ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 21,582 in 0.082 second(s)

  • 13.245.27.117:4369 (tcp/http) - last seen on 2024-11-21 at 08:59:06 UTC

    • IP
      13.245.27.117
      Network
      13.244.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://13.245.27.117:4369/ 404

      HTTP Title
      Error 404--Not Found
      Reverse DNS
      ec2-13-245-27-117.af-south-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Oracle Weblogic Server 10.3.6.0.0
      HTTP Component(s)
      Oracle Weblogic Server
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      e26e7874bcd5613de7a73a09bb31100c
      HTTP Header MD5
      522c4e821ae16fa1f93f1ac71c0e412a
      HTTP Body MD5
      693ba5c2587c2994de7843b9c3c9e384
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324 
    • HTTP/1.1 404 Not Found
Connection: close
Date: Thu, 21 Nov 2024 08:52:33 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Content-Length: 1766

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
<HTML>
    <HEAD>
        <TITLE>Error 404--Not Found</TITLE>
    </HEAD>
    <BODY bgcolor="white">
        <FONT FACE=Helvetica><BR CLEAR=all>
        <TABLE border=0 cellspacing=5>
            <TR>
                <TD>
                    <BR CLEAR=all>
                    <FONT FACE="Helvetica" COLOR="black" SIZE="3">
                        <H2>Error 404--Not Found</H2>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
        <TABLE border=0 width=100% cellpadding=10>
            <TR>
                <TD VALIGN=top WIDTH=100% BGCOLOR=white>
                    <FONT FACE="Courier New">
                        <FONT FACE="Helvetica" SIZE="3">
                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
                        </FONT>
                        <FONT FACE="Helvetica" SIZE="3">
                            <H4>10.4.5 404 Not Found</H4>
                        </FONT>
                        <P>
                            <FONT FACE="Courier New">
                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.
                        </p>
                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
    </BODY>
</HTML>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:59:06.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.3.6.0"
         ]
      },
      "favicon" : {
         "image" : "AAABAAIAEBAQAAAAAAAoAQAAJgAAACAgEAAAAAAA6AIAAE4BAAAoAAAAEAAAACAAAAABAAQAAAAAAIAAAAAAAAAAAAAAABAAAAAQAAAAAAAAAAAAgAAAgAAAAICAAIAAAACAAIAAgIAAAICAgADAwMAAAAD/AAD/AAAA//8A/wAAAP8A/wD//wAA////AAAAAAAAAAAAAABERERERAAABEREREREAABERAAAAAAAAERAAAAAAAAEREAAAAAAAAREREREREQABERERERERAAEREAAAAAAAAREQAAAAAAAAEREAAAAAAAARERAAAAAAAAEREREREQAAAAERERERAAAAAAAAAAAAAAAAAAAAAAA//8AAPADAADgAwAAw/8AAMf/AACH/wAAgAMAAIADAACH/wAAh/8AAMP/AADB/wAA4AMAAPgDAAD//wAA//8AACgAAAAgAAAAQAAAAAEABAAAAAAAAAIAAAAAAAAAAAAAEAAAABAAAAAAAAAAAACAAACAAAAAgIAAgAAAAIAAgACAgAAAgICAAMDAwAAAAP8AAP8AAAD//wD/AAAA/wD/AP//AAD///8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEREREREREREQAAAAAAAAEREREREREREREAAAAAAAERERERERERERERAAAAAAAREREREREREREREQAAAAABEREREREREREREREAAAAAAREREREAAAAAAAAAAAAAABEREREQAAAAAAAAAAAAAAARERERAAAAAAAAAAAAAAAAEREREAAAAAAAAAAAAAAAARERERAAAAAAAAAAAAAAAAEREREQAAAAAAAAAAAAAAABERERERERERERERERAAAAAREREREREREREREREQAAAAEREREREREREREREREAAAABERERERERERERERERAAAAAREREREREREREREREQAAAAEREREQAAAAAAAAAAAAAAAAEREREAAAAAAAAAAAAAAAABEREREAAAAAAAAAAAAAAAAREREREAAAAAAAAAAAAAAAAREREREAAAAAAAAAAAAAAAAREREREREREREREQAAAAAAEREREREREREREREAAAAAAAERERERERERERERAAAAAAAAAREREREREREREQAAAAAAAAABEREREREREREAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/////////////////4AAP/4AAD/4AAA/8AAAP+AAAD/gD///wB///8A////Af///gH///4B///+AAAA/gAAAP4AAAD+AAAA/gAAAP4B////Af///wD///8Af///gD///8AAAP/AAAD/4AAA//gAAP/+AAD////////////////w==",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "693ba5c2587c2994de7843b9c3c9e384",
         "bodymmh3" : -369160404,
         "component" : [
            {
               "product" : "Weblogic Server",
               "productvendor" : "Oracle"
            }
         ],
         "headermd5" : "522c4e821ae16fa1f93f1ac71c0e412a",
         "headermmh3" : -973279131,
         "title" : "Error 404--Not Found"
      },
      "length" : 1931
   },
   "asn" : "AS16509",
   "city" : "Cape Town",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:52:33 GMT\r\nServer: WebLogic Server 10.3.6.0.0\r\nContent-Type: text/html\r\nContent-Length: 1766\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Draft//EN\">\n<HTML>\n    <HEAD>\n        <TITLE>Error 404--Not Found</TITLE>\n    </HEAD>\n    <BODY bgcolor=\"white\">\n        <FONT FACE=Helvetica><BR CLEAR=all>\n        <TABLE border=0 cellspacing=5>\n            <TR>\n                <TD>\n                    <BR CLEAR=all>\n                    <FONT FACE=\"Helvetica\" COLOR=\"black\" SIZE=\"3\">\n                        <H2>Error 404--Not Found</H2>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n        <TABLE border=0 width=100% cellpadding=10>\n            <TR>\n                <TD VALIGN=top WIDTH=100% BGCOLOR=white>\n                    <FONT FACE=\"Courier New\">\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>\n                        </FONT>\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H4>10.4.5 404 Not Found</H4>\n                        </FONT>\n                        <P>\n                            <FONT FACE=\"Courier New\">\n                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.\n                        </p>\n                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n    </BODY>\n</HTML>",
   "datamd5" : "e26e7874bcd5613de7a73a09bb31100c",
   "datammh3" : 1679174131,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "AMAZON-CPT",
      "organization" : "Amazon Data Services South Africa",
      "subnet" : "13.244.0.0/14"
   },
   "host" : [
      "ec2-13-245-27-117"
   ],
   "hostname" : [
      "ec2-13-245-27-117.af-south-1.compute.amazonaws.com"
   ],
   "ip" : "13.245.27.117",
   "ipv6" : "false",
   "latitude" : "-34.0486",
   "location" : "-34.0486,18.4811",
   "longitude" : "18.4811",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Weblogic Server",
   "productvendor" : "Oracle",
   "productversion" : "10.3.6.0.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "reverse" : [
      "ec2-13-245-27-117.af-south-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "af-south-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "13.244.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 58.122.144.8:4369 (tcp/http) - last seen on 2024-11-21 at 08:54:27 UTC

    • IP
      58.122.144.8
      Network
      58.122.128.0/17
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://58.122.144.8:4369/ 200

      HTTP Title
      CMS Web Viewer
      ASN
      AS9318
      Organization
      SK Broadband Co Ltd
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      6b04fa6b6a6aa9eec0854ec1ff1c3fc7
      HTTP Header MD5
      ba860b3caca90736d63774a542763ca1
      HTTP Body MD5
      34d50830b79b289a3c9422717ce89737 
    • HTTP/1.0 200 OK
Content-type: text/html
Date: Thu, 21 Nov 2024 08:54:27 GMT
Connection: close
Accept-Ranges: bytes
Last-Modified: Mon, 15 Jan 2018 12:25:00 GMT
Content-length: 1360

