Returning 10 result(s) out of 163,422 in 0.105 second(s)

  • 117.190.93.45:9997 (tcp/http) - last seen on 2024-11-07 at 03:22:25 UTC

    • IP
      117.190.93.45
      Network
      117.188.0.0/14
      Device

      <enterprise field>: device.class

      URL

      http://117.190.93.45:9997/login 200

      ASN
      AS9808
      Organization
      China Mobile Communications Group Co., Ltd.
      Protocol
      http
      Source
      urlscan::redirect
    • Product
      Apache HTTP Server
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fd4690678b9f67283a583876abc4a03e
      HTTP Header MD5
      5b3ccf09077c543260e3228790a6eb12
      HTTP Body MD5
      d8c21aa7ab57985f7c06bf6755761f76
    • HTTP/1.1 200 OK
      Date: Thu, 07 Nov 2024 03:22:01 GMT
      Server: Apache
      Vary: Accept-Language,Cookie
      X-Frame-Options: SAMEORIGIN
      Content-Language: en
      Connection: close
      Transfer-Encoding: chunked
      Content-Type: text/html; charset=utf-8
      
      12
      WebUI Port Error .
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:22:25.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d8c21aa7ab57985f7c06bf6755761f76",
               "bodymmh3" : -1332774114,
               "headermd5" : "5b3ccf09077c543260e3228790a6eb12",
               "headermmh3" : -1446822300
            },
            "length" : 269
         },
         "asn" : "AS9808",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 03:22:01 GMT\r\nServer: Apache\r\nVary: Accept-Language,Cookie\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Language: en\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=utf-8\r\n\r\n12\r\nWebUI Port Error .\r\n0\r\n\r\n",
         "datamd5" : "fd4690678b9f67283a583876abc4a03e",
         "datammh3" : -1512838424,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "forward" : "117.190.93.45",
         "geolocus" : {
            "asn" : "AS9808",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "chinamobile.com"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "CMNET",
            "organization" : "China Mobile",
            "subnet" : "117.190.0.0/15"
         },
         "hostname" : [
            "117.190.93.45"
         ],
         "ip" : "117.190.93.45",
         "ipv6" : "false",
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "China Mobile Communications Group Co., Ltd.",
         "port" : 9997,
         "product" : "HTTP Server",
         "productvendor" : "Apache",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 200,
         "subnet" : "117.188.0.0/14",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/login"
      }
      
  • 189.7.90.144:9997 (tcp/http) - last seen on 2024-11-07 at 03:21:20 UTC

    • IP
      189.7.90.144
      Network
      189.4.0.0/14
      Domain(s)
      virtua.com.br
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://189.7.90.144:9997/inspire/login_inspire/login_inspire.php 200

      HTTP Title
      Inspire - V9
      Reverse DNS
      bd075a90.virtua.com.br
      ASN
      AS28573
      Organization
      Claro NXT Telecomunicacoes Ltda
      Protocol
      http
      Source
      urlscan::redirect
    • Operating System
      Microsoft Windows
      Product
      Apache HTTP Server 2.4.46
      HTTP Component(s)
      PHP PHP 7.3.22 Apache mod_fcgid 2.3.10
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      5299d414866933157d18b331cd883c0d
      HTTP Header MD5
      0208e0a714ae6cde7b36cd71f54eeea4
      HTTP Body MD5
      cc7b4c72840bceef10ecf577f1a6c76b
    • HTTP/1.1 200 OK
      Date: Thu, 07 Nov 2024 03:21:15 GMT
      Server: Apache/2.4.46 (Win64) mod_fcgid/2.3.10-dev
      X-Powered-By: PHP/7.3.22
      Expires: Thu, 19 Nov 1981 08:52:00 GMT
      Cache-Control: no-store, no-cache, must-revalidate
      Pragma: no-cache
      X-Frame-Options: SAMEORIGIN
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1; mode=block
      Set-Cookie: PHPSESSID=ml6bmlpujie7jppsqbmuf72kjb; path=/
      Set-Cookie: sc_actual_lang_Inspire=pt_br; path=/
      Connection: close
      Transfer-Encoding: chunked
      Content-Type: text/html; charset=WINDOWS-1252
      
      100d
      <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
                  "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
      
      <html DIR='LTR'>
      <HEAD>
       <TITLE>Inspire - V9</TITLE>
       <META http-equiv="Content-Type" content="text/html; charset=windows-1252" />
       <META http-equiv="Expires" content="Fri, Jan 01 1900 00:00:00 GMT"/>
       <META http-equiv="Last-Modified" content="Thu, 07 Nov 2024 03:21:15 GMT"/>
       <META http-equiv="Cache-Control" content="no-store, no-cache, must-revalidate"/>
       <META http-equiv="Cache-Control" content="post-check=0, pre-check=0"/>
       <META http-equiv="Pragma" content="no-cache"/>
       <link rel="shortcut icon" href="../_lib/img/scriptcase__NM__ico__NM__favicon.ico">
       <link rel="stylesheet" href="/producao/prod/third/jquery_plugin/thickbox/thickbox.css" type="text/css" media="screen" />
       <SCRIPT type="text/javascript">
        var sc_pathToTB = '/producao/prod/third/jquery_plugin/thickbox/';
        var sc_tbLangClose = "Fechar";
        var sc_tbLangEsc = "ou tecla Esc";
        var sc_userSweetAlertDisplayed = false;
       </SCRIPT>
       <SCRIPT type="text/javascript">
        var sc_blockCol = 'scriptcase__NM__btn__NM__scriptcase9_Rhino__NM__nm_scriptcase9_Rhino_opened.png';
        var sc_blockExp = 'scriptcase__NM__btn__NM__scriptcase9_Rhino__NM__nm_scriptcase9_Rhino_open.png';
        var sc_ajaxBg = '#6e6e6e';
        var sc_ajaxBordC = '';
        var sc_ajaxBordS = 'none';
        var sc_ajaxBordW = '';
        var sc_ajaxMsgTime = 2;
        var sc_img_status_ok = '/inspire/_lib/img/scriptcase__NM__iconsuccess.png';
        var sc_img_status_err = '/inspire/_lib/img/scriptcase__NM__iconfails.png';
        var sc_css_status = 'scFormInputError';
       </SCRIPT>
              <SCRIPT type="text/javascript" src="/producao/prod/third/jquery/js/jquery.js"></SCRIPT>
      <input type="hidden" id="sc-mobile-lock" value='true' />
       <SCRIPT type="text/javascript" src="/producao/prod/third/jquery/js/jquery-ui.js"></SCRIPT>
       <link rel="stylesheet" href="/producao/prod/third/jquery/css/smoothness/jquery-ui.css" type="text/css" media="screen" />
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_sweetalert.css" />
       <SCRIPT type="text/javascript" src="/producao/prod/third/sweetalert/sweetalert2.all.min.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/producao/prod/third/sweetalert/polyfill.min.js"></SCRIPT>
       <script type="text/javascript" src="../_lib/lib/js/frameControl.js"></script>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/jquery.iframe-transport.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/jquery.fileupload.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/producao/prod/third/jquery_plugin/malsup-blockui/jquery.blockUI.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/producao/prod/third/jquery_plugin/thickbox/thickbox-compressed.js"></SCRIPT>
      <style type="text/css">
      .sc-button-image.disabled {
      	opacity: 0.25
      }
      .sc-button-image.disabled img {
      	cursor: default !important
      }
      </style>
       <style type="text/css">
        .fileinput-button-padding {
         padding: 3px 10px !important;
        }
        .fileinput-button {
         position: relative;
         overflow: hidden;
         float: left;
         margin-right: 4px;
        }
        .fileinput-button input {
         position: absolute;
         top: 0;
         right: 0;
         margin: 0;
         border: solid transparent;
         border-width: 0 0 100px 200px;
         opacity: 0;
         filter: alpha(opacity=0);
         -moz-transform: translate(-300px, 0) scale(4);
         direction: ltr;
         cursor: pointer;
        }
       </style>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/scInput.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/jquery.scInput.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/jquery.scInput2.js"></SCRIPT>
       <SCRIPT type="text/javascript" src="/inspire/_lib/lib/js/jquery.fieldSelection.js"></SCRIPT>
        <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_form.css" />
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_formLTR.css" />
         
       <link rel="stylesheet" type="text/css" href="
      2000
      /inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_appdiv.css" /> 
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_appdivLTR.css" /> 
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_tab.css" />
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_tabLTR.css" />
       <link rel="stylesheet" type="text/css" href="/inspire/_lib/buttons/scriptcase9_Rhino/scriptcase9_Rhino.css" />
       <link rel="stylesheet" type="text/css" href="/producao/prod/third/font-awesome/css/all.min.css" />
       <link rel="stylesheet" type="text/css" href="/inspire/login_inspire/login_inspire_ltr.css" />
      
      <script>
      var scFocusFirstErrorField = true;
      var scFocusFirstErrorName  = "";
      </script>
      
      
       <form name="form_ajax_redir_1" method="post" style="display: none">
        <input type="hidden" name="nmgp_parms">
        <input type="hidden" name="nmgp_outra_jan">
        <input type="hidden" name="script_case_session" value="ml6bmlpujie7jppsqbmuf72kjb">
       </form>
       <form name="form_ajax_redir_2" method="post" style="display: none">
        <input type="hidden" name="nmgp_parms">
        <input type="hidden" name="nmgp_url_saida">
        <input type="hidden" name="script_case_init">
        <input type="hidden" name="script_case_session" value="ml6bmlpujie7jppsqbmuf72kjb">
       </form>
      
       <SCRIPT>
      
      
                      // remote scripting library
                      // (c) copyright 2005 modernmethod, inc
                      var sajax_debug_mode = false;
                      var sajax_request_type = "POST";
                      var sajax_target_id = "";
                      var sajax_failure_redirect = "";
      
                      function sajax_debug(text) {
                              if (sajax_debug_mode)
                                      alert(text);
                      }
      
                       function sajax_init_object() {
                               sajax_debug("sajax_init_object() called..")
      
                               var A;
      
                              if (window.XMLHttpRequest) {
                                      A = new XMLHttpRequest();
                              }
                              else {
                                   var msxmlhttp = new Array(
                                          'Msxml2.XMLHTTP.5.0',
                                          'Msxml2.XMLHTTP.4.0',
                                          'Msxml2.XMLHTTP.3.0',
                                          'Msxml2.XMLHTTP',
                                          'Microsoft.XMLHTTP');
                                  for (var i = 0; i < msxmlhttp.length; i++) {
                                          try {
                                                  A = new ActiveXObject(msxmlhttp[i]);
                                          } catch (e) {
                                                  A = null;
                                          }
                                  }
      
                                  if(!A && typeof XMLHttpRequest != "undefined")
                                          A = new XMLHttpRequest();
                              }
                              if (!A)
                                      sajax_debug("Could not create connection object.");
                              return A;
                      }
      
                      var sajax_requests = new Array();
      
                      function sajax_cancel() {
                              for (var i = 0; i < sajax_requests.length; i++)
                                      sajax_requests[i].abort();
                      }
      
                      function sajax_do_call(func_name, args) {
                              var i, x, n;
                              var uri;
                              var post_data;
                              var target_id;
                              var charset_html = document.inputEncoding.toLowerCase();
                              var charset_esp = [
                                      "utf-8",
                                      "windows-1250",
                                      "windows-1253",
                                      "windows-1254",
                                      "windows-1255",
                                      "windows-1256",
                                      "windows-1257",
                                      "iso-8859-2",
                                      "iso-8859-4",
                                      "iso-8859-6",
                                      "iso-8859-7",
                                      "iso-8859-8",
                                      "iso-8859-8-i",
                                      "iso-8859-9",
                                      "iso-8859-13",
                                      "euc-kr"
                              ];
      
                              sajax_debug("in sajax_do_call().." + sajax_request_type + "/" + sajax_target_id);
                              target_id = sajax_target_id;
                              if (typeof(sajax_request_type) == "undefined" || sajax_request_type == "")
                                      sajax_request_type = "GET";
      
                              uri = "/inspire/login_inspire/login_inspire.php";
                              // NM
                              if (-1 != uri.indexOf("?"))
                                      uri = uri.substr(0, uri.indexOf("?"));
                              // NM
                              if (sajax_request_type == "GET") {
      
                                      if (uri.indexOf("?") == -1)
                                              uri += "?rs=" + escape(func_name);
                                      else
                                              uri += "&rs=" + escape(func_name);
                                      uri += "&rst=" + escape(sajax_target_id);
                                      uri += "&rsrnd=" + new Date().getTime();
      
                                      for (i = 0; i < args.length-1; i++)
                                              uri += "&rsargs[]=" + escape(args[i]);
      
                                      post_data = null;
                              }
                              else if (sajax_request_type == "POST") {
                                      post_data = "rs=" + escape(func_name);
                                      post_data += "&rst=" + escape(sajax_target_id);
                                      post_data += "&rsrnd=" + new Date().getTime();
      
                                      for (i = 0; i < args.length-1; i++)
                                              post_data = post_data + "&rsargs[]=" + (-1 != $.inArray(charset_html, charset_esp) ? encodeURIComponent(args[i]) : escape(args[i]));
                              }
                              else {
                                      alert("Illegal request type: " + sajax_request_type);
                              }
      
                              x = sajax_init_object();
                              if (x == null) {
                                      if (sajax_failure_redirect != "") {
                                              location.href = sajax_failure_redirect;
                                              return false;
                                      } else {
                                              sajax_debug("NULL sajax object for user agent:\n" + navigator.userAgent);
                                              return false;
                                      }
                              } else {
                                      x.open(sajax_request_type, uri, true);
                                      // window.open(uri);
      
                                      sajax_requests[sajax_requests.length] = x;
      
                                      if (sajax_request_type == "POST") {
                                              x.setRequestHeader("Method", "POST " + uri + " HTTP/1.1");
                                              x.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
                                      }
                                      //charset magia, acontece aqui
                                      //x.setCharacterEncoding( document.inputEncoding );
                                      x.onreadystatechange = function() {
                                              if (x.readyState != 4)
                                                      return;
      
                                              sajax_debug("received " + x.responseText);
      
                                              var status;
                                              var data;
                                              var txt = x.responseText.replace(/^\s*|\s*$/g,"");
                                              status = txt.charAt(0
      1228
      );
                                              data = txt.substring(2);
      
                                              if (status == "") {
                                                      // let's just assume this is a pre-response bailout and let it slide for now
                                              } else if (status == "-")
                                                      alert("Error: " + data);
                                              else {
                                                      if (target_id != "")
                                                              document.getElementById(target_id).innerHTML = eval(data);
                                                      else {
                                                              try {
                                                                      var callback;
                                                                      var extra_data = false;
                                                                      if (typeof args[args.length-1] == "object") {
                                                                              callback = args[args.length-1].callback;
                                                                              extra_data = args[args.length-1].extra_data;
                                                                      } else {
                                                                              callback = args[args.length-1];
                                                                      }
                                                                      callback(eval(data), extra_data);
                                                              } catch (e) {
                                                                      sajax_debug("Caught error " + e + ": Could not eval " + data );
      
