>\n</body>\n</html>\n<!-- Render time: ~ 20 ms -->\n\n\n",
         "datamd5" : "6602a320a278b26f544c1f7e9b11bbae",
         "datammh3" : 1404482669,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "amazonaws.com"
         ],
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "AF",
            "continentname" : "Africa",
            "country" : "ZA",
            "countryname" : "South Africa",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "-30.559482",
            "location" : "-30.559482,22.937506",
            "longitude" : "22.937506",
            "netname" : "AMAZON-CPT",
            "organization" : "Amazon Data Services South Africa",
            "subnet" : "13.244.0.0/14"
         },
         "host" : [
            "ec2-13-246-45-76"
         ],
         "hostname" : [
            "ec2-13-246-45-76.af-south-1.compute.amazonaws.com"
         ],
         "ip" : "13.246.45.76",
         "ipv6" : "false",
         "latitude" : "-34.0486",
         "location" : "-34.0486,18.4811",
         "longitude" : "18.4811",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 4369,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "ec2-13-246-45-76.af-south-1.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "af-south-1.compute.amazonaws.com",
            "compute.amazonaws.com"
         ],
         "subnet" : "13.244.0.0/14",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 47.91.109.17:4369 (tcp/http) - last seen on 2024-11-07 at 03:09:15 UTC

    • IP
      47.91.109.17
      Network
      47.91.0.0/16
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Linux Linux sUse
      URL

      http://47.91.109.17:4369/ 401

      HTTP Title
      Default Site
      HTTP Keyword(s)
      voip vos3000
      HTTP Copyright
      www.linknat.com, 昆石网络
      ASN
      AS45102
      Organization
      Alibaba US Technology Co., Ltd.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux sUse
      HTTP Component(s)
      Cacti Cacti Atlassian Confluence PHP PHP 5.6.40 Gitlab Gitlab Drupal Drupal 7 Roundcube Webmail SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      14313f1d713f3bcdb38ca4c11b24f3e7
      HTTP Header MD5
      9a7792d4c7f79c62dceac587b9bfddc2
      HTTP Body MD5
      c542fc506232f5bf75693c5c63aecb18
    • HTTP/1.1 401 Unauthorized
      Composed-By: SPIP 4.1.11 @ www.spip.net
      Content-Length: 105232
      Content-Type: text/html;charset=utf-8
      Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
      Loginip: <srcip>
      Pragma: private
      Server: Linux/#33 SMP PREEMPT Mon Mar 21 11:19:42 CST 2022 UPnP/1.0 Broadcom UPNP/0.9
      Set-Cookie: acSamlv2Error=; path=/; secure;
      Set-Cookie: fsm_u=admin; Path=/;
      Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
      Set-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/
      Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
      Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
      Set-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly
      Set-Cookie: rememberMe=deleteMe; path=/;
      Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
      Set-Cookie: zbx_session=eyJzZXNzaW9uaWQiOiI1MDU2ZTlkYTFmZjkxZDAyMGEwMGEwMzhjNTliY2I2OCIsInNpZ24iOiJiMDVjNDJjNzQ4Y2IzZGRkNjExMWE4NDVhMDJhOWMxMWE5ODVjYTZmNDRhY2QxY2I3MjA5ZjIxZmExMDg3YjQ5In0%3D; secure; HttpOnly
      Set-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly
      Set-Cookie: webvpnlogin=; path=/; secure;
      Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
      Set-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;
      Set-Cookie: DSSignInURL=/; path=/; secure;
      Set-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/
      Set-Cookie: SUPPORTCHROMEOS=1; path=/; secure;
      Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
      Teamcity-Node-Id: MAIN_SERVER
      Www-Authenticate: Basic realm="TP-LINK Wireless N Router WR840N"
      X-Adblock-Key: YQo=
      X-Cache: MISS from Hello
      X-Cache-Enabled: False
      X-Cache-Lookup: MISS from Hello:8080
      X-Cacheable: SHORT
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
      X-Content-Type-Options: nosniff
      X-Drupal-Cache: xHIT
      X-Drupal-Dynamic-Cache: MISS
      X-Frame-Options: SAMEORIGIN
      X-Generator: Drupal 7 (http://drupal.org)
      X-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B
      X-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)
      X-Jenkins: 2.121.3
      X-Jenkins-Session: f72d6619
      X-Powered-By: PHP/5.6.40
      X-Request-Id: ecff8573-23ca-4dbc-a0a9-e8af7876c4ae
      X-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372
      X-Shopify-Stage: production
      X-Xss-Protection: 1; mode=block
      Date: Thu, 07 Nov 2024 03:09:15 GMT
      Connection: close
      