<!DOCTYPE html>
<html>
<head>
<title>CMS Web Viewer</title>
<meta http-equiv="X-UA-Compatible" content="IE=9"/>
<link href="CMS.css" rel="stylesheet" type="text/css">	
<script language="javascript" src="CMS.js"></script>
</head>
<body onload="onLoad()" onunload="onUnLoad()">
	<div id='divCtrl' class="all-div" >	
	<b  id="btnQUIT"> <br> </b>
	<img src="id.png" align="middle" id='bId'>  <input name="txtUid"  id="txtUid" type="text"  class="all-input" value="" />
	<b id='bBr2'><br></b>
	<img src="pw.png" align="middle"  id='bPw'>  <input name="txtPw"  id="txtPw" type="password"  class="all-input" value="" />
	<b id='bBr3'><br><br></b>	
	<input class="inputBtn" name="btnCONNECT"  id="btnCONNECT" type="button" value="CONNECT" onclick="signalCONNECT()" />
	<b id='bBr4'><br></b>
	<b id='notiprogress'></b>
	<b id='bBr5'><br></b>
	<b id='notistate'>Device is not connected</b>	
	<b id='bBr6'><br></b>
	</div>
	<div id='divDownload'>
	<br><br><br>
	<a id='downCMSLiteInstaller64' 		href="CMSPluginInstaller64.msi" hidden='hidden'></a>
	<a id='downCMSLiteInstaller32' 		href="CMSPluginInstaller32.msi" hidden='hidden'></a>		
	<a id='downCMSPluginInstallerOSX'	href="CMSPluginInstallerOSX.pkg" hidden='hidden'></a>		
	</div>
	<object id="plugin0" type="application/x-cmsplugin" width='0px' height='0px'></object>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:54:27.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "34d50830b79b289a3c9422717ce89737",
         "bodymmh3" : 1901075043,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Mon, 15 Jan 2018 12:25:00 GMT"
            }
         ],
         "headermd5" : "ba860b3caca90736d63774a542763ca1",
         "headermmh3" : 1571310908,
         "title" : "CMS Web Viewer"
      },
      "length" : 1550
   },
   "asn" : "AS9318",
   "city" : "Seoul",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nContent-type: text/html\r\nDate: Thu, 21 Nov 2024 08:54:27 GMT\r\nConnection: close\r\nAccept-Ranges: bytes\r\nLast-Modified: Mon, 15 Jan 2018 12:25:00 GMT\r\nContent-length: 1360\r\n\r\n<!DOCTYPE html>\r\n<html>\r\n<head>\r\n<title>CMS Web Viewer</title>\r\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=9\"/>\r\n<link href=\"CMS.css\" rel=\"stylesheet\" type=\"text/css\">\t\r\n<script language=\"javascript\" src=\"CMS.js\"></script>\r\n</head>\r\n<body onload=\"onLoad()\" onunload=\"onUnLoad()\">\r\n\t<div id='divCtrl' class=\"all-div\" >\t\r\n\t<b  id=\"btnQUIT\"> <br> </b>\r\n\t<img src=\"id.png\" align=\"middle\" id='bId'>  <input name=\"txtUid\"  id=\"txtUid\" type=\"text\"  class=\"all-input\" value=\"\" />\r\n\t<b id='bBr2'><br></b>\r\n\t<img src=\"pw.png\" align=\"middle\"  id='bPw'>  <input name=\"txtPw\"  id=\"txtPw\" type=\"password\"  class=\"all-input\" value=\"\" />\r\n\t<b id='bBr3'><br><br></b>\t\r\n\t<input class=\"inputBtn\" name=\"btnCONNECT\"  id=\"btnCONNECT\" type=\"button\" value=\"CONNECT\" onclick=\"signalCONNECT()\" />\r\n\t<b id='bBr4'><br></b>\r\n\t<b id='notiprogress'></b>\r\n\t<b id='bBr5'><br></b>\r\n\t<b id='notistate'>Device is not connected</b>\t\r\n\t<b id='bBr6'><br></b>\r\n\t</div>\r\n\t<div id='divDownload'>\r\n\t<br><br><br>\r\n\t<a id='downCMSLiteInstaller64' \t\thref=\"CMSPluginInstaller64.msi\" hidden='hidden'></a>\r\n\t<a id='downCMSLiteInstaller32' \t\thref=\"CMSPluginInstaller32.msi\" hidden='hidden'></a>\t\t\r\n\t<a id='downCMSPluginInstallerOSX'\thref=\"CMSPluginInstallerOSX.pkg\" hidden='hidden'></a>\t\t\r\n\t</div>\r\n\t<object id=\"plugin0\" type=\"application/x-cmsplugin\" width='0px' height='0px'></object>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "6b04fa6b6a6aa9eec0854ec1ff1c3fc7",
   "datammh3" : -1804340199,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9318",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "nic.or.kr",
         "skbroadband.com"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "broadNnet",
      "organization" : "SK Broadband Co Ltd",
      "subnet" : "58.122.128.0/17"
   },
   "ip" : "58.122.144.8",
   "ipv6" : "false",
   "latitude" : "37.5794",
   "location" : "37.5794,126.9754",
   "longitude" : "126.9754",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SK Broadband Co Ltd",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "58.122.128.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 13.201.89.9:4369 (tcp/http) - last seen on 2024-11-21 at 08:53:33 UTC

    • IP
      13.201.89.9
      Network
      13.200.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://13.201.89.9:4369/ 200

      HTTP Title
      Download Master
      Reverse DNS
      ec2-13-201-89-9.ap-south-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      a52ae731c45deec6fcf5b3934ee55e00
      HTTP Header MD5
      9f060a9cb1b31c417a3a68e629ae97e3
      HTTP Body MD5
      18ccd80dc0943311ea6b6014e12a985c 
    • HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:53:33 GMT
Server: nginx
Content-Length: 1767
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<html xmlns:v>
<head>
<meta http-equiv="X-UA-Compatible" content="IE=EmulateIE8" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Expires" content="-1" />
<meta HTTP-EQUIV="Cache-Control" CONTENT="no-cache">
<meta http-equiv="Pragma" content="no-cache" />
<title>Download Master</title>
<script type="text/javascript" src="jquery.js"></script>
</head>
<body>
<script>
var httpTag = 'https:' == document.location.protocol ? false : true;
        if(( navigator.userAgent.match(/iPhone/i)) ||
            ( navigator.userAgent.match(/iPod/i))   ||
                ( navigator.userAgent.match(/windows ce/i)) ||
                ( navigator.userAgent.match(/windows phone/i)) ||
                ( navigator.userAgent.match(/Android/i)) &&
                ( navigator.userAgent.match(/Mobile/i)))
                {
                if(httpTag)
                        self.location = "http://"+ location.host.split(":")[0] +":"+ location.host.split(":")[1] +"/downloadmaster/index.asp";
                else
                        self.location = "https://"+ location.host.split(":")[0] +":"+ location.host.split(":")[1] +"/downloadmaster/index.asp";
                }
        else{
                if(httpTag)
                        self.location = "http://"+ location.host.split(":")[0] +":"+ location.host.split(":")[1] +"/downloadmaster/index.asp";
                else
                        self.location = "https://"+ location.host.split(":")[0] +":"+ location.host.split(":")[1] +"/downloadmaster/index.asp";
                }

</script>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:53:33.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "18ccd80dc0943311ea6b6014e12a985c",
         "bodymmh3" : 559765034,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : -465448643,
         "title" : "Download Master"
      },
      "length" : 1904
   },
   "asn" : "AS16509",
   "city" : "Mumbai",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:53:33 GMT\r\nServer: nginx\r\nContent-Length: 1767\r\nContent-Type: text/html\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<html xmlns:v>\n<head>\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=EmulateIE8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta http-equiv=\"Expires\" content=\"-1\" />\n<meta HTTP-EQUIV=\"Cache-Control\" CONTENT=\"no-cache\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<title>Download Master</title>\n<script type=\"text/javascript\" src=\"jquery.js\"></script>\n</head>\n<body>\n<script>\nvar httpTag = 'https:' == document.location.protocol ? false : true;\n        if(( navigator.userAgent.match(/iPhone/i)) ||\n            ( navigator.userAgent.match(/iPod/i))   ||\n                ( navigator.userAgent.match(/windows ce/i)) ||\n                ( navigator.userAgent.match(/windows phone/i)) ||\n                ( navigator.userAgent.match(/Android/i)) &&\n                ( navigator.userAgent.match(/Mobile/i)))\n                {\n                if(httpTag)\n                        self.location = \"http://\"+ location.host.split(\":\")[0] +\":\"+ location.host.split(\":\")[1] +\"/downloadmaster/index.asp\";\n                else\n                        self.location = \"https://\"+ location.host.split(\":\")[0] +\":\"+ location.host.split(\":\")[1] +\"/downloadmaster/index.asp\";\n                }\n        else{\n                if(httpTag)\n                        self.location = \"http://\"+ location.host.split(\":\")[0] +\":\"+ location.host.split(\":\")[1] +\"/downloadmaster/index.asp\";\n                else\n                        self.location = \"https://\"+ location.host.split(\":\")[0] +\":\"+ location.host.split(\":\")[1] +\"/downloadmaster/index.asp\";\n                }\n\n</script>\n</body>\n</html>\n",
   "datamd5" : "a52ae731c45deec6fcf5b3934ee55e00",
   "datammh3" : -434684070,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS25799",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "AMAZON-BOM",
      "organization" : "Amazon Data Services India",
      "subnet" : "13.200.0.0/15"
   },
   "host" : [
      "ec2-13-201-89-9"
   ],
   "hostname" : [
      "ec2-13-201-89-9.ap-south-1.compute.amazonaws.com"
   ],
   "ip" : "13.201.89.9",
   "ipv6" : "false",
   "latitude" : "19.0748",
   "location" : "19.0748,72.8856",
   "longitude" : "72.8856",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-13-201-89-9.ap-south-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ap-south-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "13.200.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 45.89.19.111:4369 (tcp/socks4a) - last seen on 2024-11-21 at 08:53:06 UTC