                                                                      if (document.getElementById("id_fatal_error") && data.lastIndexOf('Fatal error') > -1)
                                                                      {
                                                                          sc_ret_error = "<table width=20%><tr><td>" + data + "</td></tr></table>";
                                                                          document.getElementById("id_fatal_error").style.display = "";
                                                                          document.getElementById("id_fatal_error").innerHTML = sc_ret_error;
                                                                      }
      
                                                              }
                                                      }
                                              }
                                      }
                              }
      
                              sajax_debug(func_name + " uri = " + uri + "/post = " + post_data);
                              x.send(post_data);
                              sajax_debug(func_name + " waiting..");
                              delete x;
                              return true;
                      }
      
                      
      
                      // wrapper for ajax_login_inspire_validate_txt_login
      
                      function x_ajax_login_inspire_validate_txt_login() {
                              sajax_do_call("ajax_login_inspire_validate_txt_login",
                                      x_ajax_login_inspire_validate_txt_login.arguments);
                      }
      
                      
      
                      // wrapper for ajax_login_inspire_validate_txt_senha
      
                      function x_ajax_login_inspire_validate_txt_senha() {
                              sajax_do_call("ajax_log
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:21:20.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "w3.org"
               ],
               "file" : [
                  "login_inspire.php"
               ],
               "hostname" : [
                  "www.w3.org"
               ],
               "url" : [
                  "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd"
               ]
            },
            "http" : {
               "bodymd5" : "cc7b4c72840bceef10ecf577f1a6c76b",
               "bodymmh3" : 1361615525,
               "component" : [
                  {
                     "productvendor" : "Apache",
                     "productversion" : "2.3.10",
                     "product" : "mod_fcgid"
                  },
                  {
                     "productvendor" : "PHP",
                     "productversion" : "7.3.22",
                     "product" : "PHP"
                  }
               ],
               "headermd5" : "0208e0a714ae6cde7b36cd71f54eeea4",
               "headermmh3" : -136151671,
               "title" : "Inspire - V9"
            },
            "length" : 16384
         },
         "asn" : "AS28573",
         "city" : "Jundia\u00ed",
         "country" : "BR",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 03:21:15 GMT\r\nServer: Apache/2.4.46 (Win64) mod_fcgid/2.3.10-dev\r\nX-Powered-By: PHP/7.3.22\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nSet-Cookie: PHPSESSID=ml6bmlpujie7jppsqbmuf72kjb; path=/\r\nSet-Cookie: sc_actual_lang_Inspire=pt_br; path=/\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=WINDOWS-1252\r\n\r\n100d\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\r\n            \"http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd\">\r\n\r\n<html DIR='LTR'>\r\n<HEAD>\r\n <TITLE>Inspire - V9</TITLE>\r\n <META http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1252\" />\r\n <META http-equiv=\"Expires\" content=\"Fri, Jan 01 1900 00:00:00 GMT\"/>\r\n <META http-equiv=\"Last-Modified\" content=\"Thu, 07 Nov 2024 03:21:15 GMT\"/>\r\n <META http-equiv=\"Cache-Control\" content=\"no-store, no-cache, must-revalidate\"/>\r\n <META http-equiv=\"Cache-Control\" content=\"post-check=0, pre-check=0\"/>\r\n <META http-equiv=\"Pragma\" content=\"no-cache\"/>\r\n <link rel=\"shortcut icon\" href=\"../_lib/img/scriptcase__NM__ico__NM__favicon.ico\">\r\n <link rel=\"stylesheet\" href=\"/producao/prod/third/jquery_plugin/thickbox/thickbox.css\" type=\"text/css\" media=\"screen\" />\r\n <SCRIPT type=\"text/javascript\">\r\n  var sc_pathToTB = '/producao/prod/third/jquery_plugin/thickbox/';\r\n  var sc_tbLangClose = \"Fechar\";\r\n  var sc_tbLangEsc = \"ou tecla Esc\";\r\n  var sc_userSweetAlertDisplayed = false;\r\n </SCRIPT>\r\n <SCRIPT type=\"text/javascript\">\r\n  var sc_blockCol = 'scriptcase__NM__btn__NM__scriptcase9_Rhino__NM__nm_scriptcase9_Rhino_opened.png';\r\n  var sc_blockExp = 'scriptcase__NM__btn__NM__scriptcase9_Rhino__NM__nm_scriptcase9_Rhino_open.png';\r\n  var sc_ajaxBg = '#6e6e6e';\r\n  var sc_ajaxBordC = '';\r\n  var sc_ajaxBordS = 'none';\r\n  var sc_ajaxBordW = '';\r\n  var sc_ajaxMsgTime = 2;\r\n  var sc_img_status_ok = '/inspire/_lib/img/scriptcase__NM__iconsuccess.png';\r\n  var sc_img_status_err = '/inspire/_lib/img/scriptcase__NM__iconfails.png';\r\n  var sc_css_status = 'scFormInputError';\r\n </SCRIPT>\r\n        <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/jquery/js/jquery.js\"></SCRIPT>\r\n<input type=\"hidden\" id=\"sc-mobile-lock\" value='true' />\r\n <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/jquery/js/jquery-ui.js\"></SCRIPT>\r\n <link rel=\"stylesheet\" href=\"/producao/prod/third/jquery/css/smoothness/jquery-ui.css\" type=\"text/css\" media=\"screen\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_sweetalert.css\" />\r\n <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/sweetalert/sweetalert2.all.min.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/sweetalert/polyfill.min.js\"></SCRIPT>\r\n <script type=\"text/javascript\" src=\"../_lib/lib/js/frameControl.js\"></script>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/jquery.iframe-transport.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/jquery.fileupload.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/jquery_plugin/malsup-blockui/jquery.blockUI.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/producao/prod/third/jquery_plugin/thickbox/thickbox-compressed.js\"></SCRIPT>\r\n<style type=\"text/css\">\r\n.sc-button-image.disabled {\r\n\topacity: 0.25\r\n}\r\n.sc-button-image.disabled img {\r\n\tcursor: default !important\r\n}\r\n</style>\r\n <style type=\"text/css\">\r\n  .fileinput-button-padding {\r\n   padding: 3px 10px !important;\r\n  }\r\n  .fileinput-button {\r\n   position: relative;\r\n   overflow: hidden;\r\n   float: left;\r\n   margin-right: 4px;\r\n  }\r\n  .fileinput-button input {\r\n   position: absolute;\r\n   top: 0;\r\n   right: 0;\r\n   margin: 0;\r\n   border: solid transparent;\r\n   border-width: 0 0 100px 200px;\r\n   opacity: 0;\r\n   filter: alpha(opacity=0);\r\n   -moz-transform: translate(-300px, 0) scale(4);\r\n   direction: ltr;\r\n   cursor: pointer;\r\n  }\r\n </style>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/scInput.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/jquery.scInput.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/jquery.scInput2.js\"></SCRIPT>\r\n <SCRIPT type=\"text/javascript\" src=\"/inspire/_lib/lib/js/jquery.fieldSelection.js\"></SCRIPT>\r\n  <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_form.css\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_formLTR.css\" />\r\n   \r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"\r\n2000\r\n/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_appdiv.css\" /> \r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_appdivLTR.css\" /> \r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_tab.css\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/css/Sc9_Rhino/Sc9_Rhino_tabLTR.css\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/_lib/buttons/scriptcase9_Rhino/scriptcase9_Rhino.css\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/producao/prod/third/font-awesome/css/all.min.css\" />\r\n <link rel=\"stylesheet\" type=\"text/css\" href=\"/inspire/login_inspire/login_inspire_ltr.css\" />\r\n\r\n<script>\r\nvar scFocusFirstErrorField = true;\r\nvar scFocusFirstErrorName  = \"\";\r\n</script>\r\n\r\n\n <form name=\"form_ajax_redir_1\" method=\"post\" style=\"display: none\">\n  <input type=\"hidden\" name=\"nmgp_parms\">\n  <input type=\"hidden\" name=\"nmgp_outra_jan\">\n  <input type=\"hidden\" name=\"script_case_session\" value=\"ml6bmlpujie7jppsqbmuf72kjb\">\n </form>\n <form name=\"form_ajax_redir_2\" method=\"post\" style=\"display: none\">\n  <input type=\"hidden\" name=\"nmgp_parms\">\n  <input type=\"hidden\" name=\"nmgp_url_saida\">\n  <input type=\"hidden\" name=\"script_case_init\">\n  <input type=\"hidden\" name=\"script_case_session\" value=\"ml6bmlpujie7jppsqbmuf72kjb\">\n </form>\n\n <SCRIPT>\n\n\n                // remote scripting library\n                // (c) copyright 2005 modernmethod, inc\n                var sajax_debug_mode = false;\n                var sajax_request_type = \"POST\";\n                var sajax_target_id = \"\";\n                var sajax_failure_redirect = \"\";\n\n                function sajax_debug(text) {\n                        if (sajax_debug_mode)\n                                alert(text);\n                }\n\n                 function sajax_init_object() {\n                         sajax_debug(\"sajax_init_object() called..\")\n\n                         var A;\n\n                        if (window.XMLHttpRequest) {\n                                A = new XMLHttpRequest();\n                        }\n                        else {\n                             var msxmlhttp = new Array(\n                                    'Msxml2.XMLHTTP.5.0',\n                                    'Msxml2.XMLHTTP.4.0',\n                                    'Msxml2.XMLHTTP.3.0',\n                                    'Msxml2.XMLHTTP',\n                                    'Microsoft.XMLHTTP');\n                            for (var i = 0; i < msxmlhttp.length; i++) {\n                                    try {\n                                            A = new ActiveXObject(msxmlhttp[i]);\n                                    } catch (e) {\n                                            A = null;\n                                    }\n                            }\n\n                            if(!A && typeof XMLHttpRequest != \"undefined\")\n                                    A = new XMLHttpRequest();\n                        }\n                        if (!A)\n                                sajax_debug(\"Could not create connection object.\");\n                        return A;\n                }\n\n                var sajax_requests = new Array();\n\n                function sajax_cancel() {\n                        for (var i = 0; i < sajax_requests.length; i++)\n                                sajax_requests[i].abort();\n                }\n\n                function sajax_do_call(func_name, args) {\n                        var i, x, n;\n                        var uri;\n                        var post_data;\n                        var target_id;\n                        var charset_html = document.inputEncoding.toLowerCase();\n                        var charset_esp = [\n                                \"utf-8\",\n                                \"windows-1250\",\n                                \"windows-1253\",\n                                \"windows-1254\",\n                                \"windows-1255\",\n                                \"windows-1256\",\n                                \"windows-1257\",\n                                \"iso-8859-2\",\n                                \"iso-8859-4\",\n                                \"iso-8859-6\",\n                                \"iso-8859-7\",\n                                \"iso-8859-8\",\n                                \"iso-8859-8-i\",\n                                \"iso-8859-9\",\n                                \"iso-8859-13\",\n                                \"euc-kr\"\n                        ];\n\n                        sajax_debug(\"in sajax_do_call()..\" + sajax_request_type + \"/\" + sajax_target_id);\n                        target_id = sajax_target_id;\n                        if (typeof(sajax_request_type) == \"undefined\" || sajax_request_type == \"\")\n                                sajax_request_type = \"GET\";\n\n                        uri = \"/inspire/login_inspire/login_inspire.php\";\n                        // NM\n                        if (-1 != uri.indexOf(\"?\"))\n                                uri = uri.substr(0, uri.indexOf(\"?\"));\n                        // NM\n                        if (sajax_request_type == \"GET\") {\n\n                                if (uri.indexOf(\"?\") == -1)\n                                        uri += \"?rs=\" + escape(func_name);\n                                else\n                                        uri += \"&rs=\" + escape(func_name);\n                                uri += \"&rst=\" + escape(sajax_target_id);\n                                uri += \"&rsrnd=\" + new Date().getTime();\n\n                                for (i = 0; i < args.length-1; i++)\n                                        uri += \"&rsargs[]=\" + escape(args[i]);\n\n                                post_data = null;\n                        }\n                        else if (sajax_request_type == \"POST\") {\n                                post_data = \"rs=\" + escape(func_name);\n                                post_data += \"&rst=\" + escape(sajax_target_id);\n                                post_data += \"&rsrnd=\" + new Date().getTime();\n\n                                for (i = 0; i < args.length-1; i++)\n                                        post_data = post_data + \"&rsargs[]=\" + (-1 != $.inArray(charset_html, charset_esp) ? encodeURIComponent(args[i]) : escape(args[i]));\n                        }\n                        else {\n                                alert(\"Illegal request type: \" + sajax_request_type);\n                        }\n\n                        x = sajax_init_object();\n                        if (x == null) {\n                                if (sajax_failure_redirect != \"\") {\n                                        location.href = sajax_failure_redirect;\n                                        return false;\n                                } else {\n                                        sajax_debug(\"NULL sajax object for user agent:\\n\" + navigator.userAgent);\n                                        return false;\n                                }\n                        } else {\n                                x.open(sajax_request_type, uri, true);\n                                // window.open(uri);\n\n                                sajax_requests[sajax_requests.length] = x;\n\n                                if (sajax_request_type == \"POST\") {\n                                        x.setRequestHeader(\"Method\", \"POST \" + uri + \" HTTP/1.1\");\n                                        x.setRequestHeader(\"Content-Type\", \"application/x-www-form-urlencoded\");\n                                }\n                                //charset magia, acontece aqui\n                                //x.setCharacterEncoding( document.inputEncoding );\n                                x.onreadystatechange = function() {\n                                        if (x.readyState != 4)\n                                                return;\n\n                                        sajax_debug(\"received \" + x.responseText);\n\n                                        var status;\n                                        var data;\n                                        var txt = x.responseText.replace(/^\\s*|\\s*$/g,\"\");\n                                        status = txt.charAt(0\r\n1228\r\n);\n                                        data = txt.substring(2);\n\n                                        if (status == \"\") {\n                                                // let's just assume this is a pre-response bailout and let it slide for now\n                                        } else if (status == \"-\")\n                                                alert(\"Error: \" + data);\n                                        else {\n                                                if (target_id != \"\")\n                                                        document.getElementById(target_id).innerHTML = eval(data);\n                                                else {\n                                                        try {\n                                                                var callback;\n                                                                var extra_data = false;\n                                                                if (typeof args[args.length-1] == \"object\") {\n                                                                        callback = args[args.length-1].callback;\n                                                                        extra_data = args[args.length-1].extra_data;\n                                                                } else {\n                                                                        callback = args[args.length-1];\n                                                                }\n                                                                callback(eval(data), extra_data);\n                                                        } catch (e) {\n                                                                sajax_debug(\"Caught error \" + e + \": Could not eval \" + data );\n\n                                                                if (document.getElementById(\"id_fatal_error\") && data.lastIndexOf('Fatal error') > -1)\n                                                                {\n                                                                    sc_ret_error = \"<table width=20%><tr><td>\" + data + \"</td></tr></table>\";\n                                                                    document.getElementById(\"id_fatal_error\").style.display = \"\";\n                                                                    document.getElementById(\"id_fatal_error\").innerHTML = sc_ret_error;\n                                                                }\n\n                                                        }\n                                                }\n                                        }\n                                }\n                        }\n\n                        sajax_debug(func_name + \" uri = \" + uri + \"/post = \" + post_data);\n                        x.send(post_data);\n                        sajax_debug(func_name + \" waiting..\");\n                        delete x;\n                        return true;\n                }\n\n                \n\n                // wrapper for ajax_login_inspire_validate_txt_login\n\n                function x_ajax_login_inspire_validate_txt_login() {\n                        sajax_do_call(\"ajax_login_inspire_validate_txt_login\",\n                                x_ajax_login_inspire_validate_txt_login.arguments);\n                }\n\n                \n\n                // wrapper for ajax_login_inspire_validate_txt_senha\n\n                function x_ajax_login_inspire_validate_txt_senha() {\n                        sajax_do_call(\"ajax_log",
         "datamd5" : "5299d414866933157d18b331cd883c0d",
         "datammh3" : 1657738002,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "virtua.com.br"
         ],
         "forward" : "189.7.90.144",
         "geolocus" : {
            "asn" : "AS28573",
            "continent" : "SA",
            "continentname" : "South America",
            "country" : "BR",
            "countryname" : "Brazil",
            "domain" : [
               "cert.br",
               "virtua.com.br"
            ],
            "isineu" : "false",
            "latitude" : "-14.235004",
            "location" : "-14.235004,-51.92528",
            "longitude" : "-51.92528",
            "netname" : "66.970.229/0001-67",
            "organization" : "Claro NXT Telecomunicacoes Ltda",
            "subnet" : "189.7.0.0/17"
         },
         "host" : [
            "bd075a90"
         ],
         "hostname" : [
            "189.7.90.144",
            "bd075a90.virtua.com.br"
         ],
         "ip" : "189.7.90.144",
         "ipv6" : "false",
         "latitude" : "-23.1798",
         "location" : "-23.1798,-46.8816",
         "longitude" : "-46.8816",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Claro NXT Telecomunicacoes Ltda",
         "os" : "Windows",
         "osbits" : 64,
         "osvendor" : "Microsoft",
         "port" : 9997,
         "product" : "HTTP Server",
         "productvendor" : "Apache",
         "productversion" : "2.4.46",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "bd075a90.virtua.com.br"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 200,
         "subnet" : "189.4.0.0/14",
         "tld" : [
            "com.br"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/inspire/login_inspire/login_inspire.php"
      }
      