      <!DOCTYPE html>
      <html>
      <head>
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
      <meta http-equiv="X-UA-Compatible" content="IE=edge">
      <meta http-equiv="Pragma" content="no-cache" />
      <meta charset="utf-8">
      <meta content="IE=edge" http-equiv="X-UA-Compatible">
      <meta content="object" property="og:type">
      <meta content="GitLab" property="og:site_name">
      <meta content="Help" property="og:title">
      <meta content="GitLab Community Edition" property="og:description">
      <meta content="summary" property="twitter:card">
      <meta content="Help" property="twitter:title">
      <meta content="GitLab Community Edition" property="twitter:description">
      <meta content="GitLab Community Edition" name="description">
      <meta content="#474D57" name="theme-color">
      <meta content="#30353E" name="msapplication-TileColor">
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e09==" />
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
      <meta http-equiv="expires" content="-1"/>
      <meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
      <meta name="author" content="www.linknat.com, 昆石网络"/>
      <meta name="copyright" content="www.linknat.com, 昆石网络"/>
      <meta name="generator" content="SPIP 4.1.11" />
      <script src="/jquery.min.js"></script> 
      <title>Default Site</title>
      </head>
      <body>
      <div style="display: none;">
      <script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
      <SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
      <Account>
      <Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
      <TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
      <FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
      <SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
      <ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
      <CTDefParaEntry setDefValueFlag="1" />
      </Account>
      <div>8.5.5 (Build:20200530.307-TEMP)</div>
      <span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
      <h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
      <ca status="disabled" href="/+CSCOCA+/login.html" />
      <form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
          <div data-user="root" data-module="package-updates"></div>
          <code>The zip file did not contain an entry exportDescriptor.properties</code>
          <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
          <message>Please enter your username and password.</message>
          <input name="formid" type="hidden" value="012afed" />
          <input name="javax.faces.ViewState" type="hidden" value="012afed" />
          <input name="queryString" type="hidden" value="1406192" />
          <div class="versionInfo">The Cacti Group Version 1.2.25</div>
          <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
          <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
          <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
          <input type="hidden" name="tokenid"  value="1804289383" >
          <input type="hidden" name="name"  value="1804289383" >
          <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
      	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
      	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
          <input type="text" name="username" label="Username:" value="admin" />
          <input type="password" name="password" label="Password:" value="123456" />
          <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
          <input type="submit" name="Login" value="Login" />
          <input type="reset" name="Clear" value="Clear" />
      </form>
      <input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
      <li class="lisel" onclick="location.href='index.php'">日志系统</li>
      <li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
      <button type="button" data-price-id=True>sb</button>
      <div class="prod_madelName">RT-AC5300</div>
      <div class="p1 title_gap">Sign in with your ASUS router account</div>
      <tr class="h"><th>PHP Group</th></tr>
      <tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
      <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
      <var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
      <span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
      <div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
      <a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
      <div id="mcname">LoadMaster</div>
      <p><br/><span>出厂IP:192.168.1.1</span><br/><span>用户名、密码:admin admin</span></p>
      <td colspan="2">Please enter your Cacti user name and password below:</td>
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
      <meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
      <script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
      <div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
      <B>SonicWall Universal Management Suite v9.3</B>
      <br>OK<br>
      <script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
      <select id="cars" name="name">
      <option value="olvo">olvo</option>
      </select>
      <a href="/VICIdial/phone">MODIFY</a>
      <input type="hidden" name="extension"  value="1804289383" >
      <input type="hidden" name="pass"  value="1804289383" >
      <input type="hidden" name="recording_exten"  value="1804289383" >
      <script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
      <input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
      <script type='text/javascript'>
      	var cactiVersion='1.2.27';
      	var cactiServerOS='unix';
      	var cactiAction='';
      	var theme='modern';
      	var refreshIsLogout=true;
      	var refreshPage='/logout.php?action=timeout';
      	var refreshMSeconds=1440000;
      	var urlPath='/';
      	var previousPage='';
      	var sessionMessage=[];
      	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
      </script>
      