    • IP
      45.89.19.111
      Network
      45.89.16.0/22
      Operating System
      Linux Linux Kernel
      ASN
      AS35048
      Organization
      Biterika Group LLC
      Protocol
      socks4a
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d0667d77071710c716b7978296e1b49e 
    • \x00[\x00\x00\x00\x00\x00\x00
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:53:06.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS35048",
   "city" : "Moscow",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x00[\\x00\\x00\\x00\\x00\\x00\\x00",
   "datamd5" : "d0667d77071710c716b7978296e1b49e",
   "datammh3" : -971970408,
   "geolocus" : {
      "asn" : "AS35048",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RU",
      "countryname" : "Russia",
      "domain" : [
         "biterika.ru"
      ],
      "isineu" : "false",
      "latitude" : "61.52401",
      "location" : "61.52401,105.318756",
      "longitude" : "105.318756",
      "netname" : "RU-BITERIKA-20190620",
      "organization" : "Biterika Group LLC",
      "subnet" : "45.89.16.0/22"
   },
   "ip" : "45.89.19.111",
   "ipv6" : "false",
   "latitude" : "55.7483",
   "location" : "55.7483,37.6171",
   "longitude" : "37.6171",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Biterika Group LLC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "socks4a",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "45.89.16.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 3.96.212.123:4369 (tcp/http) - last seen on 2024-11-21 at 08:52:05 UTC

    • IP
      3.96.212.123
      Network
      3.96.0.0/14
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://3.96.212.123:4369/ 200

      Reverse DNS
      ec2-3-96-212-123.ca-central-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f192c778ba9971cccb2fcec90e21e379
      HTTP Header MD5
      9f060a9cb1b31c417a3a68e629ae97e3
      HTTP Body MD5
      852141068209c03fdeb5dacc5a9c52e3
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324 
    • HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:45:31 GMT
Server: nginx
Content-Length: 69
Content-Type: text/html

<html><body><script>top.location='/p/login/';</script></body></html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:52:05.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "852141068209c03fdeb5dacc5a9c52e3",
         "bodymmh3" : -1124668290,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : 853567791
      },
      "length" : 204
   },
   "asn" : "AS16509",
   "city" : "Montreal",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:45:31 GMT\r\nServer: nginx\r\nContent-Length: 69\r\nContent-Type: text/html\r\n\r\n<html><body><script>top.location='/p/login/';</script></body></html>\n",
   "datamd5" : "f192c778ba9971cccb2fcec90e21e379",
   "datammh3" : -1092385355,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "AMAZON-YUL",
      "organization" : "Amazon Data Services Canada",
      "subnet" : "3.96.0.0/14"
   },
   "host" : [
      "ec2-3-96-212-123"
   ],
   "hostname" : [
      "ec2-3-96-212-123.ca-central-1.compute.amazonaws.com"
   ],
   "ip" : "3.96.212.123",
   "ipv6" : "false",
   "latitude" : "45.5075",
   "location" : "45.5075,-73.5887",
   "longitude" : "-73.5887",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-96-212-123.ca-central-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ca-central-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "3.96.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 201.41.132.128:4369 (tcp/unknown) - last seen on 2024-11-21 at 08:46:01 UTC

    • IP
      201.41.132.128
      Network
      201.40.0.0/15
      Domain(s)
      net.br
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      201-41-132-128.user3p.v-tal.net.br
      ASN
      AS8167
      Organization
      V tal
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      7001d3373a90697419828b68d0b3fa70 
    • enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d
enviar_login|tam:22|\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:46:01.000Z",
   "app" : {
      "length" : 154
   },
   "asn" : "AS8167",
   "city" : "S\u00e3o Jos\u00e9 dos Pinhais",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "enviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\nenviar_login|tam:22|\\x0d\n",
   "datamd5" : "7001d3373a90697419828b68d0b3fa70",
   "datammh3" : 875828133,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "net.br"
   ],
   "geolocus" : {
      "asn" : "AS8167",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "net.br",
         "vtal.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.041.460/0001-93",
      "organization" : "V tal",
      "subnet" : "201.40.0.0/15"
   },
   "host" : [
      "201-41-132-128"
   ],
   "hostname" : [
      "201-41-132-128.user3p.v-tal.net.br"
   ],
   "ip" : "201.41.132.128",
   "ipv6" : "false",
   "latitude" : "-25.5283",
   "location" : "-25.5283,-49.2161",
   "longitude" : "-49.2161",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "V tal",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "unknown",
   "reverse" : [
      "201-41-132-128.user3p.v-tal.net.br"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "user3p.v-tal.net.br",
      "v-tal.net.br"
   ],
   "subnet" : "201.40.0.0/15",
   "tld" : [
      "br"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 160.16.215.174:4369 (tcp/http) - last seen on 2024-11-21 at 08:44:24 UTC

    • IP
      160.16.215.174
      Network
      160.16.208.0/20
      Domain(s)
      sakura.ne.jp
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://160.16.215.174:4369/ 400

      HTTP Title
      400 Bad Request
      Reverse DNS
      tk2-249-34420.vs.sakura.ne.jp
      ASN
      AS9370
      Organization
      SAKURA Internet Inc.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Cloudflare Cloudflare
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      5ef991988fc3c61b425f23fe78ad3d96
      HTTP Header MD5
      097373322636f0df0f25036e8929da18
      HTTP Body MD5
      e002ab61c3f2fc3f1852e0e442798eb9 
    • HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 21 Nov 2024 08:44:24 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:44:24.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "e002ab61c3f2fc3f1852e0e442798eb9",
         "bodymmh3" : -797568776,
         "headermd5" : "097373322636f0df0f25036e8929da18",
         "headermmh3" : -843827498,
         "title" : "400 Bad Request"
      },
      "length" : 316
   },
   "asn" : "AS9370",
   "city" : "Tokyo",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: cloudflare\r\nDate: Thu, 21 Nov 2024 08:44:24 GMT\r\nContent-Type: text/html\r\nContent-Length: 155\r\nConnection: close\r\nCF-RAY: -\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "5ef991988fc3c61b425f23fe78ad3d96",
   "datammh3" : -1868230113,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "sakura.ne.jp"
   ],
   "geolocus" : {
      "asn" : "AS9370",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "nic.ad.jp",
         "sakura.ad.jp"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "SAKURA",
      "organization" : "SAKURA Internet Inc.",
      "subnet" : "160.16.0.0/16"
   },
   "host" : [
      "tk2-249-34420"
   ],
   "hostname" : [
      "tk2-249-34420.vs.sakura.ne.jp"
   ],
   "ip" : "160.16.215.174",
   "ipv6" : "false",
   "latitude" : "35.6887",
   "location" : "35.6887,139.7450",
   "longitude" : "139.7450",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SAKURA Internet Inc.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Cloudflare",
   "productvendor" : "Cloudflare",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "tk2-249-34420.vs.sakura.ne.jp"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "vs.sakura.ne.jp"
   ],
   "subnet" : "160.16.208.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ne.jp"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 171.246.151.52:4369 (tcp/http) - last seen on 2024-11-21 at 08:43:08 UTC

    • IP
      171.246.151.52
      Alternative IP(s)
      125.235.4.59
      Network
      171.246.0.0/15
      Domain(s)
      viettel.vn
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor

      URL

      http://171.246.151.52:4369/ 200

      HTTP Title
      WEB SERVICE
      Reverse DNS
      dynamic-adsl.viettel.vn dynamic-ip-adsl.viettel.vn
      ASN
      AS7552
      Organization
      Viettel Group
      Protocol
      http
      Source
      datascan