  • 71.176.215.137:9997 (tcp/http) - last seen on 2024-11-07 at 03:09:42 UTC

    • IP
      71.176.215.137
      Network
      71.176.0.0/16
      Domain(s)
      verizon.net
      Device

      <enterprise field>: device.class

      URL

      http://71.176.215.137:9997/login 302

      Reverse DNS
      static-71-176-215-137.rcmdva.fios.verizon.net
      ASN
      AS701
      Organization
      UUNET
      Protocol
      http
      Source
      urlscan::redirect
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      a9c42e98b563e57843cae00ae2bf82b8
      HTTP Header MD5
      d82a67d6985c840b4f376c87dcc81a88
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e
    • HTTP/1.1 302 Found
      Connection: close
      Content-Security-Policy: connect-src 'self' workbench ws://<ip>:9997 wss://<ip>:9997; default-src 'self' workbench; img-src 'self' workbench data: module:; report-uri /csp-reports; script-src 'self' workbench 'unsafe-inline' 'unsafe-eval'; style-src 'self' workbench 'unsafe-inline'
      X-Content-Type-Options: nosniff
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      Location: http://<ip>:9997/prelogin
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:09:42.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
               "bodymmh3" : -1,
               "headermd5" : "d82a67d6985c840b4f376c87dcc81a88",
               "headermmh3" : -1218618595
            },
            "length" : 457
         },
         "asn" : "AS701",
         "city" : "Henrico",
         "country" : "US",
         "data" : "HTTP/1.1 302 Found\r\nConnection: close\r\nContent-Security-Policy: connect-src 'self' workbench ws://<ip>:9997 wss://<ip>:9997; default-src 'self' workbench; img-src 'self' workbench data: module:; report-uri /csp-reports; script-src 'self' workbench 'unsafe-inline' 'unsafe-eval'; style-src 'self' workbench 'unsafe-inline'\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nLocation: http://<ip>:9997/prelogin\r\n\r\n",
         "datamd5" : "a9c42e98b563e57843cae00ae2bf82b8",
         "datammh3" : 712992699,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "verizon.net"
         ],
         "forward" : "71.176.215.137",
         "geolocus" : {
            "asn" : "AS701",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "verizon.com",
               "verizon.net",
               "verizonbusiness.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "VIS-BLOCK",
            "organization" : "Verizon Business",
            "subnet" : "71.176.0.0/16"
         },
         "host" : [
            "static-71-176-215-137"
         ],
         "hostname" : [
            "71.176.215.137",
            "static-71-176-215-137.rcmdva.fios.verizon.net"
         ],
         "ip" : "71.176.215.137",
         "ipv6" : "false",
         "latitude" : "37.4612",
         "location" : "37.4612,-77.3950",
         "longitude" : "-77.3950",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "UUNET",
         "port" : 9997,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Found",
         "reverse" : [
            "static-71-176-215-137.rcmdva.fios.verizon.net"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 302,
         "subdomains" : [
            "fios.verizon.net",
            "rcmdva.fios.verizon.net"
         ],
         "subnet" : "71.176.0.0/16",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/login"
      }
      
  • 50.61.32.128:9997 (tcp/http) - last seen on 2024-11-07 at 03:08:36 UTC

    • IP
      50.61.32.128
      Network
      50.60.0.0/15
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://50.61.32.128:9997/login/?next=/ 200

      HTTP Title
      Log in
      ASN
      AS25019
      Organization
      Saudi Telecom Company JSC
      Protocol
      http
      Source
      urlscan::redirect
    • Operating System
      Microsoft Windows
      Product
      Apache HTTP Server 2.4.54
      HTTP Component(s)
      Apache mod_wsgi 4.7.1 jQuery jQuery 3.5.1 Python Python 3.7
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d089130d9217352f7627371e25a32ca6
      HTTP Header MD5
      7851df164399d3b8ee9482faa704f3c6
      HTTP Body MD5
      1a2f975546675c6b3c03be69b7c223fd
    • HTTP/1.1 200 OK
      Date: Thu, 07 Nov 2024 03:08:32 GMT
      Server: Apache/2.4.54 (Win64) mod_wsgi/4.7.1 Python/3.7
      Expires: Thu, 07 Nov 2024 03:08:32 GMT
      Cache-Control: no-store
      Vary: Cookie,Accept-Language
      Pragma: no-cache
      Content-Language: en
      Content-Length: 8953
      Content-Type: text/html; charset=utf-8
      Set-Cookie: csrftoken=8wNLqvuzABMKXNZlFu9s8q7ZabfWlnx8rG93bA4caNTVE3eN4quGTzcYgIwxuVZs; expires=Thu, 06-Nov-2025 03:08:32 GMT; HttpOnly; Max-Age=31449600; Path=/; Secure
      Set-Cookie: sessionid=4flcq3vzhd05yc0wvvmknvfim8ylwvhe; expires=Thu, 07-Nov-2024 04:08:32 GMT; HttpOnly; Max-Age=3600; Path=/
      Connection: close
      
      
      <!DOCTYPE HTML>
      <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"
            >
      <head>
        <meta charset="UTF-8">
        <title>Log in</title>
        <link rel="shortcut icon" href="/media/images/BioTime.ico" type="image/x-icon"
              sizes="16x16 24x24 32x32 64x64">
        <link rel="stylesheet" href="/static/layui/css/layui.css?v=2.6.6-210517">
        <link rel="stylesheet" href="/static/css/base.css?v=1.0.1">
        <link rel="stylesheet" href="/static/css/rtl.css?v=1.1.3">
        <link rel="stylesheet" href="/static/css/user.login.css?v=1.0.1">
        <link rel="stylesheet" type="text/css" href="/static/font-awesome/css/font-awesome.min.css"/>
        <script src="/static/js/jquery/jquery-3.5.1.min.js?v=3.5.1"></script>
        <script src="/static/locale/i18n.js?v=1.2"></script>
        <script src="/static/locale/i18n_en.js?v=1.2"></script>
        <script src="/static/js/jquery/jquery.form.js?v=4.2.2"></script>
        <script src="/static/layer/layer.js?v=1.0.1"></script>
        <script src="/static/layui/layui.js?v=2.6.6" type="text/javascript"></script>
          <script src="/static/js/baseEncry.min.js"></script>
        <script src="/static/js/baseISSObject.min.js"></script>
        <script src="/static/js/baseFPRegister.js"></script>
        <script src="/static/js/baseFPVerify.js"></script>
        <script src="/static/js/user.login.fp.js"></script>
        <script src="/static/js/user.login.js?v=1.0.2"></script>
        <style>
          table#login_table_form {
            width: 100%;
            height: 100%;
            border: 0;
          }
          .layui-form-select dl{
              top: inherit;
          }
          .layui-form-item .layui-form-checkbox[lay-skin=primary]{
              margin-top: 0px;
          }
        </style>
      </head>
      <body>
      <table id="login_table_form" cellspacing="0" cellpadding="0">
        <tr>
          <td>
            <div id="" class="login_logo"></div>
            <div class="login_big_box"  >
              <div class="login_box">
                <!-- login type -->
                <div class="login_box_type">
                  <a href="javascript:void(0);" class="active"
                     onclick="switchLogin('#login-form', '#id_captchaImg', this);">Admin Login</a>
                  
                    <span>&nbsp;&nbsp;| &nbsp;</span>
                    <a href="javascript:void(0);"
                       onclick="switchLogin('#emp-login-form', '#id_empCaptchaImg', this);">Self-Service</a>
                  
                  <div class="layui-inline" style="float: right">
                      <a href="javascript:void(0);" onclick="register('/license/');"
                          title="Click to check the license detail."><i class="fa login_about"></i></a>
                      <a href="javascript:void(0);" onclick="language_change('/languageChange/', 'Language');"
                          title="Language"><i class="fa login_language"></i></a>
                  </div>
                  <input type='hidden' name='csrfmiddlewaretoken' value='BhWjFDOxtM36pghr7wIYZB9ArUjG7PLLUriBqIoa3Yah6wwTws3cKKezxrAhgnd5' />
                </div>
                <!-- user login-->
                <form action="" method="post" id="login-form">
                  <p class="error_tip">&nbsp;</p>
                  <input class="login_inp" id="id_username" autocomplete="off" name="username" type="text"
                         style="display:none" value=""/>
                  <input class="login_inp login_inp_tip" id="id_usernameTip" type="text"
                         value="Username"/>
                  <input class="login_inp" id="id_password" autocomplete="off" name="password" type="password"
                         style="display:none" value=""/>
                  <input class="login_inp login_inp_tip" id="id_passwordTip" type="text" value="Password "/>
                    
                    <div class="layui-hide">
                      <input class="login_inp" id="id_captcha" autocomplete="off" name="captcha"  style="display:none;width: 49%;float: left;" value=""/>
                      <input class="login_inp login_inp_tip" id="id_captchaTip"  style="float: left; width: 46%;" type="text"  value="Verification Code "/>
                      <img id="id_captchaImg"  class="login_inp" style="float:right;width: 46%;padding: 0" src="" alt="Click for authentication code" title="Click for authentication code">
                    </div>
      
                   <div class="layui-form-item">
                       <div class="layui-inline">
                          <input class="layui-form-checkbox" type="checkbox" id="id_remember_me_admin" name="remember_me_admin" lay-skin="primary" lay-filter="remember_admin" >
                           <label for="id_remember_me_admin" style="color: #ffffff">Remember Me</label>
                       </div>
                       <div class="layui-inline" style="float: right">
                           <a href="/forgetPassword/" target="view_window" style="color: #ffffff"> Forget Password</a>
                       </div>
                   </div>
      
                   <div class="login_but">
                    <em class="l" style="width: 46%;">
                      <input id="id_login" type="button" class="but_login" value="Login"/>
                    </em>
                    <em class="r" style="width: 46%;">
                      <input id="fp_identify_disabled" type="button" class="btn_fp_disabled"
                             value="Fingerprint" title="Please install the Fingerprint Driver."/>
                      <input id="id_fp_identify" type="button" class="btn_fp" value="Fingerprint"
                             style="display:none"/>
                    </em>
                  </div>
                  <input type="hidden" id="id_template10" value="" name="template10" alt=""/>
                  <input type="hidden" id="id_login_type" name="login_type" alt="" value='pwd'/>
                </form>
                <!-- employee login-->
                <form action="" method="post" id="emp-login-form" style="display: none">
                  <p class="error_tip">&nbsp;</p>
                  <input class="login_inp" id="id_empName" name="username" autocomplete="off" type="text" style="display:none"
                         value=""/>
                  <input class="login_inp login_inp_tip" id="id_empNameTip" type="text"
                         value="Employee ID"/>
                  <input class="login_inp" id="id_empPwd" name="password" autocomplete="off" type="password"
                         style="display:none" value=""/>
                  <input class="login_inp login_inp_tip" id="id_empPwdTip" type="text" value="Password "/>
                    
                    <div class="layui-hide">
                      <input class="login_inp" id="id_empCaptcha" autocomplete="off" name="captcha"  style="display:none;width: 49%;float: left;" value=""/>
                      <input class="login_inp login_inp_tip" id="id_empCaptchaTip"  style="float: left; width: 49%;" type="text"  value="Verification Code "/>
                      <img id="id_empCaptchaImg"  class="login_inp" style="float:right;width: 49%;" src="" alt="Captcha" title="Captcha">
                    </div>
                   <div class="layui-form-item">
                       <div class="layui-inline">
                          <input class="layui-form-checkbox" type="checkbox" id="id_remember_me_employee" name="remember_me_employee" lay-skin="primary" lay-filter="remember_employee" >
                           <label for="id_remember_me_employee" style="color: #ffffff">Remember Me</label>
                       </div>
                       <div class="layui-inline" style="float: right">
                           <a href="/forgetPassword/" target="view_window" style="color: #ffffff"> Forget Password</a>
                       </div>
                   </div>
                    <div class="login_but">
                    <em>
                      <input id="id_empLogin" type="button" class="empLoginBtn" value="Login"/>
                    </em>
                  </div>
                  <input type="hidden" value="employee" name="login_user">
                </form>
              </div>
            </div>
            <div class="login_copy"><img src="/media/img/login/logo_zk.png"/></div>
            <div class="license-register">
              <div class="layui-form-item">
               <span>Copyright ©2024. ZKTeco Security LLC. All rights reserved.</span>
              </div>
              <div class="layui-form-item">
              
                
                  <a href="/files/help/DataProcessingAgreement_en.html" target="view_window" title="Data Processing Agreement">Data Processing Agreement</a>
                