      <!--
      <Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
      /var/pinglog
      <TITLE>Login</TITLE>
      <a href="jpg.html">LIVE JPEG</a><br>
      <a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
      <a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
      <a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
      <\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
      Location: /admin
      <meta name="generator" content="vBulletin 5.5.4" />
      Location: http://<ip>:80/relogin.htm?_t=3541144909
      Location: http://<ip>:80/syscmd.htm" Location: /ui/login
      /cgi-bin/webctrl.cgi?action=index_page
      PDR-M800
      function btnPing()
      <HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
      <link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
      <td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
      <br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
      trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
      in the United States and certain other countries.
      </td>
      :
      #
      >
      $
      SSH key is good
      is not a valid ref and may not be archived
      pcPassword2
      '&sessionKey=790148060;'
      name="sessionKey" value="790148060"
      Set-Cookie: loginName=admin
      var fgt_lang = /dev/cmdb/sslvpn_websession
      php 8.1.0-dev exit
      springframework
      Tomcat
      DEVICE.ACCOUNT=admin
      AUTHORIZED_GROUP=1
      <uid></uid>
      <name>Admin</name>
      <usrid></usrid>
      <password>admin</password>
      <group></group>
      cpto /tmp/"root"
      Model=AC1450
      Firmware=V1.0.0.36_10.0.17
      "exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
      BIG-IP release 15.0.0
      user:root
      12345admin123'
      Failed to process image
      
      Location: http://192.168.0.1:52869/picsdesc.xml
      You don't have permission to access /vpns/ on this server.
      [global]
          workgroup = intranet
          encrypt passwords = Yes
          update encrypted = Yes
      
      funcionando
      system_sofia
      name resolve order
      InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
      <b>File Uploaded !!!</b><br>
      ant=951d11e51392117311602d0c25435d7f
      38ee63071a04dc5e04ed22624c38e648
      6f3249aa304055d63828af3bfab778f6
      <h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
      [local]
       tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwOT09
       addr = <ip>
      "Powered by vBulletin Version 5.5.4"
      789551
      Linear eMerge
      SuperSign
      ubiq
      Yacht
      Zeroshell
      FastWeb
      AuthInfo:
      loadingIndicator_bk
      Zyxel
      skyrouter
      WAP54
      org.apache.spark.ui
      
      
      
      ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
      <insert implant configuration content here>
      Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
      Copyright (c) 2015-2020 by Cisco Systems, Inc.
      All rights reserved.
      SSL VPN Service
      wsConvertPptResponse
      <input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
      <input id="txtPassword" class="txt-input" type="password" name="password" value="" />
      <button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
      <span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
      <script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
      <LegacyDN>eD2bxe4</LegacyDN>
      <title class="_ctxstxt_NetscalerGateway">
      SAML Assertion verification failed; Please contact your administrator
      v=2b46554c087d2d5516559e9b8bc1875d
      /vpn/images/AccessGateway.ico
      frame-busting
      /vpn/js/logout_view.js?v=
      _ctxstxt_NetscalerAAA
      lib.min20200813.js
      401 Unauthorized Basic realm=
      sName='1';onTest(this);
      var passadm = "admin";
      OPMODE_BRIDGE
      document.all.cmd_result
      <input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
      <input id="date" type="text" style="width: 200px" value="12/25/2023">
      main page cgi-bin/login.cgi
      var sessionKey='030ff030ff88';
      loc += '&sessionKey=19dec20030ff8dcb2';
      }
      
      var code = 'location="' + loc + '"';
      
      Password change successful
      J2100N GPON ONT
      /cgi-bin/webui/admin
      sesskey
      name=admin pass=123 priv=ppp
      service=www.dlinkddns.com
      sysCmdType
      Content-Type: auth/request
      
