Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
66.181.170.76

Network
66.181.168.0/21

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

https://66.181.170.76:9402/ 200

HTTP Title
Web Client

ASN
AS17882

Organization
UNIVISION LLC

Protocol
http Cert not expired http

Source
datascan
Operating System
FreeBSD FreeBSD

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Organization
hikvision

Subject Organization
hikvision

SHA256 Fingerprint
fe2945b691bf3240e0936b9420ea767bde41d1a621856e6b9e966753a1250745

Validity Not Before
2017-06-29T06:06:21Z

Validity Not After
2027-06-27T06:06:21Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
25492272dbb0b89ebd5f017cd1e30bd1

HTTP Header MD5
5c531f6e1a741a4c4c0b7222cc9f142f

HTTP Body MD5
440679daddfcdf53c2e7d03a0fe46f3e

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 07 Nov 2024 05:34:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 4342
Last-Modified: Fri, 12 May 2023 05:29:42 GMT
Connection: close
Vary: Accept-Encoding
ETag: "645dcec6-10f6"
Cache-Control: no-store
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes

<!doctype html><html><head><meta charset="utf-8"/><meta name="viewport" content="width=device-width"/><meta http-equiv="Cache-Control" content="no-cache"><meta http-equiv="Expires" content="0"><meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"/><style>html,
    body {
      width: 100%;
      height: 100%;
      margin: 0;
      overflow: hidden;
    }

    .loading {
      position: absolute;
      top: 0;
      left: 0;
      width: 100%;
      height: 100%;
      margin: 0;
      padding: 0;
      font-size: 18px;
      font-family: segoe UI, Microsoft YaHei, Arial, Helvetica, sans-serif;
      color: #666;
      display: flex;
      display: -webkit-flex;
      display: -ms-flexbox;
      align-items: center;
      justify-content: center;
      /*for IE10*/
      -ms-flex-pack: center;
      -ms-flex-align: center;
      /*for old chrome*/
      -webkit-align-items: center;
      -webkit-justify-content: center;
    }

    .loading-cont {
      width: 100%;
      height: 100%;
    }

    .loading-on,
    .loading-on-chart-wrapper {
      width: 100%;
      height: 100%;
      position: absolute;
      top: 0;
      left: 0;
      margin: 0;
      padding: 0;
      font-size: 18px;
      font-family: segoe UI, Microsoft YaHei, Arial, Helvetica, sans-serif;
      color: #666;
      display: flex;
      display: -webkit-flex;
      display: -ms-flexbox;
      align-items: center;
      justify-content: center;
      /*for IE10*/
      -ms-flex-pack: center;
      -ms-flex-align: center;
      /*for old chrome*/
      -webkit-align-items: center;
      -webkit-justify-content: center;
    }

    .loading-icon {
      display: inline-block;
      width: 54px;
      height: 54px;
    }

    .loading-icon-chart {
      display: inline-block;
      width: 100%;
      height: 100%;
      background-image: url("../images/BI/charts_loading.gif?1683834013789");
      background-repeat: no-repeat;
      background-size: 100% 100%;
      background-position: center;
      z-index: 4;
    }

    .loading-txt {
      display: inline-block;
      vertical-align: top;
      margin-top: 15px;
      margin-left: 10px;
    }

    .loading-end {
      display: none;
    }

    .vsm-error {
      display: none;
    }
    .ztree-sprite-preload{
      width:100px;
      height: 0;
      background-image:url("./Common/assets/image/tree/hcp/sprite.svg?1683834013789");
    }
    .checkbox_false_full_focus {
      background-image: url("./Common/assets/image/tree/commmon_toggle_check_box_hov.svg?1683834013789");
    }
      /* 门户背景图片预加载 */
    .portal-bg-preload{
      width: 100px;
      height: 0;
      background-image: url("./Portal/assets/img/bg.png?1683834013789");
    }
    .timeSelect{
      z-index: 8!important;
    }</style><title>Web Client</title><script defer="defer" src="./Common/app.js?0be31f882206116fcdf4"></script></head><body id="body"><div class="ztree-sprite-preload"></div><div class="checkbox_false_full_focus"></div><div class="loading" id="loading" style="display: none;"><div class="loading-cont"><div class="loading-on"><div class="loading-icon"></div><div class="loading-txt">Loading...</div></div><div class="loading-end"><div class="loading-error-msg">Loading Error.Please refresh the page.</div><div class="cookie-error-msg">You cannot access the system due to the Internet Explorer's security settings. Enter Internet Options > Security, uncheck Enable Protected Mode, and restart the Internet Explorer to try again.</div></div><div class="vsm-error">Error code:<span class="vsm-error-code"></span></div></div></div><script src="./Common/polyfill.min.js?1683834013789"></script><script src="./Common/vendorGraph.js?1683834013789"></script><script src="./Common/vendorLib.js?1683834013789"></script><script src="./Common/vendorUtil.js?1683834013789"></script><script src="./Common/vueDepends.js?1683834013789"></script><script src="./Common/main.js?1683834013789"></script><script src="./Common/common.js?1683834013789"></script><script src="./Common/components.js?1683834013789"></script><div id="web-control-ocx-container" style="width:1px;height: 1px;position: absolute;top: -1000px;"></div></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:34:21.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "440679daddfcdf53c2e7d03a0fe46f3e",
         "bodymmh3" : 476539818,
         "header" : [
            {
               "value" : "Fri, 12 May 2023 05:29:42 GMT",
               "name" : "Last-Modified"
            },
            {
               "value" : "645dcec6-10f6",
               "name" : "ETag"
            }
         ],
         "headermd5" : "5c531f6e1a741a4c4c0b7222cc9f142f",
         "headermmh3" : 309034754,
         "title" : "Web Client"
      },
      "length" : 4662
   },
   "asn" : "AS17882",
   "city" : "Ulan Bator",
   "country" : "MN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:34:46 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 4342\r\nLast-Modified: Fri, 12 May 2023 05:29:42 GMT\r\nConnection: close\r\nVary: Accept-Encoding\r\nETag: \"645dcec6-10f6\"\r\nCache-Control: no-store\r\nX-Frame-Options: SAMEORIGIN\r\nAccept-Ranges: bytes\r\n\r\n<!doctype html><html><head><meta charset=\"utf-8\"/><meta name=\"viewport\" content=\"width=device-width\"/><meta http-equiv=\"Cache-Control\" content=\"no-cache\"><meta http-equiv=\"Expires\" content=\"0\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no\"/><style>html,\r\n    body {\r\n      width: 100%;\r\n      height: 100%;\r\n      margin: 0;\r\n      overflow: hidden;\r\n    }\r\n\r\n    .loading {\r\n      position: absolute;\r\n      top: 0;\r\n      left: 0;\r\n      width: 100%;\r\n      height: 100%;\r\n      margin: 0;\r\n      padding: 0;\r\n      font-size: 18px;\r\n      font-family: segoe UI, Microsoft YaHei, Arial, Helvetica, sans-serif;\r\n      color: #666;\r\n      display: flex;\r\n      display: -webkit-flex;\r\n      display: -ms-flexbox;\r\n      align-items: center;\r\n      justify-content: center;\r\n      /*for IE10*/\r\n      -ms-flex-pack: center;\r\n      -ms-flex-align: center;\r\n      /*for old chrome*/\r\n      -webkit-align-items: center;\r\n      -webkit-justify-content: center;\r\n    }\r\n\r\n    .loading-cont {\r\n      width: 100%;\r\n      height: 100%;\r\n    }\r\n\r\n    .loading-on,\r\n    .loading-on-chart-wrapper {\r\n      width: 100%;\r\n      height: 100%;\r\n      position: absolute;\r\n      top: 0;\r\n      left: 0;\r\n      margin: 0;\r\n      padding: 0;\r\n      font-size: 18px;\r\n      font-family: segoe UI, Microsoft YaHei, Arial, Helvetica, sans-serif;\r\n      color: #666;\r\n      display: flex;\r\n      display: -webkit-flex;\r\n      display: -ms-flexbox;\r\n      align-items: center;\r\n      justify-content: center;\r\n      /*for IE10*/\r\n      -ms-flex-pack: center;\r\n      -ms-flex-align: center;\r\n      /*for old chrome*/\r\n      -webkit-align-items: center;\r\n      -webkit-justify-content: center;\r\n    }\r\n\r\n    .loading-icon {\r\n      display: inline-block;\r\n      width: 54px;\r\n      height: 54px;\r\n    }\r\n\r\n    .loading-icon-chart {\r\n      display: inline-block;\r\n      width: 100%;\r\n      height: 100%;\r\n      background-image: url(\"../images/BI/charts_loading.gif?1683834013789\");\r\n      background-repeat: no-repeat;\r\n      background-size: 100% 100%;\r\n      background-position: center;\r\n      z-index: 4;\r\n    }\r\n\r\n    .loading-txt {\r\n      display: inline-block;\r\n      vertical-align: top;\r\n      margin-top: 15px;\r\n      margin-left: 10px;\r\n    }\r\n\r\n    .loading-end {\r\n      display: none;\r\n    }\r\n\r\n    .vsm-error {\r\n      display: none;\r\n    }\r\n    .ztree-sprite-preload{\r\n      width:100px;\r\n      height: 0;\r\n      background-image:url(\"./Common/assets/image/tree/hcp/sprite.svg?1683834013789\");\r\n    }\r\n    .checkbox_false_full_focus {\r\n      background-image: url(\"./Common/assets/image/tree/commmon_toggle_check_box_hov.svg?1683834013789\");\r\n    }\r\n      /* \u95e8\u6237\u80cc\u666f\u56fe\u7247\u9884\u52a0\u8f7d */\r\n    .portal-bg-preload{\r\n      width: 100px;\r\n      height: 0;\r\n      background-image: url(\"./Portal/assets/img/bg.png?1683834013789\");\r\n    }\r\n    .timeSelect{\r\n      z-index: 8!important;\r\n    }</style><title>Web Client</title><script defer=\"defer\" src=\"./Common/app.js?0be31f882206116fcdf4\"></script></head><body id=\"body\"><div class=\"ztree-sprite-preload\"></div><div class=\"checkbox_false_full_focus\"></div><div class=\"loading\" id=\"loading\" style=\"display: none;\"><div class=\"loading-cont\"><div class=\"loading-on\"><div class=\"loading-icon\"></div><div class=\"loading-txt\">Loading...</div></div><div class=\"loading-end\"><div class=\"loading-error-msg\">Loading Error.Please refresh the page.</div><div class=\"cookie-error-msg\">You cannot access the system due to the Internet Explorer's security settings. Enter Internet Options > Security, uncheck Enable Protected Mode, and restart the Internet Explorer to try again.</div></div><div class=\"vsm-error\">Error code:<span class=\"vsm-error-code\"></span></div></div></div><script src=\"./Common/polyfill.min.js?1683834013789\"></script><script src=\"./Common/vendorGraph.js?1683834013789\"></script><script src=\"./Common/vendorLib.js?1683834013789\"></script><script src=\"./Common/vendorUtil.js?1683834013789\"></script><script src=\"./Common/vueDepends.js?1683834013789\"></script><script src=\"./Common/main.js?1683834013789\"></script><script src=\"./Common/common.js?1683834013789\"></script><script src=\"./Common/components.js?1683834013789\"></script><div id=\"web-control-ocx-container\" style=\"width:1px;height: 1px;position: absolute;top: -1000px;\"></div></body></html>",
   "datamd5" : "25492272dbb0b89ebd5f017cd1e30bd1",
   "datammh3" : 1104439257,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "fingerprint" : {
      "md5" : "9b40c81cdd76911d841f9bfc5904d99a",
      "sha1" : "b282a0d3d43f49dac3e5d48193daf084c48755b1",
      "sha256" : "fe2945b691bf3240e0936b9420ea767bde41d1a621856e6b9e966753a1250745"
   },
   "geolocus" : {
      "asn" : "AS17882",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MN",
      "countryname" : "Mongolia",
      "domain" : [
         "unitel.mn",
         "univision.mn"
      ],
      "isineu" : "false",
      "latitude" : "46.862496",
      "location" : "46.862496,103.846656",
      "longitude" : "103.846656",
      "netname" : "Univision",
      "organization" : "Univision LLC",
      "subnet" : "66.181.170.64/26"
   },
   "ip" : "66.181.170.76",
   "ipv6" : "false",
   "issuer" : {
      "city" : "china",
      "country" : "CN",
      "organization" : "hikvision",
      "organizationalunit" : "hik"
   },
   "latitude" : "47.9094",
   "location" : "47.9094,106.8819",
   "longitude" : "106.8819",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNIVISION LLC",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 9402,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "84:eb:20:ba:6d:3b:68:5d",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "city" : "china",
      "country" : "CN",
      "organization" : "hikvision",
      "organizationalunit" : "hik"
   },
   "subnet" : "66.181.168.0/21",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2027-06-27T06:06:21Z",
      "notbefore" : "2017-06-29T06:06:21Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
38.190.12.254

Network
38.190.12.0/22

Domain(s)
localhost.localdomain

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

https://38.190.12.254:9402/ 200

ASN
AS269690

Organization
VILACONECTA SOLUCOES EM TECNOLOGIA LTDA

Protocol
http Cert not expired http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe
Issuer Organization
VMware Installer

Subject Organization
VMware, Inc

Subject Email
ssl-certificates@vmware.com

Subject Common Name
localhost.localdomain

Subject Alt Name
localhost.localdomain

SHA256 Fingerprint
0c9c82d8bdeb42eaa7382e98b310c8f89c27d921f1e93d5f3176f5f799b003b5

Validity Not Before
2020-09-16T11:36:49Z

Validity Not After
2032-03-17T11:36:49Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
241af9cac8a73ff92304f3ab1099dd6b

HTTP Header MD5
0eb0364546195f4efcb7df4dd50bc1e2

HTTP Body MD5
ff21d4a95b17cc5b4433e58769970c35

HTTP/1.1 200 OK
Date: Thu, 7 Nov 2024 02:12:33 GMT
Connection: close
Content-Security-Policy: upgrade-insecure-requests
Content-Type: text/html
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1
Content-Length: 258

