Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
168.138.138.76

Network
168.138.0.0/16

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://168.138.138.76:4664/ 200

ASN
AS31898

Organization
ORACLE-BMC-31898

Protocol
http

Source
datascan
Operating System
Microsoft Windows

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e3a837d90dac5a4c214c9a895174ff1c

HTTP Header MD5
c8f6131b039e1a6d5e633febb3e7df8e

HTTP Body MD5
95a0948991e9218f0d38efaf540d20ba

Favicon MD5
d9c04e84269281a37e8f024578ffd4f3

Favicon MMH3
-1666561833

HTTP/1.1 200 OK
Connection: close
Last-Modified: Thu, 18 Feb 2016 14:15:20 GMT
X-Powered-By: Undertow/1
Server: WildFly/9
Content-Length: 50
Content-Type: text/html
Date: Thu, 07 Nov 2024 01:52:03 GMT

<META http-equiv="refresh" content="1;URL=/cim">

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:48.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "d9c04e84269281a37e8f024578ffd4f3",
         "imagemmh3" : -1666561833,
         "length" : 1150,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "95a0948991e9218f0d38efaf540d20ba",
         "bodymmh3" : 1956844712,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Thu, 18 Feb 2016 14:15:20 GMT"
            }
         ],
         "headermd5" : "c8f6131b039e1a6d5e633febb3e7df8e",
         "headermmh3" : 1008455064
      },
      "length" : 261
   },
   "asn" : "AS31898",
   "city" : "S\u00e3o Paulo",
   "country" : "BR",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nLast-Modified: Thu, 18 Feb 2016 14:15:20 GMT\r\nX-Powered-By: Undertow/1\r\nServer: WildFly/9\r\nContent-Length: 50\r\nContent-Type: text/html\r\nDate: Thu, 07 Nov 2024 01:52:03 GMT\r\n\r\n<META http-equiv=\"refresh\" content=\"1;URL=/cim\"> \n",
   "datamd5" : "e3a837d90dac5a4c214c9a895174ff1c",
   "datammh3" : 1137812869,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS31898",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "oracle.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "OC-195",
      "organization" : "Oracle Public Cloud",
      "subnet" : "168.138.128.0/19"
   },
   "ip" : "168.138.138.76",
   "ipv6" : "false",
   "latitude" : "-23.5335",
   "location" : "-23.5335,-46.6359",
   "longitude" : "-46.6359",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ORACLE-BMC-31898",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "168.138.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
145.116.56.3

Network
145.116.48.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux AMAZON

URL

http://145.116.56.3:4664/WebInterface/login.html 200

HTTP Title
CrushFTP - Login

HTTP Description
CrushFTP - Login

ASN
AS1104

Organization
Stichting Nederlandse Wetenschappelijk Onderzoek Instituten

Protocol
http

Source
urlscan::redirect
Operating System
Linux Linux AMAZON

HTTP Component(s)
CrushFTP CrushFTP

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2c1642d6228af964626d24743b414444

HTTP Header MD5
24d6f72237a5f40a6e8db9133df32f72

HTTP Body MD5
04bf84782bd77b671ac0c64c2db76f83

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 03:09:40 UTC
Server: CrushFTP HTTP Server
P3P: policyref="/WebInterface/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Keep-Alive: timeout=15, max=20
Connection: Keep-Alive
Pragma: no-cache
Content-type: text/html; charset=UTF-8
Last-Modified: Fri, 05 Apr 2024 13:30:12 GMT
ETag: 1712323812000
X-UA-Compatible: chrome=1
Accept-Ranges: bytes
Content-Length: 27968

<!DOCTYPE html>
<html data-theme="light">
  <head>
    <meta charset="UTF-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1" />
    <meta name="description" content="CrushFTP - Login" />
    <meta name="theme-color" content="#F5B451" />

    <title>CrushFTP - Login</title>

    <link
      rel="icon"
      type="image/x-icon"
      href="/WebInterface/new-ui/assets/images/favicon-logo.png"
    />

    <link
      rel="apple-touch-icon"
      href="/WebInterface/new-ui/assets/images/favicon-logo.png"
    />

    <!-- Style Files -->
    <!-- Common CSS -->
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/font-awesome/css/font-awesome.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/variables.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/bulma/bulma.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/animation.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/common.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/components/toast.css"
    />
    <!-- End Common CSS -->
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/auth/login.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/modules/loader/loader.css"
    />
    <link
      rel="stylesheet"
      type="text/css"
      href="/WebInterface/new-ui/assets/styles/components/modal.css"
    />

    <link rel="manifest" href="/WebInterface/new-ui/manifest.json" />

    <!-- Javascript Files -->
    <!--GSIGNIN_SCRIPT-->
    <!--MSSIGNIN_SCRIPT-->
    <!--AZURE_B2C_SINGIN_SCRIPT-->
    <!--AMAZON_COGNITO_SINGIN_SCRIPT-->

    <script type="text/javascript">
      function showRecaptcha(element, callback) {
        var recaptchaVersion = 0 + 1 +0;
        if (recaptchaVersion == 3) {
          ajax.getScript(
            "https://www.recaptcha.net/recaptcha/api.js?render=/*RECAPTCHA_PUBLIC_KEY*/",
            function () {
              grecaptcha.ready(function () {
                // do request for recaptcha token
                // response is promise with passed token
                window.hasCaptcha = true;
                grecaptcha
                  .execute("/*RECAPTCHA_PUBLIC_KEY*/", {
                    action: "validate_captcha",
                  })
                  .then(function (token) {
                    // add token value to form
                    window.captchaToken = token;
                  });
              });
            }
          );
        } else if (recaptchaVersion) {
          ajax.getScript(
            "https://www.recaptcha.net/recaptcha/api.js",
            function () {
              if (window.grecaptcha) {
                grecaptcha.ready(function () {
                  callback = callback || function () {};
                  window.grecaptcha.render(element, {
                    sitekey: "/*RECAPTCHA_PUBLIC_KEY*/",
                    callback: callback,
                  });
                });
                window.hasCaptcha = true;
              }
            }
          );
        }
      }
      window.onload = function () {
        /*RECAPTCHA*/
      };
      var passwordRule = {random_password_length:6,min_password_numbers:0,min_password_lowers:0,min_password_uppers:0,min_password_specials:0};
    </script>
    <script>document.addEventListener("DOMContentLoaded", () => {
document.getElementById("username").setAttribute("autocomplete", "on");
document.getElementById("password").setAttribute("autocomplete", "on");
});</script>
  </head>

  <body>
    <section
      id="login"
      class="is-relative is-hidden is-flex is-justify-content-center is-align-items-center auth-section"
    >
      
      <w-theme class="is-absolute multi-theme-icon-container"></w-theme>
      <w-language class="is-absolute language-dropdown"></w-language>

      <div class="is-flex h-full w-full">
        <div
          class="is-flex is-align-items-center is-justify-content-center p-4 auth-form-section"
        >
          <div class="w-full auth-form-container" id="authFormContainer">
            <!-- Login form -->
            <div class="w-full h-full" id="loginFormCard">
              <div class="is-flex is-justify-content-center mb-5">
                <w-image
                  class="logo"
                  src="/WebInterface/images/RPS_Logo.jpg"
                  alt="crush-logo"
                />
              </div>
              <form id="loginForm" name="loginForm" method="post" action="/">
                <div id="userLoggedIn" class="is-hidden">
                  <div class="mb-4 has-text-centered">
                    <a href="/#/" class="text-accentMain"
                      >Continue as
                      <span id="currentUserName" class="is-capitalized"></span
                      >...</a
                    >
                    |
                    <a
                      href="javascript:void(0);"
                      id="logout"
                      class="text-accentMain"
                      >Logout</a
                    >
                  </div>
                  <div class="continue-label is-relative is-flex mb-4">
                    <div class="content-line mr-3"></div>
                    <p class="text-sm text-primaryMain" data-i18n-key="notMe">
                      Not me...
                    </p>
                    <div class="content-line ml-3"></div>
                  </div>
                </div>
                <div class="mb-5">
                  <label for="username" data-i18n-key="username"
                    >Username</label
                  >
                  <p class="control has-icons-left mt-1">
                    <input
                      id="username"
                      class="input"
                      type="text"
                      value=""
                      name="username"
                      placeholder="Username"
                    />
                    <span class="icon is-small is-left">
                      <i class="icon-user"></i>
                    </span>
                  </p>
                </div>
                <div class="mb-5">
                  <label for="password" data-i18n-key="password"
                    >Password</label
                  >
                  <p class="control has-icons-left mt-1">
                    <input
                      id="password"
                      class="input"
                      name="password"
                      value=""
                      type="password"
                      placeholder="Password"
                    />
                    <span class="icon is-small is-left">
                      <i class="icon-lock"></i>
                    </span>
                  </p>
                  <div class="content-line ml-3"></div>
                </div>
                <div
                  class="is-flex is-align-items-center is-justify-content-space-between mb-5"
                >
                  <div id="rememberPanel" class="is-flex is-align-items-center">
                    <input id="remember" type="checkbox" name="remember" />
                    <label
                      for="remember"
                      class="text-sm text-primaryMain is-cursor-pointer remember-me"
                      data-i18n-key="rememberMe"
                      >Remember me</label
                    >
                  </div>
                  <p class="lostpassword">
                    <button
                      id="forgotLink"
                      class="forgot-link primary-button is-bg-none"
                      data-i18n-key="forgotYourPassword"
                      type="button"
                    >
                      Forgot your password?
                    </button>
                  </p>
                </div>
                <div id="recaptcha_div" class="my-2"></div>
                <button
                  type="submit"
                  id="sign-in-button"
                  class="primary-button w-full"
                  data-i18n-key="signIn"
                  aria-label="sign-in-btn"
                >
                  Sign In
                </button>
                <input type="hidden" name="command" value="login" />
                <input type="hidden" name="skip_login" value="true" />
                <input type="hidden" name="encoded" value="false" />
              </form>
              <div
                id="crushAuthContainer"
                class="is-hidden is-flex is-flex is-flex-direction-column mt-5 crush-auth-container"
              >
                <div class="continue-label is-relative is-flex">
                  <div class="content-line mr-3"></div>
                  <p
                    class="text-sm text-primaryMain"
                    data-i18n-key="orContinueWith"
                  >
                    Or continue with
                  </p>
                  <div class="content-line ml-3"></div>
                </div>
                <div class="is-flex" style="gap: 0.5rem">
                  <div
                    id="amazonSigninButton"
                    class="is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain"
                  >
                    <img
                      src="/WebInterface/new-ui/assets/images/amazon.png"
                      class="h-full"
                      alt="amazon"
                    />
                    <span class="text-primaryMain text-sm text-bold"
                      >Amazon</span
                    >
                  </div>
                  <div
                    id="msSigninButton"
                    class="is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain"
                  >
                    <img
                      src="/WebInterface/new-ui/assets/images/microsoft.png"
                      class="h-full"
                      alt="microsoft"
                    />
                    <span class="text-primaryMain text-sm text-bold"
                      >Microsoft</span
                    >
                  </div>
                  <div
                    id="msB2CSigninButton"
                    class="is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain"
                  >
                    <img
                      src="/WebInterface/new-ui/assets/images/microsoft.png"
                      class="h-full"
                      alt="ms b2c"
                    />
                    <span class="text-primaryMain text-sm text-bold"
                      >MS B2C</span
                    >
                  </div>
                </div>
                <div id="google-signin" class="is-hidden"></div>
              </div>
            </div>