      
      Content-Type: command/reply
      
      Reply-Text: +OK accepted
      
      
      X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
      007b2000-007c1000 rw-p 00000000 00:00 0
      Size:                 60 kB
      Rss:                  52 kB
      Pss:                  52 kB
      Shared_Clean:          0 kB
      Shared_Dirty:          0 kB
      Private_Clean:         0 kB
      Private_Dirty:        52 kB
      Referenced:           52
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:09:15.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "micros-hosting.com",
                  "drupal.org"
               ],
               "file" : [
                  "cloud_index.php",
                  "dvrremoteap_x64.exe",
                  "dvfplayer.zip",
                  "admin-ajax.php",
                  "dvrremoteap.exe",
                  "index.php"
               ],
               "hostname" : [
                  "drupal.org",
                  "micros-hosting.com"
               ],
               "ip" : [
                  "192.168.1.1",
                  "1.0.0.36",
                  "192.168.1.10",
                  "192.168.0.1",
                  "192.168.1.4",
                  "7.7.31.1"
               ],
               "url" : [
                  "http://192.168.0.1:52869/picsdesc.xml",
                  "http://drupal.org",
                  "http://micros-hosting.com/EGateway/",
                  "https://192.168.1.4"
               ]
            },
            "http" : {
               "bodymd5" : "c542fc506232f5bf75693c5c63aecb18",
               "bodymmh3" : 1523892688,
               "component" : [
                  {
                     "productversion" : "2.121.3",
                     "productvendor" : "Jenkins",
                     "product" : "Jenkins"
                  },
                  {
                     "product" : "Cacti",
                     "productvendor" : "Cacti"
                  },
                  {
                     "productversion" : "5.6.40",
                     "productvendor" : "PHP",
                     "product" : "PHP"
                  },
                  {
                     "productversion" : "4.1.11",
                     "productvendor" : "SPIP",
                     "product" : "SPIP"
                  },
                  {
                     "product" : "Webmail",
                     "productvendor" : "Roundcube"
                  },
                  {
                     "productvendor" : "Atlassian",
                     "product" : "Confluence"
                  },
                  {
                     "product" : "Drupal",
                     "productversion" : "7",
                     "productvendor" : "Drupal"
                  },
                  {
                     "productvendor" : "Gitlab",
                     "product" : "Gitlab"
                  }
               ],
               "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
               "header" : [
                  {
                     "name" : "Last-Modified",
                     "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
                  }
               ],
               "headermd5" : "9a7792d4c7f79c62dceac587b9bfddc2",
               "headermmh3" : 1697223582,
               "keywords" : [
                  "voip",
                  "vos3000"
               ],
               "realm" : "TP-LINK Wireless N Router WR840N",
               "title" : "Default Site"
            },
            "length" : 16307
         },
         "asn" : "AS45102",
         "city" : "Dubai",
         "country" : "AE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 401 Unauthorized\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105232\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: Linux/#33 SMP PREEMPT Mon Mar 21 11:19:42 CST 2022 UPnP/1.0 Broadcom UPNP/0.9\r\nSet-Cookie: acSamlv2Error=; path=/; secure;\r\nSet-Cookie: fsm_u=admin; Path=/;\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/\r\nSet-Cookie: roundcube_sessauth=expired; HttpOnly; domain=cpanel.custompoodles.com; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: USGSESSID=ff37fe7ceeca9a0ebedcf6549e8275d9; path=/; HttpOnly\r\nSet-Cookie: rememberMe=deleteMe; path=/;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: zbx_session=eyJzZXNzaW9uaWQiOiI1MDU2ZTlkYTFmZjkxZDAyMGEwMGEwMzhjNTliY2I2OCIsInNpZ24iOiJiMDVjNDJjNzQ4Y2IzZGRkNjExMWE4NDVhMDJhOWMxMWE5ODVjYTZmNDRhY2QxY2I3MjA5ZjIxZmExMDg3YjQ5In0%3D; secure; HttpOnly\r\nSet-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly\r\nSet-Cookie: webvpnlogin=; path=/; secure;\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: adscsrf=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=None;Secure;priority=high;\r\nSet-Cookie: DSSignInURL=/; path=/; secure;\r\nSet-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: SUPPORTCHROMEOS=1; path=/; secure;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nTeamcity-Node-Id: MAIN_SERVER\r\nWww-Authenticate: Basic realm=\"TP-LINK Wireless N Router WR840N\"\r\nX-Adblock-Key: YQo=\r\nX-Cache: MISS from Hello\r\nX-Cache-Enabled: False\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 7 (http://drupal.org)\r\nX-Github-Request-Id: 2544:7F5D:24C5A8:296D36:5E2B2B7B\r\nX-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Powered-By: PHP/5.6.40\r\nX-Request-Id: ecff8573-23ca-4dbc-a0a9-e8af7876c4ae\r\nX-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372\r\nX-Shopify-Stage: production\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 03:09:15 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac23e09==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Default Site</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyM2UwOT09\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52",
         "datamd5" : "14313f1d713f3bcdb38ca4c11b24f3e7",
         "datammh3" : -986140752,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "geolocus" : {
            "asn" : "AS45102",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "alibaba-inc.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "ALICLOUD-UAE",
            "organization" : "Alibaba Cloud LLC",
            "subnet" : "47.91.96.0/19"
         },
         "ip" : "47.91.109.17",
         "ipv6" : "false",
         "latitude" : "25.0731",
         "location" : "25.0731,55.2980",
         "longitude" : "55.2980",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Alibaba US Technology Co., Ltd.",
         "os" : "Linux",
         "osdistribution" : "sUse",
         "osvendor" : "Linux",
         "port" : 4369,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Unauthorized",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 401,
         "subnet" : "47.91.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 3.27.132.230:4369 (tcp/http) - last seen on 2024-11-07 at 03:07:05 UTC

