ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 27,682,043 in 0.792 second(s)

  • 66.41.192.72:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:11 UTC

    • IP
      66.41.192.72
      Network
      66.41.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://66.41.192.72:8080/ 200

      ASN
      AS7922
      Organization
      COMCAST-7922
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      HTTP Component(s)
      Bootstrap Bootstrap jQuery jQuery 3.4.1
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c2fed477b1f6b8dbcd91a9b759be67f5
      HTTP Header MD5
      ec1608bc6e18cc8bcf7c9e63319219be
      HTTP Body MD5
      7f59078e03b9592fd07820961c58382c 
    • HTTP/1.1 200 OK
Content-type: text/html
X-robots-tag: noindex,nofollow
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15768000; includeSubdomains
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' 'unsafe-inline' 'unsafe-eval'; form-action 'self' 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self'; connect-src 'self'; object-src 'none'; media-src 'none'; script-nonce 'none'; plugin-types 'none'; reflected-xss 'none'; report-uri 'none';
Content-Length: 8386
Connection: close
Date: Thu, 21 Nov 2024 10:16:09 GMT
Server: Xfinity Broadband Router Server


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">



<head>
	<!--CSS-->
	<link rel="stylesheet" type="text/css" media="screen" href="./cmn/css/common-min.css" />
	<!--[if IE 6]>
	<link rel="stylesheet" type="text/css" href="./cmn/css/ie6-min.css" />
	<![endif]-->
	<!--[if IE 7]>
	<link rel="stylesheet" type="text/css" href="./cmn/css/ie7-min.css" />
	<![endif]-->
	<link rel="stylesheet" type="text/css" media="print" href="./cmn/css/print.css" />
	<link rel="stylesheet" type="text/css" media="screen" href="./cmn/css/lib/jquery.radioswitch.css" />
	<link rel="stylesheet" type="text/css" media="screen" href="./cmn/css/lib/progressBar.css" />
	<!--Character Encoding-->
	<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
	<meta name="robots" content="noindex,nofollow">
	<script type="text/javascript" src="./cmn/js/lib/jquery-3.4.1.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery-migrate-1.2.1.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.validate.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.alerts.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.ciscoExt.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.highContrastDetect.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.radioswitch.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/jquery.virtualDialog.js"></script>

	<script type="text/javascript" src="./cmn/js/utilityFunctions.js"></script>
	<script type="text/javascript" src="./cmn/js/comcast.js"></script>
	<script type="text/javascript" src="./cmn/js/lib/bootstrap.min.js"></script>
    <script type="text/javascript" src="./cmn/js/lib/bootstrap-waitingfor.js"></script>

</head>

<body>
	<!--Main Container - Centers Everything-->
	<div id="container">

		<!--Header-->
		<div id="header">
			<h2 id="logo"><img src="./cmn/img/logo_xfinity.png" alt="Company logo" title="Company logo" /></h2>
		</div> <!-- end #header -->

		<div id='div-skip-to' style="display: none;">
			<a id="skip-link" name="skip-link" href="#content">Skip to content</a>
		</div>

		<!--Main Content-->
		<div id="main-content">

<!-- $Id: at_a_glance.dory.jst 2943 2009-08-25 20:58:43Z slemoine $ -->
<div id="sub-header">


</div><!-- end #sub-header -->


<!--div id="nav"-->
<h1>Admin Tool Login</h1>
<div style="float: left; margin: 0 20px 20px 0; width: 60%; height:190px;background:white;">

	<form action="check.jst" method="post" id="pageForm"  onsubmit="return f();">
	<div class="form-row">
		<p>Please login to manage your router.</p>
	</div>
	<div>
		<table style="background:white; text-align:center;">
			<tr>
				<td><label for="username"><b>Username:</b></label></td>
				<td><input type="text"     id="username" name="username" style="width: 250px;" class="text" autocomplete="off" /></td>
			</tr>
			<tr>
				<td><label for="password"><b>Password:</b></label></td>
				<td><input type="password" id="password" name="password" style="width: 250px;" class="text" autocomplete="off" /></td>
			</tr>
		</table>
	</div>
	<div class="form-btn" style="margin-top: 25px;text-align:center;">
		<input type="submit" class="btn" value="Login" />
	</div>
</form>
</div>

<script type="text/javascript">
$(document).ready(function() {
	comcast.page.init("Login", "nav-login");

	$("#pageForm").validate({
		errorElement : "p"
		,errorContainer : "#error-msg-box"
		,invalidHandler: function(form, validator) {
			var errors = validator.numberOfInvalids();
			if (errors) {
				var message = errors == 1 ? 'You missed 1 field. It has been highlighted' : 'You missed ' + errors + ' fields. They have been highlighted';
				$("div.error").html(message);
				$("div.error").show();
			} else {
				$("div.error").hide();
			}
		}
		,rules : {
			username: {
				required: true
				,minlength: 3
			}
			,password: {
				required: true
				,minlength: 3
			}
		}
		,messages: {
			username: {
				required: "Username cannot be blank. Please enter a valid username."
			}
			,password: {
				required: "Password cannot be blank. Please enter a valid password."
				,minlength: "Password must be at least 3 characters."
			}
		}
	});

	$("#username").focus();
	$("#username").val("");
	$("#password").val("");
});

function f()
{
	var username;
	username = document.getElementById("username");
	username.value = (username.value.toLowerCase());
	//get the form id and submit it
	var form = document.getElementById("pageForm");
	form.submit();
	return true;
}
</script>


<!-- $Id: footer.jst 2976 2009-09-02 21:42:51Z cporto $ -->
		</div> <!-- end #main-content-->
		
		<!--Footer-->
		<div id="footer">
			<ul id="footer-links" style="display:none">
				<li class="first-child"><a href="http://www.xfinity.com" target="_blank">Xfinity.com</a></li>
				<li style="list-style:none outside none; margin-left:10px">&#8226;&nbsp;&nbsp;<a href="https://customer.comcast.com/" target="_blank">customerCentral</a></li>
				<li style="list-style:none outside none; margin-left:10px">&#8226;&nbsp;&nbsp;<a href="http://customer.comcast.com/userguides" target="_blank">User Guide</a></li>
			</ul>
		</div> <!-- end #footer -->
	</div> <!-- end #container -->
<script type="text/javascript">
$(document).ready(function() {
	// focus current page link, must after page.init()
	//$('#nav [href="'+location.href.replace(/^.*\//g, '')+'"]').focus();		// need a "skip nav" function
	$("#skip-link").click(function () {
        $('#content').attr('tabIndex', -1).focus();  //this is to fix skip-link doesn't work on webkit-based Chrome
    });

	// change radio-btn status and do ajax when press "enter"
	//$(".radio-btns a").keydown(function(event){
	$(".radio-btns a").keypress(function(event){
		var keycode = (event.keyCode ? event.keyCode : event.which);
		if(13 == keycode){
			if (!$(this).parent(".radio-btns").find("li").hasClass("selected")){
				return;		// do nothing if has disabled class, don't detect disabled attr for radio-btn
			}
			// console.log($(this).find(":radio").hasClass("disabled"));
			$(this).find(":radio").trigger('click');
			$(this).find(":radio").trigger('change');
			$(this).parent(".radio-btns").radioToButton();
		}
	});
	
	// press Esc to skip menu and goto first control of content
	// Esc:keypress:which is zero in FF, Esc:keypress is not work in Chrome
	$("#nav").keydown(function(event){
		var keycode = (event.keyCode ? event.keyCode : event.which);
		if(27 == keycode){
			$("#content textarea:eq(0)").focus();
			$("#content input:eq(0)").focus();
			$("#content a:eq(0)").focus();			// high priority element to focus			
		}
		// alert(event.keyCode+"---"+event.which+"---"+event.charCode);		
	});
	
	/* changes for high contrast mode */
	$.highContrastDetect({useExtraCss: true, debugInNormalMode: false});
	if ($.__isHighContrast) {
		/* change plus/minus tree indicator of nav menu */
		$("#nav a.top-level").prepend('<span class="hi_nav_top_indi">[+]</span>');
		$("#nav a.folder").prepend('<span class="hi_nav_folder_indi">[+]</span>');
		$("#nav a.top-level-active span.hi_nav_top_indi").text("[-]");
		$("#nav a.folder").click(function() {
			/* this should be called after nav state changed */
			var $link = $(this);
			if ($link.hasClass("folder-open")) {
				$link.children("span.hi_nav_folder_indi").text("[-]");
			}
			else {
				$link.children("span.hi_nav_folder_indi").text("[+]");
			}
		});
	}

	/*
	*	these 3 sections for radio-btn accessibility, as a workaround, maybe should put at the front of .ready().
	*/
	// add "role" and "title" for ARIA, attr may need to be embedded into html
	$(".radio-btns a").each(function(){
		$(this).attr("role", "radio").attr("title", $(this).closest("ul").prev().text() + $(this).find("label").text());
	});
	
	// monitor "aria-checked" status for JAWS, NOTE: better depends on input element
	$(".radio-btns").change(function(){
		$(this).find("a").each(function(){
			$(this).attr("aria-checked", $(this).find("input").attr("checked") ? "true" : "false");
		});
	});
	
	//give the initial status, do not trigger change above
	$(".radio-btns").find("a").each(function(){
		$(this).attr("aria-checked", $(this).find("input").attr("checked") ? "true" : "false");
	});

});
</script>	
</body>
</html>



    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:11.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "xfinity.com",
            "w3.org",
            "comcast.com"
         ],
         "hostname" : [
            "customer.comcast.com",
            "www.w3.org",
            "www.xfinity.com"
         ],
         "url" : [
            "http://customer.comcast.com/userguides",
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd",
            "http://www.xfinity.com",
            "https://customer.comcast.com/"
         ]
      },
      "http" : {
         "bodymd5" : "7f59078e03b9592fd07820961c58382c",
         "bodymmh3" : -596364810,
         "component" : [
            {
               "product" : "Bootstrap",
               "productvendor" : "Bootstrap"
            },
            {
               "productvendor" : "jQuery",
               "productversion" : "3.4.1",
               "product" : "jQuery"
            }
         ],
         "headermd5" : "ec1608bc6e18cc8bcf7c9e63319219be",
         "headermmh3" : 21853482
      },
      "length" : 9278
   },
   "asn" : "AS7922",
   "city" : "Cottage Grove",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-type: text/html\r\nX-robots-tag: noindex,nofollow\r\nX-Frame-Options: deny\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=15768000; includeSubdomains\r\nPragma: no-cache\r\nCache-Control: no-store, no-cache, must-revalidate\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' 'unsafe-inline' 'unsafe-eval'; form-action 'self' 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self'; connect-src 'self'; object-src 'none'; media-src 'none'; script-nonce 'none'; plugin-types 'none'; reflected-xss 'none'; report-uri 'none';\r\nContent-Length: 8386\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 10:16:09 GMT\r\nServer: Xfinity Broadband Router Server\r\n\r\n\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"en\" lang=\"en\">\n\n\n\n<head>\n\t<!--CSS-->\n\t<link rel=\"stylesheet\" type=\"text/css\" media=\"screen\" href=\"./cmn/css/common-min.css\" />\n\t<!--[if IE 6]>\n\t<link rel=\"stylesheet\" type=\"text/css\" href=\"./cmn/css/ie6-min.css\" />\n\t<![endif]-->\n\t<!--[if IE 7]>\n\t<link rel=\"stylesheet\" type=\"text/css\" href=\"./cmn/css/ie7-min.css\" />\n\t<![endif]-->\n\t<link rel=\"stylesheet\" type=\"text/css\" media=\"print\" href=\"./cmn/css/print.css\" />\n\t<link rel=\"stylesheet\" type=\"text/css\" media=\"screen\" href=\"./cmn/css/lib/jquery.radioswitch.css\" />\n\t<link rel=\"stylesheet\" type=\"text/css\" media=\"screen\" href=\"./cmn/css/lib/progressBar.css\" />\n\t<!--Character Encoding-->\n\t<meta http-equiv=\"Content-Type\" content=\"text/html;charset=utf-8\" />\n\t<meta name=\"robots\" content=\"noindex,nofollow\">\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery-3.4.1.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery-migrate-1.2.1.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.validate.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.alerts.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.ciscoExt.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.highContrastDetect.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.radioswitch.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/jquery.virtualDialog.js\"></script>\n\n\t<script type=\"text/javascript\" src=\"./cmn/js/utilityFunctions.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/comcast.js\"></script>\n\t<script type=\"text/javascript\" src=\"./cmn/js/lib/bootstrap.min.js\"></script>\n    <script type=\"text/javascript\" src=\"./cmn/js/lib/bootstrap-waitingfor.js\"></script>\n\n</head>\n\n<body>\n\t<!--Main Container - Centers Everything-->\n\t<div id=\"container\">\n\n\t\t<!--Header-->\n\t\t<div id=\"header\">\n\t\t\t<h2 id=\"logo\"><img src=\"./cmn/img/logo_xfinity.png\" alt=\"Company logo\" title=\"Company logo\" /></h2>\n\t\t</div> <!-- end #header -->\n\n\t\t<div id='div-skip-to' style=\"display: none;\">\n\t\t\t<a id=\"skip-link\" name=\"skip-link\" href=\"#content\">Skip to content</a>\n\t\t</div>\n\n\t\t<!--Main Content-->\n\t\t<div id=\"main-content\">\n\n<!-- $Id: at_a_glance.dory.jst 2943 2009-08-25 20:58:43Z slemoine $ -->\n<div id=\"sub-header\">\n\n\n</div><!-- end #sub-header -->\n\n\n<!--div id=\"nav\"-->\n<h1>Admin Tool Login</h1>\n<div style=\"float: left; margin: 0 20px 20px 0; width: 60%; height:190px;background:white;\">\n\n\t<form action=\"check.jst\" method=\"post\" id=\"pageForm\"  onsubmit=\"return f();\">\n\t<div class=\"form-row\">\n\t\t<p>Please login to manage your router.</p>\n\t</div>\n\t<div>\n\t\t<table style=\"background:white; text-align:center;\">\n\t\t\t<tr>\n\t\t\t\t<td><label for=\"username\"><b>Username:</b></label></td>\n\t\t\t\t<td><input type=\"text\"     id=\"username\" name=\"username\" style=\"width: 250px;\" class=\"text\" autocomplete=\"off\" /></td>\n\t\t\t</tr>\n\t\t\t<tr>\n\t\t\t\t<td><label for=\"password\"><b>Password:</b></label></td>\n\t\t\t\t<td><input type=\"password\" id=\"password\" name=\"password\" style=\"width: 250px;\" class=\"text\" autocomplete=\"off\" /></td>\n\t\t\t</tr>\n\t\t</table>\n\t</div>\n\t<div class=\"form-btn\" style=\"margin-top: 25px;text-align:center;\">\n\t\t<input type=\"submit\" class=\"btn\" value=\"Login\" />\n\t</div>\n</form>\n</div>\n\n<script type=\"text/javascript\">\n$(document).ready(function() {\n\tcomcast.page.init(\"Login\", \"nav-login\");\n\n\t$(\"#pageForm\").validate({\n\t\terrorElement : \"p\"\n\t\t,errorContainer : \"#error-msg-box\"\n\t\t,invalidHandler: function(form, validator) {\n\t\t\tvar errors = validator.numberOfInvalids();\n\t\t\tif (errors) {\n\t\t\t\tvar message = errors == 1 ? 'You missed 1 field. It has been highlighted' : 'You missed ' + errors + ' fields. They have been highlighted';\n\t\t\t\t$(\"div.error\").html(message);\n\t\t\t\t$(\"div.error\").show();\n\t\t\t} else {\n\t\t\t\t$(\"div.error\").hide();\n\t\t\t}\n\t\t}\n\t\t,rules : {\n\t\t\tusername: {\n\t\t\t\trequired: true\n\t\t\t\t,minlength: 3\n\t\t\t}\n\t\t\t,password: {\n\t\t\t\trequired: true\n\t\t\t\t,minlength: 3\n\t\t\t}\n\t\t}\n\t\t,messages: {\n\t\t\tusername: {\n\t\t\t\trequired: \"Username cannot be blank. Please enter a valid username.\"\n\t\t\t}\n\t\t\t,password: {\n\t\t\t\trequired: \"Password cannot be blank. Please enter a valid password.\"\n\t\t\t\t,minlength: \"Password must be at least 3 characters.\"\n\t\t\t}\n\t\t}\n\t});\n\n\t$(\"#username\").focus();\n\t$(\"#username\").val(\"\");\n\t$(\"#password\").val(\"\");\n});\n\nfunction f()\n{\n\tvar username;\n\tusername = document.getElementById(\"username\");\n\tusername.value = (username.value.toLowerCase());\n\t//get the form id and submit it\n\tvar form = document.getElementById(\"pageForm\");\n\tform.submit();\n\treturn true;\n}\n</script>\n\n\n<!-- $Id: footer.jst 2976 2009-09-02 21:42:51Z cporto $ -->\n\t\t</div> <!-- end #main-content-->\n\t\t\n\t\t<!--Footer-->\n\t\t<div id=\"footer\">\n\t\t\t<ul id=\"footer-links\" style=\"display:none\">\n\t\t\t\t<li class=\"first-child\"><a href=\"http://www.xfinity.com\" target=\"_blank\">Xfinity.com</a></li>\n\t\t\t\t<li style=\"list-style:none outside none; margin-left:10px\">&#8226;&nbsp;&nbsp;<a href=\"https://customer.comcast.com/\" target=\"_blank\">customerCentral</a></li>\n\t\t\t\t<li style=\"list-style:none outside none; margin-left:10px\">&#8226;&nbsp;&nbsp;<a href=\"http://customer.comcast.com/userguides\" target=\"_blank\">User Guide</a></li>\n\t\t\t</ul>\n\t\t</div> <!-- end #footer -->\n\t</div> <!-- end #container -->\n<script type=\"text/javascript\">\n$(document).ready(function() {\n\t// focus current page link, must after page.init()\n\t//$('#nav [href=\"'+location.href.replace(/^.*\\//g, '')+'\"]').focus();\t\t// need a \"skip nav\" function\n\t$(\"#skip-link\").click(function () {\n        $('#content').attr('tabIndex', -1).focus();  //this is to fix skip-link doesn't work on webkit-based Chrome\n    });\n\n\t// change radio-btn status and do ajax when press \"enter\"\n\t//$(\".radio-btns a\").keydown(function(event){\n\t$(\".radio-btns a\").keypress(function(event){\n\t\tvar keycode = (event.keyCode ? event.keyCode : event.which);\n\t\tif(13 == keycode){\n\t\t\tif (!$(this).parent(\".radio-btns\").find(\"li\").hasClass(\"selected\")){\n\t\t\t\treturn;\t\t// do nothing if has disabled class, don't detect disabled attr for radio-btn\n\t\t\t}\n\t\t\t// console.log($(this).find(\":radio\").hasClass(\"disabled\"));\n\t\t\t$(this).find(\":radio\").trigger('click');\n\t\t\t$(this).find(\":radio\").trigger('change');\n\t\t\t$(this).parent(\".radio-btns\").radioToButton();\n\t\t}\n\t});\n\t\n\t// press Esc to skip menu and goto first control of content\n\t// Esc:keypress:which is zero in FF, Esc:keypress is not work in Chrome\n\t$(\"#nav\").keydown(function(event){\n\t\tvar keycode = (event.keyCode ? event.keyCode : event.which);\n\t\tif(27 == keycode){\n\t\t\t$(\"#content textarea:eq(0)\").focus();\n\t\t\t$(\"#content input:eq(0)\").focus();\n\t\t\t$(\"#content a:eq(0)\").focus();\t\t\t// high priority element to focus\t\t\t\n\t\t}\n\t\t// alert(event.keyCode+\"---\"+event.which+\"---\"+event.charCode);\t\t\n\t});\n\t\n\t/* changes for high contrast mode */\n\t$.highContrastDetect({useExtraCss: true, debugInNormalMode: false});\n\tif ($.__isHighContrast) {\n\t\t/* change plus/minus tree indicator of nav menu */\n\t\t$(\"#nav a.top-level\").prepend('<span class=\"hi_nav_top_indi\">[+]</span>');\n\t\t$(\"#nav a.folder\").prepend('<span class=\"hi_nav_folder_indi\">[+]</span>');\n\t\t$(\"#nav a.top-level-active span.hi_nav_top_indi\").text(\"[-]\");\n\t\t$(\"#nav a.folder\").click(function() {\n\t\t\t/* this should be called after nav state changed */\n\t\t\tvar $link = $(this);\n\t\t\tif ($link.hasClass(\"folder-open\")) {\n\t\t\t\t$link.children(\"span.hi_nav_folder_indi\").text(\"[-]\");\n\t\t\t}\n\t\t\telse {\n\t\t\t\t$link.children(\"span.hi_nav_folder_indi\").text(\"[+]\");\n\t\t\t}\n\t\t});\n\t}\n\n\t/*\n\t*\tthese 3 sections for radio-btn accessibility, as a workaround, maybe should put at the front of .ready().\n\t*/\n\t// add \"role\" and \"title\" for ARIA, attr may need to be embedded into html\n\t$(\".radio-btns a\").each(function(){\n\t\t$(this).attr(\"role\", \"radio\").attr(\"title\", $(this).closest(\"ul\").prev().text() + $(this).find(\"label\").text());\n\t});\n\t\n\t// monitor \"aria-checked\" status for JAWS, NOTE: better depends on input element\n\t$(\".radio-btns\").change(function(){\n\t\t$(this).find(\"a\").each(function(){\n\t\t\t$(this).attr(\"aria-checked\", $(this).find(\"input\").attr(\"checked\") ? \"true\" : \"false\");\n\t\t});\n\t});\n\t\n\t//give the initial status, do not trigger change above\n\t$(\".radio-btns\").find(\"a\").each(function(){\n\t\t$(this).attr(\"aria-checked\", $(this).find(\"input\").attr(\"checked\") ? \"true\" : \"false\");\n\t});\n\n});\n</script>\t\n</body>\n</html>\n\n\n",
   "datamd5" : "c2fed477b1f6b8dbcd91a9b759be67f5",
   "datammh3" : -1838091991,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MINNESOTA-18",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "66.41.128.0/17"
   },
   "ip" : "66.41.192.72",
   "ipv6" : "false",
   "latitude" : "44.8259",
   "location" : "44.8259,-92.9612",
   "longitude" : "-92.9612",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8080,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "66.41.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 222.16.192.52:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:10 UTC