            <!-- Reset password form -->
            <div class="w-full h-full is-hidden" id="resetFormCard">
              <div
                class="is-flex is-justify-content-center text-accentMain mb-5"
              >
                <svg
                  width="98"
                  height="89"
                  viewBox="0 0 98 89"
                  fill="none"
                  xmlns="http://www.w3.org/2000/svg"
                >
                  <path
                    d="M43.5249 8.06207C42.1155 8.28365 40.3419 8.67931 39.0117 9.10664C31.4581 11.5123 25.2979 17.6531 22.8909 25.2183C21.8933 28.3519 21.8616 28.5577 21.7982 35.2999L21.7191 41.5198H19.3595H17V63.9938C17 85.803 17.0158 86.4994 17.3009 87.0691C17.6968 87.8288 18.346 88.4461 19.0903 88.7468C19.6129 88.9683 22.0833 89 40.912 89H62.132V87.813V86.626L41.1496 86.5943L20.183 86.5469L19.8188 86.1828L19.4545 85.8188L19.407 64.8642L19.3754 43.8938H46.6921H74.0088V46.1729V48.4361L72.3935 49.2274C68.5613 51.095 65.5208 54.2603 63.8422 58.1537C62.8446 60.496 62.5912 61.6989 62.4962 64.6268C62.4328 66.8901 62.4645 67.4598 62.7496 68.8684C63.8739 74.3128 67.3419 78.7759 72.3619 81.2766L74.0405 82.1154L73.9771 83.9671C73.9138 86.5152 73.8979 86.531 71.2375 86.6102L69.2581 86.6576V87.8288V89H71.5226C74.0088 89 74.6422 88.8259 75.4657 87.9554C76.21 87.1641 76.3842 86.4994 76.3842 84.5052V82.701L76.9859 82.8434C77.3026 82.9225 78.3636 83.0333 79.3138 83.0808C83.2094 83.3024 87.01 82.2578 90.3672 80.0262C92.9009 78.3486 95.4188 75.2782 96.6856 72.3503C97.7783 69.8338 98 68.6152 98 65.2599C98 62.7751 97.9525 62.1262 97.6516 60.9709C95.8147 53.7539 89.8921 48.5152 82.4334 47.5181C81.0082 47.3282 78.0786 47.4073 76.9859 47.6764L76.3842 47.8188V44.6693V41.5198H74.0246H71.6651L71.5859 35.2999C71.5384 30.1562 71.4751 28.8901 71.2534 27.9088C68.9097 17.7955 61.6886 10.5944 51.6804 8.36279C50.5243 8.10955 44.6809 7.88798 43.5249 8.06207ZM51.2053 10.8951C56.7636 12.0346 62.0845 15.6114 65.2516 20.3436C66.5977 22.3536 67.3578 23.9046 68.0704 26.0729C68.973 28.8426 69.1155 30.0929 69.2106 36.0912L69.3056 41.5198H66.8985H64.5073V36.1545C64.5073 30.3619 64.4282 29.539 63.6364 27.1808C62.1636 22.7809 58.8856 19.0142 54.7208 16.925C51.8862 15.5006 49.495 15.01 45.9478 15.1366C43.034 15.2316 41.3713 15.6273 38.9326 16.8143C37.2856 17.6214 35.0528 19.125 35.0528 19.4257C35.0528 19.5206 35.417 19.9954 35.8287 20.4702L36.6047 21.3407L37.0639 20.9925C38.0616 20.1854 40.1044 19.0142 41.2287 18.5869C44.5543 17.3049 48.6716 17.2732 51.9179 18.4919C56.8587 20.3436 60.5959 24.6485 61.7361 29.808C61.9261 30.726 62.0211 32.2137 62.0845 36.2495L62.1795 41.5198H46.6921H31.2047L31.2997 36.2495C31.3947 30.5519 31.5056 29.6972 32.3765 27.434C32.8041 26.3103 33.976 24.2687 34.7836 23.2716L35.132 22.8126L34.261 22.0371C33.7859 21.6256 33.3109 21.2616 33.2158 21.2616C32.7091 21.2457 30.4446 25.0916 29.7478 27.1808C28.956 29.539 28.8768 30.3619 28.8768 36.1545V41.5198H26.4856H24.0786L24.1736 36.0912C24.2686 30.0929 24.4111 28.8426 25.3138 26.0729C26.4381 22.6227 28.2751 19.6472 30.8563 17.0675C33.976 13.9496 37.9032 11.813 42.1947 10.8951C44.7126 10.3411 48.529 10.3569 51.2053 10.8951ZM82.7343 50.1454C89.2903 51.2849 94.3578 56.3494 95.3871 62.7909C95.6405 64.2945 95.5138 67.6972 95.1654 68.9634C94.2786 72.192 92.41 75.12 90.0188 77.0508C83.7953 82.0679 75.1965 81.7039 69.5906 76.1803C66.4868 73.1258 64.9824 69.5648 64.9824 65.2599C64.9824 61.05 66.471 57.4573 69.4164 54.4819C72.9795 50.905 77.9202 49.2907 82.7343 50.1454Z"
                    fill="currentColor"
                  />
                  <path
                    d="M79.2661 55.4474C76.8274 55.8114 74.7212 57.9797 74.3887 60.4645L74.2778 61.3033H75.5764C76.4948 61.3033 76.8591 61.24 76.8591 61.0976C76.8591 60.5594 77.2391 59.6573 77.6825 59.1509C80.0896 56.4128 84.4919 58.7552 83.5101 62.2529C83.3042 62.9809 82.5124 63.9305 81.7998 64.2946C81.4673 64.4528 80.7388 64.6427 80.1371 64.7061L79.0761 64.8168V67.0168V69.2167H80.2638H81.4514V68.1879C81.4514 67.3333 81.4989 67.1275 81.7365 67.0642C81.879 67.0168 82.4491 66.7635 82.9875 66.5103C84.1594 65.9247 85.1253 64.9276 85.6954 63.709C86.0597 62.9335 86.123 62.5853 86.123 61.3033C86.123 59.9106 86.0755 59.7048 85.6004 58.7394C84.4127 56.3179 81.974 55.0517 79.2661 55.4474Z"
                    fill="currentColor"
                  />
                  <path
                    d="M79.0762 72.6985V73.9646H80.2639H81.4515V72.6985V71.4323H80.2639H79.0762V72.6985Z"
                    fill="currentColor"
                  />
                  <path
                    d="M43.1289 47.4548V48.6418H44.3166H45.5043V4

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:09:48.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "recaptcha.net",
            "w3.org"
         ],
         "file" : [
            "p3p.xml",
            "manifest.json"
         ],
         "hostname" : [
            "www.recaptcha.net",
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/2000/svg",
            "https://www.recaptcha.net/recaptcha/api.js",
            "https://www.recaptcha.net/recaptcha/api.js?render=/*RECAPTCHA_PUBLIC_KEY*/"
         ]
      },
      "favicon" : {
         "url" : "/WebInterface/new-ui/assets/images/favicon-logo.png"
      },
      "http" : {
         "bodymd5" : "04bf84782bd77b671ac0c64c2db76f83",
         "bodymmh3" : 1969461597,
         "component" : [
            {
               "productvendor" : "CrushFTP",
               "product" : "CrushFTP"
            }
         ],
         "description" : "CrushFTP - Login",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 05 Apr 2024 13:30:12 GMT"
            },
            {
               "name" : "ETag",
               "value" : "1712323812000"
            }
         ],
         "headermd5" : "24d6f72237a5f40a6e8db9133df32f72",
         "headermmh3" : 1187096338,
         "title" : "CrushFTP - Login"
      },
      "length" : 16384
   },
   "asn" : "AS1104",
   "country" : "NL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 03:09:40 UTC\r\nServer: CrushFTP HTTP Server\r\nP3P: policyref=\"/WebInterface/w3c/p3p.xml\", CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nKeep-Alive: timeout=15, max=20\r\nConnection: Keep-Alive\r\nPragma: no-cache\r\nContent-type: text/html; charset=UTF-8\r\nLast-Modified: Fri, 05 Apr 2024 13:30:12 GMT\r\nETag: 1712323812000\r\nX-UA-Compatible: chrome=1\r\nAccept-Ranges: bytes\r\nContent-Length: 27968\r\n\r\n<!DOCTYPE html>\n<html data-theme=\"light\">\n  <head>\n    <meta charset=\"UTF-8\" />\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n    <meta name=\"description\" content=\"CrushFTP - Login\" />\n    <meta name=\"theme-color\" content=\"#F5B451\" />\n\n    <title>CrushFTP - Login</title>\n\n    <link\n      rel=\"icon\"\n      type=\"image/x-icon\"\n      href=\"/WebInterface/new-ui/assets/images/favicon-logo.png\"\n    />\n\n    <link\n      rel=\"apple-touch-icon\"\n      href=\"/WebInterface/new-ui/assets/images/favicon-logo.png\"\n    />\n\n    <!-- Style Files -->\n    <!-- Common CSS -->\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/font-awesome/css/font-awesome.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/variables.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/bulma/bulma.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/animation.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/common.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/components/toast.css\"\n    />\n    <!-- End Common CSS -->\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/auth/login.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/modules/loader/loader.css\"\n    />\n    <link\n      rel=\"stylesheet\"\n      type=\"text/css\"\n      href=\"/WebInterface/new-ui/assets/styles/components/modal.css\"\n    />\n\n    <link rel=\"manifest\" href=\"/WebInterface/new-ui/manifest.json\" />\n\n    <!-- Javascript Files -->\n    <!--GSIGNIN_SCRIPT-->\n    <!--MSSIGNIN_SCRIPT-->\n    <!--AZURE_B2C_SINGIN_SCRIPT-->\n    <!--AMAZON_COGNITO_SINGIN_SCRIPT-->\n\n    <script type=\"text/javascript\">\n      function showRecaptcha(element, callback) {\n        var recaptchaVersion = 0 + 1 +0;\n        if (recaptchaVersion == 3) {\n          ajax.getScript(\n            \"https://www.recaptcha.net/recaptcha/api.js?render=/*RECAPTCHA_PUBLIC_KEY*/\",\n            function () {\n              grecaptcha.ready(function () {\n                // do request for recaptcha token\n                // response is promise with passed token\n                window.hasCaptcha = true;\n                grecaptcha\n                  .execute(\"/*RECAPTCHA_PUBLIC_KEY*/\", {\n                    action: \"validate_captcha\",\n                  })\n                  .then(function (token) {\n                    // add token value to form\n                    window.captchaToken = token;\n                  });\n              });\n            }\n          );\n        } else if (recaptchaVersion) {\n          ajax.getScript(\n            \"https://www.recaptcha.net/recaptcha/api.js\",\n            function () {\n              if (window.grecaptcha) {\n                grecaptcha.ready(function () {\n                  callback = callback || function () {};\n                  window.grecaptcha.render(element, {\n                    sitekey: \"/*RECAPTCHA_PUBLIC_KEY*/\",\n                    callback: callback,\n                  });\n                });\n                window.hasCaptcha = true;\n              }\n            }\n          );\n        }\n      }\n      window.onload = function () {\n        /*RECAPTCHA*/\n      };\n      var passwordRule = {random_password_length:6,min_password_numbers:0,min_password_lowers:0,min_password_uppers:0,min_password_specials:0};\n    </script>\n    <script>document.addEventListener(\"DOMContentLoaded\", () => {\ndocument.getElementById(\"username\").setAttribute(\"autocomplete\", \"on\");\ndocument.getElementById(\"password\").setAttribute(\"autocomplete\", \"on\");\n});</script>\n  </head>\n\n  <body>\n    <section\n      id=\"login\"\n      class=\"is-relative is-hidden is-flex is-justify-content-center is-align-items-center auth-section\"\n    >\n      \n      <w-theme class=\"is-absolute multi-theme-icon-container\"></w-theme>\n      <w-language class=\"is-absolute language-dropdown\"></w-language>\n\n      <div class=\"is-flex h-full w-full\">\n        <div\n          class=\"is-flex is-align-items-center is-justify-content-center p-4 auth-form-section\"\n        >\n          <div class=\"w-full auth-form-container\" id=\"authFormContainer\">\n            <!-- Login form -->\n            <div class=\"w-full h-full\" id=\"loginFormCard\">\n              <div class=\"is-flex is-justify-content-center mb-5\">\n                <w-image\n                  class=\"logo\"\n                  src=\"/WebInterface/images/RPS_Logo.jpg\"\n                  alt=\"crush-logo\"\n                />\n              </div>\n              <form id=\"loginForm\" name=\"loginForm\" method=\"post\" action=\"/\">\n                <div id=\"userLoggedIn\" class=\"is-hidden\">\n                  <div class=\"mb-4 has-text-centered\">\n                    <a href=\"/#/\" class=\"text-accentMain\"\n                      >Continue as\n                      <span id=\"currentUserName\" class=\"is-capitalized\"></span\n                      >...</a\n                    >\n                    |\n                    <a\n                      href=\"javascript:void(0);\"\n                      id=\"logout\"\n                      class=\"text-accentMain\"\n                      >Logout</a\n                    >\n                  </div>\n                  <div class=\"continue-label is-relative is-flex mb-4\">\n                    <div class=\"content-line mr-3\"></div>\n                    <p class=\"text-sm text-primaryMain\" data-i18n-key=\"notMe\">\n                      Not me...\n                    </p>\n                    <div class=\"content-line ml-3\"></div>\n                  </div>\n                </div>\n                <div class=\"mb-5\">\n                  <label for=\"username\" data-i18n-key=\"username\"\n                    >Username</label\n                  >\n                  <p class=\"control has-icons-left mt-1\">\n                    <input\n                      id=\"username\"\n                      class=\"input\"\n                      type=\"text\"\n                      value=\"\"\n                      name=\"username\"\n                      placeholder=\"Username\"\n                    />\n                    <span class=\"icon is-small is-left\">\n                      <i class=\"icon-user\"></i>\n                    </span>\n                  </p>\n                </div>\n                <div class=\"mb-5\">\n                  <label for=\"password\" data-i18n-key=\"password\"\n                    >Password</label\n                  >\n                  <p class=\"control has-icons-left mt-1\">\n                    <input\n                      id=\"password\"\n                      class=\"input\"\n                      name=\"password\"\n                      value=\"\"\n                      type=\"password\"\n                      placeholder=\"Password\"\n                    />\n                    <span class=\"icon is-small is-left\">\n                      <i class=\"icon-lock\"></i>\n                    </span>\n                  </p>\n                  <div class=\"content-line ml-3\"></div>\n                </div>\n                <div\n                  class=\"is-flex is-align-items-center is-justify-content-space-between mb-5\"\n                >\n                  <div id=\"rememberPanel\" class=\"is-flex is-align-items-center\">\n                    <input id=\"remember\" type=\"checkbox\" name=\"remember\" />\n                    <label\n                      for=\"remember\"\n                      class=\"text-sm text-primaryMain is-cursor-pointer remember-me\"\n                      data-i18n-key=\"rememberMe\"\n                      >Remember me</label\n                    >\n                  </div>\n                  <p class=\"lostpassword\">\n                    <button\n                      id=\"forgotLink\"\n                      class=\"forgot-link primary-button is-bg-none\"\n                      data-i18n-key=\"forgotYourPassword\"\n                      type=\"button\"\n                    >\n                      Forgot your password?\n                    </button>\n                  </p>\n                </div>\n                <div id=\"recaptcha_div\" class=\"my-2\"></div>\n                <button\n                  type=\"submit\"\n                  id=\"sign-in-button\"\n                  class=\"primary-button w-full\"\n                  data-i18n-key=\"signIn\"\n                  aria-label=\"sign-in-btn\"\n                >\n                  Sign In\n                </button>\n                <input type=\"hidden\" name=\"command\" value=\"login\" />\n                <input type=\"hidden\" name=\"skip_login\" value=\"true\" />\n                <input type=\"hidden\" name=\"encoded\" value=\"false\" />\n              </form>\n              <div\n                id=\"crushAuthContainer\"\n                class=\"is-hidden is-flex is-flex is-flex-direction-column mt-5 crush-auth-container\"\n              >\n                <div class=\"continue-label is-relative is-flex\">\n                  <div class=\"content-line mr-3\"></div>\n                  <p\n                    class=\"text-sm text-primaryMain\"\n                    data-i18n-key=\"orContinueWith\"\n                  >\n                    Or continue with\n                  </p>\n                  <div class=\"content-line ml-3\"></div>\n                </div>\n                <div class=\"is-flex\" style=\"gap: 0.5rem\">\n                  <div\n                    id=\"amazonSigninButton\"\n                    class=\"is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain\"\n                  >\n                    <img\n                      src=\"/WebInterface/new-ui/assets/images/amazon.png\"\n                      class=\"h-full\"\n                      alt=\"amazon\"\n                    />\n                    <span class=\"text-primaryMain text-sm text-bold\"\n                      >Amazon</span\n                    >\n                  </div>\n                  <div\n                    id=\"msSigninButton\"\n                    class=\"is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain\"\n                  >\n                    <img\n                      src=\"/WebInterface/new-ui/assets/images/microsoft.png\"\n                      class=\"h-full\"\n                      alt=\"microsoft\"\n                    />\n                    <span class=\"text-primaryMain text-sm text-bold\"\n                      >Microsoft</span\n                    >\n                  </div>\n                  <div\n                    id=\"msB2CSigninButton\"\n                    class=\"is-hidden is-flex is-align-items-center is-justify-content-center is-cursor-pointer social-continue-btn bg-primaryMain\"\n                  >\n                    <img\n                      src=\"/WebInterface/new-ui/assets/images/microsoft.png\"\n                      class=\"h-full\"\n                      alt=\"ms b2c\"\n                    />\n                    <span class=\"text-primaryMain text-sm text-bold\"\n                      >MS B2C</span\n                    >\n                  </div>\n                </div>\n                <div id=\"google-signin\" class=\"is-hidden\"></div>\n              </div>\n            </div>\n\n            <!-- Reset password form -->\n            <div class=\"w-full h-full is-hidden\" id=\"resetFormCard\">\n              <div\n                class=\"is-flex is-justify-content-center text-accentMain mb-5\"\n              >\n                <svg\n                  width=\"98\"\n                  height=\"89\"\n                  viewBox=\"0 0 98 89\"\n                  fill=\"none\"\n                  xmlns=\"http://www.w3.org/2000/svg\"\n                >\n                  <path\n                    d=\"M43.5249 8.06207C42.1155 8.28365 40.3419 8.67931 39.0117 9.10664C31.4581 11.5123 25.2979 17.6531 22.8909 25.2183C21.8933 28.3519 21.8616 28.5577 21.7982 35.2999L21.7191 41.5198H19.3595H17V63.9938C17 85.803 17.0158 86.4994 17.3009 87.0691C17.6968 87.8288 18.346 88.4461 19.0903 88.7468C19.6129 88.9683 22.0833 89 40.912 89H62.132V87.813V86.626L41.1496 86.5943L20.183 86.5469L19.8188 86.1828L19.4545 85.8188L19.407 64.8642L19.3754 43.8938H46.6921H74.0088V46.1729V48.4361L72.3935 49.2274C68.5613 51.095 65.5208 54.2603 63.8422 58.1537C62.8446 60.496 62.5912 61.6989 62.4962 64.6268C62.4328 66.8901 62.4645 67.4598 62.7496 68.8684C63.8739 74.3128 67.3419 78.7759 72.3619 81.2766L74.0405 82.1154L73.9771 83.9671C73.9138 86.5152 73.8979 86.531 71.2375 86.6102L69.2581 86.6576V87.8288V89H71.5226C74.0088 89 74.6422 88.8259 75.4657 87.9554C76.21 87.1641 76.3842 86.4994 76.3842 84.5052V82.701L76.9859 82.8434C77.3026 82.9225 78.3636 83.0333 79.3138 83.0808C83.2094 83.3024 87.01 82.2578 90.3672 80.0262C92.9009 78.3486 95.4188 75.2782 96.6856 72.3503C97.7783 69.8338 98 68.6152 98 65.2599C98 62.7751 97.9525 62.1262 97.6516 60.9709C95.8147 53.7539 89.8921 48.5152 82.4334 47.5181C81.0082 47.3282 78.0786 47.4073 76.9859 47.6764L76.3842 47.8188V44.6693V41.5198H74.0246H71.6651L71.5859 35.2999C71.5384 30.1562 71.4751 28.8901 71.2534 27.9088C68.9097 17.7955 61.6886 10.5944 51.6804 8.36279C50.5243 8.10955 44.6809 7.88798 43.5249 8.06207ZM51.2053 10.8951C56.7636 12.0346 62.0845 15.6114 65.2516 20.3436C66.5977 22.3536 67.3578 23.9046 68.0704 26.0729C68.973 28.8426 69.1155 30.0929 69.2106 36.0912L69.3056 41.5198H66.8985H64.5073V36.1545C64.5073 30.3619 64.4282 29.539 63.6364 27.1808C62.1636 22.7809 58.8856 19.0142 54.7208 16.925C51.8862 15.5006 49.495 15.01 45.9478 15.1366C43.034 15.2316 41.3713 15.6273 38.9326 16.8143C37.2856 17.6214 35.0528 19.125 35.0528 19.4257C35.0528 19.5206 35.417 19.9954 35.8287 20.4702L36.6047 21.3407L37.0639 20.9925C38.0616 20.1854 40.1044 19.0142 41.2287 18.5869C44.5543 17.3049 48.6716 17.2732 51.9179 18.4919C56.8587 20.3436 60.5959 24.6485 61.7361 29.808C61.9261 30.726 62.0211 32.2137 62.0845 36.2495L62.1795 41.5198H46.6921H31.2047L31.2997 36.2495C31.3947 30.5519 31.5056 29.6972 32.3765 27.434C32.8041 26.3103 33.976 24.2687 34.7836 23.2716L35.132 22.8126L34.261 22.0371C33.7859 21.6256 33.3109 21.2616 33.2158 21.2616C32.7091 21.2457 30.4446 25.0916 29.7478 27.1808C28.956 29.539 28.8768 30.3619 28.8768 36.1545V41.5198H26.4856H24.0786L24.1736 36.0912C24.2686 30.0929 24.4111 28.8426 25.3138 26.0729C26.4381 22.6227 28.2751 19.6472 30.8563 17.0675C33.976 13.9496 37.9032 11.813 42.1947 10.8951C44.7126 10.3411 48.529 10.3569 51.2053 10.8951ZM82.7343 50.1454C89.2903 51.2849 94.3578 56.3494 95.3871 62.7909C95.6405 64.2945 95.5138 67.6972 95.1654 68.9634C94.2786 72.192 92.41 75.12 90.0188 77.0508C83.7953 82.0679 75.1965 81.7039 69.5906 76.1803C66.4868 73.1258 64.9824 69.5648 64.9824 65.2599C64.9824 61.05 66.471 57.4573 69.4164 54.4819C72.9795 50.905 77.9202 49.2907 82.7343 50.1454Z\"\n                    fill=\"currentColor\"\n                  />\n                  <path\n                    d=\"M79.2661 55.4474C76.8274 55.8114 74.7212 57.9797 74.3887 60.4645L74.2778 61.3033H75.5764C76.4948 61.3033 76.8591 61.24 76.8591 61.0976C76.8591 60.5594 77.2391 59.6573 77.6825 59.1509C80.0896 56.4128 84.4919 58.7552 83.5101 62.2529C83.3042 62.9809 82.5124 63.9305 81.7998 64.2946C81.4673 64.4528 80.7388 64.6427 80.1371 64.7061L79.0761 64.8168V67.0168V69.2167H80.2638H81.4514V68.1879C81.4514 67.3333 81.4989 67.1275 81.7365 67.0642C81.879 67.0168 82.4491 66.7635 82.9875 66.5103C84.1594 65.9247 85.1253 64.9276 85.6954 63.709C86.0597 62.9335 86.123 62.5853 86.123 61.3033C86.123 59.9106 86.0755 59.7048 85.6004 58.7394C84.4127 56.3179 81.974 55.0517 79.2661 55.4474Z\"\n                    fill=\"currentColor\"\n                  />\n                  <path\n                    d=\"M79.0762 72.6985V73.9646H80.2639H81.4515V72.6985V71.4323H80.2639H79.0762V72.6985Z\"\n                    fill=\"currentColor\"\n                  />\n                  <path\n                    d=\"M43.1289 47.4548V48.6418H44.3166H45.5043V4",
   "datamd5" : "2c1642d6228af964626d24743b414444",
   "datammh3" : 1115241852,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "145.116.56.3",
   "hostname" : [
      "145.116.56.3"
   ],
   "ip" : "145.116.56.3",
   "ipv6" : "false",
   "latitude" : "52.3824",
   "location" : "52.3824,4.8995",
   "longitude" : "4.8995",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Stichting Nederlandse Wetenschappelijk Onderzoek Instituten",
   "os" : "Linux",
   "osdistribution" : "AMAZON",
   "osvendor" : "Linux",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 200,
   "subnet" : "145.116.48.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/WebInterface/login.html"
}

IP
67.52.16.163

Network
67.52.16.0/24

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

URL

http://67.52.16.163:4664/ 301

HTTP Title
Moved Permanently

Reverse DNS
syn-067-052-016-163.biz.spectrum.com

ASN
AS10796

Organization
TWC-10796-MIDWEST

Protocol
http

Source
urlscan::redirect

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
14e59dfd56ccb18735c8ed84f0933be8

HTTP Header MD5
2c561ce2561b7f6113f96cf56b362b57

HTTP Body MD5
6d74b20c6fa245a96aa940816c13f6ff

HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 03:07:03 GMT
Location: https://<ip>:4664/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:07:04.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : 1058539247,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS10796",
   "city" : "Elkhorn",
   "country" : "US",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:07:03 GMT\r\nLocation: https://<ip>:4664/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "14e59dfd56ccb18735c8ed84f0933be8",
   "datammh3" : -359439367,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "forward" : "67.52.16.163",
   "geolocus" : {
      "asn" : "AS10796",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-67-52-16-0-1",
      "organization" : "Charter Communications Inc",
      "subnet" : "67.52.16.0/24"
   },
   "host" : [
      "syn-067-052-016-163"
   ],
   "hostname" : [
      "67.52.16.163",
      "syn-067-052-016-163.biz.spectrum.com"
   ],
   "ip" : "67.52.16.163",
   "ipv6" : "false",
   "latitude" : "42.7001",
   "location" : "42.7001,-88.5449",
   "longitude" : "-88.5449",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-10796-MIDWEST",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "syn-067-052-016-163.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 301,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "67.52.16.0/24",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
136.41.5.67

Network
136.40.0.0/13

Domain(s)
googlefiber.net

Device

<enterprise field>: device.class

URL

http://136.41.5.67:4664/ 301

HTTP Title
Moved Permanently

Reverse DNS
136-41-5-67.googlefiber.net

ASN
AS16591

Organization
GOOGLE-FIBER

Protocol
http

Source
urlscan::redirect

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
14e59dfd56ccb18735c8ed84f0933be8

HTTP Header MD5
2c561ce2561b7f6113f96cf56b362b57

HTTP Body MD5
6d74b20c6fa245a96aa940816c13f6ff

HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 03:05:16 GMT
Location: https://<ip>:4664/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:05:49.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : -90901112,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS16591",
   "country" : "US",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:05:16 GMT\r\nLocation: https://<ip>:4664/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "14e59dfd56ccb18735c8ed84f0933be8",
   "datammh3" : -359439367,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "googlefiber.net"
   ],
   "forward" : "136.41.5.67",
   "geolocus" : {
      "asn" : "AS16591",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googlefiber.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGLE-FIBER",
      "organization" : "Google Fiber Inc.",
      "subnet" : "136.32.0.0/12"
   },
   "host" : [
      "136-41-5-67"
   ],
   "hostname" : [
      "136-41-5-67.googlefiber.net",
      "136.41.5.67"
   ],
   "ip" : "136.41.5.67",
   "ipv6" : "false",
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE-FIBER",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "136-41-5-67.googlefiber.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 301,
   "subnet" : "136.40.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
47.50.95.148

Network
47.50.0.0/16

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

URL

http://47.50.95.148:4664/ 301

HTTP Title
Moved Permanently

Reverse DNS
syn-047-050-095-148.biz.spectrum.com

ASN
AS20115

Organization
CHARTER-20115

Protocol
http

Source
urlscan::redirect

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
14e59dfd56ccb18735c8ed84f0933be8

HTTP Header MD5
2c561ce2561b7f6113f96cf56b362b57

HTTP Body MD5
6d74b20c6fa245a96aa940816c13f6ff

HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 03:05:11 GMT
Location: https://<ip>:4664/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:05:12.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : -181883783,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS20115",
   "city" : "Fenton",
   "country" : "US",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:05:11 GMT\r\nLocation: https://<ip>:4664/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "14e59dfd56ccb18735c8ed84f0933be8",
   "datammh3" : -359439367,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "forward" : "47.50.95.148",
   "geolocus" : {
      "asn" : "AS20115",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "CC04",
      "organization" : "Charter Communications",
      "subnet" : "47.50.0.0/16"
   },
   "host" : [
      "syn-047-050-095-148"
   ],
   "hostname" : [
      "47.50.95.148",
      "syn-047-050-095-148.biz.spectrum.com"
   ],
   "ip" : "47.50.95.148",
   "ipv6" : "false",
   "latitude" : "42.7893",
   "location" : "42.7893,-83.7135",
   "longitude" : "-83.7135",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHARTER-20115",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "syn-047-050-095-148.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 301,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "47.50.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
20.255.97.186

Network
20.192.0.0/10

Device

<enterprise field>: device.class

URL

http://20.255.97.186:4664/ 302

HTTP Title
302 Found

ASN
AS8075

Organization
MICROSOFT-CORP-MSN-AS-BLOCK

Protocol
http

Source
urlscan::redirect
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fec523b9aa4f35bf1e9de0046045ced3

HTTP Header MD5
d7becab03a8905d978f0985d2d16182f

HTTP Body MD5
29b5f7615598c74df0019844c163d80c

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 07 Nov 2024 03:02:41 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: https://<ip>/
Strict-Transport-Security: max-age=31536000

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:02:43.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "29b5f7615598c74df0019844c163d80c",
         "bodymmh3" : -23674247,
         "headermd5" : "d7becab03a8905d978f0985d2d16182f",
         "headermmh3" : 396773122,
         "title" : "302 Found"
      },
      "length" : 359
   },
   "asn" : "AS8075",
   "city" : "Hong Kong",
   "country" : "HK",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:02:41 GMT\r\nContent-Type: text/html\r\nContent-Length: 138\r\nConnection: close\r\nLocation: https://<ip>/\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n<html>\r\n<head><title>302 Found</title></head>\r\n<body>\r\n<center><h1>302 Found</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "fec523b9aa4f35bf1e9de0046045ced3",
   "datammh3" : 576449098,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "20.255.97.186",
   "geolocus" : {
      "asn" : "AS8075",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MSFT",
      "organization" : "Microsoft Corporation",
      "subnet" : "20.255.0.0/16"
   },
   "hostname" : [
      "20.255.97.186"
   ],
   "ip" : "20.255.97.186",
   "ipv6" : "false",
   "latitude" : "22.2842",
   "location" : "22.2842,114.1759",
   "longitude" : "114.1759",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK",
   "port" : 4664,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 302,
   "subnet" : "20.192.0.0/10",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
52.229.205.241

Network
52.224.0.0/11

Device

<enterprise field>: device.class

URL

http://52.229.205.241:4664/ 302

HTTP Title
302 Found

ASN
AS8075

Organization
MICROSOFT-CORP-MSN-AS-BLOCK

Protocol
http

Source
urlscan::redirect
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fec523b9aa4f35bf1e9de0046045ced3

HTTP Header MD5
d7becab03a8905d978f0985d2d16182f

HTTP Body MD5
29b5f7615598c74df0019844c163d80c

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 07 Nov 2024 02:56:18 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: https://<ip>/
Strict-Transport-Security: max-age=31536000

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:56:20.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "29b5f7615598c74df0019844c163d80c",
         "bodymmh3" : -23674247,
         "headermd5" : "d7becab03a8905d978f0985d2d16182f",
         "headermmh3" : 1403538221,
         "title" : "302 Found"
      },
      "length" : 359
   },
   "asn" : "AS8075",
   "city" : "Hong Kong",
   "country" : "HK",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 02:56:18 GMT\r\nContent-Type: text/html\r\nContent-Length: 138\r\nConnection: close\r\nLocation: https://<ip>/\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n<html>\r\n<head><title>302 Found</title></head>\r\n<body>\r\n<center><h1>302 Found</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "fec523b9aa4f35bf1e9de0046045ced3",
   "datammh3" : 576449098,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "52.229.205.241",
   "geolocus" : {
      "asn" : "AS8075",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MSFT",
      "organization" : "Microsoft Corporation",
      "subnet" : "52.229.128.0/17"
   },
   "hostname" : [
      "52.229.205.241"
   ],
   "ip" : "52.229.205.241",
   "ipv6" : "false",
   "latitude" : "22.2842",
   "location" : "22.2842,114.1759",
   "longitude" : "114.1759",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK",
   "port" : 4664,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 302,
   "subnet" : "52.224.0.0/11",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
23.102.234.254

Network
23.102.0.0/16

Device

<enterprise field>: device.class

URL

http://23.102.234.254:4664/ 302

HTTP Title
302 Found

ASN
AS8075

Organization
MICROSOFT-CORP-MSN-AS-BLOCK

Protocol
http

Source
urlscan::redirect
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fec523b9aa4f35bf1e9de0046045ced3

HTTP Header MD5
d7becab03a8905d978f0985d2d16182f

HTTP Body MD5
29b5f7615598c74df0019844c163d80c

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 07 Nov 2024 02:55:48 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: https://<ip>/
Strict-Transport-Security: max-age=31536000

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:55:51.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "29b5f7615598c74df0019844c163d80c",
         "bodymmh3" : -23674247,
         "headermd5" : "d7becab03a8905d978f0985d2d16182f",
         "headermmh3" : 228269318,
         "title" : "302 Found"
      },
      "length" : 359
   },
   "asn" : "AS8075",
   "city" : "Hong Kong",
   "country" : "HK",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 02:55:48 GMT\r\nContent-Type: text/html\r\nContent-Length: 138\r\nConnection: close\r\nLocation: https://<ip>/\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n<html>\r\n<head><title>302 Found</title></head>\r\n<body>\r\n<center><h1>302 Found</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "fec523b9aa4f35bf1e9de0046045ced3",
   "datammh3" : 576449098,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "23.102.234.254",
   "geolocus" : {
      "asn" : "AS8075",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MSFT",
      "organization" : "Microsoft Corporation",
      "subnet" : "23.102.224.0/19"
   },
   "hostname" : [
      "23.102.234.254"
   ],
   "ip" : "23.102.234.254",
   "ipv6" : "false",
   "latitude" : "22.2842",
   "location" : "22.2842,114.1759",
   "longitude" : "114.1759",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK",
   "port" : 4664,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-07",
   "source" : "urlscan::redirect",
   "status" : 302,
   "subnet" : "23.102.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.79.199.206

Network
45.79.192.0/19

Domain(s)
linodeusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux sUse

URL

http://45.79.199.206:4664/ 200

HTTP Title
Mitiendaglobalco |

HTTP Keyword(s)
voip vos3000

HTTP Copyright
www.linknat.com, 昆石网络

Reverse DNS
45-79-199-206.ip.linodeusercontent.com

ASN
AS63949

Organization
Akamai Connected Cloud

Protocol
http

Source
datascan
Operating System
Linux Linux sUse

HTTP Component(s)
Microsoft ASP.NET 4.0.30319 Metabase Metabase Cacti Cacti Atlassian Confluence Gitlab Gitlab Drupal Drupal 8 Varnish-Cache Varnish Jenkins Jenkins 2.121.3 SPIP SPIP 4.1.11

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5cddceff0ecbd514fe8dccb5f421f0ff

HTTP Header MD5
88b66cd94ab4e9f7d312c22513a6c03f

HTTP Body MD5
0f08c723e399a22609214e26701a57fb

Favicon MD5
f0b15304c428a7b3bf477873593434ca

Favicon MMH3
143180903

HTTP/1.1 200 OK
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 105013
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Pragma: private
Server: miniupnpd/1.0 UPnP/1.0
Set-Cookie: akaunting_session=7b22; Path=/;
Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
Set-Cookie: did=A67B8F9C;
Set-Cookie: webvpnlogin=; path=/; secure;
Set-Cookie: X-Qlik-Session=35263a2bf; path=/;
Set-Cookie: webvpnaac=1; path=/; secure;
Set-Cookie: samlPreauthSessionHash=; path=/; secure;
Set-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;
Set-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;
Set-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax
Set-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/
Set-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;
Set-Cookie: SDPSESSIONID=AE7F18F5CE887FC885E5A1AE449D9AC1; Path=/; Secure; HttpOnly; SameSite=None;
Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
Set-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure
Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
Set-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly
Strict-Transport-Security: max-age=31536000
X-Amz-Cf-Id: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==
X-Aspnet-Version: 4.0.30319
X-Backside-Transport: FAIL FAIL
X-Cache: MISS from Hello
X-Cache-Lookup: MISS from Hello:8080
X-Cache-Miss-From: parking-74c5b8d946-dhmw5
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Fastly-Request-Id: ed15bdb8f4d9179ebe5b6b8441d6148a4a8e213f
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 8 (https://www.drupal.org)
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Pingback: https://example.com/xmlrpc.php
X-Powered-By: BoidCMS
X-Sorting-Hat-Podid: 80
X-Sorting-Hat-Shopid: 25693290577
X-Varnish: 336777937
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 01:54:38 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240e25==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>Mitiendaglobalco |</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZTI1PT0=
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared_Clean:          0 kB
Shared_Dirty:          0 kB
Private_Clean:         0 kB
Private_Dirty:        52 kB
Referenced:           52 kB
Anonymous:            52 kB
AnonHugePages:         0 kB
Swap:                  8 kB
KernelPageSize:        4 kB
MMUPageSize:           4 kB

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:49:16.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "drupal.org",
            "example.com",
            "micros-hosting.com"
         ],
         "file" : [
            "index.php",
            "dvrremoteap_x64.exe",
            "admin-ajax.php",
            "cloud_index.php",
            "dvfplayer.zip",
            "dvrremoteap.exe"
         ],
         "hostname" : [
            "example.com",
            "micros-hosting.com",
            "www.drupal.org"
         ],
         "ip" : [
            "192.168.1.1",
            "192.168.0.1",
            "1.0.0.36",
            "192.168.1.4",
            "7.7.31.1",
            "192.168.1.10"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4",
            "https://example.com/xmlrpc.php",
            "https://www.drupal.org"
         ]
      },
      "favicon" : {
         "image" : "SFRUUC8yIDIwMCANCmFjY2VwdC1yYW5nZXM6IGJ5dGVzDQphZ2U6IDIwODYxNjE1DQpjb250ZW50LXR5cGU6IGltYWdlL3ZuZC5taWNyb3NvZnQuaWNvbg0KZGF0ZTogU3VuLCAwNyBBdWcgMjAyMiAwNjoxOTowMCBHTVQNCmV0YWc6ICJLOExrczdCSnBhK3VuMTNHMlFwL3l3PT0iDQpleHBpcmVzOiBNb24sIDA3IEF1ZyAyMDIzIDA2OjE5OjAwIEdNVA0KbGFzdC1tb2RpZmllZDogVHVlLCAwNyBEZWMgMjAyMSAyMzowOTo0NSBHTVQNCnNlcnZlcjogRUNBY2MgKGxhYi83NzIxKQ0Kc3RyaWN0LXRyYW5zcG9ydC1zZWN1cml0eTogbWF4LWFnZT02MzExMzg1MTkNCnN1cnJvZ2F0ZS1rZXk6IHR3aXR0ZXItYXNzZXRzDQp0aW1pbmctYWxsb3ctb3JpZ2luOiBodHRwczovL3R3aXR0ZXIuY29tLCBodHRwczovL21vYmlsZS50d2l0dGVyLmNvbQ0KeC1jYWNoZTogSElUDQp4LWNvbm5lY3Rpb24taGFzaDogMmM1OGYzYTU4ODI0NzY1OGUyOGJlZGJkODdhZGRhOGMzNDIzNTU0ZGY2MzZmMDM3NjVjZGVmYmUyZjFiMjVmNQ0KeC1jb250ZW50LXR5cGUtb3B0aW9uczogbm9zbmlmZg0KeC1yZXNwb25zZS10aW1lOiA5DQp4LXRvbi1leHBlY3RlZC1zaXplOiA3MTkNCmNvbnRlbnQtbGVuZ3RoOiA3MTkNCg0KiVBORw0KGgoAAAANSUhEUgAAACAAAAAgCAYAAABzenr0AAAACXBIWXMAAAsTAAALEwEAmpwYAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAJkSURBVHgB7VZBbtpQEH3zIW0WVYuXVaH4Bs0NSk4AOUFhEarskhMknIDsqkKlcIT0BNAT1D1B3ZJK3dmVuirwp/MhVmzAxiagKBJv9+ePZ97M/JkxsMMODwzChlD84FWQp3MxeCDHAhiumB+MJrr1+8Ryw3p/9+H4DctfIPCq49Xlw8Kv99YlMuB19885gy/i7llziwGfFFWJyR02XzSCuwiBUse7BlFVaz5LS8KQVkRXaXRJsqImfDjKSZBNyzEyFWFKVJ4KFbWLElUao6KbSk8i9TXgTPaorxTskPwOxa7/9baGt4zg8oQbNyfWYJlRU0/KUx9ZwNwYNq1ecFRzl18QpW0bB0Ks//KjV1uwlbuLJA3GxEdh5wb5yGEPl3qMd2xecYQHKnlFlVLX95kxYCFKGg5IlU2a0uLpCM68LEJA+sJ/Dm6Jy3aMjQIRakRUm+UuvfOp/X34iQSejeFo0Hdx4optG5uFH/R+GHNvANcm3VtwLs+Lvy2TRwhIOnrYHhysIuDKcCDwGbYAjglOzQt+HssElF6dvoNNOZeuCSbfSgIGMjILMo4/ExZf7TqghNLmlwm1gpSC2tmaLAZMvWGz0Iu7XpqBm2NrQNN5cD+Y5ZOTdZyok3RZMusZOJUN+QZrQFb0oQkG6xIIYHe8A03Unx/Ryd6jS2ctAsbxmFRVynGKlM5na5ePVkUe0p+h9MmraS2zXqYgmSWjOPtElHbLTVB3Q79gqQlMScxqXpeav0UWiGMmXKSNOpZAAPvKs/U/1MRoxRxl+5WD+psUy2D5IdmRVoWjnqDnLlkyO+zwaPAf1zXwZL751PUAAAAASUVORK5CYII=",
         "imagemd5" : "f0b15304c428a7b3bf477873593434ca",
         "imagemmh3" : 143180903,
         "length" : 1340,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "0f08c723e399a22609214e26701a57fb",
         "bodymmh3" : -1648869248,
         "component" : [
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            },
            {
               "productvendor" : "Gitlab",
               "product" : "Gitlab"
            },
            {
               "product" : "Varnish",
               "productvendor" : "Varnish-Cache"
            },
            {
               "productvendor" : "SPIP",
               "productversion" : "4.1.11",
               "product" : "SPIP"
            },
            {
               "productvendor" : "Microsoft",
               "productversion" : "4.0.30319",
               "product" : "ASP.NET"
            },
            {
               "productvendor" : "Metabase",
               "product" : "Metabase"
            },
            {
               "product" : "Drupal",
               "productversion" : "8",
               "productvendor" : "Drupal"
            },
            {
               "product" : "Cacti",
               "productvendor" : "Cacti"
            },
            {
               "productvendor" : "Jenkins",
               "productversion" : "2.121.3",
               "product" : "Jenkins"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "88b66cd94ab4e9f7d312c22513a6c03f",
         "headermmh3" : 395417532,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "title" : "Mitiendaglobalco |"
      },
      "length" : 16297
   },
   "asn" : "AS63949",
   "city" : "Atlanta",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 105013\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nPragma: private\r\nServer: miniupnpd/1.0 UPnP/1.0\r\nSet-Cookie: akaunting_session=7b22; Path=/;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: did=A67B8F9C;\r\nSet-Cookie: webvpnlogin=; path=/; secure;\r\nSet-Cookie: X-Qlik-Session=35263a2bf; path=/;\r\nSet-Cookie: webvpnaac=1; path=/; secure;\r\nSet-Cookie: samlPreauthSessionHash=; path=/; secure;\r\nSet-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure;\r\nSet-Cookie: XXL_JOB_LOGIN_IDENTITY=7b226964223a312c227; Max-Age=2147483647; Expires=Fri, 14-Mar-2092 22:32:26 GMT; Path=/; HttpOnly;\r\nSet-Cookie: session820/qualitor820=2ek44merar6fo67l01hdr09u0l; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/\r\nSet-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;\r\nSet-Cookie: SDPSESSIONID=AE7F18F5CE887FC885E5A1AE449D9AC1; Path=/; Secure; HttpOnly; SameSite=None;\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: metabase.DEVICE=657aec21-0f2d-4aa8-9973-172d408c3ebf;HttpOnly;Path=/;Expires=Mon, 25 Apr 2044 03:55:44 +0200;SameSite=None;Secure\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: ISMS_8700_Sessionname=A67B8F9C228E095723A97C6A977BE2B3; Path=/; HttpOnly\r\nStrict-Transport-Security: max-age=31536000\r\nX-Amz-Cf-Id: CtsEH7KQ5yf2LQM4TNLiEjUavO2mWjwAez9sPj8Ws5MUdPUz2A==\r\nX-Aspnet-Version: 4.0.30319\r\nX-Backside-Transport: FAIL FAIL\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: MISS from Hello:8080\r\nX-Cache-Miss-From: parking-74c5b8d946-dhmw5\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Fastly-Request-Id: ed15bdb8f4d9179ebe5b6b8441d6148a4a8e213f\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Pingback: https://example.com/xmlrpc.php\r\nX-Powered-By: BoidCMS\r\nX-Sorting-Hat-Podid: 80\r\nX-Sorting-Hat-Shopid: 25693290577\r\nX-Varnish: 336777937\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 01:54:38 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e4cd78c639bf9be7f9dc240e25==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Mitiendaglobalco |</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGU0Y2Q3OGM2MzliZjliZTdmOWRjMjQwZTI1PT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:         0 kB\nSwap:                  8 kB\nKernelPageSize:        4 kB\nMMUPageSize:           4 kB\n",
   "datamd5" : "5cddceff0ecbd514fe8dccb5f421f0ff",
   "datammh3" : -1954814087,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "linodeusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS63949",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "akamai.com",
         "linode.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LINODE",
      "organization" : "Linode",
      "subnet" : "45.79.192.0/19"
   },
   "host" : [
      "45-79-199-206"
   ],
   "hostname" : [
      "45-79-199-206.ip.linodeusercontent.com"
   ],
   "ip" : "45.79.199.206",
   "ipv6" : "false",
   "latitude" : "33.7485",
   "location" : "33.7485,-84.3871",
   "longitude" : "-84.3871",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Akamai Connected Cloud",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "45-79-199-206.ip.linodeusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ip.linodeusercontent.com"
   ],
   "subnet" : "45.79.192.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
72.45.180.3

Network
72.45.128.0/18

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://72.45.180.3:4664/ 200

HTTP Title
WEB SERVICE

Reverse DNS
syn-072-045-180-003.biz.spectrum.com

ASN
AS11351

Organization
TWC-11351-NORTHEAST

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
be3b05585d24a190bbe320ee8f17d3f8

HTTP Header MD5
93af01d956bcdd11dc1f7b8f89f81e79

HTTP Body MD5
91622cfbb28143c7eba3b46a64a072be

Favicon MD5
bd9e17c46bbbc18af2a2bd718dddad0e

Favicon MMH3
2019488876

HTTP/1.1 200 OK
CONNECTION: keep-alive
Date: Wed, 06 Nov 2024 20:55:49 GMT
Last-Modified: Fri, 24 Jun 2022 06:07:20 GMT
Etag: "1656050840:4e82"
CONTENT-LENGTH: 20098
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html> <head> <title>WEB SERVICE</title> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=6;IE=7; IE=8; IE=EmulateIE7"> <script type="text/javascript" src="jsBase/lib/jquery.js"></script> <script type="text/javascript" src="debug/testPage.js"></script> <script type="text/javascript" src="jsBase/lib/jquery.pubsub.js"></script> <script type="text/javascript" src="jsBase/widget/js/jquery.ui.core.js"></script> <script type="text/javascript" src="jsBase/widget/js/jquery.ui.widget.js"></script> <script type="text/javascript" src="jsBase/widget/js/dui.colorpicker.js"></script> <script type="text/javascript">var $j = jQuery.noConflict();</script> <script type="text/javascript" src="jsBase/lib/base64.js"></script> <script type="text/javascript" src="jsBase/lib/md5.js"></script> <script type="text/javascript" src="jsBase/lib/m1.2.js"></script> <script type="text/javascript" src="jsBase/lib/more.js"></script> <script type="text/javascript" src="jsBase/common/extend.js"></script> <script type="text/javascript" src="jsCore/rpcCore.js"></script> <script type="text/javascript" src="jsBase/lib/sea.js"></script> <script type="text/javascript" src="jsBase/lib/seajs-text.js"></script> <script type="text/javascript" src="jsCore/common.js"></script> <script type="text/javascript" src="js/publicFunc.js"></script> <script type="text/javascript" src="js/system.js"></script> <script type="text/javascript" src="js/loginEx.js"></script> <script type="text/javascript" src="/pluginVersion.js"></script> <script type="text/javascript" src="js/eventScript.js"></script> <script type="text/javascript" src="Component/dui.pwdlevel.js"></script> <script type="text/javascript" src="jsBase/widget/js/dui.guide.js"></script> <script type="text/javascript" src="jsBase/widget/js/dui.textfield.js"></script> <script type="text/javascript">var g_NaclWin = null;
    var g_useApp = window.location.href.indexOf('fromWebChromeNACL') > 0;
    var g_deviceFind = ''; // which way is device support to find password ?
    var g_isDeviceInited = true; // whether device has been initialized ?
    try {
        window.addEventListener('message', function (e) {
            console.log('webview: ' + e.data)
            // console.log(e.origin)
            // console.log(e.source)
            if (e.data == 'domready') {
                g_NaclWin = e.source;
                window.alert = webViewAlert;
                var frames = window.frames;
                for(var i = 0;i < frames.length;i++){
                    frames[i].alert = webViewAlert;
                }
                console.log('send back')
                e.source.postMessage('domready', '*');               
                if(g_ocx) g_ocx.SetTranslateString(jsonLang);
                return;
            }

            // console.log(e.data.method)
            if (typeof window[e.data.method] == 'function') {
                window[e.data.method].apply(this, e.data.params);
            } else {
                g_ocx.messageFromOcx(e.data);
            }
        }, false);
    } catch (e) {

    }
    
    var g_ocx = 0;
    var webcapDefer = jQuery.Deferred();
    seajs.config({
        base: './jsBase',
        paths: {
            'jsCore': '/jsCore',
            'jsBase': '/jsBase',
            'html': '/html',
            'js': '/js',
            'tran': '/transaction',
            'component': '/Component',
            'lib': '/jsBase/lib'
        },
        alias: {
            'm-rpc': 'jsCore/rpc',
            'm-plugin': 'jsCore/plugin',
            'm-pageBase': 'js/pageBase',
            'm-ability': 'jsCore/ability'
        }
    });

    seajs.use('/jsCore/app', function (App) {
        window.webApp = new App();
        if(g_NaclWin) g_ocx.SetTranslateString(jsonLang);
        webApp.getWebCapAll().done(function(){
            /*seajs.use('/Component/deviceInitial', function(){

            });*/
            webcapDefer.resolve();
        });
        jQuery(document).ready(function() {
            RPC.DevInit.getStatus().done(function(status){
                if(status.Init == 1) { //uninitialized
                    seajs.use('/Component/deviceInitial_Cayenne', function(DeviceInit){
                        DeviceInit.setDevInitStatus(status, status.Find);
                    });        
                }
                g_deviceFind = status.Find.indexOf('A') > -1 ? 'A': 'B';
                g_isDeviceInited = (status.Init == 1 ? false : true);
            });
        });
        webApp.preloadModule();
    });
    webApp = window.webApp;</script> <script type="text/javascript" src="js/index.js"></script> <script type="text/javascript" src="/olp.js"></script> <script type="text/javascript" src="cap.js"></script>  <script type="text/javascript" src="js/appAbility.js"></script> <script type="text/javascript" src="/js/pluginAdaptor.js"></script> <link href="favicon.ico" type="image/x-icon" rel="shortcut icon"> <link rel="stylesheet" type="text/css" href="/jsBase/widget/css/ui.css"> <link rel="stylesheet" type="text/css" href="/jsBase/widget/css/skin.css"> <link rel="stylesheet" type="text/css" href="/jsBase/widget/css/colorpicker.css"> <link rel="stylesheet" type="text/css" href="./css/setup.css"> <link rel="stylesheet" type="text/css" href="./css/reset.css"> <link rel="stylesheet" type="text/css" href="./css/ui.css"> <link type="text/css" rel="stylesheet" href="./css/custom.css"> <link rel="stylesheet" type="text/css" href="./css/fn.css"> <link rel="stylesheet" type="text/css" href="./css/skin.css"> <link rel="stylesheet" type="text/css" href="./css/index.css"> <link rel="stylesheet" type="text/css" href="./css/playbackindex.css"> <link rel="stylesheet" type="text/css" href="./css/oem.css"> </head> <body id="indexBody" onscroll="onScrollForNacl(true);$('nav_margin').style.visibility = 'hidden'; $('nav_margin').style.visibility = 'visible'">  <div id="loading" class="J_load_dialog"> <p id="lab_loading" class="J_load_p" t="com_msg.loading activex"></p> </div>   <div id="l" class="login" style="display:none"> <div class="loginbkg"> <div class="login-container"> <div class="login-content"> <div class="login-logo" id="index_logo"></div> <div class="login-inputbox fn-clear"> <form> <div class="login-input-item"> <label class="login-input-title oem_user_lable" t="com_str.username+: ">username</label> <input type="text" id="username" class="ui-input fn-width163 oem_user" onkeydown="if (event.keyCode==13) event.keyCode=9" maxlength="31"> <a t="com_str.login" class="ui-button fn-width80" onclick="login()" href="javascript:;" id="oem_login_id" style="margin-left:20px; display:none">login</a> </div> <div class="login-input-item" style="width:550px"> <label class="login-input-title" id="paswd" t="com_str.password+: ">password</label> <span style="display:none"> <input type="password" autocomplete="off"> </span> <span id="passwordInput"> <input id="password" type="password" class="ui-input fn-width163 oem_pass" onkeydown="if (event.keyCode==13) login()" maxlength="32" autocomplete="new-password"> </span> <div class="ui-checkbox oem_loginShowPass" id="pswExpress_div" style="display:none"> <input type="checkbox" id="login_showpwd" onclick="showpassword()"> </div> <label class="ui-label-sub" t="com_str.plaintext" id="pswExpress_lab" style="display:none">showPass</label> <a t="com_button.comcanncel" class="ui-button fn-width80" onclick="$('password').value=''" href="javascript:;" id="oem_reset_id" style="margin-left:20px; display:none">reset</a> </div> <div class="login-input-item oem_ul_ltype" id="ul_ltype" style="display:none"> <label class="login-input-title" t="info_log.allTypes+: ">type:</label> <select class="fn-width169 oem_ltype ui-input" id="s_lgType"> <option value="0">TCP</option> <option value="4">UDP</option> <option t="conf_net.gui32_muticastset" value="3">multicast</option> </select> </div> <div class="login_forgetPwd" id="login_forgetPwd_div"> <a class="ui-label" id="forgettPwd" t="com_str.forgetsecret+?" href="javascript:;" style="display: none"></a> </div> <div class="login-input-item fn-padl190" id="ul_type" style="display:none"> <div class="ui-checkbox"><input id="net_lan" name="wtype" checked="checked" type="radio"></div> <label class="ui-label-sub" for="net_lan">LAN</label> <div class="ui-checkbox"><input id="net_wan" name="wtype" type="radio"></div> <label class="ui-label-sub" for="net_wan">WAN</label> </div> <div class="ui-button-box login-btnbox" id="ul_login_or_reset"> <a t="com_str.login" class="ui-button fn-width80 oem_loginCfm" onclick="login()" href="javascript:;">Login</a> <a t="com_button.comcanncel" class="ui-button fn-width80 oem_loginCancle" onclick="$('password').value=''" href="javascript:;">reset</a> </div> </form> </div> </div>  <div id="dlg_ModAdminPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="modadmin_title">Modify Admin Password</h1> </div> <div class="ui-dialog-content"> <form> <div id="dlg_ModAdminPassword_lorex_msg" style="display:none;text-align:left;margin:5px;color:red"><span t="conf_account.passTip"></span></div> <div class="ui-form-item fn-clear"> <label t="com_str.username" class="ui-label fn-padl20">UerName</label> <input id="dlg_ModAdmin_usr" class="ui-input" value="admin" disabled="true"> </div> <div> <div class="ui-form-item fn-clear" id="oldPassword_div" style="display:none"> <label t="conf_account.oldpwd" class="ui-label fn-padl20">Old Password</label> <input class="ui-input" type="password" id="modadmin_oldPassword"> </div> <div class="ui-form-item fn-clear"> <label t="conf_account.newpwd" class="ui-label fn-padl20">New Password</label> <input class="ui-input" type="password" id="modadmin_newPassword"> <span class="ui-form-tip" id="modadmin_newPassword_remark" valign="middle"></span> </div> <div id="modadminPasswordLevel" class="fn-clear fn-marl140 fn-mart4 fn-marb4"> </div> <div class="ui-form-item fn-clear"> <label t="conf_account.confirmpwd" class="ui-label fn-padl20">Confirm Password</label> <input class="ui-input" type="password" id="modadmin_confirmPassword"> </div> </div> <div class="ui-form-item fn-clear" id="ipsanuserManage_diaModUser_username_title"> <label id="modadmin_security_tipsinfo" class="ui-label fn-width450"></label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_admin_change" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_admin_skip" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> <div class="ui-tip"> <div class="ui-tip-container" id="modadmin_remark"> <span class="ui-tip-icon"></span> <label></label> </div> </div> </form> </div> </div> <div id="dlg_weakPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="weakPassword_title">Cancel Modify Admin Password Tip</h1> </div> <div class="ui-dialog-content"> <form> <div class="ui-form-item fn-clear"> <label t="conf_account.weak_password_tips" class="ui-label fn-padl20 fn-width410">Tip</label> </div> <div class="ui-form-item fn-clear"> <div class="fn-horizontal-line"></div> </div> <div class="ui-form-item fn-clear" style="display:none"> <div class="ui-checkbox fn-padl20"> <input type="checkbox" id="weakPassword_enable"> </div> <label t="conf_account.never_show_this" for="weakPassword_enable" class="ui-label fn-width370">Never Show This</label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_weakPassword_yes" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_weakPassword_cancel" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> </form> </div> </div> <div id="dlg_emptyPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="emptyPassword_title">Admin Password Is Empty</h1> </div> <div class="ui-dialog-content"> <form> <div class="ui-form-item fn-clear"> <label t="com_msg.ugm.newpwdnull" class="ui-label fn-padl20 fn-width450">Tip</label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_emptyPassword_yes" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_emptyPassword_cancel" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> </form> </div> </div> </div> </div> </div>  <div id="login_install_dialog" class="login-webplugin" style="display:none"> <div class="ui-dialog-container" style="margin:auto"> <div t="com_msg.needActivex" style="font-size:200%" class="ui-dialog-content"> please install plugin </div> <div class="ui-button-box fn-padt20"> <a id="login_btn_install" class="ui-button" href="/LOREX_webplugin.exe" target="_download" t="com_str.install">install</a> <a id="login_btn_cancel" class="ui-button" href="javascript:;" t="com_button.comcanncel">cancle</a> </div> </div> </div> <div id="m" class="main-container"> <div class="main-head" id="nav_head"> <div class="main-logo" id="sub_logo"></div> <ul class="main-nav" id="nav"> <li id="b_a"> <a onclick="showPage('preview')" id="xyl" t="com_menu.title_preview;title::com_menu.title_preview" href="javascript:;" class="main-nav-item main-nav-item-current fn-text-overflow">preview</a> </li> <li id="b_ab"> <a onclick="showPage('playback')" id="xlxcx" t="com_menu.title_playback;title::com_menu.title_playback" href="javascript:;" class="main-nav-item fn-text-overflow">playback</a> </li> <li id="b_face" style="display:none"> <a onclick="showPage('faceSch')" t="facesearch;title::facesearch" href="javascript:;" class="main-nav-item fn-text-overflow"></a> </li> <li id="b_ac" style="display:none"> <a onclick="showPage('intelPlay')" id="xznhf" t="opr_record.aiplay;title::opr_record.aiplay" href="javascript:;" class="main-nav-item fn-text-overflow">intel</a> </li> <li id="b_d"> <a onclick="showPage('alarm')" id="xbjsz" t="com_menu.title_alarm;title::com_menu.title_alarm" href="javascript:;" class="main-nav-item fn-text-overflow">alarm</a> <div onclick="showPage('alarm')" class="main-nav-alarm" id="d_alarmtip" style="display:none"></div> </li> <li id="b_c"> <a onclick="showPage('setup')" id="xxtpz" t="com_menu.title_setup;title::com_menu.title_setup" href="javascript:;" class="main-nav-item fn-text-overflow">set</a> </li> <li id="b_x"> <a onclick="showPage('sysinfo')" id="xxinxi" t="com_str.info;title::com_str.info" href="javascript:;" class="main-nav-item fn-text-overflow">info</a> </li> <li id="b_e"> <a onclick="webLogout()" t="com_menu.logout;title::com_menu.logout" href="javascript:;" class="main-nav-item fn-text-overflow">exit</a> </li> </ul> </div> <div id="nav_margin" style="height:13px;width:100%"></div> <div id="f_preview" class="pre-minwidth pos_abs oem_background"> <iframe src="" id="frame_preview" width="100%" height="100%" frameborder="0" scrolling="no" name="frame_preview" allowtransparency="true"></iframe> </div> <div id="f_playback" class="pre-minwidth pos_abs oem_background" style="top: -10000px">  </div> <div id="faceSch" class="pre-minwidth pos_abs"> <div class="frame_content"> <div id="faceSch-content" class="set-content-box"></div> </div> </div> <div id="f_alarm" class="pre-minwidth pos_abs oem_background" style=""> <iframe src="" id="frame_alarm" width="100%" frameborder="0" scrolling="no" allowtransparency="true" style="min-width:1000px; min-height:530px;height:100%" name="frame_alarm"></iframe> </div> <div id="setup" class="pre-minwidth pos_abs oem_background"> <div class="set-sidebar"> <ul id="setup-menu"></ul> </div> <div class="set-content"> <div id="setup-content" class="set-content-box"></div> </div> </div> <div id="info" class="pre-minwidth pos_abs oem_background"> <div class="set-sidebar"> <ul id="info-menu"></ul> </div> <div class="set-content"> <div id="info-content" class="set-content-box"></div> </div> </div> <div id="f_ocx" class="main-ocx" style="z-index:10"></div> </div> <div id="estopAll" style="display:none" class="estopAll"></div>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:47:11.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "file" : [
            "lorex_webplugin.exe"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "favicon" : {
         "image" : "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",
         "imagemd5" : "bd9e17c46bbbc18af2a2bd718dddad0e",
         "imagemmh3" : 2019488876,
         "length" : 1150,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "91622cfbb28143c7eba3b46a64a072be",
         "bodymmh3" : 1608959654,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 24 Jun 2022 06:07:20 GMT"
            },
            {
               "name" : "Etag",
               "value" : "1656050840:4e82"
            }
         ],
         "headermd5" : "93af01d956bcdd11dc1f7b8f89f81e79",
         "headermmh3" : 1161051045,
         "title" : "WEB SERVICE"
      },
      "length" : 16384
   },
   "asn" : "AS11351",
   "city" : "Geneva",
   "country" : "US",
   "data" : "HTTP/1.1 200 OK\r\nCONNECTION: keep-alive\r\nDate: Wed, 06 Nov 2024 20:55:49 GMT\r\nLast-Modified: Fri, 24 Jun 2022 06:07:20 GMT\r\nEtag: \"1656050840:4e82\"\r\nCONTENT-LENGTH: 20098\r\nP3P: CP=CAO PSA OUR\r\nX-Frame-Options: SAMEORIGIN\r\nCONTENT-TYPE: text/html\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\"> <html> <head> <title>WEB SERVICE</title> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"> <meta http-equiv=\"X-UA-Compatible\" content=\"IE=6;IE=7; IE=8; IE=EmulateIE7\"> <script type=\"text/javascript\" src=\"jsBase/lib/jquery.js\"></script> <script type=\"text/javascript\" src=\"debug/testPage.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/jquery.pubsub.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/jquery.ui.core.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/jquery.ui.widget.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/dui.colorpicker.js\"></script> <script type=\"text/javascript\">var $j = jQuery.noConflict();</script> <script type=\"text/javascript\" src=\"jsBase/lib/base64.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/md5.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/m1.2.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/more.js\"></script> <script type=\"text/javascript\" src=\"jsBase/common/extend.js\"></script> <script type=\"text/javascript\" src=\"jsCore/rpcCore.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/sea.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/seajs-text.js\"></script> <script type=\"text/javascript\" src=\"jsCore/common.js\"></script> <script type=\"text/javascript\" src=\"js/publicFunc.js\"></script> <script type=\"text/javascript\" src=\"js/system.js\"></script> <script type=\"text/javascript\" src=\"js/loginEx.js\"></script> <script type=\"text/javascript\" src=\"/pluginVersion.js\"></script> <script type=\"text/javascript\" src=\"js/eventScript.js\"></script> <script type=\"text/javascript\" src=\"Component/dui.pwdlevel.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/dui.guide.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/dui.textfield.js\"></script> <script type=\"text/javascript\">var g_NaclWin = null;\r\n    var g_useApp = window.location.href.indexOf('fromWebChromeNACL') > 0;\r\n    var g_deviceFind = ''; // which way is device support to find password ?\r\n    var g_isDeviceInited = true; // whether device has been initialized ?