                <a href="/files/help/PersonalInformationProtectionAndPrivacyPolicy_en.html" target="view_window" title="Personal Information Protection and Privacy Policy">Personal Information Protection and Privacy Policy</a>
              
              </div>
            </div>
          </td>
        </tr>
      </table>
      <script>
        $("#id_login").login({
          username: "#id_username"
          , pwd: "#id_password"
          , form: "#login-form"
          , captcha: "#id_captcha"
          , captchaImg:"#id_captchaImg"
          , url: "/login/"
        });
        $("#id_empLogin").login({
          username: "#id_empName"
          , pwd: "#id_empPwd"
          , form: "#emp-login-form"
          , captcha: "#id_empCaptcha"
          , captchaImg:"#id_empCaptchaImg"
          , url: ""
        });
        $("#id_fp_identify").FPLogin("/login/", "BhWjFDOxtM36pghr7wIYZB9ArUjG7PLLUriBqIoa3Yah6wwTws3cKKezxrAhgnd5");
        system_verify();
        checkDriver(true);
        expiredDaysCheck();
        get_cookie();
      </script>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:08:36.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "w3.org"
               ],
               "hostname" : [
                  "www.w3.org"
               ],
               "url" : [
                  "http://www.w3.org/1999/xhtml"
               ]
            },
            "http" : {
               "bodymd5" : "1a2f975546675c6b3c03be69b7c223fd",
               "bodymmh3" : 152214040,
               "component" : [
                  {
                     "product" : "Python",
                     "productversion" : "3.7",
                     "productvendor" : "Python"
                  },
                  {
                     "productversion" : "3.5.1",
                     "productvendor" : "jQuery",
                     "product" : "jQuery"
                  },
                  {
                     "product" : "mod_wsgi",
                     "productvendor" : "Apache",
                     "productversion" : "4.7.1"
                  }
               ],
               "headermd5" : "7851df164399d3b8ee9482faa704f3c6",
               "headermmh3" : -1465226690,
               "title" : "Log in"
            },
            "length" : 9580
         },
         "asn" : "AS25019",
         "city" : "Riyadh",
         "country" : "SA",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 03:08:32 GMT\r\nServer: Apache/2.4.54 (Win64) mod_wsgi/4.7.1 Python/3.7\r\nExpires: Thu, 07 Nov 2024 03:08:32 GMT\r\nCache-Control: no-store\r\nVary: Cookie,Accept-Language\r\nPragma: no-cache\r\nContent-Language: en\r\nContent-Length: 8953\r\nContent-Type: text/html; charset=utf-8\r\nSet-Cookie: csrftoken=8wNLqvuzABMKXNZlFu9s8q7ZabfWlnx8rG93bA4caNTVE3eN4quGTzcYgIwxuVZs; expires=Thu, 06-Nov-2025 03:08:32 GMT; HttpOnly; Max-Age=31449600; Path=/; Secure\r\nSet-Cookie: sessionid=4flcq3vzhd05yc0wvvmknvfim8ylwvhe; expires=Thu, 07-Nov-2024 04:08:32 GMT; HttpOnly; Max-Age=3600; Path=/\r\nConnection: close\r\n\r\n\n<!DOCTYPE HTML>\n<html xmlns=\"http://www.w3.org/1999/xhtml\" lang=\"en\" xml:lang=\"en\"\n      >\n<head>\n  <meta charset=\"UTF-8\">\n  <title>Log in</title>\n  <link rel=\"shortcut icon\" href=\"/media/images/BioTime.ico\" type=\"image/x-icon\"\n        sizes=\"16x16 24x24 32x32 64x64\">\n  <link rel=\"stylesheet\" href=\"/static/layui/css/layui.css?v=2.6.6-210517\">\n  <link rel=\"stylesheet\" href=\"/static/css/base.css?v=1.0.1\">\n  <link rel=\"stylesheet\" href=\"/static/css/rtl.css?v=1.1.3\">\n  <link rel=\"stylesheet\" href=\"/static/css/user.login.css?v=1.0.1\">\n  <link rel=\"stylesheet\" type=\"text/css\" href=\"/static/font-awesome/css/font-awesome.min.css\"/>\n  <script src=\"/static/js/jquery/jquery-3.5.1.min.js?v=3.5.1\"></script>\n  <script src=\"/static/locale/i18n.js?v=1.2\"></script>\n  <script src=\"/static/locale/i18n_en.js?v=1.2\"></script>\n  <script src=\"/static/js/jquery/jquery.form.js?v=4.2.2\"></script>\n  <script src=\"/static/layer/layer.js?v=1.0.1\"></script>\n  <script src=\"/static/layui/layui.js?v=2.6.6\" type=\"text/javascript\"></script>\n    <script src=\"/static/js/baseEncry.min.js\"></script>\n  <script src=\"/static/js/baseISSObject.min.js\"></script>\n  <script src=\"/static/js/baseFPRegister.js\"></script>\n  <script src=\"/static/js/baseFPVerify.js\"></script>\n  <script src=\"/static/js/user.login.fp.js\"></script>\n  <script src=\"/static/js/user.login.js?v=1.0.2\"></script>\n  <style>\n    table#login_table_form {\n      width: 100%;\n      height: 100%;\n      border: 0;\n    }\n    .layui-form-select dl{\n        top: inherit;\n    }\n    .layui-form-item .layui-form-checkbox[lay-skin=primary]{\n        margin-top: 0px;\n    }\n  </style>\n</head>\n<body>\n<table id=\"login_table_form\" cellspacing=\"0\" cellpadding=\"0\">\n  <tr>\n    <td>\n      <div id=\"\" class=\"login_logo\"></div>\n      <div class=\"login_big_box\"  >\n        <div class=\"login_box\">\n          <!-- login type -->\n          <div class=\"login_box_type\">\n            <a href=\"javascript:void(0);\" class=\"active\"\n               onclick=\"switchLogin('#login-form', '#id_captchaImg', this);\">Admin Login</a>\n            \n              <span>&nbsp;&nbsp;| &nbsp;</span>\n              <a href=\"javascript:void(0);\"\n                 onclick=\"switchLogin('#emp-login-form', '#id_empCaptchaImg', this);\">Self-Service</a>\n            \n            <div class=\"layui-inline\" style=\"float: right\">\n                <a href=\"javascript:void(0);\" onclick=\"register('/license/');\"\n                    title=\"Click to check the license detail.\"><i class=\"fa login_about\"></i></a>\n                <a href=\"javascript:void(0);\" onclick=\"language_change('/languageChange/', 'Language');\"\n                    title=\"Language\"><i class=\"fa login_language\"></i></a>\n            </div>\n            <input type='hidden' name='csrfmiddlewaretoken' value='BhWjFDOxtM36pghr7wIYZB9ArUjG7PLLUriBqIoa3Yah6wwTws3cKKezxrAhgnd5' />\n          </div>\n          <!-- user login-->\n          <form action=\"\" method=\"post\" id=\"login-form\">\n            <p class=\"error_tip\">&nbsp;</p>\n            <input class=\"login_inp\" id=\"id_username\" autocomplete=\"off\" name=\"username\" type=\"text\"\n                   style=\"display:none\" value=\"\"/>\n            <input class=\"login_inp login_inp_tip\" id=\"id_usernameTip\" type=\"text\"\n                   value=\"Username\"/>\n            <input class=\"login_inp\" id=\"id_password\" autocomplete=\"off\" name=\"password\" type=\"password\"\n                   style=\"display:none\" value=\"\"/>\n            <input class=\"login_inp login_inp_tip\" id=\"id_passwordTip\" type=\"text\" value=\"Password \"/>\n              \n              <div class=\"layui-hide\">\n                <input class=\"login_inp\" id=\"id_captcha\" autocomplete=\"off\" name=\"captcha\"  style=\"display:none;width: 49%;float: left;\" value=\"\"/>\n                <input class=\"login_inp login_inp_tip\" id=\"id_captchaTip\"  style=\"float: left; width: 46%;\" type=\"text\"  value=\"Verification Code \"/>\n                <img id=\"id_captchaImg\"  class=\"login_inp\" style=\"float:right;width: 46%;padding: 0\" src=\"\" alt=\"Click for authentication code\" title=\"Click for authentication code\">\n              </div>\n\n             <div class=\"layui-form-item\">\n                 <div class=\"layui-inline\">\n                    <input class=\"layui-form-checkbox\" type=\"checkbox\" id=\"id_remember_me_admin\" name=\"remember_me_admin\" lay-skin=\"primary\" lay-filter=\"remember_admin\" >\n                     <label for=\"id_remember_me_admin\" style=\"color: #ffffff\">Remember Me</label>\n                 </div>\n                 <div class=\"layui-inline\" style=\"float: right\">\n                     <a href=\"/forgetPassword/\" target=\"view_window\" style=\"color: #ffffff\"> Forget Password</a>\n                 </div>\n             </div>\n\n             <div class=\"login_but\">\n              <em class=\"l\" style=\"width: 46%;\">\n                <input id=\"id_login\" type=\"button\" class=\"but_login\" value=\"Login\"/>\n              </em>\n              <em class=\"r\" style=\"width: 46%;\">\n                <input id=\"fp_identify_disabled\" type=\"button\" class=\"btn_fp_disabled\"\n                       value=\"Fingerprint\" title=\"Please install the Fingerprint Driver.\"/>\n                <input id=\"id_fp_identify\" type=\"button\" class=\"btn_fp\" value=\"Fingerprint\"\n                       style=\"display:none\"/>\n              </em>\n            </div>\n            <input type=\"hidden\" id=\"id_template10\" value=\"\" name=\"template10\" alt=\"\"/>\n            <input type=\"hidden\" id=\"id_login_type\" name=\"login_type\" alt=\"\" value='pwd'/>\n          </form>\n          <!-- employee login-->\n          <form action=\"\" method=\"post\" id=\"emp-login-form\" style=\"display: none\">\n            <p class=\"error_tip\">&nbsp;</p>\n            <input class=\"login_inp\" id=\"id_empName\" name=\"username\" autocomplete=\"off\" type=\"text\" style=\"display:none\"\n                   value=\"\"/>\n            <input class=\"login_inp login_inp_tip\" id=\"id_empNameTip\" type=\"text\"\n                   value=\"Employee ID\"/>\n            <input class=\"login_inp\" id=\"id_empPwd\" name=\"password\" autocomplete=\"off\" type=\"password\"\n                   style=\"display:none\" value=\"\"/>\n            <input class=\"login_inp login_inp_tip\" id=\"id_empPwdTip\" type=\"text\" value=\"Password \"/>\n              \n              <div class=\"layui-hide\">\n                <input class=\"login_inp\" id=\"id_empCaptcha\" autocomplete=\"off\" name=\"captcha\"  style=\"display:none;width: 49%;float: left;\" value=\"\"/>\n                <input class=\"login_inp login_inp_tip\" id=\"id_empCaptchaTip\"  style=\"float: left; width: 49%;\" type=\"text\"  value=\"Verification Code \"/>\n                <img id=\"id_empCaptchaImg\"  class=\"login_inp\" style=\"float:right;width: 49%;\" src=\"\" alt=\"Captcha\" title=\"Captcha\">\n              </div>\n             <div class=\"layui-form-item\">\n                 <div class=\"layui-inline\">\n                    <input class=\"layui-form-checkbox\" type=\"checkbox\" id=\"id_remember_me_employee\" name=\"remember_me_employee\" lay-skin=\"primary\" lay-filter=\"remember_employee\" >\n                     <label for=\"id_remember_me_employee\" style=\"color: #ffffff\">Remember Me</label>\n                 </div>\n                 <div class=\"layui-inline\" style=\"float: right\">\n                     <a href=\"/forgetPassword/\" target=\"view_window\" style=\"color: #ffffff\"> Forget Password</a>\n                 </div>\n             </div>\n              <div class=\"login_but\">\n              <em>\n                <input id=\"id_empLogin\" type=\"button\" class=\"empLoginBtn\" value=\"Login\"/>\n              </em>\n            </div>\n            <input type=\"hidden\" value=\"employee\" name=\"login_user\">\n          </form>\n        </div>\n      </div>\n      <div class=\"login_copy\"><img src=\"/media/img/login/logo_zk.png\"/></div>\n      <div class=\"license-register\">\n        <div class=\"layui-form-item\">\n         <span>Copyright \u00a92024. ZKTeco Security LLC. All rights reserved.</span>\n        </div>\n        <div class=\"layui-form-item\">\n        \n          \n            <a href=\"/files/help/DataProcessingAgreement_en.html\" target=\"view_window\" title=\"Data Processing Agreement\">Data Processing Agreement</a>\n          \n          <a href=\"/files/help/PersonalInformationProtectionAndPrivacyPolicy_en.html\" target=\"view_window\" title=\"Personal Information Protection and Privacy Policy\">Personal Information Protection and Privacy Policy</a>\n        \n        </div>\n      </div>\n    </td>\n  </tr>\n</table>\n<script>\n  $(\"#id_login\").login({\n    username: \"#id_username\"\n    , pwd: \"#id_password\"\n    , form: \"#login-form\"\n    , captcha: \"#id_captcha\"\n    , captchaImg:\"#id_captchaImg\"\n    , url: \"/login/\"\n  });\n  $(\"#id_empLogin\").login({\n    username: \"#id_empName\"\n    , pwd: \"#id_empPwd\"\n    , form: \"#emp-login-form\"\n    , captcha: \"#id_empCaptcha\"\n    , captchaImg:\"#id_empCaptchaImg\"\n    , url: \"\"\n  });\n  $(\"#id_fp_identify\").FPLogin(\"/login/\", \"BhWjFDOxtM36pghr7wIYZB9ArUjG7PLLUriBqIoa3Yah6wwTws3cKKezxrAhgnd5\");\n  system_verify();\n  checkDriver(true);\n  expiredDaysCheck();\n  get_cookie();\n</script>\n</body>\n</html>\n",
         "datamd5" : "d089130d9217352f7627371e25a32ca6",
         "datammh3" : -1402012067,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "forward" : "50.61.32.128",
         "geolocus" : {
            "asn" : "AS25019",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "SA",
            "countryname" : "Saudi Arabia",
            "domain" : [
               "stc.com.sa"
            ],
            "isineu" : "false",
            "latitude" : "23.885942",
            "location" : "23.885942,45.079162",
            "longitude" : "45.079162",
            "netname" : "STC_FBB",
            "organization" : "STC_FBB",
            "subnet" : "50.61.32.0/20"
         },
         "hostname" : [
            "50.61.32.128"
         ],
         "ip" : "50.61.32.128",
         "ipv6" : "false",
         "latitude" : "24.6869",
         "location" : "24.6869,46.7224",
         "longitude" : "46.7224",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Saudi Telecom Company JSC",
         "os" : "Windows",
         "osbits" : 64,
         "osvendor" : "Microsoft",
         "port" : 9997,
         "product" : "HTTP Server",
         "productvendor" : "Apache",
         "productversion" : "2.4.54",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 200,
         "subnet" : "50.60.0.0/15",
         "tag" : "<enterprise field>: tag",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/login/?next=/"
      }
      
  • 145.239.244.22:9997 (tcp/http) - last seen on 2024-11-07 at 03:08:31 UTC

    • IP
      145.239.244.22
      Network
      145.239.0.0/16
      Domain(s)
      extcam.com
      Device

      <enterprise field>: device.class

      URL

      http://145.239.244.22:9997/ 302

      Reverse DNS
      de-dev01.extcam.com
      ASN
      AS16276
      Organization
      OVH SAS
      Protocol
      http
      Source
      urlscan::redirect
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d3588da6cc94b6344aa0fbe4efb9d78f
      HTTP Header MD5
      ddac17b48c1e3422b113e09461bfa686
      HTTP Body MD5
      d41d8cd98f00b204e9800998ecf8427e
    • HTTP/1.1 302 Found
      content-length: 0
      location: https://<ip>:9997/
      cache-control: no-cache
      connection: close
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:08:31.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
               "bodymmh3" : -1,
               "headermd5" : "ddac17b48c1e3422b113e09461bfa686",
               "headermmh3" : 946082285
            },
            "length" : 115
         },
         "asn" : "AS16276",
         "country" : "FR",
         "data" : "HTTP/1.1 302 Found\r\ncontent-length: 0\r\nlocation: https://<ip>:9997/\r\ncache-control: no-cache\r\nconnection: close\r\n\r\n",
         "datamd5" : "d3588da6cc94b6344aa0fbe4efb9d78f",
         "datammh3" : 1676343888,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "extcam.com"
         ],
         "forward" : "145.239.244.22",
         "geolocus" : {
            "asn" : "AS16276",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "FR",
            "countryname" : "France",
            "domain" : [
               "ovh.net"
            ],
            "isineu" : "true",
            "latitude" : "46.227638",
            "location" : "46.227638,2.213749",
            "longitude" : "2.213749",
            "netname" : "FR-OVH-19930901",
            "organization" : "OVH SAS",
            "subnet" : "145.239.0.0/16"
         },
         "host" : [
            "de-dev01"
         ],
         "hostname" : [
            "145.239.244.22",
            "de-dev01.extcam.com"
         ],
         "ip" : "145.239.244.22",
         "ipv6" : "false",
         "latitude" : "48.8582",
         "location" : "48.8582,2.3387",
         "longitude" : "2.3387",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "OVH SAS",
         "port" : 9997,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Found",
         "reverse" : [
            "de-dev01.extcam.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 302,
         "subnet" : "145.239.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 194.102.73.67:9997 (tcp/http) - last seen on 2024-11-07 at 03:08:04 UTC

    • IP
      194.102.73.67
      Network
      194.102.73.0/24
      Device

      <enterprise field>: device.class

      URL

      http://194.102.73.67:9997/app/ 200

      HTTP Title
      Start application
      ASN
      AS2614
      Organization
      Agentia de Administrare a Retelei Nationale de Informatica pentru Educatie si Cercetare
      Protocol
      http
      Source
      urlscan::redirect
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      77d3e2282a29086eefcb220c0db95fef
      HTTP Header MD5
      c8e55b20b373658d07f591f24510524e
      HTTP Body MD5
      fc5f8bebe887e27c67c9edeb976bdf8e
    • HTTP/1.1 200 
      set-cookie: EMSYS_DEFAULT_LANGUAGE=ro; Max-Age=31536000; Expires=Fri, 07 Nov 2025 03:07:55 GMT; Path=/
      content-type: text/html;charset=UTF-8
      content-length: 3977
      date: Thu, 07 Nov 2024 03:07:56 GMT
      connection: close
      
      <!DOCTYPE html>
      
      
      
      
      
      
      <html  dir="LTR" lang="ro">
        <head>
          <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
          <meta name="viewport" content="width=device-width, initial-scale=1">
          <link rel="icon" type="image/x-icon" href="/app/images/emsys.ico"/>
          <link rel="stylesheet" href="/app/css/style.css"/>
          <script type="text/javascript" src="/app/cs/548cc42fd61eb63d4d246b8710b7a7dc4b9a23c8/js/login.js"></script>
      
          <title>Start application</title>        
        </head>
        <body class="demo-appheader-offcanvas-pushwrapper">
          <form method="post" >
            
            <div class="login">
              <div class="login-screen">
                <div class="app-title">
                  <img src="/app/images/emsys-login-logo.png" class="imageLoginSize"/>
                </div>
      
                <div class="login-form">
      
                  <div class="control-group" >
      <!--              <label class="login-field-icon fui-user" for="basicSelect">Limba</label>-->
                    <select id="basicSelect" class="login-field" name="loginLimba" onchange="form.submit();">
                      
                      <option value="ro" selected> română </option>
                      
                      <option value="en" > English </option>
                      
                      <option value="fr" > French </option>
                      
                      <option value="de" > German </option>
                      
                      <option value="ar" > Arabic </option>
                      
                      <option value="ru" > Russian </option>
                      
                    </select>
                  </div>
      
                  <div class="control-group" >              
                    <input type="button" class="btn" name="srv"  onclick="launchWS();return false;" value="Lanseaza aplicatie">               
                  </div>
                  <div class="control-group" >
                    <input type="button" class="btn" name="login_web"  onclick="loginWeb();return false;" value="Login web">
                  </div><br>
      			    <div>
                  <div>Tip lansare </div>
                  <select name="dloadType" id="dloadType">
                    <option value="jar">Java Archive</option>
                    <option value="bat">Windows Batch</option>
                    <option value="win">Windows PowerShell</option>
                    <option value="auto">Auto Detect</option>
                    
                  </select>
      			    </div>
                  <div class="control-group" id="divPrerechizite">
                    <!--<div class="colorErr" id="divTextPrerechizite">
                      Urmatoarele plugin-uri nu sunt instalate sau versiunea acestora nu este corespunzatoare. Va rugam sa le instalati.
                    </div>
                    <div>
                      <a href="http://get.adobe.com/reader/" target="_blank" id="linkAdobeReader"><img src="images/logo-adobe-reader.png" id="imgAdobeReader"></a>
                      <a href="http://windows.microsoft.com/en-us/internet-explorer/download-ie" target="_blank" id="linkMinimIE9"><img src="images/logo-ie.png" id="imgMinimIE9"></a>
                      <a href="#" onclick="alert('Browser-ul web folosit nu este compatibil HTML 5'); return false;" id="linkHTML5"><img src="images/logo-html5.png" id="imgHTML5"></a>
                    </div>-->
                  </div>
                </div>
              </div>
            </div>
            <script type="text/javascript">
      //        checkPrerechizite();
              function launchWS() {
                var dir = location.href.substring(0, location.href.lastIndexOf('/') + 1);
                var url = dir + "preload?osscript="+encodeURIComponent(document.getElementById('dloadType').value) ;
                document.getElementById("dload").src = url;
              }
      
              function loginWeb() {
                let dir = location.href.substring(0, location.href.lastIndexOf('/') + 1);
                location.href = dir + "browser.mk"
              }
            </script>
            <iframe id="dload" style="width: 0px;height: 0px;display: none;"/>
          </form>
      
        </body>
      </html>
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:08:04.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "microsoft.com",
                  "adobe.com"
               ],
               "hostname" : [
                  "get.adobe.com",
                  "windows.microsoft.com"
               ],
               "url" : [
                  "http://get.adobe.com/reader/",
                  "http://windows.microsoft.com/en-us/internet-explorer/download-ie"
               ]
            },
            "favicon" : {
               "url" : "/app/images/emsys.ico"
            },
            "http" : {
               "bodymd5" : "fc5f8bebe887e27c67c9edeb976bdf8e",
               "bodymmh3" : -538686765,
               "headermd5" : "c8e55b20b373658d07f591f24510524e",
               "headermmh3" : -1430263909,
               "title" : "Start application"
            },
            "length" : 4215
         },
         "asn" : "AS2614",
         "country" : "RO",
         "data" : "HTTP/1.1 200 \r\nset-cookie: EMSYS_DEFAULT_LANGUAGE=ro; Max-Age=31536000; Expires=Fri, 07 Nov 2025 03:07:55 GMT; Path=/\r\ncontent-type: text/html;charset=UTF-8\r\ncontent-length: 3977\r\ndate: Thu, 07 Nov 2024 03:07:56 GMT\r\nconnection: close\r\n\r\n<!DOCTYPE html>\r\n\r\n\r\n\r\n\r\n\r\n\r\n<html  dir=\"LTR\" lang=\"ro\">\r\n  <head>\r\n    <meta http-equiv=\"Content-Type\" content=\"text/html; charset=ISO-8859-1\" />\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\r\n    <link rel=\"icon\" type=\"image/x-icon\" href=\"/app/images/emsys.ico\"/>\r\n    <link rel=\"stylesheet\" href=\"/app/css/style.css\"/>\r\n    <script type=\"text/javascript\" src=\"/app/cs/548cc42fd61eb63d4d246b8710b7a7dc4b9a23c8/js/login.js\"></script>\n\r\n    <title>Start application</title>        \r\n  </head>\r\n  <body class=\"demo-appheader-offcanvas-pushwrapper\">\r\n    <form method=\"post\" >\r\n      \r\n      <div class=\"login\">\r\n        <div class=\"login-screen\">\r\n          <div class=\"app-title\">\r\n            <img src=\"/app/images/emsys-login-logo.png\" class=\"imageLoginSize\"/>\r\n          </div>\r\n\r\n          <div class=\"login-form\">\r\n\r\n            <div class=\"control-group\" >\r\n<!--              <label class=\"login-field-icon fui-user\" for=\"basicSelect\">Limba</label>-->\r\n              <select id=\"basicSelect\" class=\"login-field\" name=\"loginLimba\" onchange=\"form.submit();\">\r\n                \r\n                <option value=\"ro\" selected> rom\u00e2n\u0103 </option>\r\n                \r\n                <option value=\"en\" > English </option>\r\n                \r\n                <option value=\"fr\" > French </option>\r\n                \r\n                <option value=\"de\" > German </option>\r\n                \r\n                <option value=\"ar\" > Arabic </option>\r\n                \r\n                <option value=\"ru\" > Russian </option>\r\n                \r\n              </select>\r\n            </div>\r\n\r\n            <div class=\"control-group\" >              \r\n              <input type=\"button\" class=\"btn\" name=\"srv\"  onclick=\"launchWS();return false;\" value=\"Lanseaza aplicatie\">               \r\n            </div>\r\n            <div class=\"control-group\" >\r\n              <input type=\"button\" class=\"btn\" name=\"login_web\"  onclick=\"loginWeb();return false;\" value=\"Login web\">\r\n            </div><br>\r\n\t\t\t    <div>\r\n            <div>Tip lansare </div>\r\n            <select name=\"dloadType\" id=\"dloadType\">\r\n              <option value=\"jar\">Java Archive</option>\r\n              <option value=\"bat\">Windows Batch</option>\r\n              <option value=\"win\">Windows PowerShell</option>\r\n              <option value=\"auto\">Auto Detect</option>\r\n              \r\n            </select>\r\n\t\t\t    </div>\r\n            <div class=\"control-group\" id=\"divPrerechizite\">\r\n              <!--<div class=\"colorErr\" id=\"divTextPrerechizite\">\r\n                Urmatoarele plugin-uri nu sunt instalate sau versiunea acestora nu este corespunzatoare. Va rugam sa le instalati.\r\n              </div>\r\n              <div>\r\n                <a href=\"http://get.adobe.com/reader/\" target=\"_blank\" id=\"linkAdobeReader\"><img src=\"images/logo-adobe-reader.png\" id=\"imgAdobeReader\"></a>\r\n                <a href=\"http://windows.microsoft.com/en-us/internet-explorer/download-ie\" target=\"_blank\" id=\"linkMinimIE9\"><img src=\"images/logo-ie.png\" id=\"imgMinimIE9\"></a>\r\n                <a href=\"#\" onclick=\"alert('Browser-ul web folosit nu este compatibil HTML 5'); return false;\" id=\"linkHTML5\"><img src=\"images/logo-html5.png\" id=\"imgHTML5\"></a>\r\n              </div>-->\r\n            </div>\r\n          </div>\r\n        </div>\r\n      </div>\r\n      <script type=\"text/javascript\">\r\n//        checkPrerechizite();\r\n        function launchWS() {\r\n          var dir = location.href.substring(0, location.href.lastIndexOf('/') + 1);\r\n          var url = dir + \"preload?osscript=\"+encodeURIComponent(document.getElementById('dloadType').value) ;\r\n          document.getElementById(\"dload\").src = url;\r\n        }\r\n\r\n        function loginWeb() {\r\n          let dir = location.href.substring(0, location.href.lastIndexOf('/') + 1);\r\n          location.href = dir + \"browser.mk\"\r\n        }\r\n      </script>\r\n      <iframe id=\"dload\" style=\"width: 0px;height: 0px;display: none;\"/>\r\n    </form>\r\n\r\n  </body>\r\n</html>",
         "datamd5" : "77d3e2282a29086eefcb220c0db95fef",
         "datammh3" : 471909803,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "forward" : "194.102.73.67",
         "hostname" : [
            "194.102.73.67"
         ],
         "ip" : "194.102.73.67",
         "ipv6" : "false",
         "latitude" : "45.9968",
         "location" : "45.9968,24.9970",
         "longitude" : "24.9970",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Agentia de Administrare a Retelei Nationale de Informatica pentru Educatie si Cercetare",
         "port" : 9997,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 200,
         "subnet" : "194.102.73.0/24",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/app/"
      }
      
  • 76.155.28.148:9997 (tcp/http) - last seen on 2024-11-07 at 03:05:20 UTC

    • IP
      76.155.28.148
      Network
      76.155.0.0/17
      Domain(s)
      comcast.net
      Device

      <enterprise field>: device.class

      URL

      http://76.155.28.148:9997/ 301

      HTTP Title
      Moved Permanently
      Reverse DNS
      c-76-155-28-148.hsd1.co.comcast.net
      ASN
      AS7922
      Organization
      COMCAST-7922
      Protocol
      http
      Source
      urlscan::redirect
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      2731417bbc307a9ad421b3265134220b
      HTTP Header MD5
      2c561ce2561b7f6113f96cf56b362b57
      HTTP Body MD5
      6d74b20c6fa245a96aa940816c13f6ff
    • HTTP/1.1 301 Moved Permanently
      Access-Control-Allow-Origin: *
      Content-Length: 98
      Content-Type: text/html; charset=utf-8
      Date: Thu, 07 Nov 2024 03:05:20 GMT
      Location: https://<ip>:9997/
      