    • IP
      222.16.192.52
      Network
      222.16.0.0/12
      Domain(s)
      bnuz.edu.cn
      Device

      <enterprise field>: device.class

      URL

      http://lib.bnuz.edu.cn:8080/F/3C6BUCP2JS399RHRNQ8S1BQXJ1D2NV3VVK23TMAJQ27MQ3RTTX-01922?func=logout 200

      HTTP Title
      珠海中文书刊 - End Session
      ASN
      AS4538
      Organization
      China Education and Research Network Center
      Protocol
      http
      Source
      urlscan::redirect::1
    • Product
      F5 Nginx 1.20.1
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      579acdfaf01e5e60e088230fa9e7c7a7
      HTTP Header MD5
      20bce82da437336d994f68203955ae2a
      HTTP Body MD5
      edfba80570fd40bbe3ce24820120076c 
    • HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 21 Nov 2024 10:13:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 01:00:00 GMT

15b
<html> 
<head> 
<link rel="stylesheet" href="/opac_lcl_chi/exlchi.css" TYPE"text/css"> 
<script language=Javascript> 
<!-- 
  function logout() { 
    window.location = "http://lib.bnuz.edu.cn:8080/F"; 
  } 
// --> 
</script> 
<title>珠海中文书刊 - End Session</title> 
</head> 
 
<body onLoad="javascript:logout();"> 
</body> 
</html> 
 

 
0


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:10.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "bnuz.edu.cn"
         ],
         "hostname" : [
            "lib.bnuz.edu.cn"
         ],
         "url" : [
            "http://lib.bnuz.edu.cn:8080/F"
         ]
      },
      "http" : {
         "bodymd5" : "edfba80570fd40bbe3ce24820120076c",
         "bodymmh3" : 731575608,
         "headermd5" : "20bce82da437336d994f68203955ae2a",
         "headermmh3" : 1543714221,
         "title" : "\u73e0\u6d77\u4e2d\u6587\u4e66\u520a - End Session"
      },
      "length" : 619
   },
   "asn" : "AS4538",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Thu, 21 Nov 2024 10:13:57 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nPragma: no-cache\r\nCache-Control: no-cache, no-store, must-revalidate\r\nExpires: Sat, 01 Jan 2000 01:00:00 GMT\r\n\r\n15b\r\n<html> \n<head> \n<link rel=\"stylesheet\" href=\"/opac_lcl_chi/exlchi.css\" TYPE\"text/css\"> \n<script language=Javascript> \n<!-- \n  function logout() { \n    window.location = \"http://lib.bnuz.edu.cn:8080/F\"; \n  } \n// --> \n</script> \n<title>\u73e0\u6d77\u4e2d\u6587\u4e66\u520a - End Session</title> \n</head> \n \n<body onLoad=\"javascript:logout();\"> \n</body> \n</html> \n \n\n \r\n0\r\n\r\n",
   "datamd5" : "579acdfaf01e5e60e088230fa9e7c7a7",
   "datammh3" : 1013880686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "bnuz.edu.cn"
   ],
   "forward" : "lib.bnuz.edu.cn",
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cernet.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "GZR-CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "222.16.0.0/12"
   },
   "hostname" : [
      "lib.bnuz.edu.cn"
   ],
   "ip" : "222.16.192.52",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 8080,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.20.1",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "urlscan::redirect::1",
   "status" : 200,
   "subnet" : "222.16.0.0/12",
   "tld" : [
      "edu.cn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/F/3C6BUCP2JS399RHRNQ8S1BQXJ1D2NV3VVK23TMAJQ27MQ3RTTX-01922?func=logout"
}

  • 79.135.140.240:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      79.135.140.240
      Network
      79.135.140.0/22
      Domain(s)
      emailaidnow.com
      Device

      <enterprise field>: device.class

      URL

      http://79.135.140.240:8080/ 302

      Reverse DNS
      79-135-140-240.emailaidnow.com
      ASN
      AS53356
      Organization
      FREE RANGE CLOUD
      Protocol
      http
      Source
      datascan::redirect::3

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      9bfa45f326036fa781721d69d98dc74a
      HTTP Header MD5
      dd30d02b3e02355b57d2423dc7b31b34
      HTTP Body MD5
      5329a038ae77a352669cd4afbdf3e573 
    • HTTP/1.1 302 Please use HTTPS instead
Content-Type: text/html; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=0
X-Content-Security-Policy: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'
X-WebKit-CSP: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'
Location: https://<ip>:8080/

<html><body>Please use HTTPS instead</body></html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "gstatic.com",
            "googleapis.com"
         ],
         "hostname" : [
            "fonts.googleapis.com",
            "fonts.gstatic.com"
         ],
         "url" : [
            "https://fonts.googleapis.com",
            "https://fonts.gstatic.com"
         ]
      },
      "http" : {
         "bodymd5" : "5329a038ae77a352669cd4afbdf3e573",
         "bodymmh3" : -812859716,
         "headermd5" : "dd30d02b3e02355b57d2423dc7b31b34",
         "headermmh3" : -2111427102
      },
      "length" : 815
   },
   "asn" : "AS53356",
   "country" : "LV",
   "data" : "HTTP/1.1 302 Please use HTTPS instead\r\nContent-Type: text/html; charset=utf-8\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=0\r\nX-Content-Security-Policy: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'\r\nX-WebKit-CSP: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nContent-Security-Policy: default-src 'self'; object-src 'self'; img-src data: 'self'; style-src https://fonts.googleapis.com 'self'; font-src https://fonts.gstatic.com 'self'\r\nLocation: https://<ip>:8080/\r\n\r\n<html><body>Please use HTTPS instead</body></html>\r\n",
   "datamd5" : "9bfa45f326036fa781721d69d98dc74a",
   "datammh3" : -507243945,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "emailaidnow.com"
   ],
   "forward" : "79.135.140.240",
   "host" : [
      "79-135-140-240"
   ],
   "hostname" : [
      "79-135-140-240.emailaidnow.com",
      "79.135.140.240"
   ],
   "ip" : "79.135.140.240",
   "ipv6" : "false",
   "latitude" : "56.9989",
   "location" : "56.9989,24.9969",
   "longitude" : "24.9969",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "FREE RANGE CLOUD",
   "port" : 8080,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Please use HTTPS instead",
   "reverse" : [
      "79-135-140-240.emailaidnow.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan::redirect::3",
   "status" : 302,
   "subnet" : "79.135.140.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 38.173.175.92:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      38.173.175.92
      Network
      38.173.160.0/20
      Device