    • IP
      3.27.132.230
      Network
      3.16.0.0/12
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://3.27.132.230:4369/ 301

      Reverse DNS
      ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      HTTP Component(s)
      Oracle Java Atlassian Confluence
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      b2b20dcc2aa8243558e5cb84e0d971ee
      HTTP Header MD5
      ad9ee95ebe61acda2f9558fbd21686ee
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324
    • HTTP/1.1 301 Moved Permanently
      Connection: keep-alive
      Date: Thu, 07 Nov 2024 01:51:39 GMT
      Server: nginx
      X-Confluence-Request-Time: 1730944299
      Content-Type: text/html;charset=UTF-8
      Cache-Control: no-cache, must-revalidate
      Expires: Thu, 01 Jan 1970 00:00:00 GMT
      Set-Cookie: JSESSIONID=rpan0c2ajz51jdshal3qqlndj4r090qd; Path=/; Secure; HttpOnly
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Frame-Options: SAMEORIGIN
      Content-Security-Policy: frame-ancestors 'self'
      Strict-Transport-Security: max-age=63072000
      Location: ./login.action
      Content-Length: 0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:07:05.000Z",
         "app" : {
            "favicon" : {
               "image" : "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",
               "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
               "imagemmh3" : -1216248324,
               "length" : 1078,
               "url" : "/favicon.ico"
            },
            "http" : {
               "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
               "bodymmh3" : -1636538602,
               "component" : [
                  {
                     "product" : "Java",
                     "productvendor" : "Oracle"
                  },
                  {
                     "product" : "Confluence",
                     "productvendor" : "Atlassian"
                  }
               ],
               "headermd5" : "ad9ee95ebe61acda2f9558fbd21686ee",
               "headermmh3" : 1676646550
            },
            "length" : 587
         },
         "asn" : "AS16509",
         "city" : "Sydney",
         "country" : "AU",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 301 Moved Permanently\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 01:51:39 GMT\r\nServer: nginx\r\nX-Confluence-Request-Time: 1730944299\r\nContent-Type: text/html;charset=UTF-8\r\nCache-Control: no-cache, must-revalidate\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nSet-Cookie: JSESSIONID=rpan0c2ajz51jdshal3qqlndj4r090qd; Path=/; Secure; HttpOnly\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nStrict-Transport-Security: max-age=63072000\r\nLocation: ./login.action\r\nContent-Length: 0\r\n\r\n",
         "datamd5" : "b2b20dcc2aa8243558e5cb84e0d971ee",
         "datammh3" : 920886836,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "amazonaws.com"
         ],
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "OC",
            "continentname" : "Oceania",
            "country" : "AU",
            "countryname" : "Australia",
            "domain" : [
               "amazon.com",
               "amazonaws.com"
            ],
            "isineu" : "false",
            "latitude" : "-25.274398",
            "location" : "-25.274398,133.775136",
            "longitude" : "133.775136",
            "netname" : "AMAZO-SYD",
            "organization" : "Amazon Corporate Services Pty Ltd",
            "subnet" : "3.24.0.0/14"
         },
         "host" : [
            "ec2-3-27-132-230"
         ],
         "hostname" : [
            "ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com"
         ],
         "ip" : "3.27.132.230",
         "ipv6" : "false",
         "latitude" : "-33.8715",
         "location" : "-33.8715,151.2006",
         "longitude" : "151.2006",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 4369,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Moved Permanently",
         "reverse" : [
            "ec2-3-27-132-230.ap-southeast-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 301,
         "subdomains" : [
            "ap-southeast-2.compute.amazonaws.com",
            "compute.amazonaws.com"
         ],
         "subnet" : "3.16.0.0/12",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }