HTTP/1.1 200 OK
Server: Winflector 4.0.0.1
Date: Thu, 21 November 2024 16:49:03 GMT
Cache-Control: no-cache
Connection: close
Set-Cookie: showdomain=0; path=/;
Last-Modified: Tue, 16 June 2020 09:55:00 GMT
Content-Type: text/html
<!DOCTYPE html>
<html lang="en">
<head>
<LINK href="style.css" type=text/css rel=StyleSheet />
<LINK rel="shortcut icon" type="image/vnd.microsoft.icon" href="favicon.ico?v2" />
<TITLE>Ecoflector Terminal Server - login page</TITLE>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
</head>
<body onload="customize_domain();">
<div id="wrapper_top_bg">
<div id="top">
<table class="lng_flags">
<tr>
<td class="left_top"><img src="ecoflector.png" alt="Ecoflector Terminal Server" /></td>
</tr>
</table>
</div>
</div>
<div id="wrapper_motto">
<div id="motto">
<h2 class="motto_tekst"><font color=#FFB000>Remote access</font> to Windows applications<br><font color=#FFB000>Ecoflector</font> terminal software</h2>
</div>
</div>
<script>
function customize_domain() {
var cookies = document.cookie;
var sd_index = cookies.indexOf("showdomain=");
var elem;
while (sd_index >= 0) {
var ch;
if (sd_index > 0)
ch = cookies.charAt(sd_index - 1);
if (sd_index == 0 || ch == ' ' || ch == ';' || ch == '\n' || ch == '\r') {
var sd_value = parseInt(cookies.substr(sd_index + 11));
if (!isNaN(sd_value)) {
var row_domain = document.getElementById('row_domain');
if (row_domain)
row_domain.style.display = sd_value ? '' : 'none';
break;
}
}
sd_index = cookies.indexOf("showdomain=", sd_index + 1);
}
elem = document.getElementById('wfl_login');
if( elem != null ) {
elem.focus();
}
}
function wfcustomfunc( wfapi )
{
var loc = window.location.href;
var pass = 0, slash_index = -1;
do {
slash_index = loc.indexOf('/', slash_index + 1);
} while (++pass < 3 && slash_index >= 0);
if (slash_index > 0)
{
// This also removes slash
loc = loc.substring(0, slash_index);
}
// Otherwise we have less than 3 slashes, probably a URL like
// http://example.com - without a trailing slash.
// In both cases we have to append the slash:
window.location.href = loc + "/example_wfapps.html";
}
var error_dialog = undefined;
function makeErrorDialog() {
if (typeof (ErrorDialog) != 'function')
return undefined;
return new ErrorDialog();
}
function wferror(number, title, text, onclose)
{
if (!number && !text)
return;
if (!title)
title = "Agile error";
if (!text)
text = "";
if (onclose && typeof (onclose) != 'function')
onclose = undefined;
if (!error_dialog)
error_dialog = makeErrorDialog();
if (error_dialog) {
error_dialog.onclose = onclose;
error_dialog.show(title, number ? "[" + number + "] " + text : text);
} else {
// If error_dialog cannot be created (rare case)
var msg = title + "\n\n";
if (number) {
msg += "[" + number + "]";
if (text)
msg += " ";
}
if (text)
msg += text;
alert(msg);
if (onclose)
onclose();
}
}
function loadAlert(loadID, url)
{
var msg = "Page load timeout expired.";
clearInterval(loadID);
if (url)
msg += " [" + url + "]";
wferror(0, undefined, msg, function() {
location.replace('index.html');
});
}
function mystartlogin() {
var wlogin = document.getElementById("wfl_login").value;
var wpassword = document.getElementById("wfl_password").value;
var dmfield = document.getElementById("wfl_domain");
var wdomain = null;
if( dmfield != null && dmfield != "" )
wdomain = dmfield.value;
if( typeof( WFAPI ) == "function" ) {
var wfapi = WFAPI.getInstance();
wfapi.onerror = wferror;
wfapi.sendLogin( wlogin, wpassword, wdomain, wfcustomfunc );
}
else {
var s = document.createElement('script');
var loadID = setInterval(function() { loadAlert(loadID, s.src); }, 5000);
var executed = false;
s.onload=function() {
clearInterval(loadID);
if (executed)
return;
executed = true;
var wfapi = WFAPI.getInstance();
wfapi.onerror = wferror;
wfapi.sendLogin( wlogin, wpassword, wdomain, wfcustomfunc );
}
// Backward compatibility for IE
s.onreadystatechange = function() {
if (this.readyState == 'complete' || this.readyState == 'loaded')
this.onload();
};
s.src = '/virtual/wflogin.min.js';
document.body.appendChild(s);
}
}
</script>
<script src="/virtual/typedarray.min.js"></script>
<script src="/virtual/commongui.min.js"></script>
<script src="/virtual/rsa.min.js"></script>
<script src="/virtual/crypto-js.min.js"></script>
<script src="/virtual/trmcrypto.min.js"></script>
<script src="/virtual/wflogin.min.js"></script>
<div id="wfl_lista">
<h1>Log in to the server</h1>
<hr>
<br>
Please enter your user name and password to get the list of available applications.
<form name="loginF" id="loginF" action="javascript:mystartlogin();" method="POST" >
<br>
<table class="login_form" >
<tr><td>User name:</td><td><input type="text" autocomplete="on" autocorrect="off" autocapitalize="none" size="40" maxlength="30" name="wfl_login" id="wfl_login"></td></tr>
<tr><td>Password:</td><td><input type="password" autocomplete="on" size="40" maxlength="30" name="wfl_password" id="wfl_password"></td></tr>
<tr id="row_domain" style="display:none;"><td>Domain:</td><td><input type="text" autocorrect="off" autocapitalize="none" size="40" maxlength="50" name="wfl_domain" id="wfl_domain"></td></tr>
<tr><td></td><td><input type="submit" value="Sign in"></td></tr>
</table>
<br>
</form>
<br>
<hr>
All user accounts are created by the server administrator.<br>
Contact administrator to get your <b>username</b> and <b>password</b>.
<br><br><br>
<table class="zero_space">
<tr><td class="middle"><img src="wflock.png" alt="RSA encrypted" /></td><td> </td><td class="middle"><p style="font-size:9px;color:grey;">Login details are encrypted with RSA.</p></td></tr>
</table>
<br>
</div>
<div id="wfl_version"><p style="font-size:9px;color:grey;"><a href="//www.pcmart.com.my">Power by PC Mart Sdn Bhd</p></div>
</div>
</body>
</html>
{
"@category" : "datascan",
"@timestamp" : "2024-11-21T08:57:32.000Z",
"alternativeip" : [
"203.121.64.206",
"203.121.64.39"
],
"app" : {
"extract" : {
"domain" : [
"example.com"
],
"hostname" : [
"example.com"
],
"ip" : [
"4.0.0.1"
],
"url" : [
"http://example.com"
]
},
"favicon" : {
"url" : "/favicon.ico"
},
"http" : {
"bodymd5" : "ed3ed424870da9aff9153ed6bdbb05f8",
"bodymmh3" : 1993958477,
"header" : [
{
"value" : "Tue, 16 June 2020 09:55:00 GMT",
"name" : "Last-Modified"
}
],
"headermd5" : "5c33f923d12ebe850530c30f029b5809",
"headermmh3" : -247782432,
"title" : "Ecoflector Terminal Server - login page"
},
"length" : 6223
},
"asn" : "AS9930",
"city" : "Kuala Lumpur",
"country" : "MY",
"cpe" : "<enterprise field>: cpe",
"cpecount" : "<enterprise field>: cpecount",
"data" : "HTTP/1.1 200 OK\r\nServer: Winflector 4.0.0.1\r\nDate: Thu, 21 November 2024 16:49:03 GMT\r\nCache-Control: no-cache\r\nConnection: close\r\nSet-Cookie: showdomain=0; path=/;\r\nLast-Modified: Tue, 16 June 2020 09:55:00 GMT\r\nContent-Type: text/html\r\n\r\n<!DOCTYPE html>\r\n<html lang=\"en\">\r\n<head>\r\n<LINK href=\"style.css\" type=text/css rel=StyleSheet />\r\n<LINK rel=\"shortcut icon\" type=\"image/vnd.microsoft.icon\" href=\"favicon.ico?v2\" />\r\n<TITLE>Ecoflector Terminal Server - login page</TITLE>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\r\n</head>\r\n<body onload=\"customize_domain();\">\r\n\r\n<div id=\"wrapper_top_bg\">\r\n<div id=\"top\">\r\n<table class=\"lng_flags\">\r\n<tr>\r\n<td class=\"left_top\"><img src=\"ecoflector.png\" alt=\"Ecoflector Terminal Server\" /></td>\r\n</tr>\r\n</table>\r\n</div>\r\n</div>\r\n<div id=\"wrapper_motto\">\r\n<div id=\"motto\">\r\n<h2 class=\"motto_tekst\"><font color=#FFB000>Remote access</font> to Windows applications<br><font color=#FFB000>Ecoflector</font> terminal software</h2>\r\n</div>\r\n</div>\r\n\r\n<script>\r\n\r\nfunction customize_domain() {\r\n\tvar cookies = document.cookie;\r\n\tvar sd_index = cookies.indexOf(\"showdomain=\");\r\n\tvar elem;\r\n\r\n\twhile (sd_index >= 0) {\r\n\t\tvar ch;\r\n\t\tif (sd_index > 0)\r\n\t\t\tch = cookies.charAt(sd_index - 1);\r\n\t\tif (sd_index == 0 || ch == ' ' || ch == ';' || ch == '\\n' || ch == '\\r') {\r\n\t\t\tvar sd_value = parseInt(cookies.substr(sd_index + 11));\r\n\t\t\tif (!isNaN(sd_value)) {\r\n\t\t\t\tvar row_domain = document.getElementById('row_domain');\r\n\t\t\t\tif (row_domain)\r\n\t\t\t\t\trow_domain.style.display = sd_value ? '' : 'none';\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t}\r\n\t\tsd_index = cookies.indexOf(\"showdomain=\", sd_index + 1);\r\n\t}\r\n\r\n\telem = document.getElementById('wfl_login');\r\n\tif( elem != null ) {\r\n\t\telem.focus();\r\n\t}\r\n}\r\n\r\nfunction wfcustomfunc( wfapi )\r\n{\r\n\tvar loc = window.location.href;\r\n\tvar pass = 0, slash_index = -1;\r\n\tdo {\r\n\t\tslash_index = loc.indexOf('/', slash_index + 1);\r\n\t} while (++pass < 3 && slash_index >= 0);\r\n\r\n\tif (slash_index > 0)\r\n\t{\r\n\t\t// This also removes slash\r\n\t\tloc = loc.substring(0, slash_index);\r\n\t}\r\n\r\n\t// Otherwise we have less than 3 slashes, probably a URL like\r\n\t// http://example.com - without a trailing slash.\r\n\t// In both cases we have to append the slash:\r\n\twindow.location.href = loc + \"/example_wfapps.html\";\r\n}\r\n\r\nvar error_dialog = undefined;\r\n\r\nfunction makeErrorDialog() {\r\n\tif (typeof (ErrorDialog) != 'function')\r\n\t\treturn undefined;\r\n\r\n\treturn new ErrorDialog();\r\n}\r\n\r\n\r\nfunction wferror(number, title, text, onclose)\r\n{\r\n\tif (!number && !text)\r\n\t\treturn;\r\n\tif (!title)\r\n\t\ttitle = \"Agile error\";\r\n\tif (!text)\r\n\t\ttext = \"\";\r\n\tif (onclose && typeof (onclose) != 'function')\r\n\t\tonclose = undefined;\r\n\r\n\tif (!error_dialog)\r\n\t\terror_dialog = makeErrorDialog();\r\n\r\n\tif (error_dialog) {\r\n\t\terror_dialog.onclose = onclose;\r\n\t\terror_dialog.show(title, number ? \"[\" + number + \"] \" + text : text);\r\n\t} else {\r\n\t\t// If error_dialog cannot be created (rare case)\r\n\t\tvar msg = title + \"\\n\\n\";\r\n\t\tif (number) {\r\n\t\t\tmsg += \"[\" + number + \"]\";\r\n\t\t\tif (text)\r\n\t\t\t\tmsg += \" \";\r\n\t\t}\r\n\t\tif (text)\r\n\t\t\tmsg += text;\r\n\t\talert(msg);\r\n\t\tif (onclose)\r\n\t\t\tonclose();\r\n\t}\r\n}\r\n\r\nfunction loadAlert(loadID, url)\r\n{\r\n\tvar msg = \"Page load timeout expired.\";\r\n\tclearInterval(loadID);\r\n\tif (url)\r\n\t\tmsg += \" [\" + url + \"]\";\r\n\twferror(0, undefined, msg, function() {\r\n\t\tlocation.replace('index.html');\r\n\t});\r\n}\r\n\r\nfunction mystartlogin() {\r\n\tvar wlogin = document.getElementById(\"wfl_login\").value;\r\n\tvar wpassword = document.getElementById(\"wfl_password\").value;\r\n\tvar dmfield = document.getElementById(\"wfl_domain\");\r\n\tvar wdomain = null;\r\n\tif( dmfield != null && dmfield != \"\" )\r\n\t\twdomain = dmfield.value;\r\n\t\r\n\tif( typeof( WFAPI ) == \"function\" ) {\r\n\t\tvar wfapi = WFAPI.getInstance();\r\n\t\twfapi.onerror = wferror;\r\n\t\twfapi.sendLogin( wlogin, wpassword, wdomain, wfcustomfunc );\r\n\t}\r\n\telse {\r\n\t\tvar s = document.createElement('script');\r\n\t\tvar loadID = setInterval(function() { loadAlert(loadID, s.src); }, 5000);\r\n\t\tvar executed = false;\r\n\t\ts.onload=function() {\r\n\t\t\tclearInterval(loadID);\r\n\t\t\tif (executed)\r\n\t\t\t\treturn;\r\n\t\t\texecuted = true;\r\n\t\t\tvar wfapi = WFAPI.getInstance();\r\n\t\t\twfapi.onerror = wferror;\r\n\t\t\twfapi.sendLogin( wlogin, wpassword, wdomain, wfcustomfunc );\r\n\t\t}\r\n\t\t// Backward compatibility for IE\r\n\t\ts.onreadystatechange = function() {\r\n\t\t\tif (this.readyState == 'complete' || this.readyState == 'loaded')\r\n\t\t\t\tthis.onload();\r\n\t\t};\r\n\t\ts.src = '/virtual/wflogin.min.js';\r\n\t\tdocument.body.appendChild(s);\r\n\t}\r\n}\r\n</script>\r\n\r\n<script src=\"/virtual/typedarray.min.js\"></script>\r\n<script src=\"/virtual/commongui.min.js\"></script>\r\n<script src=\"/virtual/rsa.min.js\"></script>\r\n<script src=\"/virtual/crypto-js.min.js\"></script>\r\n<script src=\"/virtual/trmcrypto.min.js\"></script>\r\n<script src=\"/virtual/wflogin.min.js\"></script>\r\n\r\n<div id=\"wfl_lista\">\r\n<h1>Log in to the server</h1>\r\n<hr>\r\n<br>\r\nPlease enter your user name and password to get the list of available applications.\r\n<form name=\"loginF\" id=\"loginF\" action=\"javascript:mystartlogin();\" method=\"POST\" >\r\n<br>\r\n<table class=\"login_form\" >\r\n<tr><td>User name:</td><td><input type=\"text\" autocomplete=\"on\" autocorrect=\"off\" autocapitalize=\"none\" size=\"40\" maxlength=\"30\" name=\"wfl_login\" id=\"wfl_login\"></td></tr>\r\n<tr><td>Password:</td><td><input type=\"password\" autocomplete=\"on\" size=\"40\" maxlength=\"30\" name=\"wfl_password\" id=\"wfl_password\"></td></tr>\r\n<tr id=\"row_domain\" style=\"display:none;\"><td>Domain:</td><td><input type=\"text\" autocorrect=\"off\" autocapitalize=\"none\" size=\"40\" maxlength=\"50\" name=\"wfl_domain\" id=\"wfl_domain\"></td></tr>\r\n<tr><td></td><td><input type=\"submit\" value=\"Sign in\"></td></tr>\r\n</table>\r\n<br>\r\n</form>\r\n<br>\r\n<hr>\r\nAll user accounts are created by the server administrator.<br>\r\nContact administrator to get your <b>username</b> and <b>password</b>.\r\n<br><br><br>\r\n<table class=\"zero_space\">\r\n<tr><td class=\"middle\"><img src=\"wflock.png\" alt=\"RSA encrypted\" /></td><td> </td><td class=\"middle\"><p style=\"font-size:9px;color:grey;\">Login details are encrypted with RSA.</p></td></tr>\r\n</table>\r\n<br>\r\n</div>\r\n<div id=\"wfl_version\"><p style=\"font-size:9px;color:grey;\"><a href=\"//www.pcmart.com.my\">Power by PC Mart Sdn Bhd</p></div>\r\n\r\n\r\n</div>\r\n\r\n</body>\r\n</html>\r\n",
"datamd5" : "3e7431886a3ecd15045ede5f7debe164",
"datammh3" : -390117496,
"device" : {
"class" : "<enterprise field>: device.class"
},
"domain" : [
"time.net.my"
],
"geolocus" : {
"asn" : "AS9930",
"continent" : "AS",
"continentname" : "Asia",
"country" : "MY",
"countryname" : "Malaysia",
"domain" : [
"time.com.my",
"time.net.my"
],
"isineu" : "false",
"latitude" : "4.210484",
"location" : "4.210484,101.975766",
"longitude" : "101.975766",
"netname" : "TTDOTCOM-MY",
"organization" : "TT DOTCOM SDN BHD",
"subnet" : "61.6.0.0/17"
},
"host" : [
"broadband"
],
"hostname" : [
"broadband.time.net.my"
],
"ip" : "61.6.32.220",
"ipv6" : "false",
"latitude" : "3.1671",
"location" : "3.1671,101.6708",
"longitude" : "101.6708",
"node" : {
"country" : "<enterprise field>: node.country",
"groupid" : "<enterprise field>: node.groupid",
"id" : "<enterprise field>: node.id",
"physicalcountry" : "<enterprise field>: node.physicalcountry"
},
"organization" : "TIME dotCom Berhad No. 14, Jalan Majistret U126 Hicom Glenmarie Industrial Park 40150 Shah Al",
"os" : "Windows",
"osvendor" : "Microsoft",
"port" : 4782,
"protocol" : "http",
"protocolversion" : "1.1",
"reason" : "OK",
"reverse" : [
"broadband.time.net.my"
],
"seen_date" : "2024-11-21",
"source" : "datascan",
"status" : 200,
"subnet" : "61.6.0.0/17",
"tag" : "<enterprise field>: tag",
"tld" : [
"net.my"
],
"tls" : "false",
"transport" : "tcp",
"url" : "/"
}