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      32df83de8ce211e7505a7d13548fdc10
      HTTP Header MD5
      a15fffd39f686dd0cb06933c327649f9
      HTTP Body MD5
      a3b798481345d59408418f8e559c7c72
      Favicon MD5
      bd9e17c46bbbc18af2a2bd718dddad0e
      Favicon MMH3
      2019488876 
    • HTTP/1.1 200 OK
CONNECTION: close
Date: Thu, 21 Nov 2024 15:36:05 GMT
Last-Modified: Mon, 06 Nov 2017 13:38:05 GMT
Etag: "1509975485:4a85"
CONTENT-LENGTH: 19077
P3P: CP=CAO PSA OUR
CONTENT-TYPE: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html> <head> <title>WEB SERVICE</title> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=6;IE=7; IE=8; IE=EmulateIE7"> <script type="text/javascript" src="jsBase/lib/jquery.js"></script> <script type="text/javascript" src="jsBase/lib/jquery.pubsub.js"></script> <script type="text/javascript" src="jsBase/widget/js/jquery.ui.core.js"></script> <script type="text/javascript" src="jsBase/widget/js/jquery.ui.widget.js"></script> <script type="text/javascript">var $j = jQuery.noConflict();</script> <script type="text/javascript" src="jsBase/lib/base64.js"></script> <script type="text/javascript" src="jsBase/lib/md5.js"></script> <script type="text/javascript" src="jsBase/lib/m1.2.js"></script> <script type="text/javascript" src="jsBase/lib/more.js"></script> <script type="text/javascript" src="jsBase/common/extend.js"></script> <script type="text/javascript" src="jsCore/rpcCore.js"></script> <script type="text/javascript" src="jsBase/lib/sea.js"></script> <script type="text/javascript" src="jsBase/lib/seajs-text.js"></script> <script type="text/javascript" src="jsCore/common.js"></script> <script type="text/javascript" src="js/publicFunc.js"></script> <script type="text/javascript" src="js/system.js"></script> <script type="text/javascript" src="js/loginEx.js"></script> <script type="text/javascript" src="/pluginVersion.js"></script> <script type="text/javascript" src="js/eventScript.js"></script> <script type="text/javascript" src="Component/dui.pwdlevel.js"></script> <script type="text/javascript" src="jsBase/widget/js/dui.guide.js"></script> <script type="text/javascript" src="jsBase/widget/js/dui.textfield.js"></script> <script type="text/javascript">var g_NaclWin = null;
    var g_useApp = window.location.href.indexOf('fromWebChromeNACL') > 0;
    var g_deviceFind = ''; // 存储设备支持何种密码找回方式
    var g_isDeviceInited = true; // 设备是否已经初始化了
    try {
        window.addEventListener('message', function (e) {
            console.log('webview: ' + e.data)
            // console.log(e.origin)
            // console.log(e.source)
            if (e.data == 'domready') {
                g_NaclWin = e.source;
                window.alert = webViewAlert;
                var frames = window.frames;
                for(var i = 0;i < frames.length;i++){
                    frames[i].alert = webViewAlert;
                }
                console.log('send back')
                e.source.postMessage('domready', '*');               
                if(g_ocx) g_ocx.SetTranslateString(jsonLang);
                return;
            }

            // console.log(e.data.method)
            if (typeof window[e.data.method] == 'function') {
                window[e.data.method].apply(this, e.data.params);
            } else {
                g_ocx.messageFromOcx(e.data);
            }
        }, false);
    } catch (e) {

    }
    
    var g_ocx = 0;
    var webcapDefer = jQuery.Deferred();
    seajs.config({
        base: './jsBase',
        paths: {
            'jsCore': '../jsCore',
            'html':'../html',
            'js':'../js'
        }
    });
    seajs.use('/jsCore/app', function (App) {
        window.webApp = new App();
        if(g_NaclWin) g_ocx.SetTranslateString(jsonLang);
        webApp.getWebCapAll().done(function(){
            /*seajs.use('/Component/deviceInitial', function(){