      <HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:05:20.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
               "bodymmh3" : -2097937471,
               "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
               "headermmh3" : 655496301,
               "title" : "Moved Permanently"
            },
            "length" : 291
         },
         "asn" : "AS7922",
         "city" : "Thornton",
         "country" : "US",
         "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:05:20 GMT\r\nLocation: https://<ip>:9997/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
         "datamd5" : "2731417bbc307a9ad421b3265134220b",
         "datammh3" : 2139039455,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "comcast.net"
         ],
         "forward" : "76.155.28.148",
         "geolocus" : {
            "asn" : "AS7922",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "comcast.com",
               "comcast.net"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "POMPANO-15",
            "organization" : "Comcast Cable Communications, LLC",
            "subnet" : "76.128.0.0/11"
         },
         "host" : [
            "c-76-155-28-148"
         ],
         "hostname" : [
            "76.155.28.148",
            "c-76-155-28-148.hsd1.co.comcast.net"
         ],
         "ip" : "76.155.28.148",
         "ipv6" : "false",
         "latitude" : "39.8690",
         "location" : "39.8690,-104.9767",
         "longitude" : "-104.9767",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "COMCAST-7922",
         "port" : 9997,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Moved Permanently",
         "reverse" : [
            "c-76-155-28-148.hsd1.co.comcast.net"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 301,
         "subdomains" : [
            "hsd1.co.comcast.net",
            "co.comcast.net"
         ],
         "subnet" : "76.155.0.0/17",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 52.27.30.155:9997 (tcp/http) - last seen on 2024-11-07 at 03:05:15 UTC

    • IP
      52.27.30.155
      Network
      52.24.0.0/13
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      URL

      http://52.27.30.155:9997/./login.action 200

      HTTP Title
      Log In - Confluence
      Reverse DNS
      ec2-52-27-30-155.us-west-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      urlscan::redirect
    • Product
      F5 Nginx
      HTTP Component(s)
      Atlassian Confluence Atlassian Confluence 8.5.1 8703 Oracle Java
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      63af3c7588f6640f83f4412c446a7e6c
      HTTP Header MD5
      3de466e0fee5ee81351456879b5ae3d2
      HTTP Body MD5
      68d299cc91510df1cbd8e6c43b0be3cf
    • HTTP/1.1 200 OK
      Connection: keep-alive
      Date: Thu, 07 Nov 2024 03:05:08 GMT
      Server: nginx
      X-Confluence-Request-Time: 1730948708
      Content-Type: text/html;charset=UTF-8
      Cache-Control: no-cache, must-revalidate
      Expires: Thu, 01 Jan 1970 00:00:00 GMT
      Set-Cookie: JSESSIONID=vh6ply4rjs30h81b261buuiun8q78c4x; Path=/; Secure; HttpOnly
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Frame-Options: SAMEORIGIN
      Content-Security-Policy: frame-ancestors 'self'
      Strict-Transport-Security: max-age=63072000
      Content-Length: 31642
      