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">

<html lang="en">
<head>
    <meta http-equiv="content-type" content="text/html; charset=utf8">
    <meta http-equiv="refresh" content="0;URL='/ui'"/>
</head>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:15:31.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/TR/html4/strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "ff21d4a95b17cc5b4433e58769970c35",
         "bodymmh3" : 1524331279,
         "headermd5" : "0eb0364546195f4efcb7df4dd50bc1e2",
         "headermmh3" : 708450297
      },
      "length" : 552
   },
   "asn" : "AS269690",
   "ca" : "false",
   "city" : "S\u00e3o Paulo",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 7 Nov 2024 02:12:33 GMT\r\nConnection: close\r\nContent-Security-Policy: upgrade-insecure-requests\r\nContent-Type: text/html\r\nStrict-Transport-Security: max-age=31536000\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: DENY\r\nX-XSS-Protection: 1\r\nContent-Length: 258\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">\n\n<html lang=\"en\">\n<head>\n    <meta http-equiv=\"content-type\" content=\"text/html; charset=utf8\">\n    <meta http-equiv=\"refresh\" content=\"0;URL='/ui'\"/>\n</head>\n</html>\n",
   "datamd5" : "241af9cac8a73ff92304f3ab1099dd6b",
   "datammh3" : 1998010091,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "localhost.localdomain"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "7373be8ed5d77d8f1a8c096da8bafa66",
      "sha1" : "d29996c42e3eaa425e6a8050771a77babd80f7e6",
      "sha256" : "0c9c82d8bdeb42eaa7382e98b310c8f89c27d921f1e93d5f3176f5f799b003b5"
   },
   "geolocus" : {
      "asn" : "AS269690",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "cogentco.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "COGENT-A",
      "organization" : "PSINet, Inc.",
      "subnet" : "38.190.12.0/22"
   },
   "hostname" : [
      "localhost.localdomain"
   ],
   "ip" : "38.190.12.254",
   "ipv6" : "false",
   "issuer" : {
      "organization" : "VMware Installer"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "dataEncipherment"
   ],
   "latitude" : "-23.5335",
   "location" : "-23.5335,-46.6359",
   "longitude" : "-46.6359",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "VILACONECTA SOLUCOES EM TECNOLOGIA LTDA",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 9402,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "72:e6:0d:cb:56:7c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "altname" : [
         "localhost.localdomain"
      ],
      "city" : "Palo Alto",
      "commonname" : "localhost.localdomain",
      "country" : "US",
      "email" : "ssl-certificates@vmware.com",
      "organization" : "VMware, Inc",
      "organizationalunit" : "VMware ESX Server Default Certificate"
   },
   "subnet" : "38.190.12.0/22",
   "tld" : [
      "localdomain"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2032-03-17T11:36:49Z",
      "notbefore" : "2020-09-16T11:36:49Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
41.193.170.154

Network
41.193.128.0/18

Domain(s)
enprotec.co.za

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

https://41.193.170.154:9402/ 200

HTTP Title
Ess

ASN
AS11845

Organization
Vox-Telecom

Protocol
http Cert not expired http

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft IIS 8.5

HTTP Component(s)
Microsoft ASP.NET 4.0.30319

CPE(s)

<enterprise field>: cpe
Issuer Common Name
RapidSSL TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Common Name
ess.enprotec.co.za

Subject Alt Name
ess.enprotec.co.za www.ess.enprotec.co.za

SHA256 Fingerprint
d8b49ae0da7a2632487409407a928b71f25dcf99db7396b45c710b3f3956eeba

Validity Not Before
2024-04-12T00:00:00Z

Validity Not After
2025-04-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0e4213040f6a539fb2651a50bddddf0e

HTTP Header MD5
feadf56db22d47f6a4f6d731ad36de19

HTTP Body MD5
6a0e0471f911398b1d92bb8d3e7de403

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=2qjxor5oblrqqxogkkirqon1; path=/; HttpOnly; SameSite=Lax
Set-Cookie: EssNavBar2qjxor5oblrqqxogkkirqon1=1%3b0; expires=Fri, 07-Nov-2025 05:03:00 GMT; path=/
X-Powered-By: ASP.NET
Date: Thu, 07 Nov 2024 05:03:00 GMT
Connection: close
Content-Length: 26004



<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head id="Head1"><link href="App_Themes/Glass/Editors/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Editors/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/GridView/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/GridView/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/HtmlEditor/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/HtmlEditor/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Other/essStyles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/PivotGrid/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/PivotGrid/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Scheduler/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Scheduler/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/SpellChecker/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/TreeList/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/TreeList/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Web/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/Web/styles.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/XtraReports/sprite.css" type="text/css" rel="stylesheet" /><link href="App_Themes/Glass/XtraReports/styles.css" type="text/css" rel="stylesheet" /><link rel="stylesheet" type="text/css" href="/DXR.axd?r=0_1237,1_32,0_1239,1_18,0_1059-OETot" /><meta http-equiv="X-UA-Compatible" content="IE=edge" /><title>
	Ess
</title><link id="masterLink" rel="Stylesheet" media="all" type="text/css" href="App_Themes/Glass/Other/essStyles.css" />
<style type="text/css">
	#rpLHSNavBarPanel_nBarMenu a:visited { color:#003399; }
	#rpLHSNavBarPanel_nBarMenu a:visited * { color:#003399; }
	#rpLHSNavBarPanel_nBarMenu a:hover { color:#003399; }
	#rpLHSNavBarPanel_nBarMenu a:hover * { color:#003399; }

</style></head>
<body id="masterBody" style="background-image:url(/Images/VipLines.png);">
    <form method="post" action="./" id="sitemasterform" enctype="multipart/form-data">
<div class="aspNetHidden">
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJNDMyNDU0NjAzD2QWAmYPZBYEAgEPZBYCAhUPFgIeBGhyZWYFJy4uL0FwcF9UaGVtZXMvR2xhc3MvT3RoZXIvZXNzU3R5bGVzLmNzc2QCAw8WAh4Fc3R5bGUFK2JhY2tncm91bmQtaW1hZ2U6dXJsKC9JbWFnZXMvVmlwTGluZXMucG5nKTsWAgIBD2QWBAILDxYCHgdWaXNpYmxlaGQCDQ9kFgJmD2QWAmYPZBYCAgEPZBYCAgEPZBYCZg9kFgQCBQ8WAh8CaBYCAgEPFCsABg8WBB4PRGF0YVNvdXJjZUJvdW5kZx8CaGRkZDwrAAwBCzwrAAUBABYIHgpWYWx1ZUZpZWxkBQJJZB4JVGV4dEZpZWxkBQ9EaXNwbGF5VXNlck5hbWUeEkVuYWJsZUNhbGxiYWNrTW9kZWgeJ0VuYWJsZVN5bmNocm9uaXphdGlvbk9uUGVyZm9ybUNhbGxiYWNrIGhkZGQCBw8WAh8CaGQYAQUeX19Db250cm9sc1JlcXVpcmVQb3N0QmFja0tleV9fFgUFFmN0bDAwJHJwTEhTTmF2QmFyUGFuZWwFH2N0bDAwJHJwTEhTTmF2QmFyUGFuZWwkbkJhck1lbnUFGGN0bDAwJHJwTWFpbkNvbnRlbnRQYW5lbAUhY3RsMDAkcnBNYWluQ29udGVudFBhbmVsJE1haW5NZW51BRdjdGwwMCRycE1haW5Gb290ZXJQYW5lbCkYT6A8FGFp5Ic4xfBErKUxoweVl+JU3ly3urtwTuE0" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['sitemasterform'];
if (!theForm) {
    theForm = document.sitemasterform;
}
function __doPostBack(eventTarget, eventArgument) {
    if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
        theForm.__EVENTTARGET.value = eventTarget;
        theForm.__EVENTARGUMENT.value = eventArgument;
        theForm.submit();
    }
}
//]]>
</script>


<script src="/WebResource.axd?d=ooEqlrhyOOX4HuIo3qHi8tordqP5hu0brISKMYWFAxbzDgnC2BxyR4MzINaUiWm4u_GrySuvPqjc5Zmvpq6Xa0r3wQyIWVipzCvVlFGO2-I1&amp;t=638434183896236235" type="text/javascript"></script>


<script src="/js/script.js" type="text/javascript"></script>
<script src="/js/jquery.js" type="text/javascript"></script>
<script src="/js/jquery.multiSelect.js" type="text/javascript"></script>
<div class="aspNetHidden">

	<input type="hidden" name="__VIEWSTATEGENERATOR" id="__VIEWSTATEGENERATOR" value="CA0B0334" />
	<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEdAANqD/lHF9iVPKJWwEMHkUokGSNP2A5Y9+3KRqzCMrY1du8cwEmEaWOPL0G+pQ1l+BK13LJo7HEZSIOWBIFqtOZ9FRaoPNtCxCKSJzAEP/9E4Q==" />
</div>
    <script id="dxis_1973372183" src="/DXR.axd?r=1_225,1_130,1_218,1_164,1_128,1_203,1_207,1_215,1_127,1_210,1_216,1_201,1_185-OETot" type="text/javascript"></script><script id="dxss_125225385" type="text/javascript">
<!--

var dxo = new ASPxClientCallback('ImpersonateCallback');
window['ImpersonateCallback'] = dxo;
dxo.callBack = function(arg) { WebForm_DoCallback('ctl00$ImpersonateCallback',arg,ASPx.Callback,'ImpersonateCallback',ASPx.CallbackError,true); };
dxo.uniqueID = 'ctl00$ImpersonateCallback';
dxo.CallbackComplete.AddHandler(ImpersonateCallbackComplete);
dxo.AfterCreate();

//-->
</script>
    <script id="dxss_1531972137" type="text/javascript">
<!--

var dxo = new ASPxClientCallback('ThemeCallback');
window['ThemeCallback'] = dxo;
dxo.callBack = function(arg) { WebForm_DoCallback('ctl00$ThemeCallback',arg,ASPx.Callback,'ThemeCallback',ASPx.CallbackError,true); };
dxo.uniqueID = 'ctl00$ThemeCallback';
dxo.CallbackComplete.AddHandler(ThemeCallbackComplete);
dxo.AfterCreate();

//-->
</script>
    <div id="divAllContent" class="divContent">
        <div id="divContentRow" class="divContentRow">
            <div id="MainContentRow" class="divLeft">
                <div class="divLeft">
                    <div class="divTopLogoLeft">
                        <div class="divTopLogo">
                            <img id="TopLogoImageLeft" src="images/BannerTopLeft.png" align="left" style="height:50px;" />
                        </div>
                    </div>
                    <div class="divTopLogoRight">
                        <div class="divTopLogo">
                            <img id="TopLogoImageRight" src="images/BannerTopRight.png" align="right" style="height:50px;" />
                        </div>
                    </div>
                </div>
                <div class="divClear"></div>
            </div>
            <div class="divClear"></div>
            <div class="divLeft">
                <div class="divPageLeftBlock">
                    <div class="divLeft">
                        <div class="divLeft">
                            <table class="dxrpControl_Glass dxrpWithoutHeader_Glass dxrp-hasDefaultImages dxrp-noCollapsing" cellspacing="0" cellpadding="0" id="rpLHSNavBarPanel" style="width:100%;border-collapse:collapse;border-collapse:separate;">
	<tr>
		<td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpNoHeaderTopLeftCorner.png" alt="" style="height:5px;width:5px;" /></td><td class="dxrpNHTE" style="background-color:#EBF2F4;border-top-color:#7EACB1;border-top-style:Solid;border-top-width:1px;"></td><td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpNoHeaderTopRightCorner.png" alt="" style="height:5px;width:5px;" /></td>
	</tr><tr class="dxrpCR">
		<td class="dxrpLE" style="background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-left-color:#7EACB1;border-left-style:Solid;border-left-width:1px;"></td><td id="rpLHSNavBarPanel_RPC" class="dxrp dxrpcontent dx-borderBox" align="center" style="background-color:#EBF2F4;font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;background-image:url(/DXR.axd?r=0_1229-NETot);background-repeat:repeat-x;background-position:left bottom;padding-left:4px;padding-top:10px;padding-bottom:10px;">
                                        <ul class="dxnbLite_Glass dxnbSys" id="rpLHSNavBarPanel_nBarMenu" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;">
			<li class="dxnb-gr" style="margin-bottom:0px;"><div class="dxnb-header" style="cursor:default;">
				<img class="dxWeb_nbCollapse_Glass dxnb-btn" src="/DXR.axd?r=1_36-OETot" alt="" style="height:16px;width:16px;" /><span class="dxnb-ghtext dx-vam dx-wrap">Home</span>
			</div><div class="dxnb-headerCollapsed" onclick="ASPx.NBHClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0)" style="display:none;">
				<img class="dxWeb_nbExpand_Glass dxnb-btn" src="/DXR.axd?r=1_36-OETot" alt="" style="height:16px;width:16px;" /><span class="dxnb-ghtext dx-vam dx-wrap">Home</span>
			</div><ul class="dxnb-content dxnb-left" style="padding-left:1px;padding-right:1px;padding-top:2px;padding-bottom:2px;">
				<li class="dxnb-item" onclick="ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0, 0)" style="text-align:Left;"><a class="dxnb-link" href="Authenticate.aspx" style="color:#003399;text-decoration:underline;"><span class="dx-vam dx-wrap">Login</span></a></li><li class="dxnb-item dxnb-last" onclick="ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0, 1)" style="text-align:Left;"><a class="dxnb-link" href="ForgottenPassword.aspx" style="color:#003399;text-decoration:underline;"><span class="dx-vam dx-wrap">Forgot Password</span></a></li>
			</ul></li><li class="dxnb-gr dxnb-last"><div class="dxnb-header" style="display:none;cursor:default;">
				<img class="dxWeb_nbCollapse_Glass dxnb-btn" src="/DXR.axd?r=1_36-OETot" alt="" style="height:16px;width:16px;" /><span class="dxnb-ghtext dx-vam dx-wrap">Help</span>
			</div><div class="dxnb-headerCollapsed" onclick="ASPx.NBHClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 1)">
				<img class="dxWeb_nbExpand_Glass dxnb-btn" src="/DXR.axd?r=1_36-OETot" alt="" style="height:16px;width:16px;" /><span class="dxnb-ghtext dx-vam dx-wrap">Help</span>
			</div><ul class="dxnb-content dxnb-left" style="display:none;padding-left:1px;padding-right:1px;padding-top:2px;padding-bottom:2px;">
				<li class="dxnb-item dxnb-last" onclick="ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 1, 0)" style="text-align:Left;"><a class="dxnb-link" href="Help/User/Default.htm" target="_blank" style="color:#003399;text-decoration:underline;"><span class="dx-vam dx-wrap">User Help</span></a></li>
			</ul></li>
		</ul><b class="dx-clear"></b><script id="dxss_1687999414" type="text/javascript">
<!--
ASPx.AddHoverItems('rpLHSNavBarPanel_nBarMenu',[[['dxnb-headerHover'],[''],['GHE0','GHE1']],[['dxnb-headerCollapsedHover'],[''],['GHC0','GHC1']],[['dxnb-itemHover',''],['',''],['I0i0_','I0i1_','I1i0_'],['','T']]]);
ASPx.AddSelectedItems('rpLHSNavBarPanel_nBarMenu',[[['dxnb-itemSelected',''],['color:#003399;',''],['I0i0_','I0i1_','I1i0_'],['','T']]]);

var dxo = new ASPxClientNavBar('rpLHSNavBarPanel_nBarMenu');
window['rpLHSNavBarPanel_nBarMenu'] = dxo;
dxo.encodeHtml = false;
dxo.uniqueID = 'ctl00$rpLHSNavBarPanel$nBarMenu';
dxo.cookieName = 'EssNavBar2qjxor5oblrqqxogkkirqon1';
dxo.autoCollapse=true;
dxo.allowSelectItem=true;
dxo.selectedItemIndexPath='';
dxo.groupsExpanding=[true,false];
dxo.CreateGroups([['82be601c-6076-4528-8a94-ac21b029560f',,,,[['cdf945da-59ac-4aa0-9221-62cd3367f8c5',,,,],['63494ce3-1626-4f76-bac8-bdca5aeda8a5',,,,]]],['ab0a03c1-491d-48b1-852b-ae38c7971480',,,,[['98d9d621-c4a2-4af3-8b86-aeb31db7da8a',,,,]]]]);
dxo.AfterCreate();