\r\n    try {\r\n        window.addEventListener('message', function (e) {\r\n            console.log('webview: ' + e.data)\r\n            // console.log(e.origin)\r\n            // console.log(e.source)\r\n            if (e.data == 'domready') {\r\n                g_NaclWin = e.source;\r\n                window.alert = webViewAlert;\r\n                var frames = window.frames;\r\n                for(var i = 0;i < frames.length;i++){\r\n                    frames[i].alert = webViewAlert;\r\n                }\r\n                console.log('send back')\r\n                e.source.postMessage('domready', '*');               \r\n                if(g_ocx) g_ocx.SetTranslateString(jsonLang);\r\n                return;\r\n            }\r\n\r\n            // console.log(e.data.method)\r\n            if (typeof window[e.data.method] == 'function') {\r\n                window[e.data.method].apply(this, e.data.params);\r\n            } else {\r\n                g_ocx.messageFromOcx(e.data);\r\n            }\r\n        }, false);\r\n    } catch (e) {\r\n\r\n    }\r\n    \r\n    var g_ocx = 0;\r\n    var webcapDefer = jQuery.Deferred();\r\n    seajs.config({\r\n        base: './jsBase',\r\n        paths: {\r\n            'jsCore': '/jsCore',\r\n            'jsBase': '/jsBase',\r\n            'html': '/html',\r\n            'js': '/js',\r\n            'tran': '/transaction',\r\n            'component': '/Component',\r\n            'lib': '/jsBase/lib'\r\n        },\r\n        alias: {\r\n            'm-rpc': 'jsCore/rpc',\r\n            'm-plugin': 'jsCore/plugin',\r\n            'm-pageBase': 'js/pageBase',\r\n            'm-ability': 'jsCore/ability'\r\n        }\r\n    });\r\n\r\n    seajs.use('/jsCore/app', function (App) {\r\n        window.webApp = new App();\r\n        if(g_NaclWin) g_ocx.SetTranslateString(jsonLang);\r\n        webApp.getWebCapAll().done(function(){\r\n            /*seajs.use('/Component/deviceInitial', function(){\r\n\r\n            });*/\r\n            webcapDefer.resolve();\r\n        });\r\n        jQuery(document).ready(function() {\r\n            RPC.DevInit.getStatus().done(function(status){\r\n                if(status.Init == 1) { //uninitialized\r\n                    seajs.use('/Component/deviceInitial_Cayenne', function(DeviceInit){\r\n                        DeviceInit.setDevInitStatus(status, status.Find);\r\n                    });        \r\n                }\r\n                g_deviceFind = status.Find.indexOf('A') > -1 ? 'A': 'B';\r\n                g_isDeviceInited = (status.Init == 1 ? false : true);\r\n            });\r\n        });\r\n        webApp.preloadModule();\r\n    });\r\n    webApp = window.webApp;</script> <script type=\"text/javascript\" src=\"js/index.js\"></script> <script type=\"text/javascript\" src=\"/olp.js\"></script> <script type=\"text/javascript\" src=\"cap.js\"></script>  <script type=\"text/javascript\" src=\"js/appAbility.js\"></script> <script type=\"text/javascript\" src=\"/js/pluginAdaptor.js\"></script> <link href=\"favicon.ico\" type=\"image/x-icon\" rel=\"shortcut icon\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"/jsBase/widget/css/ui.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"/jsBase/widget/css/skin.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"/jsBase/widget/css/colorpicker.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/setup.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/reset.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/ui.css\"> <link type=\"text/css\" rel=\"stylesheet\" href=\"./css/custom.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/fn.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/skin.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/index.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/playbackindex.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/oem.css\"> </head> <body id=\"indexBody\" onscroll=\"onScrollForNacl(true);$('nav_margin').style.visibility = 'hidden'; $('nav_margin').style.visibility = 'visible'\">  <div id=\"loading\" class=\"J_load_dialog\"> <p id=\"lab_loading\" class=\"J_load_p\" t=\"com_msg.loading activex\"></p> </div>   <div id=\"l\" class=\"login\" style=\"display:none\"> <div class=\"loginbkg\"> <div class=\"login-container\"> <div class=\"login-content\"> <div class=\"login-logo\" id=\"index_logo\"></div> <div class=\"login-inputbox fn-clear\"> <form> <div class=\"login-input-item\"> <label class=\"login-input-title oem_user_lable\" t=\"com_str.username+: \">username</label> <input type=\"text\" id=\"username\" class=\"ui-input fn-width163 oem_user\" onkeydown=\"if (event.keyCode==13) event.keyCode=9\" maxlength=\"31\"> <a t=\"com_str.login\" class=\"ui-button fn-width80\" onclick=\"login()\" href=\"javascript:;\" id=\"oem_login_id\" style=\"margin-left:20px; display:none\">login</a> </div> <div class=\"login-input-item\" style=\"width:550px\"> <label class=\"login-input-title\" id=\"paswd\" t=\"com_str.password+: \">password</label> <span style=\"display:none\"> <input type=\"password\" autocomplete=\"off\"> </span> <span id=\"passwordInput\"> <input id=\"password\" type=\"password\" class=\"ui-input fn-width163 oem_pass\" onkeydown=\"if (event.keyCode==13) login()\" maxlength=\"32\" autocomplete=\"new-password\"> </span> <div class=\"ui-checkbox oem_loginShowPass\" id=\"pswExpress_div\" style=\"display:none\"> <input type=\"checkbox\" id=\"login_showpwd\" onclick=\"showpassword()\"> </div> <label class=\"ui-label-sub\" t=\"com_str.plaintext\" id=\"pswExpress_lab\" style=\"display:none\">showPass</label> <a t=\"com_button.comcanncel\" class=\"ui-button fn-width80\" onclick=\"$('password').value=''\" href=\"javascript:;\" id=\"oem_reset_id\" style=\"margin-left:20px; display:none\">reset</a> </div> <div class=\"login-input-item oem_ul_ltype\" id=\"ul_ltype\" style=\"display:none\"> <label class=\"login-input-title\" t=\"info_log.allTypes+: \">type:</label> <select class=\"fn-width169 oem_ltype ui-input\" id=\"s_lgType\"> <option value=\"0\">TCP</option> <option value=\"4\">UDP</option> <option t=\"conf_net.gui32_muticastset\" value=\"3\">multicast</option> </select> </div> <div class=\"login_forgetPwd\" id=\"login_forgetPwd_div\"> <a class=\"ui-label\" id=\"forgettPwd\" t=\"com_str.forgetsecret+?\" href=\"javascript:;\" style=\"display: none\"></a> </div> <div class=\"login-input-item fn-padl190\" id=\"ul_type\" style=\"display:none\"> <div class=\"ui-checkbox\"><input id=\"net_lan\" name=\"wtype\" checked=\"checked\" type=\"radio\"></div> <label class=\"ui-label-sub\" for=\"net_lan\">LAN</label> <div class=\"ui-checkbox\"><input id=\"net_wan\" name=\"wtype\" type=\"radio\"></div> <label class=\"ui-label-sub\" for=\"net_wan\">WAN</label> </div> <div class=\"ui-button-box login-btnbox\" id=\"ul_login_or_reset\"> <a t=\"com_str.login\" class=\"ui-button fn-width80 oem_loginCfm\" onclick=\"login()\" href=\"javascript:;\">Login</a> <a t=\"com_button.comcanncel\" class=\"ui-button fn-width80 oem_loginCancle\" onclick=\"$('password').value=''\" href=\"javascript:;\">reset</a> </div> </form> </div> </div>  <div id=\"dlg_ModAdminPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"modadmin_title\">Modify Admin Password</h1> </div> <div class=\"ui-dialog-content\"> <form> <div id=\"dlg_ModAdminPassword_lorex_msg\" style=\"display:none;text-align:left;margin:5px;color:red\"><span t=\"conf_account.passTip\"></span></div> <div class=\"ui-form-item fn-clear\"> <label t=\"com_str.username\" class=\"ui-label fn-padl20\">UerName</label> <input id=\"dlg_ModAdmin_usr\" class=\"ui-input\" value=\"admin\" disabled=\"true\"> </div> <div> <div class=\"ui-form-item fn-clear\" id=\"oldPassword_div\" style=\"display:none\"> <label t=\"conf_account.oldpwd\" class=\"ui-label fn-padl20\">Old Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_oldPassword\"> </div> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.newpwd\" class=\"ui-label fn-padl20\">New Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_newPassword\"> <span class=\"ui-form-tip\" id=\"modadmin_newPassword_remark\" valign=\"middle\"></span> </div> <div id=\"modadminPasswordLevel\" class=\"fn-clear fn-marl140 fn-mart4 fn-marb4\"> </div> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.confirmpwd\" class=\"ui-label fn-padl20\">Confirm Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_confirmPassword\"> </div> </div> <div class=\"ui-form-item fn-clear\" id=\"ipsanuserManage_diaModUser_username_title\"> <label id=\"modadmin_security_tipsinfo\" class=\"ui-label fn-width450\"></label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_admin_change\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_admin_skip\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> <div class=\"ui-tip\"> <div class=\"ui-tip-container\" id=\"modadmin_remark\"> <span class=\"ui-tip-icon\"></span> <label></label> </div> </div> </form> </div> </div> <div id=\"dlg_weakPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"weakPassword_title\">Cancel Modify Admin Password Tip</h1> </div> <div class=\"ui-dialog-content\"> <form> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.weak_password_tips\" class=\"ui-label fn-padl20 fn-width410\">Tip</label> </div> <div class=\"ui-form-item fn-clear\"> <div class=\"fn-horizontal-line\"></div> </div> <div class=\"ui-form-item fn-clear\" style=\"display:none\"> <div class=\"ui-checkbox fn-padl20\"> <input type=\"checkbox\" id=\"weakPassword_enable\"> </div> <label t=\"conf_account.never_show_this\" for=\"weakPassword_enable\" class=\"ui-label fn-width370\">Never Show This</label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_weakPassword_yes\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_weakPassword_cancel\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> </form> </div> </div> <div id=\"dlg_emptyPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"emptyPassword_title\">Admin Password Is Empty</h1> </div> <div class=\"ui-dialog-content\"> <form> <div class=\"ui-form-item fn-clear\"> <label t=\"com_msg.ugm.newpwdnull\" class=\"ui-label fn-padl20 fn-width450\">Tip</label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_emptyPassword_yes\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_emptyPassword_cancel\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> </form> </div> </div> </div> </div> </div>  <div id=\"login_install_dialog\" class=\"login-webplugin\" style=\"display:none\"> <div class=\"ui-dialog-container\" style=\"margin:auto\"> <div t=\"com_msg.needActivex\" style=\"font-size:200%\" class=\"ui-dialog-content\"> please install plugin </div> <div class=\"ui-button-box fn-padt20\"> <a id=\"login_btn_install\" class=\"ui-button\" href=\"/LOREX_webplugin.exe\" target=\"_download\" t=\"com_str.install\">install</a> <a id=\"login_btn_cancel\" class=\"ui-button\" href=\"javascript:;\" t=\"com_button.comcanncel\">cancle</a> </div> </div> </div> <div id=\"m\" class=\"main-container\"> <div class=\"main-head\" id=\"nav_head\"> <div class=\"main-logo\" id=\"sub_logo\"></div> <ul class=\"main-nav\" id=\"nav\"> <li id=\"b_a\"> <a onclick=\"showPage('preview')\" id=\"xyl\" t=\"com_menu.title_preview;title::com_menu.title_preview\" href=\"javascript:;\" class=\"main-nav-item main-nav-item-current fn-text-overflow\">preview</a> </li> <li id=\"b_ab\"> <a onclick=\"showPage('playback')\" id=\"xlxcx\" t=\"com_menu.title_playback;title::com_menu.title_playback\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">playback</a> </li> <li id=\"b_face\" style=\"display:none\"> <a onclick=\"showPage('faceSch')\" t=\"facesearch;title::facesearch\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\"></a> </li> <li id=\"b_ac\" style=\"display:none\"> <a onclick=\"showPage('intelPlay')\" id=\"xznhf\" t=\"opr_record.aiplay;title::opr_record.aiplay\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">intel</a> </li> <li id=\"b_d\"> <a onclick=\"showPage('alarm')\" id=\"xbjsz\" t=\"com_menu.title_alarm;title::com_menu.title_alarm\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">alarm</a> <div onclick=\"showPage('alarm')\" class=\"main-nav-alarm\" id=\"d_alarmtip\" style=\"display:none\"></div> </li> <li id=\"b_c\"> <a onclick=\"showPage('setup')\" id=\"xxtpz\" t=\"com_menu.title_setup;title::com_menu.title_setup\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">set</a> </li> <li id=\"b_x\"> <a onclick=\"showPage('sysinfo')\" id=\"xxinxi\" t=\"com_str.info;title::com_str.info\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">info</a> </li> <li id=\"b_e\"> <a onclick=\"webLogout()\" t=\"com_menu.logout;title::com_menu.logout\" href=\"javascript:;\" class=\"main-nav-item fn-text-overflow\">exit</a> </li> </ul> </div> <div id=\"nav_margin\" style=\"height:13px;width:100%\"></div> <div id=\"f_preview\" class=\"pre-minwidth pos_abs oem_background\"> <iframe src=\"\" id=\"frame_preview\" width=\"100%\" height=\"100%\" frameborder=\"0\" scrolling=\"no\" name=\"frame_preview\" allowtransparency=\"true\"></iframe> </div> <div id=\"f_playback\" class=\"pre-minwidth pos_abs oem_background\" style=\"top: -10000px\">  </div> <div id=\"faceSch\" class=\"pre-minwidth pos_abs\"> <div class=\"frame_content\"> <div id=\"faceSch-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"f_alarm\" class=\"pre-minwidth pos_abs oem_background\" style=\"\"> <iframe src=\"\" id=\"frame_alarm\" width=\"100%\" frameborder=\"0\" scrolling=\"no\" allowtransparency=\"true\" style=\"min-width:1000px; min-height:530px;height:100%\" name=\"frame_alarm\"></iframe> </div> <div id=\"setup\" class=\"pre-minwidth pos_abs oem_background\"> <div class=\"set-sidebar\"> <ul id=\"setup-menu\"></ul> </div> <div class=\"set-content\"> <div id=\"setup-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"info\" class=\"pre-minwidth pos_abs oem_background\"> <div class=\"set-sidebar\"> <ul id=\"info-menu\"></ul> </div> <div class=\"set-content\"> <div id=\"info-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"f_ocx\" class=\"main-ocx\" style=\"z-index:10\"></div> </div> <div id=\"estopAll\" style=\"display:none\" class=\"estopAll\"></div> ",
   "datamd5" : "be3b05585d24a190bbe320ee8f17d3f8",
   "datammh3" : 177313284,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS11351",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-72-45-128-0-1",
      "organization" : "Charter Communications Inc",
      "subnet" : "72.45.128.0/18"
   },
   "host" : [
      "syn-072-045-180-003"
   ],
   "hostname" : [
      "syn-072-045-180-003.biz.spectrum.com"
   ],
   "ip" : "72.45.180.3",
   "ipv6" : "false",
   "latitude" : "42.8608",
   "location" : "42.8608,-76.9915",
   "longitude" : "-76.9915",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-11351-NORTHEAST",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4664,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "syn-072-045-180-003.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "72.45.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 11,678 in 0.053 second(s)

168.138.138.76:4664 (tcp/http) - last seen on 2024-11-07 at 03:20:48 UTC

145.116.56.3:4664 (tcp/http) - last seen on 2024-11-07 at 03:09:48 UTC

67.52.16.163:4664 (tcp/http) - last seen on 2024-11-07 at 03:07:04 UTC

136.41.5.67:4664 (tcp/http) - last seen on 2024-11-07 at 03:05:49 UTC

47.50.95.148:4664 (tcp/http) - last seen on 2024-11-07 at 03:05:12 UTC

20.255.97.186:4664 (tcp/http) - last seen on 2024-11-07 at 03:02:43 UTC

52.229.205.241:4664 (tcp/http) - last seen on 2024-11-07 at 02:56:20 UTC

23.102.234.254:4664 (tcp/http) - last seen on 2024-11-07 at 02:55:51 UTC

45.79.199.206:4664 (tcp/http) - last seen on 2024-11-07 at 02:49:16 UTC

72.45.180.3:4664 (tcp/http) - last seen on 2024-11-07 at 02:47:11 UTC