      <enterprise field>: device.class

      URL

      http://38.173.175.92:8080/index.html 200

      ASN
      AS398823
      Organization
      PEG-LA
      Protocol
      http
      Source
      datascan::redirect::1

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      be710f0efad51afc6e042107fd71976b
      HTTP Header MD5
      c16f1c5ed3b29407df7b037c5ab29902
      HTTP Body MD5
      7432bf3dc4a7e65cd31e8a984851100f 
    • HTTP/1.1 200 OK
Date: Thu, 21 Nov 2024 10:16:09 GMT
Content-Length: 497
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="zh">
    <head>
        <meta charset="utf-8">
    </head>
    <body>
        <p>注意:<br>本面板没有用户鉴权功能,所以知道IP和端口的任何人都能设置你的服务。<br>请通过别的面板设置防火墙访问IP白名单,或者设置nginx反代加上访问密码。</p>
        <p><a href="/service_config_wizard.html">服务设置向导</a></p>
        <p><a href="/service_manage.html">服务管理</a></p>
    </body>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "7432bf3dc4a7e65cd31e8a984851100f",
         "bodymmh3" : -138786080,
         "headermd5" : "c16f1c5ed3b29407df7b037c5ab29902",
         "headermmh3" : -1162749837
      },
      "length" : 633
   },
   "asn" : "AS398823",
   "city" : "Los Angeles",
   "country" : "US",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 21 Nov 2024 10:16:09 GMT\r\nContent-Length: 497\r\nContent-Type: text/html; charset=utf-8\r\nConnection: close\r\n\r\n<!DOCTYPE html>\r\n<html lang=\"zh\">\r\n    <head>\r\n        <meta charset=\"utf-8\">\r\n    </head>\r\n    <body>\r\n        <p>\u6ce8\u610f\uff1a<br>\u672c\u9762\u677f\u6ca1\u6709\u7528\u6237\u9274\u6743\u529f\u80fd\uff0c\u6240\u4ee5\u77e5\u9053IP\u548c\u7aef\u53e3\u7684\u4efb\u4f55\u4eba\u90fd\u80fd\u8bbe\u7f6e\u4f60\u7684\u670d\u52a1\u3002<br>\u8bf7\u901a\u8fc7\u522b\u7684\u9762\u677f\u8bbe\u7f6e\u9632\u706b\u5899\u8bbf\u95eeIP\u767d\u540d\u5355\uff0c\u6216\u8005\u8bbe\u7f6enginx\u53cd\u4ee3\u52a0\u4e0a\u8bbf\u95ee\u5bc6\u7801\u3002</p>\r\n        <p><a href=\"/service_config_wizard.html\">\u670d\u52a1\u8bbe\u7f6e\u5411\u5bfc</a></p>\r\n        <p><a href=\"/service_manage.html\">\u670d\u52a1\u7ba1\u7406</a></p>\r\n    </body>\r\n</html>",
   "datamd5" : "be710f0efad51afc6e042107fd71976b",
   "datammh3" : 1326608713,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "forward" : "38.173.175.92",
   "geolocus" : {
      "asn" : "AS398823",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "cogentco.com",
         "petaexpress.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "PEG-LA",
      "organization" : "PEG TECH INC",
      "subnet" : "38.173.160.0/20"
   },
   "hostname" : [
      "38.173.175.92"
   ],
   "ip" : "38.173.175.92",
   "ipv6" : "false",
   "latitude" : "34.0514",
   "location" : "34.0514,-118.2707",
   "longitude" : "-118.2707",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "PEG-LA",
   "port" : 8080,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan::redirect::1",
   "status" : 200,
   "subnet" : "38.173.160.0/20",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/index.html"
}

  • 113.6.79.133:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      113.6.79.133
      Network
      113.0.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://113.6.79.133:8080/ 404

      HTTP Title
      404 Not Found
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f8d60c9f7d09283ff82c741d5c8cde9d
      HTTP Header MD5
      0c66d149dff9bbd2573c31d8f177f0d2
      HTTP Body MD5
      f3007821059464a29c83c9273f9f59e6 
    • HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 21 Nov 2024 10:16:08 GMT
Content-Type: text/html
Content-Length: 169
Connection: close
X-Frame-Options: SAMEORIGIN

<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center></center>
<hr><center>nginx</center>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "f3007821059464a29c83c9273f9f59e6",
         "bodymmh3" : -954857056,
         "headermd5" : "0c66d149dff9bbd2573c31d8f177f0d2",
         "headermmh3" : 712634962,
         "title" : "404 Not Found"
      },
      "length" : 341
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:16:08 GMT\r\nContent-Type: text/html\r\nContent-Length: 169\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\n\r\n<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "f8d60c9f7d09283ff82c741d5c8cde9d",
   "datammh3" : 1140168047,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "vip.hl.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-HL",
      "organization" : "CNC Group CHINA169 Heilongjiang Province Network",
      "subnet" : "113.0.0.0/13"
   },
   "ip" : "113.6.79.133",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8080,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 404,
   "subnet" : "113.0.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 38.153.176.7:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      38.153.176.7
      Network
      38.153.160.0/19
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://38.153.176.7:8080/ 400

      HTTP Title
      ERROR: The requested URL could not be retrieved
      ASN
      AS55286
      Organization
      SERVER-MANIA
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      squid-cache Squid 3.5.20
      HTTP Component(s)
      squid-cache Squid
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      3a6b701841c55d838214f6e3bbc94aa5
      HTTP Header MD5
      49a24a427634ec054cb11ad596f68961
      HTTP Body MD5
      258e0c3ab22c18c1fdb8122cb7e50569 
    • HTTP/1.1 400 Bad Request
Server: squid/3.5.20
Mime-Version: 1.0
Date: Thu, 21 Nov 2024 10:16:07 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 3418
X-Squid-Error: ERR_INVALID_URL 0
Connection: close


<html><head>
<meta type="copyright" content="Copyright (C) 1996-2016 The Squid Software Foundation and contributors">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>ERROR: The requested URL could not be retrieved</title>
<style type="text/css"><!-- 
 /*
 * Copyright (C) 1996-2016 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

/*
 Stylesheet for Squid Error pages
 Adapted from design by Free CSS Templates
 http://www.freecsstemplates.org
 Released for free under a Creative Commons Attribution 2.5 License
*/

/* Page basics */
* {
	font-family: verdana, sans-serif;
}

html body {
	margin: 0;
	padding: 0;
	background: #efefef;
	font-size: 12px;
	color: #1e1e1e;
}

/* Page displayed title area */
#titles {
	margin-left: 15px;
	padding: 10px;
	padding-left: 100px;
	background: url('/squid-internal-static/icons/SN.png') no-repeat left;
}

/* initial title */
#titles h1 {
	color: #000000;
}
#titles h2 {
	color: #000000;
}

/* special event: FTP success page titles */
#titles ftpsuccess {
	background-color:#00ff00;
	width:100%;
}

/* Page displayed body content area */
#content {
	padding: 10px;
	background: #ffffff;
}

/* General text */
p {
}

/* error brief description */
#error p {
}

/* some data which may have caused the problem */
#data {
}

/* the error message received from the system or other software */
#sysmsg {
}

pre {
    font-family:sans-serif;
}

/* special event: FTP / Gopher directory listing */
#dirmsg {
    font-family: courier;
    color: black;
    font-size: 10pt;
}
#dirlisting {
    margin-left: 2%;
    margin-right: 2%;
}
#dirlisting tr.entry td.icon,td.filename,td.size,td.date {
    border-bottom: groove;
}
#dirlisting td.size {
    width: 50px;
    text-align: right;
    padding-right: 5px;
}

/* horizontal lines */
hr {
	margin: 0;
}

/* page displayed footer area */
#footer {
	font-size: 9px;
	padding-left: 10px;
}


body
:lang(fa) { direction: rtl; font-size: 100%; font-family: Tahoma, Roya, sans-serif; float: right; }
:lang(he) { direction: rtl; }
 --></style>
</head><body id="ERR_INVALID_URL">
<div id="titles">
<h1>ERROR</h1>
<h2>The requested URL could not be retrieved</h2>
</div>
<hr>

<div id="content">
<p>The following error was encountered while trying to retrieve the URL: <a href="/">/</a></p>

<blockquote id="error">
<p><b>Invalid URL</b></p>
</blockquote>

<p>Some aspect of the requested URL is incorrect.</p>

<p>Some possible problems are:</p>
<ul>
<li><p>Missing or incorrect access protocol (should be <q>http://</q> or similar)</p></li>
<li><p>Missing hostname</p></li>
<li><p>Illegal double-escape in the URL-Path</p></li>
<li><p>Illegal character in hostname; underscores are not allowed.</p></li>
</ul>

<p>Your cache administrator is <a href="mailto:root?subject=CacheErrorInfo%20-%20ERR_INVALID_URL&amp;body=CacheHost%3A%20host%0D%0AErrPage%3A%20ERR_INVALID_URL%0D%0AErr%3A%20%5Bnone%5D%0D%0ATimeStamp%3A%20Thu,%2021%20Nov%202024%2010%3A16%3A07%20GMT%0D%0A%0D%0AClientIP%3A%20<srcip>%0D%0A%0D%0AHTTP%20Request%3A%0D%0A%0D%0A%0D%0A">root</a>.</p>
<br>
</div>

<hr>
<div id="footer">
<p>Generated Thu, 21 Nov 2024 10:16:07 GMT by host (squid/3.5.20)</p>
<!-- ERR_INVALID_URL -->
</div>
</body></html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "freecsstemplates.org"
         ],
         "hostname" : [
            "www.freecsstemplates.org"
         ],
         "url" : [
            "http://www.freecsstemplates.org"
         ]
      },
      "http" : {
         "bodymd5" : "258e0c3ab22c18c1fdb8122cb7e50569",
         "bodymmh3" : -210740888,
         "component" : [
            {
               "product" : "Squid",
               "productvendor" : "squid-cache"
            }
         ],
         "headermd5" : "49a24a427634ec054cb11ad596f68961",
         "headermmh3" : 754154600,
         "title" : "ERROR: The requested URL could not be retrieved"
      },
      "length" : 3631
   },
   "asn" : "AS55286",
   "city" : "Buffalo",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: squid/3.5.20\r\nMime-Version: 1.0\r\nDate: Thu, 21 Nov 2024 10:16:07 GMT\r\nContent-Type: text/html;charset=utf-8\r\nContent-Length: 3418\r\nX-Squid-Error: ERR_INVALID_URL 0\r\nConnection: close\r\n\r\n\n<html><head>\n<meta type=\"copyright\" content=\"Copyright (C) 1996-2016 The Squid Software Foundation and contributors\">\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\n<title>ERROR: The requested URL could not be retrieved</title>\n<style type=\"text/css\"><!-- \n /*\n * Copyright (C) 1996-2016 The Squid Software Foundation and contributors\n *\n * Squid software is distributed under GPLv2+ license and includes\n * contributions from numerous individuals and organizations.\n * Please see the COPYING and CONTRIBUTORS files for details.\n */\n\n/*\n Stylesheet for Squid Error pages\n Adapted from design by Free CSS Templates\n http://www.freecsstemplates.org\n Released for free under a Creative Commons Attribution 2.5 License\n*/\n\n/* Page basics */\n* {\n\tfont-family: verdana, sans-serif;\n}\n\nhtml body {\n\tmargin: 0;\n\tpadding: 0;\n\tbackground: #efefef;\n\tfont-size: 12px;\n\tcolor: #1e1e1e;\n}\n\n/* Page displayed title area */\n#titles {\n\tmargin-left: 15px;\n\tpadding: 10px;\n\tpadding-left: 100px;\n\tbackground: url('/squid-internal-static/icons/SN.png') no-repeat left;\n}\n\n/* initial title */\n#titles h1 {\n\tcolor: #000000;\n}\n#titles h2 {\n\tcolor: #000000;\n}\n\n/* special event: FTP success page titles */\n#titles ftpsuccess {\n\tbackground-color:#00ff00;\n\twidth:100%;\n}\n\n/* Page displayed body content area */\n#content {\n\tpadding: 10px;\n\tbackground: #ffffff;\n}\n\n/* General text */\np {\n}\n\n/* error brief description */\n#error p {\n}\n\n/* some data which may have caused the problem */\n#data {\n}\n\n/* the error message received from the system or other software */\n#sysmsg {\n}\n\npre {\n    font-family:sans-serif;\n}\n\n/* special event: FTP / Gopher directory listing */\n#dirmsg {\n    font-family: courier;\n    color: black;\n    font-size: 10pt;\n}\n#dirlisting {\n    margin-left: 2%;\n    margin-right: 2%;\n}\n#dirlisting tr.entry td.icon,td.filename,td.size,td.date {\n    border-bottom: groove;\n}\n#dirlisting td.size {\n    width: 50px;\n    text-align: right;\n    padding-right: 5px;\n}\n\n/* horizontal lines */\nhr {\n\tmargin: 0;\n}\n\n/* page displayed footer area */\n#footer {\n\tfont-size: 9px;\n\tpadding-left: 10px;\n}\n\n\nbody\n:lang(fa) { direction: rtl; font-size: 100%; font-family: Tahoma, Roya, sans-serif; float: right; }\n:lang(he) { direction: rtl; }\n --></style>\n</head><body id=\"ERR_INVALID_URL\">\n<div id=\"titles\">\n<h1>ERROR</h1>\n<h2>The requested URL could not be retrieved</h2>\n</div>\n<hr>\n\n<div id=\"content\">\n<p>The following error was encountered while trying to retrieve the URL: <a href=\"/\">/</a></p>\n\n<blockquote id=\"error\">\n<p><b>Invalid URL</b></p>\n</blockquote>\n\n<p>Some aspect of the requested URL is incorrect.</p>\n\n<p>Some possible problems are:</p>\n<ul>\n<li><p>Missing or incorrect access protocol (should be <q>http://</q> or similar)</p></li>\n<li><p>Missing hostname</p></li>\n<li><p>Illegal double-escape in the URL-Path</p></li>\n<li><p>Illegal character in hostname; underscores are not allowed.</p></li>\n</ul>\n\n<p>Your cache administrator is <a href=\"mailto:root?subject=CacheErrorInfo%20-%20ERR_INVALID_URL&amp;body=CacheHost%3A%20host%0D%0AErrPage%3A%20ERR_INVALID_URL%0D%0AErr%3A%20%5Bnone%5D%0D%0ATimeStamp%3A%20Thu,%2021%20Nov%202024%2010%3A16%3A07%20GMT%0D%0A%0D%0AClientIP%3A%20<srcip>%0D%0A%0D%0AHTTP%20Request%3A%0D%0A%0D%0A%0D%0A\">root</a>.</p>\n<br>\n</div>\n\n<hr>\n<div id=\"footer\">\n<p>Generated Thu, 21 Nov 2024 10:16:07 GMT by host (squid/3.5.20)</p>\n<!-- ERR_INVALID_URL -->\n</div>\n</body></html>\n",
   "datamd5" : "3a6b701841c55d838214f6e3bbc94aa5",
   "datammh3" : 146709604,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS55286",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "24shells.net",
         "cogentco.com",
         "servermania.com"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "BNS-34",
      "organization" : "B2 Net Solutions Inc.",
      "subnet" : "38.153.160.0/19"
   },
   "ip" : "38.153.176.7",
   "ipv6" : "false",
   "latitude" : "42.8867",
   "location" : "42.8867,-78.8927",
   "longitude" : "-78.8927",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SERVER-MANIA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8080,
   "product" : "Squid",
   "productvendor" : "squid-cache",
   "productversion" : "3.5.20",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "38.153.160.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 207.192.73.249:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      207.192.73.249
      Network
      207.192.72.0/22
      Domain(s)
      metrowebworks.com
      Device

      <enterprise field>: device.class

      URL

      http://nyc.metrowebworks.com:8080/ 302

      Reverse DNS
      nyc.metrowebworks.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan::redirect::3
    • Product
      Webmin Webmin 1.970
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d211edd65fd83be9e01a0623713f398d
      HTTP Header MD5
      ed605b558eda4b7b595f058564c550a9
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e 
    • HTTP/1.0 302 Moved Temporarily
Date: Thu, 21 Nov 2024 10:16:07 GMT
Server: MiniServ/1.970
Location: https://nyc.metrowebworks.com:8080/
Connection: close


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "metrowebworks.com"
         ],
         "hostname" : [
            "nyc.metrowebworks.com"
         ],
         "url" : [
            "https://nyc.metrowebworks.com:8080/"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "ed605b558eda4b7b595f058564c550a9",
         "headermmh3" : 62230382
      },
      "length" : 161
   },
   "asn" : "AS63949",
   "city" : "Cedar Knolls",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Moved Temporarily\r\nDate: Thu, 21 Nov 2024 10:16:07 GMT\r\nServer: MiniServ/1.970\r\nLocation: https://nyc.metrowebworks.com:8080/\r\nConnection: close\r\n\r\n",
   "datamd5" : "d211edd65fd83be9e01a0623713f398d",
   "datammh3" : -2089336795,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "metrowebworks.com"
   ],
   "forward" : "nyc.metrowebworks.com",
   "geolocus" : {
      "asn" : "AS63949",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "cologix.com",
         "linode.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NAC-NETBLK10",
      "organization" : "Cologix, Inc",
      "subnet" : "207.192.72.0/22"
   },
   "host" : [
      "nyc"
   ],
   "hostname" : [
      "nyc.metrowebworks.com"
   ],
   "ip" : "207.192.73.249",
   "ipv6" : "false",
   "latitude" : "40.8229",
   "location" : "40.8229,-74.4592",
   "longitude" : "-74.4592",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Akamai Connected Cloud",
   "port" : 8080,
   "product" : "Webmin",
   "productvendor" : "Webmin",
   "productversion" : "1.970",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Moved Temporarily",
   "reverse" : [
      "nyc.metrowebworks.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan::redirect::3",
   "status" : 302,
   "subnet" : "207.192.72.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 63.44.42.195:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      63.44.42.195
      Network
      63.44.0.0/14
      Domain(s)
      myvzw.com
      Device

      <enterprise field>: device.class

      URL

      http://63.44.42.195:8080/login/?referer=/admin/ 200

      HTTP Title
      Login :: IBR600CLPE
      Reverse DNS
      host195.sub-63-44-42.myvzw.com
      ASN
      AS6167
      Organization
      CELLCO-PART
      Protocol
      http
      Source
      datascan::redirect::2

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      150b29a892047757a0ebccb4a988c8bf
      HTTP Header MD5
      40ed058cca0c0a1bea94560c5e23eee0
      HTTP Body MD5
      50f5494f589d7b92fcd072ee01d95d86 
    • HTTP/1.1 200 OK
Server: CradlepointHTTPService/1.0.0
Content-Type: text/html
Date: Thu, 21 Nov 2024 10:16:08 GMT
X-Frame-Options: DENY
Cache-Control: no-store, no-cache, private, max-age=0
Expires: -1
Pragma: no-cache
Transfer-Encoding: chunked

6a1
<!DOCTYPE HTML>
<html manifest="">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=yes">
<link rel="icon" href="resources/images/favicon.ico" type="image/x-icon"/>
<link rel="stylesheet" type="text/css" href="resources/all_css.cgz?ver=897c7f1">
<title>Login :: IBR600CLPE</title>
<script type="application/javascript">
var False = false,
True = true,
None = 'none';
cplogin = window.cplogin || {};
cplogin.present = true;
cplogin.pci_dss_mode = false;
cplogin.error = "undefined";
cplogin.wlanState = "On";
cplogin.numClients = 0;
cplogin.radio0Enable = true;
cplogin.rad0channel = 6;
cplogin.wlanRad0bss = [];



cplogin.wlanRad0bss.push({ssid: "IBR600C-978",hidden: False,enabled: False});



cplogin.wlanRad0bss.push({ssid: "Public-978",hidden: False,enabled: False});



cplogin.modems = [];


cplogin.modems.push({
manufacturer: "Cradlepoint Inc.",
model: "Internal LPE-VZ (SIM1)",
mode: "LTE",
signal: "100",
rssi: "-42"
});



cplogin.modems.push({
manufacturer: "Cradlepoint Inc.",
model: "Internal LPE-VZ (SIM2)",
mode: "Not Reported",
signal: "unknown",
rssi: ""
});




cplogin.showBanner = False;
cplogin.model = "IBR600CLPE";
cplogin.state = "connected";
cplogin.version = "6.6.4 (Thu Sep 27 21:30:55 UTC 2018)";
False = undefined;
True = undefined;
None = undefined;
</script>
<script type="application/javascript" src="ext-all.jgz"></script>
<script type="application/javascript" src="shared.jgz?ver=IBR600CLPE_897c7f1"></script>
<script type="application/javascript" src="login.jgz?ver=IBR600CLPE_897c7f1"></script>
</head>
<body></body>
</html>

0


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "50f5494f589d7b92fcd072ee01d95d86",
         "bodymmh3" : -1264646150,
         "headermd5" : "40ed058cca0c0a1bea94560c5e23eee0",
         "headermmh3" : 670921773,
         "title" : "Login :: IBR600CLPE"
      },
      "length" : 1965
   },
   "asn" : "AS6167",
   "city" : "Morristown",
   "country" : "US",
   "data" : "HTTP/1.1 200 OK\r\nServer: CradlepointHTTPService/1.0.0\r\nContent-Type: text/html\r\nDate: Thu, 21 Nov 2024 10:16:08 GMT\r\nX-Frame-Options: DENY\r\nCache-Control: no-store, no-cache, private, max-age=0\r\nExpires: -1\r\nPragma: no-cache\r\nTransfer-Encoding: chunked\r\n\r\n6a1\r\n<!DOCTYPE HTML>\n<html manifest=\"\">\n<head>\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta charset=\"UTF-8\">\n<meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=yes\">\n<link rel=\"icon\" href=\"resources/images/favicon.ico\" type=\"image/x-icon\"/>\n<link rel=\"stylesheet\" type=\"text/css\" href=\"resources/all_css.cgz?ver=897c7f1\">\n<title>Login :: IBR600CLPE</title>\n<script type=\"application/javascript\">\nvar False = false,\nTrue = true,\nNone = 'none';\ncplogin = window.cplogin || {};\ncplogin.present = true;\ncplogin.pci_dss_mode = false;\ncplogin.error = \"undefined\";\ncplogin.wlanState = \"On\";\ncplogin.numClients = 0;\ncplogin.radio0Enable = true;\ncplogin.rad0channel = 6;\ncplogin.wlanRad0bss = [];\n\n\n\ncplogin.wlanRad0bss.push({ssid: \"IBR600C-978\",hidden: False,enabled: False});\n\n\n\ncplogin.wlanRad0bss.push({ssid: \"Public-978\",hidden: False,enabled: False});\n\n\n\ncplogin.modems = [];\n\n\ncplogin.modems.push({\nmanufacturer: \"Cradlepoint Inc.\",\nmodel: \"Internal LPE-VZ (SIM1)\",\nmode: \"LTE\",\nsignal: \"100\",\nrssi: \"-42\"\n});\n\n\n\ncplogin.modems.push({\nmanufacturer: \"Cradlepoint Inc.\",\nmodel: \"Internal LPE-VZ (SIM2)\",\nmode: \"Not Reported\",\nsignal: \"unknown\",\nrssi: \"\"\n});\n\n\n\n\ncplogin.showBanner = False;\ncplogin.model = \"IBR600CLPE\";\ncplogin.state = \"connected\";\ncplogin.version = \"6.6.4 (Thu Sep 27 21:30:55 UTC 2018)\";\nFalse = undefined;\nTrue = undefined;\nNone = undefined;\n</script>\n<script type=\"application/javascript\" src=\"ext-all.jgz\"></script>\n<script type=\"application/javascript\" src=\"shared.jgz?ver=IBR600CLPE_897c7f1\"></script>\n<script type=\"application/javascript\" src=\"login.jgz?ver=IBR600CLPE_897c7f1\"></script>\n</head>\n<body></body>\n</html>\n\r\n0\r\n\r\n",
   "datamd5" : "150b29a892047757a0ebccb4a988c8bf",
   "datammh3" : 1119588573,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "myvzw.com"
   ],
   "forward" : "63.44.42.195",
   "geolocus" : {
      "asn" : "AS6167",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "myvzw.com",
         "verizon.com",
         "verizon.net",
         "verizonbusiness.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NETBLK-UUNET97DU",
      "organization" : "Verizon Business",
      "subnet" : "63.40.0.0/13"
   },
   "host" : [
      "host195"
   ],
   "hostname" : [
      "63.44.42.195",
      "host195.sub-63-44-42.myvzw.com"
   ],
   "ip" : "63.44.42.195",
   "ipv6" : "false",
   "latitude" : "40.7938",
   "location" : "40.7938,-74.4878",
   "longitude" : "-74.4878",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CELLCO-PART",
   "port" : 8080,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "host195.sub-63-44-42.myvzw.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan::redirect::2",
   "status" : 200,
   "subdomains" : [
      "sub-63-44-42.myvzw.com"
   ],
   "subnet" : "63.44.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/login/?referer=/admin/"
}

  • 34.127.39.9:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:09 UTC

    • IP
      34.127.39.9
      Network
      34.120.0.0/13
      Domain(s)
      googleusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://34.127.39.9:8080/ 302

      Reverse DNS
      9.39.127.34.bc.googleusercontent.com
      ASN
      AS396982
      Organization
      GOOGLE-CLOUD-PLATFORM
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      tornadoweb Tornado 6.1
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      93037393c049941aefe82a64f1420942
      HTTP Header MD5
      b95e95976d89556664053ead34771bd6
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e 
    • HTTP/1.1 302 Found
Server: TornadoServer/6.1
Content-Type: text/html; charset=UTF-8
Date: Thu, 21 Nov 2024 10:16:08 GMT
Location: /lab?
Content-Length: 0
Connection: close


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "headermd5" : "b95e95976d89556664053ead34771bd6",
         "headermmh3" : -1490327304
      },
      "length" : 181
   },
   "asn" : "AS396982",
   "city" : "The Dalles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nServer: TornadoServer/6.1\r\nContent-Type: text/html; charset=UTF-8\r\nDate: Thu, 21 Nov 2024 10:16:08 GMT\r\nLocation: /lab?\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "93037393c049941aefe82a64f1420942",
   "datammh3" : -886328232,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "googleusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS396982",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGL-2",
      "organization" : "Google LLC",
      "subnet" : "34.127.0.0/17"
   },
   "host" : [
      9
   ],
   "hostname" : [
      "9.39.127.34.bc.googleusercontent.com"
   ],
   "ip" : "34.127.39.9",
   "ipv6" : "false",
   "latitude" : "45.6056",
   "location" : "45.6056,-121.1807",
   "longitude" : "-121.1807",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE-CLOUD-PLATFORM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8080,
   "product" : "Tornado",
   "productvendor" : "tornadoweb",
   "productversion" : "6.1",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "9.39.127.34.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "127.34.bc.googleusercontent.com",
      "34.bc.googleusercontent.com",
      "39.127.34.bc.googleusercontent.com",
      "bc.googleusercontent.com"
   ],
   "subnet" : "34.120.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 58.144.236.146:8080 (tcp/http) - last seen on 2024-11-21 at 10:16:08 UTC

    • IP
      58.144.236.146
      Network
      58.144.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://58.144.236.146:8080/ 404

      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f929136b5d3ba2ad351cb4b85f9c9fe5
      HTTP Header MD5
      a3b731f8fb74def49042cac2e077a2b7
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e 
    • HTTP/1.1 404 Not Found
Content-Length: 0
X-NWS-LOG-UUID: 12944049520910167582
Connection: close
Server: Lego Server
Date: Thu, 21 Nov 2024 10:16:07 GMT
X-Cache-Lookup: Return Directly


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "a3b731f8fb74def49042cac2e077a2b7",
         "headermmh3" : -189101272
      },
      "length" : 193
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent-Length: 0\r\nX-NWS-LOG-UUID: 12944049520910167582\r\nConnection: close\r\nServer: Lego Server\r\nDate: Thu, 21 Nov 2024 10:16:07 GMT\r\nX-Cache-Lookup: Return Directly\r\n\r\n",
   "datamd5" : "f929136b5d3ba2ad351cb4b85f9c9fe5",
   "datammh3" : -1289729923,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-CQ",
      "organization" : "CNC Group CHINA169 Chongqing Province Network",
      "subnet" : "58.144.0.0/16"
   },
   "ip" : "58.144.236.146",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8080,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 404,
   "subnet" : "58.144.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}