//-->
</script>
                                    </td><td class="dxrpRE" style="background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-right-color:#7EACB1;border-right-style:Solid;border-right-width:1px;"></td>
	</tr><tr class="dxrpCBR">
		<td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpBottomLeftCorner.png" alt="" style="height:5px;width:5px;" /></td><td class="dxrpBE" style="background-color:#D7E9F1;border-bottom-color:#7EACB1;border-bottom-style:Solid;border-bottom-width:1px;"></td><td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpBottomRightCorner.png" alt="" style="height:5px;width:5px;" /></td>
	</tr>
</table>
                        </div>
                        <div class="divClear">
                        </div>
                        <div class="divLeft">
                            <img id="SageLogoImageLeft" src="images/SageLogo.png" align="middle" />
                        </div>
                        <div class="divClear">
                        </div>
                        
                    </div>
                </div>
                <div class="divPageRightBlock">
                    <div class="divLeft">
                        <div class="divLeft">
                            <table class="dxrpControl_Glass dxrpWithoutHeader_Glass dxrp-hasDefaultImages dxrp-noCollapsing" cellspacing="0" cellpadding="0" id="rpMainContentPanel" style="width:100%;border-collapse:collapse;border-collapse:separate;">
	<tr>
		<td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpNoHeaderTopLeftCorner.png" alt="" style="height:5px;width:5px;" /></td><td class="dxrpNHTE" style="background-color:#EBF2F4;border-top-color:#7EACB1;border-top-style:Solid;border-top-width:1px;"></td><td style="width:5px;height:5px;"><img class="dxrpCI" src="App_Themes/Glass/Web/rpNoHeaderTopRightCorner.png" alt="" style="height:5px;width:5px;" /></td>
	</tr><tr class="dxrpCR">
		<td class="dxrpLE" style="background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-left-color:#7EACB1;border-left-style:Solid;border-left-width:1px;"></td><td id="rpMainContentPanel_RPC" class="dxrp dxrpcontent dx-borderBox" align="center" style="background-color:#EBF2F4;font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;background-image:url(/DXR.axd?r=0_1229-NETot);background-repeat:repeat-x;background-position:left bottom;padding-left:4px;padding-right:0px;padding-top:10px;padding-bottom:10px;">
                                        <div class="divTopMenu">
                                            <div class="dxmLite_Glass dxm-ltr">
			<div class="dxm-main dxm-horizontal" id="rpMainContentPanel_MainMenu" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;text-align:Left;">
				<ul class="dx dxm-image-l dxm-noImages">
					<li class="dxm-item"><a class="dxm-content dxm-hasText dx" href="Authenticate.aspx" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;vertical-align:middle;"><span class="dx-vam">Login</span></a></li><li class="dxm-separator"><b></b></li><li class="dxm-item" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;"><div class="dxm-content dxm-hasText" style="vertical-align:middle;">
						<span class="dx-vam">Home</span>
					</div></li><li class="dxm-separator"><b></b></li><li class="dxm-item" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;"><div class="dxm-content dxm-hasText" style="vertical-align:middle;">
						<span class="dx-vam">Help</span>
					</div></li>
				</ul>
			</div><b class="dx-clear"></b><div id="rpMainContentPanel_MainMenu_DXM1_" style="z-index:20000;display:none;">
				<div class="dxm-shadow dxm-popup" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;">
					<ul class="dx dxm-noImages dxm-gutter">
						<li class="dxm-item"><a class="dxm-content dxm-hasText dx" href="Authenticate.aspx" style="font-family:Tahoma,Arial,Segoe UI;font-size:8pt;"><span class="dx-vam">Login</span></a><b class="dx-clear"></b></li><li class="dxm-spacing"></li><li class="dxm-item"><a class="dxm-content dxm-hasText dx" href="F

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:15:29.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "6a0e0471f911398b1d92bb8d3e7de403",
         "bodymmh3" : 2007537306,
         "component" : [
            {
               "productvendor" : "Microsoft",
               "productversion" : "4.0.30319",
               "product" : "ASP.NET"
            }
         ],
         "headermd5" : "feadf56db22d47f6a4f6d731ad36de19",
         "headermmh3" : -269901751,
         "title" : "Ess"
      },
      "length" : 16384
   },
   "asn" : "AS11845",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Johannesburg",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCache-Control: private\r\nContent-Type: text/html; charset=utf-8\r\nServer: Microsoft-IIS/8.5\r\nX-AspNet-Version: 4.0.30319\r\nSet-Cookie: ASP.NET_SessionId=2qjxor5oblrqqxogkkirqon1; path=/; HttpOnly; SameSite=Lax\r\nSet-Cookie: EssNavBar2qjxor5oblrqqxogkkirqon1=1%3b0; expires=Fri, 07-Nov-2025 05:03:00 GMT; path=/\r\nX-Powered-By: ASP.NET\r\nDate: Thu, 07 Nov 2024 05:03:00 GMT\r\nConnection: close\r\nContent-Length: 26004\r\n\r\n\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head id=\"Head1\"><link href=\"App_Themes/Glass/Editors/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Editors/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/GridView/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/GridView/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/HtmlEditor/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/HtmlEditor/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Other/essStyles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/PivotGrid/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/PivotGrid/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Scheduler/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Scheduler/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/SpellChecker/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/TreeList/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/TreeList/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Web/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/Web/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/XtraReports/sprite.css\" type=\"text/css\" rel=\"stylesheet\" /><link href=\"App_Themes/Glass/XtraReports/styles.css\" type=\"text/css\" rel=\"stylesheet\" /><link rel=\"stylesheet\" type=\"text/css\" href=\"/DXR.axd?r=0_1237,1_32,0_1239,1_18,0_1059-OETot\" /><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" /><title>\r\n\tEss\r\n</title><link id=\"masterLink\" rel=\"Stylesheet\" media=\"all\" type=\"text/css\" href=\"App_Themes/Glass/Other/essStyles.css\" />\r\n<style type=\"text/css\">\r\n\t#rpLHSNavBarPanel_nBarMenu a:visited { color:#003399; }\r\n\t#rpLHSNavBarPanel_nBarMenu a:visited * { color:#003399; }\r\n\t#rpLHSNavBarPanel_nBarMenu a:hover { color:#003399; }\r\n\t#rpLHSNavBarPanel_nBarMenu a:hover * { color:#003399; }\r\n\r\n</style></head>\r\n<body id=\"masterBody\" style=\"background-image:url(/Images/VipLines.png);\">\r\n    <form method=\"post\" action=\"./\" id=\"sitemasterform\" enctype=\"multipart/form-data\">\r\n<div class=\"aspNetHidden\">\r\n<input type=\"hidden\" name=\"__EVENTTARGET\" id=\"__EVENTTARGET\" value=\"\" />\r\n<input type=\"hidden\" name=\"__EVENTARGUMENT\" id=\"__EVENTARGUMENT\" value=\"\" />\r\n<input type=\"hidden\" name=\"__VIEWSTATE\" id=\"__VIEWSTATE\" value=\"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\" />\r\n</div>\r\n\r\n<script type=\"text/javascript\">\r\n//<![CDATA[\r\nvar theForm = document.forms['sitemasterform'];\r\nif (!theForm) {\r\n    theForm = document.sitemasterform;\r\n}\r\nfunction __doPostBack(eventTarget, eventArgument) {\r\n    if (!theForm.onsubmit || (theForm.onsubmit() != false)) {\r\n        theForm.__EVENTTARGET.value = eventTarget;\r\n        theForm.__EVENTARGUMENT.value = eventArgument;\r\n        theForm.submit();\r\n    }\r\n}\r\n//]]>\r\n</script>\r\n\r\n\r\n<script src=\"/WebResource.axd?d=ooEqlrhyOOX4HuIo3qHi8tordqP5hu0brISKMYWFAxbzDgnC2BxyR4MzINaUiWm4u_GrySuvPqjc5Zmvpq6Xa0r3wQyIWVipzCvVlFGO2-I1&amp;t=638434183896236235\" type=\"text/javascript\"></script>\r\n\r\n\r\n<script src=\"/js/script.js\" type=\"text/javascript\"></script>\r\n<script src=\"/js/jquery.js\" type=\"text/javascript\"></script>\r\n<script src=\"/js/jquery.multiSelect.js\" type=\"text/javascript\"></script>\r\n<div class=\"aspNetHidden\">\r\n\r\n\t<input type=\"hidden\" name=\"__VIEWSTATEGENERATOR\" id=\"__VIEWSTATEGENERATOR\" value=\"CA0B0334\" />\r\n\t<input type=\"hidden\" name=\"__EVENTVALIDATION\" id=\"__EVENTVALIDATION\" value=\"/wEdAANqD/lHF9iVPKJWwEMHkUokGSNP2A5Y9+3KRqzCMrY1du8cwEmEaWOPL0G+pQ1l+BK13LJo7HEZSIOWBIFqtOZ9FRaoPNtCxCKSJzAEP/9E4Q==\" />\r\n</div>\r\n    <script id=\"dxis_1973372183\" src=\"/DXR.axd?r=1_225,1_130,1_218,1_164,1_128,1_203,1_207,1_215,1_127,1_210,1_216,1_201,1_185-OETot\" type=\"text/javascript\"></script><script id=\"dxss_125225385\" type=\"text/javascript\">\n<!--\n\nvar dxo = new ASPxClientCallback('ImpersonateCallback');\nwindow['ImpersonateCallback'] = dxo;\ndxo.callBack = function(arg) { WebForm_DoCallback('ctl00$ImpersonateCallback',arg,ASPx.Callback,'ImpersonateCallback',ASPx.CallbackError,true); };\ndxo.uniqueID = 'ctl00$ImpersonateCallback';\ndxo.CallbackComplete.AddHandler(ImpersonateCallbackComplete);\ndxo.AfterCreate();\n\n//-->\n</script>\r\n    <script id=\"dxss_1531972137\" type=\"text/javascript\">\n<!--\n\nvar dxo = new ASPxClientCallback('ThemeCallback');\nwindow['ThemeCallback'] = dxo;\ndxo.callBack = function(arg) { WebForm_DoCallback('ctl00$ThemeCallback',arg,ASPx.Callback,'ThemeCallback',ASPx.CallbackError,true); };\ndxo.uniqueID = 'ctl00$ThemeCallback';\ndxo.CallbackComplete.AddHandler(ThemeCallbackComplete);\ndxo.AfterCreate();\n\n//-->\n</script>\r\n    <div id=\"divAllContent\" class=\"divContent\">\r\n        <div id=\"divContentRow\" class=\"divContentRow\">\r\n            <div id=\"MainContentRow\" class=\"divLeft\">\r\n                <div class=\"divLeft\">\r\n                    <div class=\"divTopLogoLeft\">\r\n                        <div class=\"divTopLogo\">\r\n                            <img id=\"TopLogoImageLeft\" src=\"images/BannerTopLeft.png\" align=\"left\" style=\"height:50px;\" />\r\n                        </div>\r\n                    </div>\r\n                    <div class=\"divTopLogoRight\">\r\n                        <div class=\"divTopLogo\">\r\n                            <img id=\"TopLogoImageRight\" src=\"images/BannerTopRight.png\" align=\"right\" style=\"height:50px;\" />\r\n                        </div>\r\n                    </div>\r\n                </div>\r\n                <div class=\"divClear\"></div>\r\n            </div>\r\n            <div class=\"divClear\"></div>\r\n            <div class=\"divLeft\">\r\n                <div class=\"divPageLeftBlock\">\r\n                    <div class=\"divLeft\">\r\n                        <div class=\"divLeft\">\r\n                            <table class=\"dxrpControl_Glass dxrpWithoutHeader_Glass dxrp-hasDefaultImages dxrp-noCollapsing\" cellspacing=\"0\" cellpadding=\"0\" id=\"rpLHSNavBarPanel\" style=\"width:100%;border-collapse:collapse;border-collapse:separate;\">\r\n\t<tr>\r\n\t\t<td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpNoHeaderTopLeftCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td><td class=\"dxrpNHTE\" style=\"background-color:#EBF2F4;border-top-color:#7EACB1;border-top-style:Solid;border-top-width:1px;\"></td><td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpNoHeaderTopRightCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td>\r\n\t</tr><tr class=\"dxrpCR\">\r\n\t\t<td class=\"dxrpLE\" style=\"background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-left-color:#7EACB1;border-left-style:Solid;border-left-width:1px;\"></td><td id=\"rpLHSNavBarPanel_RPC\" class=\"dxrp dxrpcontent dx-borderBox\" align=\"center\" style=\"background-color:#EBF2F4;font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;background-image:url(/DXR.axd?r=0_1229-NETot);background-repeat:repeat-x;background-position:left bottom;padding-left:4px;padding-top:10px;padding-bottom:10px;\">\r\n                                        <ul class=\"dxnbLite_Glass dxnbSys\" id=\"rpLHSNavBarPanel_nBarMenu\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;\">\r\n\t\t\t<li class=\"dxnb-gr\" style=\"margin-bottom:0px;\"><div class=\"dxnb-header\" style=\"cursor:default;\">\r\n\t\t\t\t<img class=\"dxWeb_nbCollapse_Glass dxnb-btn\" src=\"/DXR.axd?r=1_36-OETot\" alt=\"\" style=\"height:16px;width:16px;\" /><span class=\"dxnb-ghtext dx-vam dx-wrap\">Home</span>\r\n\t\t\t</div><div class=\"dxnb-headerCollapsed\" onclick=\"ASPx.NBHClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0)\" style=\"display:none;\">\r\n\t\t\t\t<img class=\"dxWeb_nbExpand_Glass dxnb-btn\" src=\"/DXR.axd?r=1_36-OETot\" alt=\"\" style=\"height:16px;width:16px;\" /><span class=\"dxnb-ghtext dx-vam dx-wrap\">Home</span>\r\n\t\t\t</div><ul class=\"dxnb-content dxnb-left\" style=\"padding-left:1px;padding-right:1px;padding-top:2px;padding-bottom:2px;\">\r\n\t\t\t\t<li class=\"dxnb-item\" onclick=\"ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0, 0)\" style=\"text-align:Left;\"><a class=\"dxnb-link\" href=\"Authenticate.aspx\" style=\"color:#003399;text-decoration:underline;\"><span class=\"dx-vam dx-wrap\">Login</span></a></li><li class=\"dxnb-item dxnb-last\" onclick=\"ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 0, 1)\" style=\"text-align:Left;\"><a class=\"dxnb-link\" href=\"ForgottenPassword.aspx\" style=\"color:#003399;text-decoration:underline;\"><span class=\"dx-vam dx-wrap\">Forgot Password</span></a></li>\r\n\t\t\t</ul></li><li class=\"dxnb-gr dxnb-last\"><div class=\"dxnb-header\" style=\"display:none;cursor:default;\">\r\n\t\t\t\t<img class=\"dxWeb_nbCollapse_Glass dxnb-btn\" src=\"/DXR.axd?r=1_36-OETot\" alt=\"\" style=\"height:16px;width:16px;\" /><span class=\"dxnb-ghtext dx-vam dx-wrap\">Help</span>\r\n\t\t\t</div><div class=\"dxnb-headerCollapsed\" onclick=\"ASPx.NBHClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 1)\">\r\n\t\t\t\t<img class=\"dxWeb_nbExpand_Glass dxnb-btn\" src=\"/DXR.axd?r=1_36-OETot\" alt=\"\" style=\"height:16px;width:16px;\" /><span class=\"dxnb-ghtext dx-vam dx-wrap\">Help</span>\r\n\t\t\t</div><ul class=\"dxnb-content dxnb-left\" style=\"display:none;padding-left:1px;padding-right:1px;padding-top:2px;padding-bottom:2px;\">\r\n\t\t\t\t<li class=\"dxnb-item dxnb-last\" onclick=\"ASPx.NBIClick(event, &#39;rpLHSNavBarPanel_nBarMenu&#39;, 1, 0)\" style=\"text-align:Left;\"><a class=\"dxnb-link\" href=\"Help/User/Default.htm\" target=\"_blank\" style=\"color:#003399;text-decoration:underline;\"><span class=\"dx-vam dx-wrap\">User Help</span></a></li>\r\n\t\t\t</ul></li>\r\n\t\t</ul><b class=\"dx-clear\"></b><script id=\"dxss_1687999414\" type=\"text/javascript\">\n<!--\nASPx.AddHoverItems('rpLHSNavBarPanel_nBarMenu',[[['dxnb-headerHover'],[''],['GHE0','GHE1']],[['dxnb-headerCollapsedHover'],[''],['GHC0','GHC1']],[['dxnb-itemHover',''],['',''],['I0i0_','I0i1_','I1i0_'],['','T']]]);\nASPx.AddSelectedItems('rpLHSNavBarPanel_nBarMenu',[[['dxnb-itemSelected',''],['color:#003399;',''],['I0i0_','I0i1_','I1i0_'],['','T']]]);\n\nvar dxo = new ASPxClientNavBar('rpLHSNavBarPanel_nBarMenu');\nwindow['rpLHSNavBarPanel_nBarMenu'] = dxo;\ndxo.encodeHtml = false;\ndxo.uniqueID = 'ctl00$rpLHSNavBarPanel$nBarMenu';\ndxo.cookieName = 'EssNavBar2qjxor5oblrqqxogkkirqon1';\ndxo.autoCollapse=true;\ndxo.allowSelectItem=true;\ndxo.selectedItemIndexPath='';\ndxo.groupsExpanding=[true,false];\ndxo.CreateGroups([['82be601c-6076-4528-8a94-ac21b029560f',,,,[['cdf945da-59ac-4aa0-9221-62cd3367f8c5',,,,],['63494ce3-1626-4f76-bac8-bdca5aeda8a5',,,,]]],['ab0a03c1-491d-48b1-852b-ae38c7971480',,,,[['98d9d621-c4a2-4af3-8b86-aeb31db7da8a',,,,]]]]);\ndxo.AfterCreate();\n\n//-->\n</script>\r\n                                    </td><td class=\"dxrpRE\" style=\"background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-right-color:#7EACB1;border-right-style:Solid;border-right-width:1px;\"></td>\r\n\t</tr><tr class=\"dxrpCBR\">\r\n\t\t<td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpBottomLeftCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td><td class=\"dxrpBE\" style=\"background-color:#D7E9F1;border-bottom-color:#7EACB1;border-bottom-style:Solid;border-bottom-width:1px;\"></td><td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpBottomRightCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td>\r\n\t</tr>\r\n</table>\r\n                        </div>\r\n                        <div class=\"divClear\">\r\n                        </div>\r\n                        <div class=\"divLeft\">\r\n                            <img id=\"SageLogoImageLeft\" src=\"images/SageLogo.png\" align=\"middle\" />\r\n                        </div>\r\n                        <div class=\"divClear\">\r\n                        </div>\r\n                        \r\n                    </div>\r\n                </div>\r\n                <div class=\"divPageRightBlock\">\r\n                    <div class=\"divLeft\">\r\n                        <div class=\"divLeft\">\r\n                            <table class=\"dxrpControl_Glass dxrpWithoutHeader_Glass dxrp-hasDefaultImages dxrp-noCollapsing\" cellspacing=\"0\" cellpadding=\"0\" id=\"rpMainContentPanel\" style=\"width:100%;border-collapse:collapse;border-collapse:separate;\">\r\n\t<tr>\r\n\t\t<td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpNoHeaderTopLeftCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td><td class=\"dxrpNHTE\" style=\"background-color:#EBF2F4;border-top-color:#7EACB1;border-top-style:Solid;border-top-width:1px;\"></td><td style=\"width:5px;height:5px;\"><img class=\"dxrpCI\" src=\"App_Themes/Glass/Web/rpNoHeaderTopRightCorner.png\" alt=\"\" style=\"height:5px;width:5px;\" /></td>\r\n\t</tr><tr class=\"dxrpCR\">\r\n\t\t<td class=\"dxrpLE\" style=\"background-color:#EBF2F4;background-image:url(App_Themes/Glass/Web/rpLeftRightEdge.gif);background-repeat:repeat-x;background-position:left bottom;border-left-color:#7EACB1;border-left-style:Solid;border-left-width:1px;\"></td><td id=\"rpMainContentPanel_RPC\" class=\"dxrp dxrpcontent dx-borderBox\" align=\"center\" style=\"background-color:#EBF2F4;font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;background-image:url(/DXR.axd?r=0_1229-NETot);background-repeat:repeat-x;background-position:left bottom;padding-left:4px;padding-right:0px;padding-top:10px;padding-bottom:10px;\">\r\n                                        <div class=\"divTopMenu\">\r\n                                            <div class=\"dxmLite_Glass dxm-ltr\">\r\n\t\t\t<div class=\"dxm-main dxm-horizontal\" id=\"rpMainContentPanel_MainMenu\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;width:100%;text-align:Left;\">\r\n\t\t\t\t<ul class=\"dx dxm-image-l dxm-noImages\">\r\n\t\t\t\t\t<li class=\"dxm-item\"><a class=\"dxm-content dxm-hasText dx\" href=\"Authenticate.aspx\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;vertical-align:middle;\"><span class=\"dx-vam\">Login</span></a></li><li class=\"dxm-separator\"><b></b></li><li class=\"dxm-item\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;\"><div class=\"dxm-content dxm-hasText\" style=\"vertical-align:middle;\">\r\n\t\t\t\t\t\t<span class=\"dx-vam\">Home</span>\r\n\t\t\t\t\t</div></li><li class=\"dxm-separator\"><b></b></li><li class=\"dxm-item\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;\"><div class=\"dxm-content dxm-hasText\" style=\"vertical-align:middle;\">\r\n\t\t\t\t\t\t<span class=\"dx-vam\">Help</span>\r\n\t\t\t\t\t</div></li>\r\n\t\t\t\t</ul>\r\n\t\t\t</div><b class=\"dx-clear\"></b><div id=\"rpMainContentPanel_MainMenu_DXM1_\" style=\"z-index:20000;display:none;\">\r\n\t\t\t\t<div class=\"dxm-shadow dxm-popup\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;\">\r\n\t\t\t\t\t<ul class=\"dx dxm-noImages dxm-gutter\">\r\n\t\t\t\t\t\t<li class=\"dxm-item\"><a class=\"dxm-content dxm-hasText dx\" href=\"Authenticate.aspx\" style=\"font-family:Tahoma,Arial,Segoe UI;font-size:8pt;\"><span class=\"dx-vam\">Login</span></a><b class=\"dx-clear\"></b></li><li class=\"dxm-spacing\"></li><li class=\"dxm-item\"><a class=\"dxm-content dxm-hasText dx\" href=\"F",
   "datamd5" : "0e4213040f6a539fb2651a50bddddf0e",
   "datammh3" : -1408971779,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "enprotec.co.za"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3892b50d7f0dca1547ff1d329b516e92",
      "sha1" : "367985a432c2bfa2214b0f7b28207bc6d3f8c10b",
      "sha256" : "d8b49ae0da7a2632487409407a928b71f25dcf99db7396b45c710b3f3956eeba"
   },
   "geolocus" : {
      "asn" : "AS11845",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "voxtelecom.co.za"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "Vox-Telecom",
      "organization" : "Vox Telecommunications PTY Ltd",
      "subnet" : "41.193.168.0/22"
   },
   "host" : [
      "ess",
      "www"
   ],
   "hostname" : [
      "ess.enprotec.co.za",
      "www.ess.enprotec.co.za"
   ],
   "ip" : "41.193.170.154",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "RapidSSL TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "-26.2309",
   "location" : "-26.2309,28.0583",
   "longitude" : "28.0583",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Vox-Telecom",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2012",
      "8.1"
   ],
   "port" : 9402,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "8.5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "0c:22:a5:4e:4b:50:68:85:93:19:bb:00:2b:5a:0f:18",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ess.enprotec.co.za"
   ],
   "subject" : {
      "altname" : [
         "ess.enprotec.co.za",
         "www.ess.enprotec.co.za"
      ],
      "commonname" : "ess.enprotec.co.za"
   },
   "subnet" : "41.193.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "co.za"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-04-11T23:59:59Z",
      "notbefore" : "2024-04-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
15.152.37.169

Network
15.152.0.0/16

Domain(s)
amazonaws.com temp-nextelectric.gov

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://15.152.37.169:9402/ 200

HTTP Title
Ray Dashboard

Reverse DNS
ec2-15-152-37-169.ap-northeast-3.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
cisco.temp-nextelectric.gov

Subject Common Name
cisco.temp-nextelectric.gov

SHA256 Fingerprint
2d42efa6253b2113d1ce3ec9aa49ef1d05c1b7417aaa8964dfca0f5f5d4405d5

Validity Not Before
2024-11-07T04:46:31Z

Validity Not After
2026-11-07T04:46:31Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f877fb142569cd4e3d1a157ce28b1a00

HTTP Header MD5
9eae81c07eb3b6a669f5e5feb9ff8fc4

HTTP Body MD5
d8a4f9e0ac5057437828492f30c1d1ad

HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 05:15:05 GMT
Server: Python/3.11 aiohttp/3.9.5
Content-Type: application/json; charset=utf-8
Content-Length: 446

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="shortcut icon" href="./favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><title>Ray Dashboard</title><script defer="defer" src="./static/js/main.8c11aab8.js"></script><link href="./static/css/main.388a904b.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:15:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d8a4f9e0ac5057437828492f30c1d1ad",
         "bodymmh3" : 1173419914,
         "headermd5" : "9eae81c07eb3b6a669f5e5feb9ff8fc4",
         "headermmh3" : -569731284,
         "title" : "Ray Dashboard"
      },
      "length" : 624
   },
   "asn" : "AS16509",
   "city" : "Osaka",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 05:15:05 GMT\r\nServer: Python/3.11 aiohttp/3.9.5\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 446\r\n\r\n<!doctype html><html lang=\"en\"><head><meta charset=\"utf-8\"/><link rel=\"shortcut icon\" href=\"./favicon.ico\"/><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\"/><title>Ray Dashboard</title><script defer=\"defer\" src=\"./static/js/main.8c11aab8.js\"></script><link href=\"./static/css/main.388a904b.css\" rel=\"stylesheet\"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id=\"root\"></div></body></html>",
   "datamd5" : "f877fb142569cd4e3d1a157ce28b1a00",
   "datammh3" : -196754178,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com",
      "temp-nextelectric.gov"
   ],
   "fingerprint" : {
      "md5" : "2a19369da5631669216c09bf4ecc5751",
      "sha1" : "8a51c6cf1595bc1fd44f71dbff4133753a134747",
      "sha256" : "2d42efa6253b2113d1ce3ec9aa49ef1d05c1b7417aaa8964dfca0f5f5d4405d5"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "AMAZON-KIX",
      "organization" : "Amazon Data Services Osaka",
      "subnet" : "15.152.0.0/16"
   },
   "host" : [
      "cisco",
      "ec2-15-152-37-169"
   ],
   "hostname" : [
      "cisco.temp-nextelectric.gov",
      "ec2-15-152-37-169.ap-northeast-3.compute.amazonaws.com"
   ],
   "ip" : "15.152.37.169",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "cisco.temp-nextelectric.gov"
   },
   "latitude" : "34.6946",
   "location" : "34.6946,135.5021",
   "longitude" : "135.5021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9402,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "ec2-15-152-37-169.ap-northeast-3.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ap-northeast-3.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "cisco.temp-nextelectric.gov"
   },
   "subnet" : "15.152.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "gov"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2026-11-07T04:46:31Z",
      "notbefore" : "2024-11-07T04:46:31Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
54.86.134.212

Network
54.80.0.0/13

Domain(s)
amazonaws.com today-medicine.org

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://54.86.134.212:9402/ 200

HTTP Title
Ray Dashboard

Reverse DNS
ec2-54-86-134-212.compute-1.amazonaws.com

ASN
AS14618

Organization
AMAZON-AES

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
alpha.today-medicine.org

SHA256 Fingerprint
68e892d4dfc28e4629242f125e9aeef8b9a561a3ac8d6f08c6712be5c452301a

Validity Not Before
2023-11-08T05:07:01Z

Validity Not After
2025-11-07T05:07:01Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f877fb142569cd4e3d1a157ce28b1a00

HTTP Header MD5
9eae81c07eb3b6a669f5e5feb9ff8fc4

HTTP Body MD5
d8a4f9e0ac5057437828492f30c1d1ad

HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 05:07:01 GMT
Server: Python/3.11 aiohttp/3.9.5
Content-Type: application/json; charset=utf-8
Content-Length: 446

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="shortcut icon" href="./favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><title>Ray Dashboard</title><script defer="defer" src="./static/js/main.8c11aab8.js"></script><link href="./static/css/main.388a904b.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:07:01.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d8a4f9e0ac5057437828492f30c1d1ad",
         "bodymmh3" : 1173419914,
         "headermd5" : "9eae81c07eb3b6a669f5e5feb9ff8fc4",
         "headermmh3" : 787768951,
         "title" : "Ray Dashboard"
      },
      "length" : 624
   },
   "asn" : "AS14618",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 05:07:01 GMT\r\nServer: Python/3.11 aiohttp/3.9.5\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 446\r\n\r\n<!doctype html><html lang=\"en\"><head><meta charset=\"utf-8\"/><link rel=\"shortcut icon\" href=\"./favicon.ico\"/><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\"/><title>Ray Dashboard</title><script defer=\"defer\" src=\"./static/js/main.8c11aab8.js\"></script><link href=\"./static/css/main.388a904b.css\" rel=\"stylesheet\"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id=\"root\"></div></body></html>",
   "datamd5" : "f877fb142569cd4e3d1a157ce28b1a00",
   "datammh3" : -196754178,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com",
      "today-medicine.org"
   ],
   "fingerprint" : {
      "md5" : "dc1cbd66ebe40973831414fc6f4ba55d",
      "sha1" : "496822b7c06254d8487cd7d671ec0f200d69cccf",
      "sha256" : "68e892d4dfc28e4629242f125e9aeef8b9a561a3ac8d6f08c6712be5c452301a"
   },
   "geolocus" : {
      "asn" : "AS14618",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZON-2011L",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "54.80.0.0/13"
   },
   "host" : [
      "alpha",
      "ec2-54-86-134-212"
   ],
   "hostname" : [
      "alpha.today-medicine.org",
      "ec2-54-86-134-212.compute-1.amazonaws.com"
   ],
   "ip" : "54.86.134.212",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-AES",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9402,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "ec2-54-86-134-212.compute-1.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "22:34:e9:29:56:b4:1d:bb:82:6d:a1:b8:d2:da:c9:44:f7:68:83:80",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute-1.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "alpha.today-medicine.org"
   },
   "subnet" : "54.80.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "org"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-11-07T05:07:01Z",
      "notbefore" : "2023-11-08T05:07:01Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
177.201.159.124

Network
177.201.0.0/16

Domain(s)
mh.com.br net.br

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://177.201.159.124:9402/ 200

HTTP Title
pve - Proxmox Virtual Environment

Reverse DNS
177-201-159-124.user3p.v-tal.net.br

ASN
AS8167

Organization
V tal

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Proxmox Virtual Environment 3.0

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Proxmox Virtual Environment

Issuer Organization
PVE Cluster Manager CA

Subject Organization
Proxmox Virtual Environment

Subject Common Name
pve.mh.com.br

Subject Alt Name
localhost pve pve.mh.com.br

SHA256 Fingerprint
7fb7e0fd8efb2ba9669813e8a91ecbef7ea97073c38bfacdb00f0c76e50fb877

Validity Not Before
2018-08-30T10:30:36Z

Validity Not After
2028-08-27T10:30:36Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fda8586b2dc28c9a69c0992a4af3394e

HTTP Header MD5
2a0f15b6a73a966e9d1347e977269947

HTTP Body MD5
b5821d46d9ba0e5ba7fdd949547e264b

HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Thu, 07 Nov 2024 04:47:34 GMT
Pragma: no-cache
Server: pve-api-daemon/3.0
Content-Length: 2075
Content-Type: text/html; charset=utf-8
Expires: Thu, 07 Nov 2024 04:47:34 GMT

<!DOCTYPE html>
<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no">
    <title>pve - Proxmox Virtual Environment</title>
    <link rel="icon" sizes="128x128" href="/pve2/images/logo-128.png" />
    <link rel="apple-touch-icon" sizes="128x128" href="/pve2/images/logo-128.png" />
    <link rel="stylesheet" type="text/css" href="/pve2/ext6/theme-crisp/resources/theme-crisp-all.css" />
    <link rel="stylesheet" type="text/css" href="/pve2/ext6/crisp/resources/charts-all.css" />
    <link rel="stylesheet" type="text/css" href="/pve2/fa/css/font-awesome.css" />
    <link rel="stylesheet" type="text/css" href="/pve2/css/ext6-pve.css?ver=5.4-15" />
    
    <script type='text/javascript'>function gettext(buf) { return buf; }</script>
    
    <script type="text/javascript" src="/pve2/ext6/ext-all.js"></script>
    <script type="text/javascript" src="/pve2/ext6/charts.js"></script>
    
    <script type="text/javascript" src="/pve2/js/u2f-api.js"></script>
    <script type="text/javascript" src="/pve2/js/qrcode.min.js"></script>
    <script type="text/javascript">
    Proxmox = {
	Setup: { auth_cookie_name: 'PVEAuthCookie' },
	defaultLang: 'en',
	UserName: '',
	CSRFPreventionToken: 'null'
    };
    </script>
    <script type="text/javascript" src="/proxmoxlib.js?ver=1.0-28"></script>
    <script type="text/javascript" src="/pve2/js/pvemanagerlib.js?ver=5.4-15"></script>
    <script type="text/javascript" src="/pve2/ext6/locale/locale-en.js"></script>

    <script type="text/javascript">
    if (typeof(PVE) === 'undefined') PVE = {};
    Ext.History.fieldid = 'x-history-field';
    Ext.onReady(function() { Ext.create('PVE.StdWorkspace');});
    </script>

  </head>
  <body>
    <!-- Fields required for history management -->
    <form id="history-form" class="x-hidden">
    <input type="hidden" id="x-history-field"/>
    </form>
  </body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:47:34.000Z",
   "app" : {
      "favicon" : {
         "url" : "/pve2/images/logo-128.png"
      },
      "http" : {
         "bodymd5" : "b5821d46d9ba0e5ba7fdd949547e264b",
         "bodymmh3" : -525388926,
         "headermd5" : "2a0f15b6a73a966e9d1347e977269947",
         "headermmh3" : 1024176093,
         "title" : "pve - Proxmox Virtual Environment"
      },
      "length" : 2324
   },
   "asn" : "AS8167",
   "ca" : "false",
   "city" : "S\u00e3o Leopoldo",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCache-Control: max-age=0\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 04:47:34 GMT\r\nPragma: no-cache\r\nServer: pve-api-daemon/3.0\r\nContent-Length: 2075\r\nContent-Type: text/html; charset=utf-8\r\nExpires: Thu, 07 Nov 2024 04:47:34 GMT\r\n\r\n<!DOCTYPE html>\n<html>\n  <head>\n    <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no\">\n    <title>pve - Proxmox Virtual Environment</title>\n    <link rel=\"icon\" sizes=\"128x128\" href=\"/pve2/images/logo-128.png\" />\n    <link rel=\"apple-touch-icon\" sizes=\"128x128\" href=\"/pve2/images/logo-128.png\" />\n    <link rel=\"stylesheet\" type=\"text/css\" href=\"/pve2/ext6/theme-crisp/resources/theme-crisp-all.css\" />\n    <link rel=\"stylesheet\" type=\"text/css\" href=\"/pve2/ext6/crisp/resources/charts-all.css\" />\n    <link rel=\"stylesheet\" type=\"text/css\" href=\"/pve2/fa/css/font-awesome.css\" />\n    <link rel=\"stylesheet\" type=\"text/css\" href=\"/pve2/css/ext6-pve.css?ver=5.4-15\" />\n    \n    <script type='text/javascript'>function gettext(buf) { return buf; }</script>\n    \n    <script type=\"text/javascript\" src=\"/pve2/ext6/ext-all.js\"></script>\n    <script type=\"text/javascript\" src=\"/pve2/ext6/charts.js\"></script>\n    \n    <script type=\"text/javascript\" src=\"/pve2/js/u2f-api.js\"></script>\n    <script type=\"text/javascript\" src=\"/pve2/js/qrcode.min.js\"></script>\n    <script type=\"text/javascript\">\n    Proxmox = {\n\tSetup: { auth_cookie_name: 'PVEAuthCookie' },\n\tdefaultLang: 'en',\n\tUserName: '',\n\tCSRFPreventionToken: 'null'\n    };\n    </script>\n    <script type=\"text/javascript\" src=\"/proxmoxlib.js?ver=1.0-28\"></script>\n    <script type=\"text/javascript\" src=\"/pve2/js/pvemanagerlib.js?ver=5.4-15\"></script>\n    <script type=\"text/javascript\" src=\"/pve2/ext6/locale/locale-en.js\"></script>\n\n    <script type=\"text/javascript\">\n    if (typeof(PVE) === 'undefined') PVE = {};\n    Ext.History.fieldid = 'x-history-field';\n    Ext.onReady(function() { Ext.create('PVE.StdWorkspace');});\n    </script>\n\n  </head>\n  <body>\n    <!-- Fields required for history management -->\n    <form id=\"history-form\" class=\"x-hidden\">\n    <input type=\"hidden\" id=\"x-history-field\"/>\n    </form>\n  </body>\n</html>\n",
   "datamd5" : "fda8586b2dc28c9a69c0992a4af3394e",
   "datammh3" : -1820742607,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "mh.com.br",
      "net.br"
   ],
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "3025c3504000b191aace4ec3bd7ec8c3",
      "sha1" : "bddd1ddc118ae0dba19d5777b494816ce8ffe66c",
      "sha256" : "7fb7e0fd8efb2ba9669813e8a91ecbef7ea97073c38bfacdb00f0c76e50fb877"
   },
   "geolocus" : {
      "asn" : "AS8167",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "net.br",
         "vtal.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.041.460/0001-93",
      "organization" : "V tal",
      "subnet" : "177.201.0.0/16"
   },
   "host" : [
      "177-201-159-124",
      "pve"
   ],
   "hostname" : [
      "177-201-159-124.user3p.v-tal.net.br",
      "pve.mh.com.br"
   ],
   "ip" : "177.201.159.124",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Proxmox Virtual Environment",
      "organization" : "PVE Cluster Manager CA",
      "organizationalunit" : "814f2220-ded1-4ddc-b994-4368fe50f4eb"
   },
   "latitude" : "-29.7408",
   "location" : "-29.7408,-51.1308",
   "longitude" : "-51.1308",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "V tal",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9402,
   "product" : "Virtual Environment",
   "productvendor" : "Proxmox",
   "productversion" : "3.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "177-201-159-124.user3p.v-tal.net.br"
   ],
   "seen_date" : "2024-11-07",
   "serial" : 1,
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "user3p.v-tal.net.br",
      "v-tal.net.br"
   ],
   "subject" : {
      "altname" : [
         "localhost",
         "pve",
         "pve.mh.com.br"
      ],
      "commonname" : "pve.mh.com.br",
      "organization" : "Proxmox Virtual Environment",
      "organizationalunit" : "PVE Cluster Node"
   },
   "subnet" : "177.201.0.0/16",
   "tld" : [
      "br",
      "com.br"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2028-08-27T10:30:36Z",
      "notbefore" : "2018-08-30T10:30:36Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
35.180.64.189

Network
35.176.0.0/13

Domain(s)
amazonaws.com finance-north.us

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://35.180.64.189:9402/ 200

Reverse DNS
ec2-35-180-64-189.eu-west-3.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
docs.finance-north.us

Subject Common Name
docs.finance-north.us

SHA256 Fingerprint
5b0f229648dada540464a2a38e78355a5b869b0c8224c007ff599ace91fb64fa

Validity Not Before
2024-11-07T04:40:05Z

Validity Not After
2026-11-07T04:40:05Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f192c778ba9971cccb2fcec90e21e379

HTTP Header MD5
9f060a9cb1b31c417a3a68e629ae97e3

HTTP Body MD5
852141068209c03fdeb5dacc5a9c52e3

Favicon MD5
2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3
-1216248324

HTTP/1.1 200 OK
Connection: close
Date: Thu, 07 Nov 2024 03:55:56 GMT
Server: nginx
Content-Length: 69
Content-Type: text/html

<html><body><script>top.location='/p/login/';</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:40:37.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "852141068209c03fdeb5dacc5a9c52e3",
         "bodymmh3" : -1124668290,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : -869926225
      },
      "length" : 204
   },
   "asn" : "AS16509",
   "city" : "Paris",
   "country" : "FR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 03:55:56 GMT\r\nServer: nginx\r\nContent-Length: 69\r\nContent-Type: text/html\r\n\r\n<html><body><script>top.location='/p/login/';</script></body></html>\n",
   "datamd5" : "f192c778ba9971cccb2fcec90e21e379",
   "datammh3" : -1092385355,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com",
      "finance-north.us"
   ],
   "fingerprint" : {
      "md5" : "d3ae78031a5df79d6105bcb43ca40c40",
      "sha1" : "c3383b1a8ffe913fcddf55773636b6adcc92bdfb",
      "sha256" : "5b0f229648dada540464a2a38e78355a5b869b0c8224c007ff599ace91fb64fa"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "FR",
      "countryname" : "France",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "true",
      "latitude" : "46.227638",
      "location" : "46.227638,2.213749",
      "longitude" : "2.213749",
      "netname" : "AMAZON-CDG",
      "organization" : "Amazon Data Services France",
      "subnet" : "35.180.0.0/16"
   },
   "host" : [
      "docs",
      "ec2-35-180-64-189"
   ],
   "hostname" : [
      "docs.finance-north.us",
      "ec2-35-180-64-189.eu-west-3.compute.amazonaws.com"
   ],
   "ip" : "35.180.64.189",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "docs.finance-north.us"
   },
   "latitude" : "48.8323",
   "location" : "48.8323,2.4075",
   "longitude" : "2.4075",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9402,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "ec2-35-180-64-189.eu-west-3.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-west-3.compute.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "docs.finance-north.us"
   },
   "subnet" : "35.176.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "us"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2026-11-07T04:40:05Z",
      "notbefore" : "2024-11-07T04:40:05Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
45.232.149.24

Alternative IP(s)
182.160.29.165

Network
45.232.148.0/22

Domain(s)
continental.edu.pe

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

URL

https://45.232.149.24:9402/ 200

HTTP Title
Laravel

ASN
AS266757

Organization
SATELITAL TELECOMUNICACIONES S.A.C

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
Apache HTTP Server 2.4.29

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Organization Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Organization
UNIVERSIDAD CONTINENTAL SOCIEDAD ANONIMA CERRADA

Subject Common Name
*.continental.edu.pe

Subject Alt Name
*.continental.edu.pe continental.edu.pe

SHA256 Fingerprint
e383562bcc6beac520f7f9bdb63c3ebe4e6a517bfc5f2de0e351194964a98f71

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-18T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
16a12f61ca583693240bdf1ae7cc887a

HTTP Header MD5
530caaae43feeebfca41c5431ede7056

HTTP Body MD5
157304904220a758cc36e2de190344b4

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 04:30:50 GMT
Server: Apache/2.4.29 (Ubuntu)
Upgrade: h2
Connection: Upgrade, close
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImIrRkp2bUptZXNEWWVhcUdoWmkya2c9PSIsInZhbHVlIjoiaGJqdndzNUVRWCtoZnhWZUUyRVNNbW4xb1h1MTAxTVJ2MzdMRmN5VXd4cUZ5Y1JMZFRWVWpCZG9qTGY5eW1RTnl0enZDaUpxSE9UMThaU2pQakljMmNHV1M3VkRDTExoSUVrQTMvN3dqQmlGenl4NUFuNXlMVk5DdkZ0SDBTV1YiLCJtYWMiOiIyYmViNGNlOThlNjM3YWNhNGIzZGFiZjczODY0MzBlMzE5MDlkYzU5NTBkYmJiZjcyMzU1MWNhZDdkMDVlYzA3IiwidGFnIjoiIn0%3D; expires=Thu, 07-Nov-2024 06:30:50 GMT; Max-Age=7200; path=/; samesite=lax
Set-Cookie: continental_session=eyJpdiI6IlB2SThsYW9pUitTNVpmRlViVkE0ZUE9PSIsInZhbHVlIjoiTG16UzB2UGpBZUg3UTRRcFlhdkdaajU1c2NPajluY0EwWkdONFo5a0dtdEEzMW1XWXZDRElzVVdOeUlKU3RRem9Tdm5JUjQxYzlkSVg5MEZCbkxXRmEraW82RUptcXRUZ2hYdkdDTFB1MnhzZW00ZmhqMXU5WW9OQUtSa1lXemsiLCJtYWMiOiJhY2Q2OTU0ODIyNDQ2NjIyNmIwZTE3YzFkMWFjNjAxYWQwNTA2MDMzM2M5ZGZhNzc1YzgyYTBmZjg1ZTRkNDU5IiwidGFnIjoiIn0%3D; expires=Thu, 07-Nov-2024 06:30:50 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Length: 5226
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html>
<html lang="es">
    <head>
        <meta charset="utf-8">
        <meta name="viewport" content="width=device-width, initial-scale=1">

        <title>Laravel</title>

        <!-- Fonts -->
        <link href="https://fonts.googleapis.com/css2?family=Nunito:wght@400;600;700&display=swap" rel="stylesheet">

        <!-- Styles -->
        <style>
            /*! normalize.css v8.0.1 | MIT License | github.com/necolas/normalize.css */html{line-height:1.15;-webkit-text-size-adjust:100%}body{margin:0}a{background-color:transparent}[hidden]{display:none}html{font-family:system-ui,-apple-system,BlinkMacSystemFont,Segoe UI,Roboto,Helvetica Neue,Arial,Noto Sans,sans-serif,Apple Color Emoji,Segoe UI Emoji,Segoe UI Symbol,Noto Color Emoji;line-height:1.5}*,:after,:before{box-sizing:border-box;border:0 solid #e2e8f0}a{color:inherit;text-decoration:inherit}svg,video{display:block;vertical-align:middle}video{max-width:100%;height:auto}.bg-white{--bg-opacity:1;background-color:#fff;background-color:rgba(255,255,255,var(--bg-opacity))}.bg-gray-100{--bg-opacity:1;background-color:#f7fafc;background-color:rgba(247,250,252,var(--bg-opacity))}.border-gray-200{--border-opacity:1;border-color:#edf2f7;border-color:rgba(237,242,247,var(--border-opacity))}.border-t{border-top-width:1px}.flex{display:flex}.grid{display:grid}.hidden{display:none}.items-center{align-items:center}.justify-center{justify-content:center}.font-semibold{font-weight:600}.h-5{height:1.25rem}.h-8{height:2rem}.h-16{height:4rem}.text-sm{font-size:.875rem}.text-lg{font-size:1.125rem}.leading-7{line-height:1.75rem}.mx-auto{margin-left:auto;margin-right:auto}.ml-1{margin-left:.25rem}.mt-2{margin-top:.5rem}.mr-2{margin-right:.5rem}.ml-2{margin-left:.5rem}.mt-4{margin-top:1rem}.ml-4{margin-left:1rem}.mt-8{margin-top:2rem}.ml-12{margin-left:3rem}.-mt-px{margin-top:-1px}.max-w-6xl{max-width:72rem}.min-h-screen{min-height:100vh}.overflow-hidden{overflow:hidden}.p-6{padding:1.5rem}.py-4{padding-top:1rem;padding-bottom:1rem}.px-6{padding-left:1.5rem;padding-right:1.5rem}.pt-8{padding-top:2rem}.fixed{position:fixed}.relative{position:relative}.top-0{top:0}.right-0{right:0}.shadow{box-shadow:0 1px 3px 0 rgba(0,0,0,.1),0 1px 2px 0 rgba(0,0,0,.06)}.text-center{text-align:center}.text-gray-200{--text-opacity:1;color:#edf2f7;color:rgba(237,242,247,var(--text-opacity))}.text-gray-300{--text-opacity:1;color:#e2e8f0;color:rgba(226,232,240,var(--text-opacity))}.text-gray-400{--text-opacity:1;color:#cbd5e0;color:rgba(203,213,224,var(--text-opacity))}.text-gray-500{--text-opacity:1;color:#a0aec0;color:rgba(160,174,192,var(--text-opacity))}.text-gray-600{--text-opacity:1;color:#718096;color:rgba(113,128,150,var(--text-opacity))}.text-gray-700{--text-opacity:1;color:#4a5568;color:rgba(74,85,104,var(--text-opacity))}.text-gray-900{--text-opacity:1;color:#1a202c;color:rgba(26,32,44,var(--text-opacity))}.underline{text-decoration:underline}.antialiased{-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}.w-5{width:1.25rem}.w-8{width:2rem}.w-auto{width:auto}.grid-cols-1{grid-template-columns:repeat(1,minmax(0,1fr))}@media (min-width:640px){.sm\:rounded-lg{border-radius:.5rem}.sm\:block{display:block}.sm\:items-center{align-items:center}.sm\:justify-start{justify-content:flex-start}.sm\:justify-between{justify-content:space-between}.sm\:h-20{height:5rem}.sm\:ml-0{margin-left:0}.sm\:px-6{padding-left:1.5rem;padding-right:1.5rem}.sm\:pt-0{padding-top:0}.sm\:text-left{text-align:left}.sm\:text-right{text-align:right}}@media (min-width:768px){.md\:border-t-0{border-top-width:0}.md\:border-l{border-left-width:1px}.md\:grid-cols-2{grid-template-columns:repeat(2,minmax(0,1fr))}}@media (min-width:1024px){.lg\:px-8{padding-left:2rem;padding-right:2rem}}@media (prefers-color-scheme:dark){.dark\:bg-gray-800{--bg-opacity:1;background-color:#2d3748;background-color:rgba(45,55,72,var(--bg-opacity))}.dark\:bg-gray-900{--bg-opacity:1;background-color:#1a202c;background-color:rgba(26,32,44,var(--bg-opacity))}.dark\:border-gray-700{--border-opacity:1;border-color:#4a5568;border-color:rgba(74,85,104,var(--border-opacity))}.dark\:text-white{--text-opacity:1;color:#fff;color:rgba(255,255,255,var(--text-opacity))}.dark\:text-gray-400{--text-opacity:1;color:#cbd5e0;color:rgba(203,213,224,var(--text-opacity))}}
        </style>

        <style>
            body {
                font-family: 'Nunito', sans-serif;
            }
        </style>
    </head>
    <body class="antialiased">
        <div class="relative flex items-top justify-center min-h-screen bg-gray-100 dark:bg-gray-900 sm:items-center py-4 sm:pt-0">
                            <div class="hidden fixed top-0 right-0 px-6 py-4 sm:block">
                                            <a href="https://<ip>:9402/login" class="text-sm text-gray-700 underline">Log in</a>

                       
                                    </div>
            
            <div class="max-w-6xl mx-auto sm:px-6 lg:px-8"> 
                <div class="content">
                    <div class="title m-b-md">
                        Continental
                    </div>
                    
                </div>
        </div>
    </body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:30:50.000Z",
   "alternativeip" : [
      "182.160.29.165"
   ],
   "app" : {
      "extract" : {
         "domain" : [
            "googleapis.com"
         ],
         "hostname" : [
            "fonts.googleapis.com"
         ],
         "url" : [
            "https://fonts.googleapis.com/css2?family=Nunito:wght@400;600;700&display=swap"
         ]
      },
      "http" : {
         "bodymd5" : "157304904220a758cc36e2de190344b4",
         "bodymmh3" : -72229091,
         "headermd5" : "530caaae43feeebfca41c5431ede7056",
         "headermmh3" : 2040985891,
         "title" : "Laravel"
      },
      "length" : 6400
   },
   "asn" : "AS266757",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Iquitos",
   "country" : "PE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 04:30:50 GMT\r\nServer: Apache/2.4.29 (Ubuntu)\r\nUpgrade: h2\r\nConnection: Upgrade, close\r\nCache-Control: no-cache, private\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6ImIrRkp2bUptZXNEWWVhcUdoWmkya2c9PSIsInZhbHVlIjoiaGJqdndzNUVRWCtoZnhWZUUyRVNNbW4xb1h1MTAxTVJ2MzdMRmN5VXd4cUZ5Y1JMZFRWVWpCZG9qTGY5eW1RTnl0enZDaUpxSE9UMThaU2pQakljMmNHV1M3VkRDTExoSUVrQTMvN3dqQmlGenl4NUFuNXlMVk5DdkZ0SDBTV1YiLCJtYWMiOiIyYmViNGNlOThlNjM3YWNhNGIzZGFiZjczODY0MzBlMzE5MDlkYzU5NTBkYmJiZjcyMzU1MWNhZDdkMDVlYzA3IiwidGFnIjoiIn0%3D; expires=Thu, 07-Nov-2024 06:30:50 GMT; Max-Age=7200; path=/; samesite=lax\r\nSet-Cookie: continental_session=eyJpdiI6IlB2SThsYW9pUitTNVpmRlViVkE0ZUE9PSIsInZhbHVlIjoiTG16UzB2UGpBZUg3UTRRcFlhdkdaajU1c2NPajluY0EwWkdONFo5a0dtdEEzMW1XWXZDRElzVVdOeUlKU3RRem9Tdm5JUjQxYzlkSVg5MEZCbkxXRmEraW82RUptcXRUZ2hYdkdDTFB1MnhzZW00ZmhqMXU5WW9OQUtSa1lXemsiLCJtYWMiOiJhY2Q2OTU0ODIyNDQ2NjIyNmIwZTE3YzFkMWFjNjAxYWQwNTA2MDMzM2M5ZGZhNzc1YzgyYTBmZjg1ZTRkNDU5IiwidGFnIjoiIn0%3D; expires=Thu, 07-Nov-2024 06:30:50 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nVary: Accept-Encoding\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 5226\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n<!DOCTYPE html>\n<html lang=\"es\">\n    <head>\n        <meta charset=\"utf-8\">\n        <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n\n        <title>Laravel</title>\n\n        <!-- Fonts -->\n        <link href=\"https://fonts.googleapis.com/css2?family=Nunito:wght@400;600;700&display=swap\" rel=\"stylesheet\">\n\n        <!-- Styles -->\n        <style>\n            /*! normalize.css v8.0.1 | MIT License | github.com/necolas/normalize.css */html{line-height:1.15;-webkit-text-size-adjust:100%}body{margin:0}a{background-color:transparent}[hidden]{display:none}html{font-family:system-ui,-apple-system,BlinkMacSystemFont,Segoe UI,Roboto,Helvetica Neue,Arial,Noto Sans,sans-serif,Apple Color Emoji,Segoe UI Emoji,Segoe UI Symbol,Noto Color Emoji;line-height:1.5}*,:after,:before{box-sizing:border-box;border:0 solid #e2e8f0}a{color:inherit;text-decoration:inherit}svg,video{display:block;vertical-align:middle}video{max-width:100%;height:auto}.bg-white{--bg-opacity:1;background-color:#fff;background-color:rgba(255,255,255,var(--bg-opacity))}.bg-gray-100{--bg-opacity:1;background-color:#f7fafc;background-color:rgba(247,250,252,var(--bg-opacity))}.border-gray-200{--border-opacity:1;border-color:#edf2f7;border-color:rgba(237,242,247,var(--border-opacity))}.border-t{border-top-width:1px}.flex{display:flex}.grid{display:grid}.hidden{display:none}.items-center{align-items:center}.justify-center{justify-content:center}.font-semibold{font-weight:600}.h-5{height:1.25rem}.h-8{height:2rem}.h-16{height:4rem}.text-sm{font-size:.875rem}.text-lg{font-size:1.125rem}.leading-7{line-height:1.75rem}.mx-auto{margin-left:auto;margin-right:auto}.ml-1{margin-left:.25rem}.mt-2{margin-top:.5rem}.mr-2{margin-right:.5rem}.ml-2{margin-left:.5rem}.mt-4{margin-top:1rem}.ml-4{margin-left:1rem}.mt-8{margin-top:2rem}.ml-12{margin-left:3rem}.-mt-px{margin-top:-1px}.max-w-6xl{max-width:72rem}.min-h-screen{min-height:100vh}.overflow-hidden{overflow:hidden}.p-6{padding:1.5rem}.py-4{padding-top:1rem;padding-bottom:1rem}.px-6{padding-left:1.5rem;padding-right:1.5rem}.pt-8{padding-top:2rem}.fixed{position:fixed}.relative{position:relative}.top-0{top:0}.right-0{right:0}.shadow{box-shadow:0 1px 3px 0 rgba(0,0,0,.1),0 1px 2px 0 rgba(0,0,0,.06)}.text-center{text-align:center}.text-gray-200{--text-opacity:1;color:#edf2f7;color:rgba(237,242,247,var(--text-opacity))}.text-gray-300{--text-opacity:1;color:#e2e8f0;color:rgba(226,232,240,var(--text-opacity))}.text-gray-400{--text-opacity:1;color:#cbd5e0;color:rgba(203,213,224,var(--text-opacity))}.text-gray-500{--text-opacity:1;color:#a0aec0;color:rgba(160,174,192,var(--text-opacity))}.text-gray-600{--text-opacity:1;color:#718096;color:rgba(113,128,150,var(--text-opacity))}.text-gray-700{--text-opacity:1;color:#4a5568;color:rgba(74,85,104,var(--text-opacity))}.text-gray-900{--text-opacity:1;color:#1a202c;color:rgba(26,32,44,var(--text-opacity))}.underline{text-decoration:underline}.antialiased{-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}.w-5{width:1.25rem}.w-8{width:2rem}.w-auto{width:auto}.grid-cols-1{grid-template-columns:repeat(1,minmax(0,1fr))}@media (min-width:640px){.sm\\:rounded-lg{border-radius:.5rem}.sm\\:block{display:block}.sm\\:items-center{align-items:center}.sm\\:justify-start{justify-content:flex-start}.sm\\:justify-between{justify-content:space-between}.sm\\:h-20{height:5rem}.sm\\:ml-0{margin-left:0}.sm\\:px-6{padding-left:1.5rem;padding-right:1.5rem}.sm\\:pt-0{padding-top:0}.sm\\:text-left{text-align:left}.sm\\:text-right{text-align:right}}@media (min-width:768px){.md\\:border-t-0{border-top-width:0}.md\\:border-l{border-left-width:1px}.md\\:grid-cols-2{grid-template-columns:repeat(2,minmax(0,1fr))}}@media (min-width:1024px){.lg\\:px-8{padding-left:2rem;padding-right:2rem}}@media (prefers-color-scheme:dark){.dark\\:bg-gray-800{--bg-opacity:1;background-color:#2d3748;background-color:rgba(45,55,72,var(--bg-opacity))}.dark\\:bg-gray-900{--bg-opacity:1;background-color:#1a202c;background-color:rgba(26,32,44,var(--bg-opacity))}.dark\\:border-gray-700{--border-opacity:1;border-color:#4a5568;border-color:rgba(74,85,104,var(--border-opacity))}.dark\\:text-white{--text-opacity:1;color:#fff;color:rgba(255,255,255,var(--text-opacity))}.dark\\:text-gray-400{--text-opacity:1;color:#cbd5e0;color:rgba(203,213,224,var(--text-opacity))}}\n        </style>\n\n        <style>\n            body {\n                font-family: 'Nunito', sans-serif;\n            }\n        </style>\n    </head>\n    <body class=\"antialiased\">\n        <div class=\"relative flex items-top justify-center min-h-screen bg-gray-100 dark:bg-gray-900 sm:items-center py-4 sm:pt-0\">\n                            <div class=\"hidden fixed top-0 right-0 px-6 py-4 sm:block\">\n                                            <a href=\"https://<ip>:9402/login\" class=\"text-sm text-gray-700 underline\">Log in</a>\n\n                       \n                                    </div>\n            \n            <div class=\"max-w-6xl mx-auto sm:px-6 lg:px-8\"> \n                <div class=\"content\">\n                    <div class=\"title m-b-md\">\n                        Continental\n                    </div>\n                    \n                </div>\n        </div>\n    </body>\n</html>\n",
   "datamd5" : "16a12f61ca583693240bdf1ae7cc887a",
   "datammh3" : -561011486,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "continental.edu.pe"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "6b475306b5c6e43c8680ae524de78d37",
      "sha1" : "7148ae3d220a7f76bc15fb8af79b5eff3d33c0c2",
      "sha256" : "e383562bcc6beac520f7f9bdb63c3ebe4e6a517bfc5f2de0e351194964a98f71"
   },
   "geolocus" : {
      "asn" : "AS266757",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "PE",
      "countryname" : "Peru",
      "domain" : [
         "globalfiber.com.pe"
      ],
      "isineu" : "false",
      "latitude" : "-9.189967",
      "location" : "-9.189967,-75.015152",
      "longitude" : "-75.015152",
      "netname" : "PE-SATE3-LACNIC",
      "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
      "subnet" : "45.232.148.0/22"
   },
   "hostname" : [
      "continental.edu.pe"
   ],
   "ip" : "45.232.149.24",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Organization Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "-3.7461",
   "location" : "-3.7461,-73.2455",
   "longitude" : "-73.2455",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 9402,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.29",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "4d:5c:10:5b:49:ec:d5:b5:16:39:9f:66:12:6b:81:94",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "altname" : [
         "*.continental.edu.pe",
         "continental.edu.pe"
      ],
      "commonname" : "*.continental.edu.pe",
      "country" : "PE",
      "organization" : "UNIVERSIDAD CONTINENTAL SOCIEDAD ANONIMA CERRADA"
   },
   "subnet" : "45.232.148.0/22",
   "tld" : [
      "edu.pe"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-01-18T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
8.208.89.32

Network
8.208.0.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux sUse

URL

https://8.208.89.32:9402/ 200

HTTP Title
Direct IP access not allowed | Cloudflare

HTTP Keyword(s)
voip vos3000

HTTP Copyright
www.linknat.com, 昆石网络

ASN
AS45102

Organization
Alibaba US Technology Co., Ltd.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux sUse

HTTP Component(s)
Drupal Drupal 8 Gitlab Gitlab SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3 Cacti Cacti Atlassian Confluence

CPE(s)

<enterprise field>: cpe
Issuer Common Name
localhost

Issuer Organization
HXSWZVXO

Subject Organization
HXSWZVXO

Subject Common Name
localhost

SHA256 Fingerprint
08780f17f9c8f7839b68cefe8f683ff8c3a6d9bc43e188c92b6e757901e4bc39

Validity Not Before
2024-11-04T05:05:26Z

Validity Not After
2034-11-04T05:05:26Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5e1d56f600e14fbce59fe13f48e7bd87

HTTP Header MD5
27d2686aecd0d487efeeb9bfbaf86ecc

HTTP Body MD5
c8f885675b05ca166bb8d1f6b29ebdb1

HTTP/1.1 200 OK
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 106037
Content-Type: text/html;charset=utf-8
Host-Header: 6d77dd967d63c3104bced1db0cace49c
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Mime-Version: 1.0
Pragma: private
Server: cdyc_web_svr1.0
Set-Cookie: RUIJIEID=A67B8F9C228E095723A97C6A977BE2B3; Path=/;
Set-Cookie: jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c; path=/
Set-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;
Set-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;
Set-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/
Set-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;
Set-Cookie: sesskey=21263a2bf; path=/;
Set-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax
Set-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/
Set-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;
Set-Cookie: webvpn_as=; path=/; secure;
Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
Set-Cookie: SESSID=22363a2bf; path=/;
Set-Cookie: PHC_DISABLED=1; path=/; secure;
Set-Cookie: acSamlv2Token=; path=/; secure;
Set-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;
Set-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;
Set-Cookie: csrf=8t9ADqIogbjKRK6; Path=/; HttpOnly;
Via: 1.1 51766bfb56389c696c1525db90e16f23.cloudfront.net (CloudFront)
X-Cache: MISS from Hello
X-Cache-Lookup: NONE from ezproxies.com:3128
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Fastly-Request-Id: ed15bdb8f4d9179ebe5b6b8441d6148a4a8e213f
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 8 (https://www.drupal.org)
X-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Page-Speed: 1.13.35.2-0
X-Proxy-Cache: MISS
X-Qlik-Xrfkey: ef00
X-Robots-Tag: none
X-Sorting-Hat-Podid: 80
X-Xss-Protection: 1; mode=block
Date: Thu, 07 Nov 2024 04:30:11 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0922==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>Direct IP access not allowed | Cloudflare</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwOTIyPT0=
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared_Clean:          0 kB
Shared_Dirty:          0 kB
Private_Clean:         0 kB
Private_Dirty:        52 kB
Referenced:           52 kB
Anonymous:            52 kB
AnonHugePages:         0 kB
Swap:                  8 kB
KernelPageSize:        4 kB
MMUPageSize:           4 kB
009b1000-009b8000 rwxp 001b1000 fd:01 3339977                            /var/Sofia
Siz

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:30:11.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "micros-hosting.com",
            "drupal.org"
         ],
         "file" : [
            "index.php",
            "dvrremoteap.exe",
            "cloud_index.php",
            "dvrremoteap_x64.exe",
            "dvfplayer.zip",
            "admin-ajax.php"
         ],
         "hostname" : [
            "micros-hosting.com",
            "www.drupal.org"
         ],
         "ip" : [
            "7.7.31.1",
            "192.168.1.10",
            "192.168.1.1",
            "192.168.1.4",
            "192.168.0.1",
            "1.0.0.36",
            "1.13.35.2"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4",
            "https://www.drupal.org"
         ]
      },
      "http" : {
         "bodymd5" : "c8f885675b05ca166bb8d1f6b29ebdb1",
         "bodymmh3" : 1013000637,
         "component" : [
            {
               "product" : "Cacti",
               "productvendor" : "Cacti"
            },
            {
               "product" : "SPIP",
               "productversion" : "4.1.11",
               "productvendor" : "SPIP"
            },
            {
               "product" : "Confluence",
               "productvendor" : "Atlassian"
            },
            {
               "product" : "Drupal",
               "productvendor" : "Drupal",
               "productversion" : "8"
            },
            {
               "product" : "Gitlab",
               "productvendor" : "Gitlab"
            },
            {
               "product" : "Jenkins",
               "productversion" : "2.121.3",
               "productvendor" : "Jenkins"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "27d2686aecd0d487efeeb9bfbaf86ecc",
         "headermmh3" : 16281893,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "title" : "Direct IP access not allowed | Cloudflare"
      },
      "length" : 16315
   },
   "asn" : "AS45102",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "London",
   "country" : "GB",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 106037\r\nContent-Type: text/html;charset=utf-8\r\nHost-Header: 6d77dd967d63c3104bced1db0cace49c\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nMime-Version: 1.0\r\nPragma: private\r\nServer: cdyc_web_svr1.0\r\nSet-Cookie: RUIJIEID=A67B8F9C228E095723A97C6A977BE2B3; Path=/;\r\nSet-Cookie: jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c; path=/\r\nSet-Cookie: cval=f337; path=/; splunkweb_csrf_token_8000=0011;\r\nSet-Cookie: sessionid=24263a2bf; webvpnLang=webvpnLang; webvpn=; webvpncontext=00000@SSLContext; path=/;\r\nSet-Cookie: Cacti=o6vomb0hujscvd9qh7icd0b6m6; path=/\r\nSet-Cookie: session=eyJsb2NhbGUiOiJlbiJ9.ZZ4C4A.Yts__-iv6tJYDJFDwkciSG_z7M4; HttpOnly; Path=/;\r\nSet-Cookie: sesskey=21263a2bf; path=/;\r\nSet-Cookie: grafana_session=f7fbcb089c6994b7bc45775fdae1a13c; Path=/; Max-Age=2592000; HttpOnly; Secure; SameSite=Lax\r\nSet-Cookie: SOLONID=n91i168jps8rd856bcrln2isqe; path=/\r\nSet-Cookie: UICSESSION=qqhhk66ogtvugchmqfov0j4l96; path=/;\r\nSet-Cookie: webvpn_as=; path=/; secure;\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: SESSID=22363a2bf; path=/;\r\nSet-Cookie: PHC_DISABLED=1; path=/; secure;\r\nSet-Cookie: acSamlv2Token=; path=/; secure;\r\nSet-Cookie: NSC_AAAC=a29d421feecf680a560a4c47b269b38ea29d421feecf680a560a4c47b269b38ea; path=/;\r\nSet-Cookie: _zcsr_tmp=66a8d8fd-ffe2-422b-bf08-37b6297afc4f;path=/;SameSite=Strict;Secure;priority=high;\r\nSet-Cookie: csrf=8t9ADqIogbjKRK6; Path=/; HttpOnly;\r\nVia: 1.1 51766bfb56389c696c1525db90e16f23.cloudfront.net (CloudFront)\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: NONE from ezproxies.com:3128\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Fastly-Request-Id: ed15bdb8f4d9179ebe5b6b8441d6148a4a8e213f\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 8 (https://www.drupal.org)\r\nX-Iinfo: 11-40203780-0 0NNN RT(1579229728732 0) q(0 -1 -1 -1) r(0 -1)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Page-Speed: 1.13.35.2-0\r\nX-Proxy-Cache: MISS\r\nX-Qlik-Xrfkey: ef00\r\nX-Robots-Tag: none\r\nX-Sorting-Hat-Podid: 80\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 07 Nov 2024 04:30:11 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384eeffc23b0922==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>Direct IP access not allowed | Cloudflare</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZWVmZmMyM2IwOTIyPT0=\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:         0 kB\nSwap:                  8 kB\nKernelPageSize:        4 kB\nMMUPageSize:           4 kB\n009b1000-009b8000 rwxp 001b1000 fd:01 3339977                            /var/Sofia\nSiz",
   "datamd5" : "5e1d56f600e14fbce59fe13f48e7bd87",
   "datammh3" : 116623545,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "extkeyusage" : [
      "clientAuth",
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "08dcc1ca797467e4d9da27cd17871eae",
      "sha1" : "3c79fb275019b363913c70168a0793d1eba0fb6c",
      "sha256" : "08780f17f9c8f7839b68cefe8f683ff8c3a6d9bc43e188c92b6e757901e4bc39"
   },
   "geolocus" : {
      "asn" : "AS45102",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "GB",
      "countryname" : "United Kingdom",
      "domain" : [
         "alibaba-inc.com"
      ],
      "isineu" : "false",
      "latitude" : "55.378051",
      "location" : "55.378051,-3.435973",
      "longitude" : "-3.435973",
      "netname" : "ALICLOUD-GB",
      "organization" : "Alibaba.com Singapore E-Commerce Private Limited",
      "subnet" : "8.208.0.0/17"
   },
   "ip" : "8.208.89.32",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "localhost",
      "country" : "KG",
      "organization" : "HXSWZVXO",
      "organizationalunit" : "RGCBJJC"
   },
   "keyusage" : [
      "digitalSignature",
      "keyCertSign"
   ],
   "latitude" : "51.5074",
   "location" : "51.5074,-0.1196",
   "longitude" : "-0.1196",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Alibaba US Technology Co., Ltd.",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 9402,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 4096
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "6d:26:61:53:81:5a:22:43",
   "signature" : {
      "algorithm" : "sha512WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "commonname" : "localhost",
      "country" : "KG",
      "organization" : "HXSWZVXO",
      "organizationalunit" : "RGCBJJC"
   },
   "subnet" : "8.208.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2034-11-04T05:05:26Z",
      "notbefore" : "2024-11-04T05:05:26Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
39.129.42.246

Network
39.128.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://39.129.42.246:9402/ 200

HTTP Title
SSLVPN登录页面

ASN
AS9808

Organization
China Mobile Communications Group Co., Ltd.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
RJ-SSLVPN-ROOTCA-2023-1-11-Wed-17:10:0

Subject Common Name
0.0.0.0

SHA256 Fingerprint
f903e9152bd238d98097b73bae3a48e8ec1014f1dcc92e9d7d77a956a25b2944

Validity Not Before
2023-01-10T01:10:08Z

Validity Not After
2033-01-08T01:10:08Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b03d14c9ad6cf7778e50f2ce40ecd5cc

HTTP Header MD5
f519500af33e51eee714ace2fff11803

HTTP Body MD5
6c147d91c448e57b5cf64365e024d4a2

HTTP/1.1 200 OK
Server: sslvpn 1.0
Date: Thu, 07 Nov 2024 04:18:26 GMT
Content-Type: text/html
Last-Modified: Tue, 29 Mar 2022 20:02:25 GMT
Transfer-Encoding: chunked
Connection: close
Set-Cookie: rjsslvpnSID=85e2adea68f8d3d4661fa8d46bb9d527; path=/; secure; httponly
Set-Cookie: rjsslvpnCF=184; path=/
Set-Cookie: rjsslvpnVER=16777216; path=/; secure; httponly
Accept-Ranges: bytes

9a1
<!DOCTYPE html>
<html>
	<head>
		<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
		<script type="text/javascript" src="js/lhgdialog/jquery.js"></script>
		<script type="text/javascript" src="js/rjweb_lib.js"></script>
		<title>SSLVPN登录页面</title>
<noscript>
	您的浏览器不支持JavaScript（或它被禁止了）,请确认您的浏览器能支持JavaScript才能使用SSLVPN服务.
</noscript>
		<script type="text/javascript">
		/*
	 检查浏览器是否支持cookie
	 */
	
    function CookieEnable() {
        var result=false;
        if(navigator.cookiesEnabled)
          return true;
        document.cookie = "rjsslvpn_encookie=yes;";
        var cookieSet = document.cookie;
        if (cookieSet.indexOf("rjsslvpn_encookie=yes") > -1) 
          result=true;
       // document.cookie = "";
        return result;
    }
    function check_cookie_enable() {
        if (!CookieEnable()) {
            alert("当前浏览器的cookie设置无法使用SSLVPN服务,请进入浏览器选项卡设置cookie级别");
        } else {
            //带args参数,表示从login.html方式登录
            var login = getQueryString("arg");
            if (login) {
                check_activex_enable("login.html");
            } else {
                check_location_href();
            }
        }
	}

    //获取跳转地址
    function check_location_href() {
        $.ajax({
            type : "GET",
            url : "/sslvpn/action/getHrefMsg",
            success : function(url) {
                check_activex_enable(url)
            }, error : function(XMLHttpRequest, textStatus, errorThrown) {
                //alert("信息获取失败，服务器正忙");
            }
        });
    }

    function check_activex_enable(url) {
        //非IE,非单点登录需要加参数;单点登录先执行登出
        var href = url;
        if (url.indexOf("ssologin")<0) {
            var random=Math.random();
            href = url + "?cid="+parseInt(Math.random()*1000000);
        } else {
            var splitUrl = url.split("?");
            sslvpn_user_jsonp_logout(splitUrl[0]);
        }
        window.location.href = href;
    }
	check_cookie_enable();
	//check_activex_enable();
	//activex检查
		</script>
	</head>
	<body bgcolor="white" text="black"></body>
</html>  

<script language="javascript">
	
</script>

0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:03:20.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6c147d91c448e57b5cf64365e024d4a2",
         "bodymmh3" : 1682890392,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Tue, 29 Mar 2022 20:02:25 GMT"
            }
         ],
         "headermd5" : "f519500af33e51eee714ace2fff11803",
         "headermmh3" : -2033134612,
         "title" : "SSLVPN\u767b\u5f55\u9875\u9762"
      },
      "length" : 2873
   },
   "asn" : "AS9808",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Kunming",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: sslvpn 1.0\r\nDate: Thu, 07 Nov 2024 04:18:26 GMT\r\nContent-Type: text/html\r\nLast-Modified: Tue, 29 Mar 2022 20:02:25 GMT\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: rjsslvpnSID=85e2adea68f8d3d4661fa8d46bb9d527; path=/; secure; httponly\r\nSet-Cookie: rjsslvpnCF=184; path=/\r\nSet-Cookie: rjsslvpnVER=16777216; path=/; secure; httponly\r\nAccept-Ranges: bytes\r\n\r\n9a1\r\n\ufeff<!DOCTYPE html>\r\n<html>\r\n\t<head>\r\n\t\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\r\n\t\t<script type=\"text/javascript\" src=\"js/lhgdialog/jquery.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"js/rjweb_lib.js\"></script>\r\n\t\t<title>SSLVPN\u767b\u5f55\u9875\u9762</title>\r\n<noscript>\r\n\t\u60a8\u7684\u6d4f\u89c8\u5668\u4e0d\u652f\u6301JavaScript\uff08\u6216\u5b83\u88ab\u7981\u6b62\u4e86\uff09,\u8bf7\u786e\u8ba4\u60a8\u7684\u6d4f\u89c8\u5668\u80fd\u652f\u6301JavaScript\u624d\u80fd\u4f7f\u7528SSLVPN\u670d\u52a1.\r\n</noscript>\r\n\t\t<script type=\"text/javascript\">\r\n\t\t/*\r\n\t \u68c0\u67e5\u6d4f\u89c8\u5668\u662f\u5426\u652f\u6301cookie\r\n\t */\r\n\t\r\n    function CookieEnable() {\r\n        var result=false;\r\n        if(navigator.cookiesEnabled)\r\n          return true;\r\n        document.cookie = \"rjsslvpn_encookie=yes;\";\r\n        var cookieSet = document.cookie;\r\n        if (cookieSet.indexOf(\"rjsslvpn_encookie=yes\") > -1) \r\n          result=true;\r\n       // document.cookie = \"\";\r\n        return result;\r\n    }\r\n    function check_cookie_enable() {\r\n        if (!CookieEnable()) {\r\n            alert(\"\u5f53\u524d\u6d4f\u89c8\u5668\u7684cookie\u8bbe\u7f6e\u65e0\u6cd5\u4f7f\u7528SSLVPN\u670d\u52a1,\u8bf7\u8fdb\u5165\u6d4f\u89c8\u5668\u9009\u9879\u5361\u8bbe\u7f6ecookie\u7ea7\u522b\");\r\n        } else {\r\n            //\u5e26args\u53c2\u6570,\u8868\u793a\u4ecelogin.html\u65b9\u5f0f\u767b\u5f55\r\n            var login = getQueryString(\"arg\");\r\n            if (login) {\r\n                check_activex_enable(\"login.html\");\r\n            } else {\r\n                check_location_href();\r\n            }\r\n        }\r\n\t}\r\n\r\n    //\u83b7\u53d6\u8df3\u8f6c\u5730\u5740\r\n    function check_location_href() {\r\n        $.ajax({\r\n            type : \"GET\",\r\n            url : \"/sslvpn/action/getHrefMsg\",\r\n            success : function(url) {\r\n                check_activex_enable(url)\r\n            }, error : function(XMLHttpRequest, textStatus, errorThrown) {\r\n                //alert(\"\u4fe1\u606f\u83b7\u53d6\u5931\u8d25\uff0c\u670d\u52a1\u5668\u6b63\u5fd9\");\r\n            }\r\n        });\r\n    }\r\n\r\n    function check_activex_enable(url) {\r\n        //\u975eIE,\u975e\u5355\u70b9\u767b\u5f55\u9700\u8981\u52a0\u53c2\u6570;\u5355\u70b9\u767b\u5f55\u5148\u6267\u884c\u767b\u51fa\r\n        var href = url;\r\n        if (url.indexOf(\"ssologin\")<0) {\r\n            var random=Math.random();\r\n            href = url + \"?cid=\"+parseInt(Math.random()*1000000);\r\n        } else {\r\n            var splitUrl = url.split(\"?\");\r\n            sslvpn_user_jsonp_logout(splitUrl[0]);\r\n        }\r\n        window.location.href = href;\r\n    }\r\n\tcheck_cookie_enable();\r\n\t//check_activex_enable();\r\n\t//activex\u68c0\u67e5\r\n\t\t</script>\r\n\t</head>\r\n\t<body bgcolor=\"white\" text=\"black\"></body>\r\n</html>  \r\n\r\n<script language=\"javascript\">\r\n\t\r\n</script>\r\n\r\n0\r\n\r\n",
   "datamd5" : "b03d14c9ad6cf7778e50f2ce40ecd5cc",
   "datammh3" : 900061460,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "fingerprint" : {
      "md5" : "3dac0c1985cfe21b5c2452ea0e7fba0b",
      "sha1" : "3cc9b669efaeecde141d0152ea4a3ff7cae5d5b4",
      "sha256" : "f903e9152bd238d98097b73bae3a48e8ec1014f1dcc92e9d7d77a956a25b2944"
   },
   "geolocus" : {
      "asn" : "AS9808",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile",
      "subnet" : "39.129.0.0/16"
   },
   "ip" : "39.129.42.246",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "RJ-SSLVPN-ROOTCA-2023-1-11-Wed-17:10:0"
   },
   "latitude" : "25.0088",
   "location" : "25.0088,102.6513",
   "longitude" : "102.6513",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile Communications Group Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9402,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : 2,
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "commonname" : "0.0.0.0"
   },
   "subnet" : "39.128.0.0/14",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2033-01-08T01:10:08Z",
      "notbefore" : "2023-01-10T01:10:08Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 8,685 in 0.218 second(s)

66.181.170.76:9402 (tcp/http/tls) - last seen on 2024-11-07 at 05:34:21 UTC

38.190.12.254:9402 (tcp/http/tls) - last seen on 2024-11-07 at 05:15:31 UTC

41.193.170.154:9402 (tcp/http/tls) - last seen on 2024-11-07 at 05:15:29 UTC

15.152.37.169:9402 (tcp/http/tls) - last seen on 2024-11-07 at 05:15:05 UTC

54.86.134.212:9402 (tcp/http/tls) - last seen on 2024-11-07 at 05:07:01 UTC

177.201.159.124:9402 (tcp/http/tls) - last seen on 2024-11-07 at 04:47:34 UTC

35.180.64.189:9402 (tcp/http/tls) - last seen on 2024-11-07 at 04:40:37 UTC

45.232.149.24:9402 (tcp/http/tls) - last seen on 2024-11-07 at 04:30:50 UTC

8.208.89.32:9402 (tcp/http/tls) - last seen on 2024-11-07 at 04:30:11 UTC

39.129.42.246:9402 (tcp/http/tls) - last seen on 2024-11-07 at 04:03:20 UTC