            });*/
            webcapDefer.resolve();
        });
        jQuery(document).ready(function() {
            RPC.DevInit.getStatus().done(function(status){
                if(status.Init == 1) { //未初始化
                    seajs.use('/Component/deviceInitial', function(DeviceInit){
                        DeviceInit.setDevInitStatus(status, status.Find);
                    });        
                }
                g_deviceFind = status.Find.indexOf('A') > -1 ? 'A': 'B';
                g_isDeviceInited = (status.Init == 1 ? false : true);
            });
        });
        webApp.preloadModule();
    });
    webApp = window.webApp;</script> <script type="text/javascript" src="js/index.js"></script> <script type="text/javascript" src="/olp.js"></script> <script type="text/javascript" src="cap.js"></script>  <script type="text/javascript" src="js/appAbility.js"></script> <script type="text/javascript" src="/js/pluginAdaptor.js"></script> <link href="favicon.ico" type="image/x-icon" rel="shortcut icon"> <link rel="stylesheet" type="text/css" href="/jsBase/widget/css/ui.css"> <link rel="stylesheet" type="text/css" href="/jsBase/widget/css/skin.css"> <link rel="stylesheet" type="text/css" href="./css/reset.css"> <link rel="stylesheet" type="text/css" href="./css/ui.css"> <link type="text/css" rel="stylesheet" href="./css/custom.css"> <link rel="stylesheet" type="text/css" href="./css/fn.css"> <link rel="stylesheet" type="text/css" href="./css/skin.css"> <link rel="stylesheet" type="text/css" href="./css/index.css"> <link rel="stylesheet" type="text/css" href="./css/playbackindex.css"> <link rel="stylesheet" type="text/css" href="./css/oem.css"> </head> <body id="indexBody" onscroll="onScrollForNacl(true);$('nav_margin').style.visibility = 'hidden'; $('nav_margin').style.visibility = 'visible'">  <div id="loading" class="J_load_dialog"> <p id="lab_loading" class="J_load_p" t="com_msg.loading activex"></p> </div>   <div id="l" class="login" style="display:none"> <div class="loginbkg"> <div class="login-container"> <div class="login-content"> <div class="login-logo" id="index_logo"></div> <div class="login-inputbox fn-clear"> <form> <div class="login-input-item"> <label class="login-input-title oem_user_lable" t="com_str.username+: ">username</label> <input type="text" id="username" class="ui-input fn-width163 oem_user" onkeydown="if (event.keyCode==13) event.keyCode=9" maxlength="31"> <a t="com_str.login" class="ui-button fn-width80" onclick="login()" href="javascript:;" id="oem_login_id" style="margin-left:20px; display:none">login</a> </div> <div class="login-input-item" style="width:550px"> <label class="login-input-title" id="paswd" t="com_str.password+: ">password</label> <span style="display:none"> <input type="password" autocomplete="off"> </span> <span id="passwordInput"> <input id="password" type="password" class="ui-input fn-width163 oem_pass" onkeydown="if (event.keyCode==13) login()" maxlength="32" autocomplete="off"> </span> <div class="ui-checkbox oem_loginShowPass" id="pswExpress_div" style="display:none"> <input type="checkbox" id="login_showpwd" onclick="showpassword()"> </div> <label class="ui-label-sub" t="com_str.plaintext" id="pswExpress_lab" style="display:none">showPass</label> <a t="com_button.comcanncel" class="ui-button fn-width80" onclick="$('password').value=''" href="javascript:;" id="oem_reset_id" style="margin-left:20px; display:none">reset</a> </div> <div class="login-input-item oem_ul_ltype" id="ul_ltype" style="display:none"> <label class="login-input-title" t="info_log.allTypes+: ">type:</label> <select class="fn-width169 oem_ltype ui-input" id="s_lgType"> <option value="0">TCP</option> <option value="4">UDP</option> <option t="conf_net.gui32_muticastset" value="3">multicast</option> </select> </div> <div class="login_forgetPwd" id="login_forgetPwd_div"> <a class="ui-label" id="forgettPwd" t="com_str.forgetsecret+?" href="javascript:;" style="display: none"></a> </div> <div class="login-input-item fn-padl190" id="ul_type" style="display:none"> <div class="ui-checkbox"><input id="net_lan" name="wtype" checked="checked" type="radio"></div> <label class="ui-label-sub" for="net_lan">LAN</label> <div class="ui-checkbox"><input id="net_wan" name="wtype" type="radio"></div> <label class="ui-label-sub" for="net_wan">WAN</label> </div> <div class="ui-button-box login-btnbox" id="ul_login_or_reset"> <a t="com_str.login" class="ui-button fn-width80 oem_loginCfm" onclick="login()" href="javascript:;">Login</a> <a t="com_button.comcanncel" class="ui-button fn-width80 oem_loginCancle" onclick="$('password').value=''" href="javascript:;">reset</a> </div> </form> </div> </div>  <div id="dlg_ModAdminPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="modadmin_title">Modify Admin Password</h1> </div> <div class="ui-dialog-content"> <form> <div id="dlg_ModAdminPassword_lorex_msg" style="display:none;text-align:left;margin:5px;color:red"><span t="conf_account.passTip"></span></div> <div class="ui-form-item fn-clear"> <label t="com_str.username" class="ui-label fn-padl20">UerName</label> <input class="ui-input" value="admin" disabled="true"> </div> <div> <div class="ui-form-item fn-clear" id="oldPassword_div" style="display:none"> <label t="conf_account.oldpwd" class="ui-label fn-padl20">Old Password</label> <input class="ui-input" type="password" id="modadmin_oldPassword"> </div> <div class="ui-form-item fn-clear"> <label t="conf_account.newpwd" class="ui-label fn-padl20">New Password</label> <input class="ui-input" type="password" id="modadmin_newPassword"> <span class="ui-form-tip" id="modadmin_newPassword_remark" valign="middle"></span> </div> <div id="modadminPasswordLevel" class="fn-clear fn-marl140 fn-mart4 fn-marb4"> </div> <div class="ui-form-item fn-clear"> <label t="conf_account.confirmpwd" class="ui-label fn-padl20">Confirm Password</label> <input class="ui-input" type="password" id="modadmin_confirmPassword"> </div> </div> <div class="ui-form-item fn-clear" id="ipsanuserManage_diaModUser_username_title"> <label id="modadmin_security_tipsinfo" class="ui-label fn-width450"></label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_admin_change" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_admin_skip" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> <div class="ui-tip"> <div class="ui-tip-container" id="modadmin_remark"> <span class="ui-tip-icon"></span> <label></label> </div> </div> </form> </div> </div> <div id="dlg_weakPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="weakPassword_title">Cancel Modify Admin Password Tip</h1> </div> <div class="ui-dialog-content"> <form> <div class="ui-form-item fn-clear"> <label t="conf_account.weak_password_tips" class="ui-label fn-padl20 fn-width410">Tip</label> </div> <div class="ui-form-item fn-clear"> <div class="fn-horizontal-line"></div> </div> <div class="ui-form-item fn-clear" style="display:none"> <div class="ui-checkbox fn-padl20"> <input type="checkbox" id="weakPassword_enable"> </div> <label t="conf_account.never_show_this" for="weakPassword_enable" class="ui-label fn-width370">Never Show This</label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_weakPassword_yes" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_weakPassword_cancel" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> </form> </div> </div> <div id="dlg_emptyPassword" class="ui-dialog fn-width475" style="top:-10000px"> <div class="ui-dialog-title"> <h1 id="emptyPassword_title">Admin Password Is Empty</h1> </div> <div class="ui-dialog-content"> <form> <div class="ui-form-item fn-clear"> <label t="com_msg.ugm.newpwdnull" class="ui-label fn-padl20 fn-width450">Tip</label> </div> <div class="ui-button-box fn-padt10"> <a id="btn_emptyPassword_yes" t="com_button.comok" class="ui-button" href="javascript:;">confirm</a> <a id="btn_emptyPassword_cancel" t="com_button.comcanncel" class="ui-button" href="javascript:;">cancle</a> </div> </form> </div> </div> </div> </div> </div>  <div id="login_install_dialog" class="login-webplugin" style="display:none"> <div class="ui-dialog-container" style="margin:auto"> <div t="com_msg.needActivex" style="font-size:200%" class="ui-dialog-content"> please install plugin </div> <div class="ui-button-box fn-padt20"> <a id="login_btn_install" class="ui-button" href="/webplugin.exe" target="_download" t="com_str.install">install</a> <a id="login_btn_cancel" class="ui-button" href="javascript:;" t="com_button.comcanncel">cancle</a> </div> </div> </div> <div id="m" class="main-container"> <div class="main-head" id="nav_head"> <div class="main-logo" id="sub_logo"></div> <ul class="main-nav" id="nav"> <li id="b_a"> <a onclick="showPage('preview')" id="xyl" t="com_menu.title_preview" href="javascript:;" class="main-nav-item main-nav-item-current">preview</a> </li> <li id="b_ab"> <a onclick="showPage('playback')" id="xlxcx" t="com_menu.title_playback" href="javascript:;" class="main-nav-item">playback</a> </li> <li id="b_face" style="display:none"> <a onclick="showPage('faceSch')" t="facesearch" href="javascript:;" class="main-nav-item"></a> </li> <li id="b_ac" style="display:none"> <a onclick="showPage('intelPlay')" id="xznhf" t="opr_record.intellipiay" href="javascript:;" class="main-nav-item">intel</a> </li> <li id="b_d"> <a onclick="showPage('alarm')" id="xbjsz" t="com_menu.title_alarm" href="javascript:;" class="main-nav-item">alarm</a> <div onclick="showPage('alarm')" class="main-nav-alarm" id="d_alarmtip" style="display:none"></div> </li> <li id="b_c"> <a onclick="showPage('setup')" id="xxtpz" t="com_menu.title_setup" href="javascript:;" class="main-nav-item">set</a> </li> <li id="b_x"> <a onclick="showPage('sysinfo')" id="xxinxi" t="com_str.info" href="javascript:;" class="main-nav-item">info</a> </li> <li id="b_e"> <a onclick="webLogout()" t="com_menu.logout" href="javascript:;" class="main-nav-item">exit</a> </li> </ul> </div> <div id="nav_margin" style="height:13px;width:100%"></div> <div id="f_preview" class="pre-minwidth pos_abs oem_background"> <iframe src="" id="frame_preview" width="100%" height="100%" frameborder="0" scrolling="no" name="frame_preview" allowtransparency="true"></iframe> </div> <div id="f_playback" class="pre-minwidth pos_abs oem_background" style="top: -10000px">  </div> <div id="faceSch" class="pre-minwidth pos_abs"> <div class="frame_content"> <div id="faceSch-content" class="set-content-box"></div> </div> </div> <div id="f_alarm" class="pre-minwidth pos_abs oem_background" style=""> <iframe src="" id="frame_alarm" width="100%" frameborder="0" scrolling="no" allowtransparency="true" style="min-width:1000px; min-height:530px;height:100%" name="frame_alarm"></iframe> </div> <div id="setup" class="pre-minwidth pos_abs oem_background"> <div class="set-sidebar"> <ul id="setup-menu"></ul> </div> <div class="set-content"> <div id="setup-content" class="set-content-box"></div> </div> </div> <div id="info" class="pre-minwidth pos_abs oem_background"> <div class="set-sidebar"> <ul id="info-menu"></ul> </div> <div class="set-content"> <div id="info-content" class="set-content-box"></div> </div> </div> <div id="f_ocx" class="main-ocx" style="z-index:10"></div> </div> <div id="estopAll" style="display:none" class="estopAll"></div>  <div id="loadingCfg" class="J_load_dialog"> <p id="lab_loadingCfg" class="J_load_p"></p> </div> <script type="text/javascript">$('frame_preview').src = '/html/previewindex.htm?'+remoteParams.ALL;
	onPageIndexReady();</script> <script language="javascript" for="ocx" event="TransEvent(jsonStr)">handlerOcxEvents && handlerOcxEvents.fireOcxEvent(jsonStr);</script> <script language="javascript" for="ocx" event="SetNetPlayRecordStatus(result)">handlerOcxEvents && handlerOcxEvents.fileStatus(result);</script> <script language="javascript" for="ocx" event="SetNetPlayFileInfo(nChannel,strRecodInfo)">handlerOcxEvents && handlerOcxEvents.playFileInfo(nChannel, strRecodInfo);</script> <script language="javascript" for="ocx" event="NetPlayTimeInform(strTime)">handlerOcxEvents && handlerOcxEvents.NetPlayTimeInform(strTime);</script> <script language="javascript" for="ocx" event="StateChangedEx(nChannel, nState, nWinID, nStreamType)">handlerOcxEvents && handlerOcxEvents.StateChanged(nChannel, nState, nWinID, nStreamType);</script> <script language="jav
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:43:08.000Z",
   "alternativeip" : [
      "125.235.4.59"
   ],
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "file" : [
            "webplugin.exe"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "favicon" : {
         "image" : "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",
         "imagemd5" : "bd9e17c46bbbc18af2a2bd718dddad0e",
         "imagemmh3" : 2019488876,
         "length" : 1150,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "a3b798481345d59408418f8e559c7c72",
         "bodymmh3" : -762217135,
         "header" : [
            {
               "value" : "Mon, 06 Nov 2017 13:38:05 GMT",
               "name" : "Last-Modified"
            },
            {
               "name" : "Etag",
               "value" : "1509975485:4a85"
            }
         ],
         "headermd5" : "a15fffd39f686dd0cb06933c327649f9",
         "headermmh3" : -305670622,
         "title" : "WEB SERVICE"
      },
      "length" : 16384
   },
   "asn" : "AS7552",
   "city" : "B\u00ecnh D\u01b0\u01a1ng Province",
   "country" : "VN",
   "data" : "HTTP/1.1 200 OK\r\nCONNECTION: close\r\nDate: Thu, 21 Nov 2024 15:36:05 GMT\r\nLast-Modified: Mon, 06 Nov 2017 13:38:05 GMT\r\nEtag: \"1509975485:4a85\"\r\nCONTENT-LENGTH: 19077\r\nP3P: CP=CAO PSA OUR\r\nCONTENT-TYPE: text/html\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\"> <html> <head> <title>WEB SERVICE</title> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"> <meta http-equiv=\"X-UA-Compatible\" content=\"IE=6;IE=7; IE=8; IE=EmulateIE7\"> <script type=\"text/javascript\" src=\"jsBase/lib/jquery.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/jquery.pubsub.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/jquery.ui.core.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/jquery.ui.widget.js\"></script> <script type=\"text/javascript\">var $j = jQuery.noConflict();</script> <script type=\"text/javascript\" src=\"jsBase/lib/base64.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/md5.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/m1.2.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/more.js\"></script> <script type=\"text/javascript\" src=\"jsBase/common/extend.js\"></script> <script type=\"text/javascript\" src=\"jsCore/rpcCore.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/sea.js\"></script> <script type=\"text/javascript\" src=\"jsBase/lib/seajs-text.js\"></script> <script type=\"text/javascript\" src=\"jsCore/common.js\"></script> <script type=\"text/javascript\" src=\"js/publicFunc.js\"></script> <script type=\"text/javascript\" src=\"js/system.js\"></script> <script type=\"text/javascript\" src=\"js/loginEx.js\"></script> <script type=\"text/javascript\" src=\"/pluginVersion.js\"></script> <script type=\"text/javascript\" src=\"js/eventScript.js\"></script> <script type=\"text/javascript\" src=\"Component/dui.pwdlevel.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/dui.guide.js\"></script> <script type=\"text/javascript\" src=\"jsBase/widget/js/dui.textfield.js\"></script> <script type=\"text/javascript\">var g_NaclWin = null;\r\n    var g_useApp = window.location.href.indexOf('fromWebChromeNACL') > 0;\r\n    var g_deviceFind = ''; // \u5b58\u50a8\u8bbe\u5907\u652f\u6301\u4f55\u79cd\u5bc6\u7801\u627e\u56de\u65b9\u5f0f\r\n    var g_isDeviceInited = true; // \u8bbe\u5907\u662f\u5426\u5df2\u7ecf\u521d\u59cb\u5316\u4e86\r\n    try {\r\n        window.addEventListener('message', function (e) {\r\n            console.log('webview: ' + e.data)\r\n            // console.log(e.origin)\r\n            // console.log(e.source)\r\n            if (e.data == 'domready') {\r\n                g_NaclWin = e.source;\r\n                window.alert = webViewAlert;\r\n                var frames = window.frames;\r\n                for(var i = 0;i < frames.length;i++){\r\n                    frames[i].alert = webViewAlert;\r\n                }\r\n                console.log('send back')\r\n                e.source.postMessage('domready', '*');               \r\n                if(g_ocx) g_ocx.SetTranslateString(jsonLang);\r\n                return;\r\n            }\r\n\r\n            // console.log(e.data.method)\r\n            if (typeof window[e.data.method] == 'function') {\r\n                window[e.data.method].apply(this, e.data.params);\r\n            } else {\r\n                g_ocx.messageFromOcx(e.data);\r\n            }\r\n        }, false);\r\n    } catch (e) {\r\n\r\n    }\r\n    \r\n    var g_ocx = 0;\r\n    var webcapDefer = jQuery.Deferred();\r\n    seajs.config({\r\n        base: './jsBase',\r\n        paths: {\r\n            'jsCore': '../jsCore',\r\n            'html':'../html',\r\n            'js':'../js'\r\n        }\r\n    });\r\n    seajs.use('/jsCore/app', function (App) {\r\n        window.webApp = new App();\r\n        if(g_NaclWin) g_ocx.SetTranslateString(jsonLang);\r\n        webApp.getWebCapAll().done(function(){\r\n            /*seajs.use('/Component/deviceInitial', function(){\r\n\r\n            });*/\r\n            webcapDefer.resolve();\r\n        });\r\n        jQuery(document).ready(function() {\r\n            RPC.DevInit.getStatus().done(function(status){\r\n                if(status.Init == 1) { //\u672a\u521d\u59cb\u5316\r\n                    seajs.use('/Component/deviceInitial', function(DeviceInit){\r\n                        DeviceInit.setDevInitStatus(status, status.Find);\r\n                    });        \r\n                }\r\n                g_deviceFind = status.Find.indexOf('A') > -1 ? 'A': 'B';\r\n                g_isDeviceInited = (status.Init == 1 ? false : true);\r\n            });\r\n        });\r\n        webApp.preloadModule();\r\n    });\r\n    webApp = window.webApp;</script> <script type=\"text/javascript\" src=\"js/index.js\"></script> <script type=\"text/javascript\" src=\"/olp.js\"></script> <script type=\"text/javascript\" src=\"cap.js\"></script>  <script type=\"text/javascript\" src=\"js/appAbility.js\"></script> <script type=\"text/javascript\" src=\"/js/pluginAdaptor.js\"></script> <link href=\"favicon.ico\" type=\"image/x-icon\" rel=\"shortcut icon\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"/jsBase/widget/css/ui.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"/jsBase/widget/css/skin.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/reset.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/ui.css\"> <link type=\"text/css\" rel=\"stylesheet\" href=\"./css/custom.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/fn.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/skin.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/index.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/playbackindex.css\"> <link rel=\"stylesheet\" type=\"text/css\" href=\"./css/oem.css\"> </head> <body id=\"indexBody\" onscroll=\"onScrollForNacl(true);$('nav_margin').style.visibility = 'hidden'; $('nav_margin').style.visibility = 'visible'\">  <div id=\"loading\" class=\"J_load_dialog\"> <p id=\"lab_loading\" class=\"J_load_p\" t=\"com_msg.loading activex\"></p> </div>   <div id=\"l\" class=\"login\" style=\"display:none\"> <div class=\"loginbkg\"> <div class=\"login-container\"> <div class=\"login-content\"> <div class=\"login-logo\" id=\"index_logo\"></div> <div class=\"login-inputbox fn-clear\"> <form> <div class=\"login-input-item\"> <label class=\"login-input-title oem_user_lable\" t=\"com_str.username+: \">username</label> <input type=\"text\" id=\"username\" class=\"ui-input fn-width163 oem_user\" onkeydown=\"if (event.keyCode==13) event.keyCode=9\" maxlength=\"31\"> <a t=\"com_str.login\" class=\"ui-button fn-width80\" onclick=\"login()\" href=\"javascript:;\" id=\"oem_login_id\" style=\"margin-left:20px; display:none\">login</a> </div> <div class=\"login-input-item\" style=\"width:550px\"> <label class=\"login-input-title\" id=\"paswd\" t=\"com_str.password+: \">password</label> <span style=\"display:none\"> <input type=\"password\" autocomplete=\"off\"> </span> <span id=\"passwordInput\"> <input id=\"password\" type=\"password\" class=\"ui-input fn-width163 oem_pass\" onkeydown=\"if (event.keyCode==13) login()\" maxlength=\"32\" autocomplete=\"off\"> </span> <div class=\"ui-checkbox oem_loginShowPass\" id=\"pswExpress_div\" style=\"display:none\"> <input type=\"checkbox\" id=\"login_showpwd\" onclick=\"showpassword()\"> </div> <label class=\"ui-label-sub\" t=\"com_str.plaintext\" id=\"pswExpress_lab\" style=\"display:none\">showPass</label> <a t=\"com_button.comcanncel\" class=\"ui-button fn-width80\" onclick=\"$('password').value=''\" href=\"javascript:;\" id=\"oem_reset_id\" style=\"margin-left:20px; display:none\">reset</a> </div> <div class=\"login-input-item oem_ul_ltype\" id=\"ul_ltype\" style=\"display:none\"> <label class=\"login-input-title\" t=\"info_log.allTypes+: \">type:</label> <select class=\"fn-width169 oem_ltype ui-input\" id=\"s_lgType\"> <option value=\"0\">TCP</option> <option value=\"4\">UDP</option> <option t=\"conf_net.gui32_muticastset\" value=\"3\">multicast</option> </select> </div> <div class=\"login_forgetPwd\" id=\"login_forgetPwd_div\"> <a class=\"ui-label\" id=\"forgettPwd\" t=\"com_str.forgetsecret+?\" href=\"javascript:;\" style=\"display: none\"></a> </div> <div class=\"login-input-item fn-padl190\" id=\"ul_type\" style=\"display:none\"> <div class=\"ui-checkbox\"><input id=\"net_lan\" name=\"wtype\" checked=\"checked\" type=\"radio\"></div> <label class=\"ui-label-sub\" for=\"net_lan\">LAN</label> <div class=\"ui-checkbox\"><input id=\"net_wan\" name=\"wtype\" type=\"radio\"></div> <label class=\"ui-label-sub\" for=\"net_wan\">WAN</label> </div> <div class=\"ui-button-box login-btnbox\" id=\"ul_login_or_reset\"> <a t=\"com_str.login\" class=\"ui-button fn-width80 oem_loginCfm\" onclick=\"login()\" href=\"javascript:;\">Login</a> <a t=\"com_button.comcanncel\" class=\"ui-button fn-width80 oem_loginCancle\" onclick=\"$('password').value=''\" href=\"javascript:;\">reset</a> </div> </form> </div> </div>  <div id=\"dlg_ModAdminPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"modadmin_title\">Modify Admin Password</h1> </div> <div class=\"ui-dialog-content\"> <form> <div id=\"dlg_ModAdminPassword_lorex_msg\" style=\"display:none;text-align:left;margin:5px;color:red\"><span t=\"conf_account.passTip\"></span></div> <div class=\"ui-form-item fn-clear\"> <label t=\"com_str.username\" class=\"ui-label fn-padl20\">UerName</label> <input class=\"ui-input\" value=\"admin\" disabled=\"true\"> </div> <div> <div class=\"ui-form-item fn-clear\" id=\"oldPassword_div\" style=\"display:none\"> <label t=\"conf_account.oldpwd\" class=\"ui-label fn-padl20\">Old Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_oldPassword\"> </div> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.newpwd\" class=\"ui-label fn-padl20\">New Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_newPassword\"> <span class=\"ui-form-tip\" id=\"modadmin_newPassword_remark\" valign=\"middle\"></span> </div> <div id=\"modadminPasswordLevel\" class=\"fn-clear fn-marl140 fn-mart4 fn-marb4\"> </div> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.confirmpwd\" class=\"ui-label fn-padl20\">Confirm Password</label> <input class=\"ui-input\" type=\"password\" id=\"modadmin_confirmPassword\"> </div> </div> <div class=\"ui-form-item fn-clear\" id=\"ipsanuserManage_diaModUser_username_title\"> <label id=\"modadmin_security_tipsinfo\" class=\"ui-label fn-width450\"></label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_admin_change\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_admin_skip\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> <div class=\"ui-tip\"> <div class=\"ui-tip-container\" id=\"modadmin_remark\"> <span class=\"ui-tip-icon\"></span> <label></label> </div> </div> </form> </div> </div> <div id=\"dlg_weakPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"weakPassword_title\">Cancel Modify Admin Password Tip</h1> </div> <div class=\"ui-dialog-content\"> <form> <div class=\"ui-form-item fn-clear\"> <label t=\"conf_account.weak_password_tips\" class=\"ui-label fn-padl20 fn-width410\">Tip</label> </div> <div class=\"ui-form-item fn-clear\"> <div class=\"fn-horizontal-line\"></div> </div> <div class=\"ui-form-item fn-clear\" style=\"display:none\"> <div class=\"ui-checkbox fn-padl20\"> <input type=\"checkbox\" id=\"weakPassword_enable\"> </div> <label t=\"conf_account.never_show_this\" for=\"weakPassword_enable\" class=\"ui-label fn-width370\">Never Show This</label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_weakPassword_yes\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_weakPassword_cancel\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> </form> </div> </div> <div id=\"dlg_emptyPassword\" class=\"ui-dialog fn-width475\" style=\"top:-10000px\"> <div class=\"ui-dialog-title\"> <h1 id=\"emptyPassword_title\">Admin Password Is Empty</h1> </div> <div class=\"ui-dialog-content\"> <form> <div class=\"ui-form-item fn-clear\"> <label t=\"com_msg.ugm.newpwdnull\" class=\"ui-label fn-padl20 fn-width450\">Tip</label> </div> <div class=\"ui-button-box fn-padt10\"> <a id=\"btn_emptyPassword_yes\" t=\"com_button.comok\" class=\"ui-button\" href=\"javascript:;\">confirm</a> <a id=\"btn_emptyPassword_cancel\" t=\"com_button.comcanncel\" class=\"ui-button\" href=\"javascript:;\">cancle</a> </div> </form> </div> </div> </div> </div> </div>  <div id=\"login_install_dialog\" class=\"login-webplugin\" style=\"display:none\"> <div class=\"ui-dialog-container\" style=\"margin:auto\"> <div t=\"com_msg.needActivex\" style=\"font-size:200%\" class=\"ui-dialog-content\"> please install plugin </div> <div class=\"ui-button-box fn-padt20\"> <a id=\"login_btn_install\" class=\"ui-button\" href=\"/webplugin.exe\" target=\"_download\" t=\"com_str.install\">install</a> <a id=\"login_btn_cancel\" class=\"ui-button\" href=\"javascript:;\" t=\"com_button.comcanncel\">cancle</a> </div> </div> </div> <div id=\"m\" class=\"main-container\"> <div class=\"main-head\" id=\"nav_head\"> <div class=\"main-logo\" id=\"sub_logo\"></div> <ul class=\"main-nav\" id=\"nav\"> <li id=\"b_a\"> <a onclick=\"showPage('preview')\" id=\"xyl\" t=\"com_menu.title_preview\" href=\"javascript:;\" class=\"main-nav-item main-nav-item-current\">preview</a> </li> <li id=\"b_ab\"> <a onclick=\"showPage('playback')\" id=\"xlxcx\" t=\"com_menu.title_playback\" href=\"javascript:;\" class=\"main-nav-item\">playback</a> </li> <li id=\"b_face\" style=\"display:none\"> <a onclick=\"showPage('faceSch')\" t=\"facesearch\" href=\"javascript:;\" class=\"main-nav-item\"></a> </li> <li id=\"b_ac\" style=\"display:none\"> <a onclick=\"showPage('intelPlay')\" id=\"xznhf\" t=\"opr_record.intellipiay\" href=\"javascript:;\" class=\"main-nav-item\">intel</a> </li> <li id=\"b_d\"> <a onclick=\"showPage('alarm')\" id=\"xbjsz\" t=\"com_menu.title_alarm\" href=\"javascript:;\" class=\"main-nav-item\">alarm</a> <div onclick=\"showPage('alarm')\" class=\"main-nav-alarm\" id=\"d_alarmtip\" style=\"display:none\"></div> </li> <li id=\"b_c\"> <a onclick=\"showPage('setup')\" id=\"xxtpz\" t=\"com_menu.title_setup\" href=\"javascript:;\" class=\"main-nav-item\">set</a> </li> <li id=\"b_x\"> <a onclick=\"showPage('sysinfo')\" id=\"xxinxi\" t=\"com_str.info\" href=\"javascript:;\" class=\"main-nav-item\">info</a> </li> <li id=\"b_e\"> <a onclick=\"webLogout()\" t=\"com_menu.logout\" href=\"javascript:;\" class=\"main-nav-item\">exit</a> </li> </ul> </div> <div id=\"nav_margin\" style=\"height:13px;width:100%\"></div> <div id=\"f_preview\" class=\"pre-minwidth pos_abs oem_background\"> <iframe src=\"\" id=\"frame_preview\" width=\"100%\" height=\"100%\" frameborder=\"0\" scrolling=\"no\" name=\"frame_preview\" allowtransparency=\"true\"></iframe> </div> <div id=\"f_playback\" class=\"pre-minwidth pos_abs oem_background\" style=\"top: -10000px\">  </div> <div id=\"faceSch\" class=\"pre-minwidth pos_abs\"> <div class=\"frame_content\"> <div id=\"faceSch-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"f_alarm\" class=\"pre-minwidth pos_abs oem_background\" style=\"\"> <iframe src=\"\" id=\"frame_alarm\" width=\"100%\" frameborder=\"0\" scrolling=\"no\" allowtransparency=\"true\" style=\"min-width:1000px; min-height:530px;height:100%\" name=\"frame_alarm\"></iframe> </div> <div id=\"setup\" class=\"pre-minwidth pos_abs oem_background\"> <div class=\"set-sidebar\"> <ul id=\"setup-menu\"></ul> </div> <div class=\"set-content\"> <div id=\"setup-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"info\" class=\"pre-minwidth pos_abs oem_background\"> <div class=\"set-sidebar\"> <ul id=\"info-menu\"></ul> </div> <div class=\"set-content\"> <div id=\"info-content\" class=\"set-content-box\"></div> </div> </div> <div id=\"f_ocx\" class=\"main-ocx\" style=\"z-index:10\"></div> </div> <div id=\"estopAll\" style=\"display:none\" class=\"estopAll\"></div>  <div id=\"loadingCfg\" class=\"J_load_dialog\"> <p id=\"lab_loadingCfg\" class=\"J_load_p\"></p> </div> <script type=\"text/javascript\">$('frame_preview').src = '/html/previewindex.htm?'+remoteParams.ALL;\r\n\tonPageIndexReady();</script> <script language=\"javascript\" for=\"ocx\" event=\"TransEvent(jsonStr)\">handlerOcxEvents && handlerOcxEvents.fireOcxEvent(jsonStr);</script> <script language=\"javascript\" for=\"ocx\" event=\"SetNetPlayRecordStatus(result)\">handlerOcxEvents && handlerOcxEvents.fileStatus(result);</script> <script language=\"javascript\" for=\"ocx\" event=\"SetNetPlayFileInfo(nChannel,strRecodInfo)\">handlerOcxEvents && handlerOcxEvents.playFileInfo(nChannel, strRecodInfo);</script> <script language=\"javascript\" for=\"ocx\" event=\"NetPlayTimeInform(strTime)\">handlerOcxEvents && handlerOcxEvents.NetPlayTimeInform(strTime);</script> <script language=\"javascript\" for=\"ocx\" event=\"StateChangedEx(nChannel, nState, nWinID, nStreamType)\">handlerOcxEvents && handlerOcxEvents.StateChanged(nChannel, nState, nWinID, nStreamType);</script> <script language=\"jav",
   "datamd5" : "32df83de8ce211e7505a7d13548fdc10",
   "datammh3" : 1203976316,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "viettel.vn"
   ],
   "geolocus" : {
      "asn" : "AS7552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "viettel.com.vn",
         "viettel.vn",
         "vnnic.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VIETTEL-VN",
      "organization" : "VIETTEL-VN",
      "subnet" : "171.246.0.0/15"
   },
   "host" : [
      "dynamic-adsl",
      "dynamic-ip-adsl"
   ],
   "hostname" : [
      "dynamic-adsl.viettel.vn",
      "dynamic-ip-adsl.viettel.vn"
   ],
   "ip" : "171.246.151.52",
   "ipv6" : "false",
   "latitude" : "11.1701",
   "location" : "11.1701,106.6687",
   "longitude" : "106.6687",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Viettel Group",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "dynamic-adsl.viettel.vn",
      "dynamic-ip-adsl.viettel.vn"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "171.246.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "vn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 3.145.136.55:4369 (tcp/http) - last seen on 2024-11-21 at 08:42:04 UTC

    • IP
      3.145.136.55
      Network
      3.144.0.0/13
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://3.145.136.55:4369/ 200

      Reverse DNS
      ec2-3-145-136-55.us-east-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      97f64c9c6bf158d0d05d3f05372b5a7a
      HTTP Header MD5
      9f060a9cb1b31c417a3a68e629ae97e3
      HTTP Body MD5
      c25cbaf569d22e9f526ff69fe9e61bbf
      Favicon MD5
      2b86aa50c3a66bb77ff07c42cc051dcc
      Favicon MMH3
      -1216248324 
    • HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:35:55 GMT
Server: nginx
Content-Length: 583
Content-Type: text/html

<html style="background:#007cef">
<head>
<meta http-equiv="expires" content="0">
<script type='text/javascript'>
pr=(document.location.protocol == 'https:') ? 'https' : 'http';
pt=(location.port == '') ? '' : ':' + location.port;
redirect_suffix = "/redirect.html?count="+Math.random();
if(location.hostname.indexOf(':') == -1)
{
location.href=pr+"://"+location.hostname+pt+redirect_suffix;
}
else    //could be ipv6 addr
{
var url = "";
url=pr+"://["+ location.hostname.replace(/[\[\]]/g, '') +"]"+pt+redirect_suffix;
location.href = url;
}
</script>
</head>
<body>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:42:04.000Z",
   "app" : {
      "favicon" : {
         "image" : "AAABAAIAEBAQAAAAAAAoAQAAJgAAACAgEAAAAAAA6AIAAE4BAAAoAAAAEAAAACAAAAABAAQAAAAAAIAAAAAAAAAAAAAAABAAAAAQAAAAAAAAAAAAgAAAgAAAAICAAIAAAACAAIAAgIAAAICAgADAwMAAAAD/AAD/AAAA//8A/wAAAP8A/wD//wAA////AAAAAAAAAAAAAABERERERAAABEREREREAABERAAAAAAAAERAAAAAAAAEREAAAAAAAAREREREREQABERERERERAAEREAAAAAAAAREQAAAAAAAAEREAAAAAAAARERAAAAAAAAEREREREQAAAAERERERAAAAAAAAAAAAAAAAAAAAAAA//8AAPADAADgAwAAw/8AAMf/AACH/wAAgAMAAIADAACH/wAAh/8AAMP/AADB/wAA4AMAAPgDAAD//wAA//8AACgAAAAgAAAAQAAAAAEABAAAAAAAAAIAAAAAAAAAAAAAEAAAABAAAAAAAAAAAACAAACAAAAAgIAAgAAAAIAAgACAgAAAgICAAMDAwAAAAP8AAP8AAAD//wD/AAAA/wD/AP//AAD///8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEREREREREREQAAAAAAAAEREREREREREREAAAAAAAERERERERERERERAAAAAAAREREREREREREREQAAAAABEREREREREREREREAAAAAAREREREAAAAAAAAAAAAAABEREREQAAAAAAAAAAAAAAARERERAAAAAAAAAAAAAAAAEREREAAAAAAAAAAAAAAAARERERAAAAAAAAAAAAAAAAEREREQAAAAAAAAAAAAAAABERERERERERERERERAAAAAREREREREREREREREQAAAAEREREREREREREREREAAAABERERERERERERERERAAAAAREREREREREREREREQAAAAEREREQAAAAAAAAAAAAAAAAEREREAAAAAAAAAAAAAAAABEREREAAAAAAAAAAAAAAAAREREREAAAAAAAAAAAAAAAAREREREAAAAAAAAAAAAAAAAREREREREREREREQAAAAAAEREREREREREREREAAAAAAAERERERERERERERAAAAAAAAAREREREREREREQAAAAAAAAABEREREREREREAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/////////////////4AAP/4AAD/4AAA/8AAAP+AAAD/gD///wB///8A////Af///gH///4B///+AAAA/gAAAP4AAAD+AAAA/gAAAP4B////Af///wD///8Af///gD///8AAAP/AAAD/4AAA//gAAP/+AAD////////////////w==",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "c25cbaf569d22e9f526ff69fe9e61bbf",
         "bodymmh3" : 2073015905,
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : 1930874971
      },
      "length" : 719
   },
   "asn" : "AS16509",
   "city" : "Columbus",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:35:55 GMT\r\nServer: nginx\r\nContent-Length: 583\r\nContent-Type: text/html\r\n\r\n<html style=\"background:#007cef\">\n<head>\n<meta http-equiv=\"expires\" content=\"0\">\n<script type='text/javascript'>\npr=(document.location.protocol == 'https:') ? 'https' : 'http';\npt=(location.port == '') ? '' : ':' + location.port;\nredirect_suffix = \"/redirect.html?count=\"+Math.random();\nif(location.hostname.indexOf(':') == -1)\n{\nlocation.href=pr+\"://\"+location.hostname+pt+redirect_suffix;\n}\nelse    //could be ipv6 addr\n{\nvar url = \"\";\nurl=pr+\"://[\"+ location.hostname.replace(/[\\[\\]]/g, '') +\"]\"+pt+redirect_suffix;\nlocation.href = url;\n}\n</script>\n</head>\n<body>\n</body>\n</html>\n",
   "datamd5" : "97f64c9c6bf158d0d05d3f05372b5a7a",
   "datammh3" : 1079192638,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "3.144.0.0/13"
   },
   "host" : [
      "ec2-3-145-136-55"
   ],
   "hostname" : [
      "ec2-3-145-136-55.us-east-2.compute.amazonaws.com"
   ],
   "ip" : "3.145.136.55",
   "ipv6" : "false",
   "latitude" : "39.9625",
   "location" : "39.9625,-83.0061",
   "longitude" : "-83.0061",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-145-136-55.us-east-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-east-2.compute.amazonaws.com"
   ],
   "subnet" : "3.144.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 103.125.163.123:4369 (tcp/http) - last seen on 2024-11-21 at 08:36:54 UTC

    • IP
      103.125.163.123
      Network
      103.125.160.0/22
      Domain(s)
      pol.net.in
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://103.125.163.123:4369/ 403

      HTTP Title
      403 - Forbidden: Access is denied.
      Reverse DNS
      static-103-125-163-123.pol.net.in
      ASN
      AS18229
      Organization
      CtrlS
      Protocol
      http
      Source
      datascan
    • Operating System
      Microsoft Windows
      Product
      Microsoft IIS 10.0
      HTTP Component(s)
      Microsoft ASP.NET
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c5a72c1f5ebe497d4fe07ffb96aeb3a2
      HTTP Header MD5
      b690839560122c2a2a04dcf6a01c3e1b
      HTTP Body MD5
      02e3536d8084eddb0d537418440bb078 
    • HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Thu, 21 Nov 2024 08:36:54 GMT
Connection: close
Content-Length: 1233

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>403 - Forbidden: Access is denied.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>403 - Forbidden: Access is denied.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:36:54.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "02e3536d8084eddb0d537418440bb078",
         "bodymmh3" : -985096807,
         "component" : [
            {
               "productvendor" : "Microsoft",
               "product" : "ASP.NET"
            }
         ],
         "headermd5" : "b690839560122c2a2a04dcf6a01c3e1b",
         "headermmh3" : 1820655723,
         "title" : "403 - Forbidden: Access is denied."
      },
      "length" : 1413
   },
   "asn" : "AS18229",
   "city" : "Hyderabad",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nContent-Type: text/html\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate: Thu, 21 Nov 2024 08:36:54 GMT\r\nConnection: close\r\nContent-Length: 1233\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\"/>\r\n<title>403 - Forbidden: Access is denied.</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>Server Error</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n  <h2>403 - Forbidden: Access is denied.</h2>\r\n  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>\r\n </fieldset></div>\r\n</div>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "c5a72c1f5ebe497d4fe07ffb96aeb3a2",
   "datammh3" : 264711203,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "pol.net.in"
   ],
   "geolocus" : {
      "asn" : "AS18229",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "gmail.com",
         "pol.net.in"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "TSHAH-IN",
      "organization" : "TSHAH NETWORKS PRIVATE LIMITED",
      "subnet" : "103.125.160.0/22"
   },
   "host" : [
      "static-103-125-163-123"
   ],
   "hostname" : [
      "static-103-125-163-123.pol.net.in"
   ],
   "ip" : "103.125.163.123",
   "ipv6" : "false",
   "latitude" : "17.3724",
   "location" : "17.3724,78.4378",
   "longitude" : "78.4378",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CtrlS",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2016",
      10
   ],
   "port" : 4369,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "10.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "reverse" : [
      "static-103-125-163-123.pol.net.in"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "103.125.160.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.in"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}