      <!DOCTYPE html>
      <html lang="en-US" >
      <head>
                          <title>Log In - Confluence</title>
          <meta http-equiv="X-UA-Compatible" content="IE=EDGE,chrome=IE7">
      <meta charset="UTF-8">
      <meta id="confluence-context-path" name="confluence-context-path" content="">
      <meta id="confluence-base-url" name="confluence-base-url" content="https://www.example.com">
          <meta id="atlassian-token" name="atlassian-token" content="e68dfa45d0ec9701eac9e51568b6020923c96741">
      <script type="text/javascript">
              var contextPath = '';
      </script>
          <meta name="robots" content="noindex,nofollow">
          <meta name="robots" content="noarchive">
          <meta name="confluence-request-time" content="1655127501448">
                  <meta name="ajs-use-keyboard-shortcuts" content="true">
                  <meta name="ajs-discovered-plugin-features" content="$discoveredList">
                  <meta name="ajs-keyboardshortcut-hash" content="fff979e4c9da5640ff51afde5a995be8">
                  <meta id="team-calendars-has-jira-link" content="true">
                  <meta name="ajs-team-calendars-display-time-format" content="displayTimeFormat12">
                  <meta id="team-calendars-display-week-number" content="false">
                  <meta id="team-calendars-user-timezone" content="-07:00">
                  <script type="text/x-template" id="team-calendars-messages" title="team-calendars-messages"><fieldset class="i18n hidden"><input type="hidden" name="calendar3.month.long.july" value="July"><input type="hidden" name="calendar3.day.short.wednesday" value="Wed"><input type="hidden" name="calendar3.day.short.thursday" value="Thu"><input type="hidden" name="calendar3.month.short.march" value="Mar"><input type="hidden" name="calendar3.month.long.april" value="April"><input type="hidden" name="calendar3.month.long.october" value="October"><input type="hidden" name="calendar3.month.long.august" value="August"><input type="hidden" name="calendar3.month.short.july" value="Jul"><input type="hidden" name="calendar3.month.short.may" value="May"><input type="hidden" name="calendar3.month.short.november" value="Nov"><input type="hidden" name="calendar3.day.long.friday" value="Friday"><input type="hidden" name="calendar3.day.long.sunday" value="Sunday"><input type="hidden" name="calendar3.day.long.saturday" value="Saturday"><input type="hidden" name="calendar3.month.short.april" value="Apr"><input type="hidden" name="calendar3.day.long.wednesday" value="Wednesday"><input type="hidden" name="calendar3.month.long.december" value="December"><input type="hidden" name="calendar3.month.short.october" value="Oct"><input type="hidden" name="calendar3.day.long.monday" value="Monday"><input type="hidden" name="calendar3.month.short.june" value="Jun"><input type="hidden" name="calendar3.day.short.monday" value="Mon"><input type="hidden" name="calendar3.day.short.tuesday" value="Tue"><input type="hidden" name="calendar3.day.short.saturday" value="Sat"><input type="hidden" name="calendar3.month.long.march" value="March"><input type="hidden" name="calendar3.month.long.june" value="June"><input type="hidden" name="calendar3.month.short.february" value="Feb"><input type="hidden" name="calendar3.month.short.august" value="Aug"><input type="hidden" name="calendar3.month.short.december" value="Dec"><input type="hidden" name="calendar3.day.short.sunday" value="Sun"><input type="hidden" name="calendar3.month.long.february" value="February"><input type="hidden" name="calendar3.day.long.tuesday" value="Tuesday"><input type="hidden" name="calendar3.month.long.may" value="May"><input type="hidden" name="calendar3.month.long.september" value="September"><input type="hidden" name="calendar3.month.long.november" value="November"><input type="hidden" name="calendar3.month.short.january" value="Jan"><input type="hidden" name="calendar3.month.short.september" value="Sep"><input type="hidden" name="calendar3.day.long.thursday" value="Thursday"><input type="hidden" name="calendar3.month.long.january" value="January"><input type="hidden" name="calendar3.day.short.friday" value="Fri"></fieldset></script>
                  <meta name="ajs-is-confluence-admin" content="false">
                  <meta name="ajs-connection-timeout" content="10000">
                  <meta name="ajs-context-path" content="">
                  <meta name="ajs-base-url" content="https://www.example.com">
                  <meta name="ajs-version-number" content="8.5.1">
                  <meta name="ajs-build-number" content="8703">
                  <meta name="ajs-remote-user" content="">
                  <meta name="ajs-remote-user-key" content="">
                  <meta name="ajs-remote-user-has-licensed-access" content="false">
                  <meta name="ajs-remote-user-has-browse-users-permission" content="false">
                  <meta name="ajs-current-user-fullname" content="">
                  <meta name="ajs-current-user-avatar-url" content="">
                  <meta name="ajs-current-user-avatar-uri-reference" content="/images/icons/profilepics/anonymous.svg">
                  <meta name="ajs-static-resource-url-prefix" content="/s/biaqv0/8703/189cb2l/_">
                  <meta name="ajs-global-settings-attachment-max-size" content="104857600">
                  <meta name="ajs-global-settings-quick-search-enabled" content="true">
                  <meta name="ajs-user-locale" content="en_US">
                  <meta name="ajs-enabled-dark-features" content="site-wide.shared-drafts,clc.quick.create,confluence.view.edit.transition,cql.search.screen,confluence-inline-comments-resolved,frontend.editor.v4,http.session.registrar,nps.survey.inline.dialog,confluence.efi.onboarding.new.templates,frontend.editor.v4.compatibility,atlassian.cdn.static.assets,pdf-preview,previews.sharing,previews.versions,file-annotations,confluence.efi.onboarding.rich.space.content,collaborative-audit-log,confluence.reindex.improvements,previews.conversion-service,editor.ajax.save,read.only.mode,graphql,previews.trigger-all-file-types,attachment.extracted.text.extractor,lucene.caching.filter,confluence.table.resizable,notification.batch,previews.sharing.pushstate,confluence-inline-comments-rich-editor,tc.tacca.dacca,site-wide.synchrony.opt-in,file-annotations.likes,gatekeeper-ui-v2,v2.content.name.searcher,mobile.supported.version,pulp,confluence-inline-comments,confluence-inline-comments-dangling-comment,quick-reload-inline-comments-flags">
                  <meta name="ajs-atl-token" content="e68dfa45d0ec9701eac9e51568b6020923c96741">
                  <meta name="ajs-confluence-flavour" content="VANILLA">
                  <meta name="ajs-user-date-pattern" content="dd MMM yyyy">
                  <meta name="ajs-access-mode" content="READ_WRITE">
                  <meta name="ajs-render-mode" content="READ_WRITE">
                  <meta name="ajs-date.format" content="MMM dd, yyyy">
          <link rel="shortcut icon" href="/s/biaqv0/8703/189cb2l/7/_/favicon.ico">
          <link rel="icon" type="image/x-icon" href="/s/biaqv0/8703/189cb2l/7/_/favicon.ico">
      <link rel="search" type="application/opensearchdescription+xml" href="/opensearch/osd.action" title="Confluence"/>
          <script>
      window.WRM=window.WRM||{};window.WRM._unparsedData=window.WRM._unparsedData||{};window.WRM._unparsedErrors=window.WRM._unparsedErrors||{};
      WRM._unparsedData["com.atlassian.plugins.atlassian-plugins-webresource-plugin:context-path.context-path"]="\u0022\u0022";
      WRM._unparsedData["com.atlassian.analytics.analytics-client:policy-update-init.policy-update-data-provider"]="false";
      WRM._unparsedData["com.atlassian.analytics.analytics-client:programmatic-analytics-init.programmatic-analytics-data-provider"]="false";
      WRM._unparsedData["com.atlassian.applinks.applinks-plugin:applinks-common-exported.applinks-help-paths"]="{\u0022entries\u0022:{\u0022applinks.docs.root\u0022:\u0022https://confluence.atlassian.com/display/APPLINKS-072/\u0022,\u0022applinks.docs.diagnostics.troubleshoot.sslunmatched\u0022:\u0022SSL+and+application+link+troubleshooting+guide\u0022,\u0022applinks.docs.diagnostics.troubleshoot.oauthsignatureinvalid\u0022:\u0022OAuth+troubleshooting+guide\u0022,\u0022applinks.docs.diagnostics.troubleshoot.oauthtimestamprefused\u0022:\u0022OAuth+troubleshooting+guide\u0022,\u0022applinks.docs.delete.entity.link\u0022:\u0022Create+links+between+projects\u0022,\u0022applinks.docs.adding.application.link\u0022:\u0022Link+Atlassian+applications+to+work+together\u0022,\u0022applinks.docs.administration.guide\u0022:\u0022Application+Links+Documentation\u0022,\u0022applinks.docs.oauth.security\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.troubleshoot.application.links\u0022:\u0022Troubleshoot+application+links\u0022,\u0022applinks.docs.diagnostics.troubleshoot.unknownerror\u0022:\u0022Network+and+connectivity+troubleshooting+guide\u0022,\u0022applinks.docs.configuring.auth.trusted.apps\u0022:\u0022Configuring+Trusted+Applications+authentication+for+an+application+link\u0022,\u0022applinks.docs.diagnostics.troubleshoot.authlevelunsupported\u0022:\u0022OAuth+troubleshooting+guide\u0022,\u0022applinks.docs.diagnostics.troubleshoot.ssluntrusted\u0022:\u0022SSL+and+application+link+troubleshooting+guide\u0022,\u0022applinks.docs.diagnostics.troubleshoot.unknownhost\u0022:\u0022Network+and+connectivity+troubleshooting+guide\u0022,\u0022applinks.docs.delete.application.link\u0022:\u0022Link+Atlassian+applications+to+work+together\u0022,\u0022applinks.docs.adding.project.link\u0022:\u0022Configuring+Project+links+across+Applications\u0022,\u0022applinks.docs.link.applications\u0022:\u0022Link+Atlassian+applications+to+work+together\u0022,\u0022applinks.docs.diagnostics.troubleshoot.oauthproblem\u0022:\u0022OAuth+troubleshooting+guide\u0022,\u0022applinks.docs.diagnostics.troubleshoot.migration\u0022:\u0022Update+application+links+to+use+OAuth\u0022,\u0022applinks.docs.relocate.application.link\u0022:\u0022Link+Atlassian+applications+to+work+together\u0022,\u0022applinks.docs.administering.entity.links\u0022:\u0022Create+links+between+projects\u0022,\u0022applinks.docs.upgrade.application.link\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.diagnostics.troubleshoot.connectionrefused\u0022:\u0022Network+and+connectivity+troubleshooting+guide\u0022,\u0022applinks.docs.configuring.auth.oauth\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.insufficient.remote.permission\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.configuring.application.link.auth\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.diagnostics\u0022:\u0022Application+links+diagnostics\u0022,\u0022applinks.docs.configured.authentication.types\u0022:\u0022OAuth+security+for+application+links\u0022,\u0022applinks.docs.adding.entity.link\u0022:\u0022Create+links+between+projects\u0022,\u0022applinks.docs.diagnostics.troubleshoot.unexpectedresponse\u0022:\u0022Network+and+connectivity+troubleshooting+guide\u0022,\u0022applinks.docs.configuring.auth.basic\u0022:\u0022Configuring+Basic+HTTP+Authentication+for+an+Application+Link\u0022,\u0022applinks.docs.diagnostics.troubleshoot.authlevelmismatch\u0022:\u0022OAuth+troubleshooting+guide\u0022}}";
      WRM._unparsedData["com.atlassian.applinks.applinks-plugin:applinks-common-exported.applinks-types"]="{\u0022crowd\u0022:\u0022Crowd\u0022,\u0022confluence\u0022:\u0022Confluence\u0022,\u0022fecru\u0022:\u0022FishEye / Crucible\u0022,\u0022stash\u0022:\u0022Stash\u0022,\u0022jira\u0022:\u0022Jira\u0022,\u0022refapp\u0022:\u0022Reference Application\u0022,\u0022bamboo\u0022:\u0022Bamboo\u0022,\u0022generic\u0022:\u0022Generic Application\u0022}";
      WRM._unparsedData["com.atlassian.applinks.applinks-plugin:applinks-common-exported.entity-types"]="{\u0022singular\u0022:{\u0022refapp.charlie\u0022:\u0022Charlie\u0022,\u0022fecru.project\u0022:\u0022Crucible Project\u0022,\u0022fecru.repository\u0022:\u0022FishEye Repository\u0022,\u0022stash.project\u0022:\u0022Stash Project\u0022,\u0022generic.entity\u0022:\u0022Generic Project\u0022,\u0022confluence.space\u0022:\u0022Confluence Space\u0022,\u0022bamboo.project\u0022:\u0022Bamboo Project\u0022,\u0022jira.project\u0022:\u0022Jira Project\u0022},\u0022plural\u0022:{\u0022refapp.charlie\u0022:\u0022Charlies\u0022,\u0022fecru.project\u0022:\u0022Crucible Projects\u0022,\u0022fecru.repository\u0022:\u0022FishEye Repositories\u0022,\u0022stash.project\u0022:\u0022Stash Projects\u0022,\u0022generic.entity\u0022:\u0022Generic Projects\u0022,\u0022confluence.space\u0022:\u0022Confluence Spaces\u0022,\u0022bamboo.project\u0022:\u0022Bamboo Projects\u0022,\u0022jira.project\u0022:\u0022Jira Projects\u0022}}";
      WRM._unparsedData["com.atlassian.applinks.applinks-plugin:applinks-common-exported.authentication-types"]="{\u0022com.atlassian.applinks.api.auth.types.BasicAuthenticationProvider\u0022:\u0022Basic Access\u0022,\u0022com.atlassian.applinks.api.auth.types.TrustedAppsAuthenticationProvider\u0022:\u0022Trusted Applications\u0022,\u0022com.atlassian.applinks.api.auth.types.CorsAuthenticationProvider\u0022:\u0022CORS\u0022,\u0022com.atlassian.applinks.api.auth.types.OAuthAuthenticationProvider\u0022:\u0022OAuth\u0022,\u0022com.atlassian.applinks.api.auth.types.TwoLeggedOAuthAuthenticationProvider\u0022:\u0022OAuth\u0022,\u0022com.atlassian.applinks.api.auth.types.TwoLeggedOAuthWithImpersonationAuthenticationProvider\u0022:\u0022OAuth\u0022}";
      WRM._unparsedData["com.atlassian.confluence.plugins.synchrony-interop:synchrony-status-banner-loader.synchrony-status"]="false";
      WRM._unparsedData["com.atlassian.confluence.plugins.confluence-feature-discovery-plugin:confluence-feature-discovery-plugin-resources.test-mode"]="false";
      WRM._unparsedData["com.atlassian.confluence.plugins.confluence-license-banner:confluence-license-banner-resources.license-details"]="{\u0022daysBeforeLicenseExpiry\u0022:0,\u0022daysBeforeMaintenanceExpiry\u0022:0,\u0022showLicenseExpiryBanner\u0022:false,\u0022showMaintenanceExpiryBanner\u0022:false,\u0022renewUrl\u0022:null,\u0022salesUrl\u0022:null}";
      WRM._unparsedData["com.atlassian.confluence.plugins.confluence-search-ui-plugin:confluence-search-ui-plugin-resources.i18n-data"]="{\u0022search.ui.recent.link.text\u0022:\u0022View more recently visited\u0022,\u0022search.ui.filter.space.category.input.label\u0022:\u0022Find space categories...\u0022,\u0022search.ui.search.results.empty\u0022:\u0022We couldn\u005Cu0027\u005Cu0027t find anything matching \u005C\u0022{0}\u005C\u0022.\u0022,\u0022search.ui.filter.clear.selected\u0022:\u0022Clear selected items\u0022,\u0022search.ui.content.name.search.items.panel.load.all.top.items.button.text\u0022:\u0022Show more app results...\u0022,\u0022search.ui.filter.space.archive.label\u0022:\u0022Search archived spaces\u0022,\u0022search.ui.filter.label\u0022:\u0022filter\u0022,\u0022search.ui.filter.contributor.button.text\u0022:\u0022Contributor\u0022,\u0022search.ui.filter.date.all.text\u0022:\u0022Any time\u0022,\u0022search.ui.filter.space.current.label\u0022:\u0022CURRENT\u0022,\u0022search.ui.clear.input.button.text\u0022:\u0022Clear text\u0022,\u0022search.ui.search.results.clear.button\u0022:\u0022clear your filters.\u0022,\u0022search.ui.filter.date.hour.text\u0022:\u0022The past day\u0022,\u0022help.search.ui.link.title\u0022:\u0022Search tips\u0022,\u0022search.ui.filters.heading\u0022:\u0022Filter by\u0022,\u0022search.ui.filter.label.input.label\u0022:\u0022Find labels...\u0022,\u0022search.ui.recent.items.anonymous\u0022:\u0022Start exploring. Your search results will appear here.\u0022,\u0022search.ui.filter.date.month.text\u0022:\u0022The past month\u0022,\u0022search.ui.input.label\u0022:\u0022Search\u0022,\u0022search.ui.search.result\u0022:\u0022{0,choice,1#{0} search result|1\u005Cu003c{0} search results}\u0022,\u0022search.ui.infinite.scroll.button.text\u0022:\u0022More results\u0022,\u0022search.ui.filter
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:05:15.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "example.com",
                  "atlassian.com"
               ],
               "hostname" : [
                  "confluence.atlassian.com",
                  "www.example.com"
               ],
               "url" : [
                  "https://confluence.atlassian.com/display/APPLINKS-072/",
                  "https://www.example.com"
               ]
            },
            "favicon" : {
               "url" : "/s/biaqv0/8703/189cb2l/7/_/favicon.ico"
            },
            "http" : {
               "bodymd5" : "68d299cc91510df1cbd8e6c43b0be3cf",
               "bodymmh3" : 832047516,
               "component" : [
                  {
                     "product" : "Java",
                     "productvendor" : "Oracle"
                  },
                  {
                     "productvendor" : "Atlassian",
                     "product" : "Confluence"
                  },
                  {
                     "productvendor" : "Atlassian",
                     "productversion" : "8.5.1",
                     "productversionpatch" : "8703",
                     "product" : "Confluence"
                  }
               ],
               "headermd5" : "3de466e0fee5ee81351456879b5ae3d2",
               "headermmh3" : -1940730264,
               "title" : "Log In - Confluence"
            },
            "length" : 16384
         },
         "asn" : "AS16509",
         "city" : "Boardman",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 03:05:08 GMT\r\nServer: nginx\r\nX-Confluence-Request-Time: 1730948708\r\nContent-Type: text/html;charset=UTF-8\r\nCache-Control: no-cache, must-revalidate\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nSet-Cookie: JSESSIONID=vh6ply4rjs30h81b261buuiun8q78c4x; Path=/; Secure; HttpOnly\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nStrict-Transport-Security: max-age=63072000\r\nContent-Length: 31642\r\n\r\n<!DOCTYPE html>\n<html lang=\"en-US\" >\n<head>\n                    <title>Log In - Confluence</title>\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=EDGE,chrome=IE7\">\n<meta charset=\"UTF-8\">\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://www.example.com\">\n    <meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"e68dfa45d0ec9701eac9e51568b6020923c96741\">\n<script type=\"text/javascript\">\n        var contextPath = '';\n</script>\n    <meta name=\"robots\" content=\"noindex,nofollow\">\n    <meta name=\"robots\" content=\"noarchive\">\n    <meta name=\"confluence-request-time\" content=\"1655127501448\">\n            <meta name=\"ajs-use-keyboard-shortcuts\" content=\"true\">\n            <meta name=\"ajs-discovered-plugin-features\" content=\"$discoveredList\">\n            <meta name=\"ajs-keyboardshortcut-hash\" content=\"fff979e4c9da5640ff51afde5a995be8\">\n            <meta id=\"team-calendars-has-jira-link\" content=\"true\">\n            <meta name=\"ajs-team-calendars-display-time-format\" content=\"displayTimeFormat12\">\n            <meta id=\"team-calendars-display-week-number\" content=\"false\">\n            <meta id=\"team-calendars-user-timezone\" content=\"-07:00\">\n            <script type=\"text/x-template\" id=\"team-calendars-messages\" title=\"team-calendars-messages\"><fieldset class=\"i18n hidden\"><input type=\"hidden\" name=\"calendar3.month.long.july\" value=\"July\"><input type=\"hidden\" name=\"calendar3.day.short.wednesday\" value=\"Wed\"><input type=\"hidden\" name=\"calendar3.day.short.thursday\" value=\"Thu\"><input type=\"hidden\" name=\"calendar3.month.short.march\" value=\"Mar\"><input type=\"hidden\" name=\"calendar3.month.long.april\" value=\"April\"><input type=\"hidden\" name=\"calendar3.month.long.october\" value=\"October\"><input type=\"hidden\" name=\"calendar3.month.long.august\" value=\"August\"><input type=\"hidden\" name=\"calendar3.month.short.july\" value=\"Jul\"><input type=\"hidden\" name=\"calendar3.month.short.may\" value=\"May\"><input type=\"hidden\" name=\"calendar3.month.short.november\" value=\"Nov\"><input type=\"hidden\" name=\"calendar3.day.long.friday\" value=\"Friday\"><input type=\"hidden\" name=\"calendar3.day.long.sunday\" value=\"Sunday\"><input type=\"hidden\" name=\"calendar3.day.long.saturday\" value=\"Saturday\"><input type=\"hidden\" name=\"calendar3.month.short.april\" value=\"Apr\"><input type=\"hidden\" name=\"calendar3.day.long.wednesday\" value=\"Wednesday\"><input type=\"hidden\" name=\"calendar3.month.long.december\" value=\"December\"><input type=\"hidden\" name=\"calendar3.month.short.october\" value=\"Oct\"><input type=\"hidden\" name=\"calendar3.day.long.monday\" value=\"Monday\"><input type=\"hidden\" name=\"calendar3.month.short.june\" value=\"Jun\"><input type=\"hidden\" name=\"calendar3.day.short.monday\" value=\"Mon\"><input type=\"hidden\" name=\"calendar3.day.short.tuesday\" value=\"Tue\"><input type=\"hidden\" name=\"calendar3.day.short.saturday\" value=\"Sat\"><input type=\"hidden\" name=\"calendar3.month.long.march\" value=\"March\"><input type=\"hidden\" name=\"calendar3.month.long.june\" value=\"June\"><input type=\"hidden\" name=\"calendar3.month.short.february\" value=\"Feb\"><input type=\"hidden\" name=\"calendar3.month.short.august\" value=\"Aug\"><input type=\"hidden\" name=\"calendar3.month.short.december\" value=\"Dec\"><input type=\"hidden\" name=\"calendar3.day.short.sunday\" value=\"Sun\"><input type=\"hidden\" name=\"calendar3.month.long.february\" value=\"February\"><input type=\"hidden\" name=\"calendar3.day.long.tuesday\" value=\"Tuesday\"><input type=\"hidden\" name=\"calendar3.month.long.may\" value=\"May\"><input type=\"hidden\" name=\"calendar3.month.long.september\" value=\"September\"><input type=\"hidden\" name=\"calendar3.month.long.november\" value=\"November\"><input type=\"hidden\" name=\"calendar3.month.short.january\" value=\"Jan\"><input type=\"hidden\" name=\"calendar3.month.short.september\" value=\"Sep\"><input type=\"hidden\" name=\"calendar3.day.long.thursday\" value=\"Thursday\"><input type=\"hidden\" name=\"calendar3.month.long.january\" value=\"January\"><input type=\"hidden\" name=\"calendar3.day.short.friday\" value=\"Fri\"></fieldset></script>\n            <meta name=\"ajs-is-confluence-admin\" content=\"false\">\n            <meta name=\"ajs-connection-timeout\" content=\"10000\">\n            <meta name=\"ajs-context-path\" content=\"\">\n            <meta name=\"ajs-base-url\" content=\"https://www.example.com\">\n            <meta name=\"ajs-version-number\" content=\"8.5.1\">\n            <meta name=\"ajs-build-number\" content=\"8703\">\n            <meta name=\"ajs-remote-user\" content=\"\">\n            <meta name=\"ajs-remote-user-key\" content=\"\">\n            <meta name=\"ajs-remote-user-has-licensed-access\" content=\"false\">\n            <meta name=\"ajs-remote-user-has-browse-users-permission\" content=\"false\">\n            <meta name=\"ajs-current-user-fullname\" content=\"\">\n            <meta name=\"ajs-current-user-avatar-url\" content=\"\">\n            <meta name=\"ajs-current-user-avatar-uri-reference\" content=\"/images/icons/profilepics/anonymous.svg\">\n            <meta name=\"ajs-static-resource-url-prefix\" content=\"/s/biaqv0/8703/189cb2l/_\">\n            <meta name=\"ajs-global-settings-attachment-max-size\" content=\"104857600\">\n            <meta name=\"ajs-global-settings-quick-search-enabled\" content=\"true\">\n            <meta name=\"ajs-user-locale\" content=\"en_US\">\n            <meta name=\"ajs-enabled-dark-features\" content=\"site-wide.shared-drafts,clc.quick.create,confluence.view.edit.transition,cql.search.screen,confluence-inline-comments-resolved,frontend.editor.v4,http.session.registrar,nps.survey.inline.dialog,confluence.efi.onboarding.new.templates,frontend.editor.v4.compatibility,atlassian.cdn.static.assets,pdf-preview,previews.sharing,previews.versions,file-annotations,confluence.efi.onboarding.rich.space.content,collaborative-audit-log,confluence.reindex.improvements,previews.conversion-service,editor.ajax.save,read.only.mode,graphql,previews.trigger-all-file-types,attachment.extracted.text.extractor,lucene.caching.filter,confluence.table.resizable,notification.batch,previews.sharing.pushstate,confluence-inline-comments-rich-editor,tc.tacca.dacca,site-wide.synchrony.opt-in,file-annotations.likes,gatekeeper-ui-v2,v2.content.name.searcher,mobile.supported.version,pulp,confluence-inline-comments,confluence-inline-comments-dangling-comment,quick-reload-inline-comments-flags\">\n            <meta name=\"ajs-atl-token\" content=\"e68dfa45d0ec9701eac9e51568b6020923c96741\">\n            <meta name=\"ajs-confluence-flavour\" content=\"VANILLA\">\n            <meta name=\"ajs-user-date-pattern\" content=\"dd MMM yyyy\">\n            <meta name=\"ajs-access-mode\" content=\"READ_WRITE\">\n            <meta name=\"ajs-render-mode\" content=\"READ_WRITE\">\n            <meta name=\"ajs-date.format\" content=\"MMM dd, yyyy\">\n    <link rel=\"shortcut icon\" href=\"/s/biaqv0/8703/189cb2l/7/_/favicon.ico\">\n    <link rel=\"icon\" type=\"image/x-icon\" href=\"/s/biaqv0/8703/189cb2l/7/_/favicon.ico\">\n<link rel=\"search\" type=\"application/opensearchdescription+xml\" href=\"/opensearch/osd.action\" title=\"Confluence\"/>\n    <script>\nwindow.WRM=window.WRM||{};window.WRM._unparsedData=window.WRM._unparsedData||{};window.WRM._unparsedErrors=window.WRM._unparsedErrors||{};\nWRM._unparsedData[\"com.atlassian.plugins.atlassian-plugins-webresource-plugin:context-path.context-path\"]=\"\\u0022\\u0022\";\nWRM._unparsedData[\"com.atlassian.analytics.analytics-client:policy-update-init.policy-update-data-provider\"]=\"false\";\nWRM._unparsedData[\"com.atlassian.analytics.analytics-client:programmatic-analytics-init.programmatic-analytics-data-provider\"]=\"false\";\nWRM._unparsedData[\"com.atlassian.applinks.applinks-plugin:applinks-common-exported.applinks-help-paths\"]=\"{\\u0022entries\\u0022:{\\u0022applinks.docs.root\\u0022:\\u0022https://confluence.atlassian.com/display/APPLINKS-072/\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.sslunmatched\\u0022:\\u0022SSL+and+application+link+troubleshooting+guide\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.oauthsignatureinvalid\\u0022:\\u0022OAuth+troubleshooting+guide\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.oauthtimestamprefused\\u0022:\\u0022OAuth+troubleshooting+guide\\u0022,\\u0022applinks.docs.delete.entity.link\\u0022:\\u0022Create+links+between+projects\\u0022,\\u0022applinks.docs.adding.application.link\\u0022:\\u0022Link+Atlassian+applications+to+work+together\\u0022,\\u0022applinks.docs.administration.guide\\u0022:\\u0022Application+Links+Documentation\\u0022,\\u0022applinks.docs.oauth.security\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.troubleshoot.application.links\\u0022:\\u0022Troubleshoot+application+links\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.unknownerror\\u0022:\\u0022Network+and+connectivity+troubleshooting+guide\\u0022,\\u0022applinks.docs.configuring.auth.trusted.apps\\u0022:\\u0022Configuring+Trusted+Applications+authentication+for+an+application+link\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.authlevelunsupported\\u0022:\\u0022OAuth+troubleshooting+guide\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.ssluntrusted\\u0022:\\u0022SSL+and+application+link+troubleshooting+guide\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.unknownhost\\u0022:\\u0022Network+and+connectivity+troubleshooting+guide\\u0022,\\u0022applinks.docs.delete.application.link\\u0022:\\u0022Link+Atlassian+applications+to+work+together\\u0022,\\u0022applinks.docs.adding.project.link\\u0022:\\u0022Configuring+Project+links+across+Applications\\u0022,\\u0022applinks.docs.link.applications\\u0022:\\u0022Link+Atlassian+applications+to+work+together\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.oauthproblem\\u0022:\\u0022OAuth+troubleshooting+guide\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.migration\\u0022:\\u0022Update+application+links+to+use+OAuth\\u0022,\\u0022applinks.docs.relocate.application.link\\u0022:\\u0022Link+Atlassian+applications+to+work+together\\u0022,\\u0022applinks.docs.administering.entity.links\\u0022:\\u0022Create+links+between+projects\\u0022,\\u0022applinks.docs.upgrade.application.link\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.connectionrefused\\u0022:\\u0022Network+and+connectivity+troubleshooting+guide\\u0022,\\u0022applinks.docs.configuring.auth.oauth\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.insufficient.remote.permission\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.configuring.application.link.auth\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.diagnostics\\u0022:\\u0022Application+links+diagnostics\\u0022,\\u0022applinks.docs.configured.authentication.types\\u0022:\\u0022OAuth+security+for+application+links\\u0022,\\u0022applinks.docs.adding.entity.link\\u0022:\\u0022Create+links+between+projects\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.unexpectedresponse\\u0022:\\u0022Network+and+connectivity+troubleshooting+guide\\u0022,\\u0022applinks.docs.configuring.auth.basic\\u0022:\\u0022Configuring+Basic+HTTP+Authentication+for+an+Application+Link\\u0022,\\u0022applinks.docs.diagnostics.troubleshoot.authlevelmismatch\\u0022:\\u0022OAuth+troubleshooting+guide\\u0022}}\";\nWRM._unparsedData[\"com.atlassian.applinks.applinks-plugin:applinks-common-exported.applinks-types\"]=\"{\\u0022crowd\\u0022:\\u0022Crowd\\u0022,\\u0022confluence\\u0022:\\u0022Confluence\\u0022,\\u0022fecru\\u0022:\\u0022FishEye / Crucible\\u0022,\\u0022stash\\u0022:\\u0022Stash\\u0022,\\u0022jira\\u0022:\\u0022Jira\\u0022,\\u0022refapp\\u0022:\\u0022Reference Application\\u0022,\\u0022bamboo\\u0022:\\u0022Bamboo\\u0022,\\u0022generic\\u0022:\\u0022Generic Application\\u0022}\";\nWRM._unparsedData[\"com.atlassian.applinks.applinks-plugin:applinks-common-exported.entity-types\"]=\"{\\u0022singular\\u0022:{\\u0022refapp.charlie\\u0022:\\u0022Charlie\\u0022,\\u0022fecru.project\\u0022:\\u0022Crucible Project\\u0022,\\u0022fecru.repository\\u0022:\\u0022FishEye Repository\\u0022,\\u0022stash.project\\u0022:\\u0022Stash Project\\u0022,\\u0022generic.entity\\u0022:\\u0022Generic Project\\u0022,\\u0022confluence.space\\u0022:\\u0022Confluence Space\\u0022,\\u0022bamboo.project\\u0022:\\u0022Bamboo Project\\u0022,\\u0022jira.project\\u0022:\\u0022Jira Project\\u0022},\\u0022plural\\u0022:{\\u0022refapp.charlie\\u0022:\\u0022Charlies\\u0022,\\u0022fecru.project\\u0022:\\u0022Crucible Projects\\u0022,\\u0022fecru.repository\\u0022:\\u0022FishEye Repositories\\u0022,\\u0022stash.project\\u0022:\\u0022Stash Projects\\u0022,\\u0022generic.entity\\u0022:\\u0022Generic Projects\\u0022,\\u0022confluence.space\\u0022:\\u0022Confluence Spaces\\u0022,\\u0022bamboo.project\\u0022:\\u0022Bamboo Projects\\u0022,\\u0022jira.project\\u0022:\\u0022Jira Projects\\u0022}}\";\nWRM._unparsedData[\"com.atlassian.applinks.applinks-plugin:applinks-common-exported.authentication-types\"]=\"{\\u0022com.atlassian.applinks.api.auth.types.BasicAuthenticationProvider\\u0022:\\u0022Basic Access\\u0022,\\u0022com.atlassian.applinks.api.auth.types.TrustedAppsAuthenticationProvider\\u0022:\\u0022Trusted Applications\\u0022,\\u0022com.atlassian.applinks.api.auth.types.CorsAuthenticationProvider\\u0022:\\u0022CORS\\u0022,\\u0022com.atlassian.applinks.api.auth.types.OAuthAuthenticationProvider\\u0022:\\u0022OAuth\\u0022,\\u0022com.atlassian.applinks.api.auth.types.TwoLeggedOAuthAuthenticationProvider\\u0022:\\u0022OAuth\\u0022,\\u0022com.atlassian.applinks.api.auth.types.TwoLeggedOAuthWithImpersonationAuthenticationProvider\\u0022:\\u0022OAuth\\u0022}\";\nWRM._unparsedData[\"com.atlassian.confluence.plugins.synchrony-interop:synchrony-status-banner-loader.synchrony-status\"]=\"false\";\nWRM._unparsedData[\"com.atlassian.confluence.plugins.confluence-feature-discovery-plugin:confluence-feature-discovery-plugin-resources.test-mode\"]=\"false\";\nWRM._unparsedData[\"com.atlassian.confluence.plugins.confluence-license-banner:confluence-license-banner-resources.license-details\"]=\"{\\u0022daysBeforeLicenseExpiry\\u0022:0,\\u0022daysBeforeMaintenanceExpiry\\u0022:0,\\u0022showLicenseExpiryBanner\\u0022:false,\\u0022showMaintenanceExpiryBanner\\u0022:false,\\u0022renewUrl\\u0022:null,\\u0022salesUrl\\u0022:null}\";\nWRM._unparsedData[\"com.atlassian.confluence.plugins.confluence-search-ui-plugin:confluence-search-ui-plugin-resources.i18n-data\"]=\"{\\u0022search.ui.recent.link.text\\u0022:\\u0022View more recently visited\\u0022,\\u0022search.ui.filter.space.category.input.label\\u0022:\\u0022Find space categories...\\u0022,\\u0022search.ui.search.results.empty\\u0022:\\u0022We couldn\\u005Cu0027\\u005Cu0027t find anything matching \\u005C\\u0022{0}\\u005C\\u0022.\\u0022,\\u0022search.ui.filter.clear.selected\\u0022:\\u0022Clear selected items\\u0022,\\u0022search.ui.content.name.search.items.panel.load.all.top.items.button.text\\u0022:\\u0022Show more app results...\\u0022,\\u0022search.ui.filter.space.archive.label\\u0022:\\u0022Search archived spaces\\u0022,\\u0022search.ui.filter.label\\u0022:\\u0022filter\\u0022,\\u0022search.ui.filter.contributor.button.text\\u0022:\\u0022Contributor\\u0022,\\u0022search.ui.filter.date.all.text\\u0022:\\u0022Any time\\u0022,\\u0022search.ui.filter.space.current.label\\u0022:\\u0022CURRENT\\u0022,\\u0022search.ui.clear.input.button.text\\u0022:\\u0022Clear text\\u0022,\\u0022search.ui.search.results.clear.button\\u0022:\\u0022clear your filters.\\u0022,\\u0022search.ui.filter.date.hour.text\\u0022:\\u0022The past day\\u0022,\\u0022help.search.ui.link.title\\u0022:\\u0022Search tips\\u0022,\\u0022search.ui.filters.heading\\u0022:\\u0022Filter by\\u0022,\\u0022search.ui.filter.label.input.label\\u0022:\\u0022Find labels...\\u0022,\\u0022search.ui.recent.items.anonymous\\u0022:\\u0022Start exploring. Your search results will appear here.\\u0022,\\u0022search.ui.filter.date.month.text\\u0022:\\u0022The past month\\u0022,\\u0022search.ui.input.label\\u0022:\\u0022Search\\u0022,\\u0022search.ui.search.result\\u0022:\\u0022{0,choice,1#{0} search result|1\\u005Cu003c{0} search results}\\u0022,\\u0022search.ui.infinite.scroll.button.text\\u0022:\\u0022More results\\u0022,\\u0022search.ui.filter",
         "datamd5" : "63af3c7588f6640f83f4412c446a7e6c",
         "datammh3" : -1678776350,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "amazonaws.com"
         ],
         "forward" : "52.27.30.155",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.24.0.0/14"
         },
         "host" : [
            "ec2-52-27-30-155"
         ],
         "hostname" : [
            "52.27.30.155",
            "ec2-52-27-30-155.us-west-2.compute.amazonaws.com"
         ],
         "ip" : "52.27.30.155",
         "ipv6" : "false",
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "port" : 9997,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "reverse" : [
            "ec2-52-27-30-155.us-west-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "urlscan::redirect",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-2.compute.amazonaws.com"
         ],
         "subnet" : "52.24.0.0/13",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/./login.action"
      }
      
  • 172.232.167.101:9997 (tcp/http) - last seen on 2024-11-07 at 02:45:42 UTC

    • IP
      172.232.167.101
      Network
      172.232.128.0/17
      Domain(s)
      linodeusercontent.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://172.232.167.101:9997/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      172-232-167-101.ip.linodeusercontent.com
      ASN
      AS63949
      Organization
      Akamai Connected Cloud
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 02:45:42 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T02:45:42.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 1702930176,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS63949",
         "city" : "Tukwila",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 02:45:42 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "linodeusercontent.com"
         ],
         "geolocus" : {
            "asn" : "AS63949",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "akamai.com",
               "linode.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "LINODE",
            "organization" : "Linode",
            "subnet" : "172.232.160.0/19"
         },
         "host" : [
            "172-232-167-101"
         ],
         "hostname" : [
            "172-232-167-101.ip.linodeusercontent.com"
         ],
         "ip" : "172.232.167.101",
         "ipv6" : "false",
         "latitude" : "47.4775",
         "location" : "47.4775,-122.2589",
         "longitude" : "-122.2589",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Akamai Connected Cloud",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9997,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "172-232-167-101.ip.linodeusercontent.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subdomains" : [
            "ip.linodeusercontent.com"
         ],
         "subnet" : "172.232.128.0/17",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 112.133.133.182:9997 (tcp/http) - last seen on 2024-11-07 at 02:44:53 UTC

    • IP
      112.133.133.182
      Network
      112.133.128.0/18
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://112.133.133.182:9997/ 404

      HTTP Title
      Document Error: Site or Page Not Found
      ASN
      AS10054
      Organization
      CMB Kwangju Broadcasting
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Embedthis GoAhead
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      be96478fafb156a117325515ceb93635
      HTTP Header MD5
      b011cbc94d1dfb66387bed3e51a8ed52
      HTTP Body MD5
      4c3a298bec026fbc30aa4716c5c9541f
    • HTTP/1.1 404 Not Found
      Server: GoAhead-Webs
      Date: Thu Nov  7 02:44:51 2024
      Pragma: no-cache
      Cache-Control: no-cache, no-store
      Content-Type: text/html
      X-Frame-Options: SAMEORIGIN
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Length: 135
      Connection: close
      
      <html><head><title>Document Error: Site or Page Not Found</title></head>
      <body><h1>Error: 404 Cannot open URL</h1>
      </body></html>
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T02:44:53.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "4c3a298bec026fbc30aa4716c5c9541f",
               "bodymmh3" : -1187023251,
               "headermd5" : "b011cbc94d1dfb66387bed3e51a8ed52",
               "headermmh3" : 1743991880,
               "title" : "Document Error: Site or Page Not Found"
            },
            "length" : 416
         },
         "asn" : "AS10054",
         "city" : "Gwangsan-gu",
         "country" : "KR",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 404 Not Found\r\nServer: GoAhead-Webs\r\nDate: Thu Nov  7 02:44:51 2024\r\nPragma: no-cache\r\nCache-Control: no-cache, no-store\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Length: 135\r\nConnection: close\r\n\r\n<html><head><title>Document Error: Site or Page Not Found</title></head>\r\n<body><h1>Error: 404 Cannot open URL</h1>\r\n</body></html>\r\n\r\n",
         "datamd5" : "be96478fafb156a117325515ceb93635",
         "datammh3" : 93259155,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS10054",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "KR",
            "countryname" : "South Korea",
            "domain" : [
               "cmb.co.kr",
               "nic.or.kr"
            ],
            "isineu" : "false",
            "latitude" : "35.907757",
            "location" : "35.907757,127.766922",
            "longitude" : "127.766922",
            "netname" : "CMBKWANGJUNET",
            "organization" : "CMB Kwangju Broadcasting",
            "subnet" : "112.133.128.0/18"
         },
         "ip" : "112.133.133.182",
         "ipv6" : "false",
         "latitude" : "35.1749",
         "location" : "35.1749,126.7138",
         "longitude" : "126.7138",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "CMB Kwangju Broadcasting",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9997,
         "product" : "GoAhead",
         "productvendor" : "Embedthis",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Not Found",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 404,
         "subnet" : "112.133.128.0/18",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }