IP

44.201.207.206

Network

44.192.0.0/11

Domain(s)

amazonaws.com

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System

Cisco IOS

URL

http://44.201.207.206:4782/ 200

HTTP Title

SSL VPN Service

Reverse DNS

ec2-44-201-207-206.compute-1.amazonaws.com

ASN

AS14618

Organization

AMAZON-AES

Protocol

http

Source

datascan

Operating System

Cisco IOS

Product

F5 Nginx

HTTP Component(s)

Cisco WebVPN

CPE(s)

<enterprise field>: cpe

Data MD5

e73fb32120bbccbb6ce84d72a9811f27

HTTP Header MD5

9f060a9cb1b31c417a3a68e629ae97e3

HTTP Body MD5

f7876d48967864b57d32b168c0fba837

Favicon MD5

2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3

-1216248324

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:36:57 GMT
Server: nginx
Content-Length: 627
Content-Type: text/html

<?xml version="1.0" encoding="UTF-8"?>
<auth id="main">
<title>SSL VPN Service</title>
<ca status="disabled" href="/+CSCOCA+/login.html" />



<banner></banner>
<message>Please enter your username and password.</message>


<form method="post" action="/+webvpn+/index.html">

<input type="text" name="username" label="Username:" />
<input type="password" name="password" label="Password:" />


<select name="group_list" label="GROUP:">
<option value="telecommuters" noaaa="0" >Remote_Users</option></select>

<input type="submit" name="Login" value="Login" />
<input type="reset" name="Clear" value="Clear" />


</form>
</auth>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:43:13.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "f7876d48967864b57d32b168c0fba837",
         "bodymmh3" : 353668724,
         "component" : [
            {
               "productvendor" : "Cisco",
               "product" : "WebVPN"
            }
         ],
         "headermd5" : "9f060a9cb1b31c417a3a68e629ae97e3",
         "headermmh3" : 1705454418,
         "title" : "SSL VPN Service"
      },
      "length" : 763
   },
   "asn" : "AS14618",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:36:57 GMT\r\nServer: nginx\r\nContent-Length: 627\r\nContent-Type: text/html\r\n\r\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<auth id=\"main\">\n<title>SSL VPN Service</title>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n\n\n\n<banner></banner>\n<message>Please enter your username and password.</message>\n\n\n<form method=\"post\" action=\"/+webvpn+/index.html\">\n\n<input type=\"text\" name=\"username\" label=\"Username:\" />\n<input type=\"password\" name=\"password\" label=\"Password:\" />\n\n\n<select name=\"group_list\" label=\"GROUP:\">\n<option value=\"telecommuters\" noaaa=\"0\" >Remote_Users</option></select>\n\n<input type=\"submit\" name=\"Login\" value=\"Login\" />\n<input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n\n\n</form>\n</auth>\n",
   "datamd5" : "e73fb32120bbccbb6ce84d72a9811f27",
   "datammh3" : 1679286467,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS14618",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZON-IAD",
      "organization" : "Amazon Data Services NoVa",
      "subnet" : "44.192.0.0/11"
   },
   "host" : [
      "ec2-44-201-207-206"
   ],
   "hostname" : [
      "ec2-44-201-207-206.compute-1.amazonaws.com"
   ],
   "ip" : "44.201.207.206",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-AES",
   "os" : "IOS",
   "osvendor" : "Cisco",
   "port" : 4782,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-44-201-207-206.compute-1.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute-1.amazonaws.com"
   ],
   "subnet" : "44.192.0.0/11",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

62.72.176.44

Network

62.72.176.0/24

Operating System

Linux Linux Kernel

ASN

AS206119

Organization

Veganet Teknolojileri ve Hizmetleri LTD STI

Protocol

socks4a

Source

datascan

Operating System

Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

Data MD5

d0667d77071710c716b7978296e1b49e

\x00[\x00\x00\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:42:20.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS206119",
   "city" : "Istanbul",
   "country" : "TR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x00[\\x00\\x00\\x00\\x00\\x00\\x00",
   "datamd5" : "d0667d77071710c716b7978296e1b49e",
   "datammh3" : -971970408,
   "geolocus" : {
      "asn" : "AS834",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "HK",
      "countryname" : "Hong Kong",
      "domain" : [
         "ipxo.com"
      ],
      "isineu" : "false",
      "latitude" : "22.396428",
      "location" : "22.396428,114.109497",
      "longitude" : "114.109497",
      "netname" : "NET-62-72-176-0-24",
      "organization" : "Private Customer",
      "subnet" : "62.72.176.0/24"
   },
   "ip" : "62.72.176.44",
   "ipv6" : "false",
   "latitude" : "41.0011",
   "location" : "41.0011,28.9675",
   "longitude" : "28.9675",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Veganet Teknolojileri ve Hizmetleri LTD STI",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4782,
   "protocol" : "socks4a",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "62.72.176.0/24",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP

70.34.220.6

Network

70.34.192.0/19

Domain(s)

vultrusercontent.com

Device

<enterprise field>: device.class

Operating System

Wind River VxWorks Amazon

URL

http://70.34.220.6:4782/ 200

HTTP Title

hello

Reverse DNS

70.34.220.6.vultrusercontent.com

ASN

AS20473

Organization

AS-VULTR

Protocol

http

Source

datascan

Operating System

Wind River VxWorks Amazon

HTTP Component(s)

Perl Perl 5.8.0 PHP PHP 5.2.2 Apache mod_jk MatrixSSL MatrixSSL 3.4.2 Apache mod_dav 2 libupnp libupnp 1.6.6 PhusionPassenger Phusion Passenger 3.0.0 Apache mod_perl 1.28 OpenSSL OpenSSL 0.9.7b modssl mod_ssl 2.8.15

CPE(s)

<enterprise field>: cpe

Data MD5

708f3422aae984094ce690f91472f63c

HTTP Header MD5

8926312e63b00ce3d9a6f5e05096d555

HTTP Body MD5

9900920a65e13dd0e901a28af8b6d359

HTTP/1.1 200 OK
Date: Thu, 21 Nov 2024 08:42:18 GMT
Server: dcv 2wire Gateway 4D_WebSTAR_S/5.0 4D_WebSTAR_S/5.102.1 5.1.2600 2/Service Pack 3, UPnP/1.0, TVersity Media Server 5.2.3790 2/Service Pack 1, UPnP/1.0, TVersity Media Server 6.0.6000 2/, UPnP/1.0, TVersity Media Server 6.1.7600 2/, UPnP/1.0, TVersity Media Server 6.2.8400 2/, UPnP/1.0, TVersity Media Server 6.2.9200 2/, UPnP/1.0, TVersity Media Server Abyss/1.0.3 Abyss/2.0.0.20-X1-Win32 AbyssLib/2.0.0.20 Abyss/2.3.2-X1-Win32 AbyssLib/2.3.2 Acme.Serve/v1.7 of 13nov96 AdSubtract Ag [47] Agranat-EMWeb Agranat-EmWeb/R4_01 Agranat-EmWeb/R5_1_2 Agranat-EmWeb/R5_2_4 Agranat-EmWeb/R5_2_6 AirTunes/220.68 AkamaiGHost alibaba allegro-software Allegro-Software-RomPager Allegro-Software-RomPager/ 2.10 Allegro-Software-RomPager/4.01 Allegro-Software-RomPager/4.30b3 Amazon-Cloud-Drive AmazonS3 Amazon SimpleDB AmazonSnowball american sitebuilder AMT aolserver apache Apache Apache/0.6.5 Apache/1 Apache/1.1.3 Apache/1.2.42 (PalmOS) Apache/1.3.27 Apache/1.3.28 (SolutionIP) mod_perl/1.28 mod_ssl/2.8.15 OpenSSL/0.9.7b Apache/1.3.28 (Unix) Apache/1.3.28 (Unix) mod_auth_pam/1.1.1 APACHE/1.3.9 Apache/2 Apache/2.0.43 Apache/2.2.3 (Red Hat) Apache/2.2.4 (Win32) PHP/5.2.2 Apache/2.2.4 (Win32) PHP/5.2.3 Apache-AdvancedExtranetServer/2.0.44 (Mandrake Linux/11mdk) mod_perl/1.99_08 Perl/v5.8.0 mod_ssl/2.0.44 OpenSSL/0.9.7a PHP/4.3.1 mod_jk2/2.0.0 Apache-AdvancedExtranetServer/2.0.47 (Mandrake Linux/6.12.92mdk) mod_perl/1.99_09 Perl/v5.8.1 mod_ssl/2.0.47 OpenSSL/0.9.7b PHP/4.3.2 Apache-AdvancedExtranetServer/2.0.47 (Mandrake Linux/6.3.92mdk) mod_ssl/2.0.47 OpenSSL/0.9.7b PHP/4.3.2 Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6.8.100mdk) mod_perl/1.99_11 Perl/v5.8.3 mod_ssl/2.0.48 OpenSSL/0.9.7c PHP/4.3.4 Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6mdk) PHP/4.3.4 Apache-AdvancedExtranetServer/2.0.53 (Mandrakelinux/PREFORK-9mdk) mod_ssl/2.0.53 OpenSSL/0.9.7e PHP/4.3.10 mod_perl/1.999.21 Perl/v5.8.6 Apache Coyote/1.0 Apache-Coyote/1.1 apachejserv/1.0.1 apache-ssl-us Apache Tomcat Apache Tomcat/4.0.3 Apache Tomcat/4.0.6 (HTTP/1.1 Connector) Apache Tomcat/4.1.10 Apache Tomcat/4.1.12 (HTTP/1.1 Connector) Apache Tomcat/4.1.27-LE-jdk14 (HTTP/1.1 Connector) aserve Aspen/0.8 ASP.NET ATPhttpd Avaya CMBE/2 Avaya CMBE/2.0.0 avenida Avirt Avocent DSView 3/3 Avocent DSView 3/3.7.0.71 AV-TECH AV787 Video Web Server awhttpd awselb/2.0 BBC 05.20.050; coda 10.00.123 BBC 06.00.083; ovbbccb 06.00.083 BBC 11.00.044; ovbbcrcp 11.00.044 BBC 11.10.035; ovbbccb 11.10.035 BBC 11.13.007; ovbbccb unknown version BBC 2.6.0.7; com.hp.openview.bbc.LLBServer 2.6.0.7 BBC 2.6.0.7; com.hp.openview.Coda 0.0.1 BigIP BIG-IP bkhttp/0.3 Blazix/1.2.1 BlueCoat-Security-Appliance boa Boa/0.92p OS-9 Version Boa/0.93.15 Boa/0.93.15 (with Intersil Extensions) Boa/0.94.14rc18-ipcam Boa/0.94.14rc21 boulevard Brickserver Modifications camera cern chainpoint-node ChaiServer Check Point SVN foundation Cherokee/0.2.7 CherryPy/3 CherryPy/3.1.2 Cisco AWARE 2.0 cisco-CPA cisco ios cisco-IOS cisco-IOS/12.1 HTTP-server/1.0(1) Citrix Web PN Server cl-http cloudflare cloudflare-nginx CloudFront Cobalt com.hp.openview.bbc.LLBServer 2.6.8.1 com.hp.openview.Coda 0.0.1 commerce-builder CompaqHTTPServer CompaqHTTPServer/4.1 CompaqHTTPServer/9.9 HP System Management Homepage CompaqHTTPServer/9.9 HP System Management Homepage/2.1.5.146 CompaqHTTPServer/9.9 HP System Management Homepage/3.0.1.73 httpd/2.2.6+ CompaqHTTPServer/9.9 HP System Management Homepage/6.0.0.96 httpd/2.2.6+ Conexant-EmWeb/R6_1_0 cosmos CouchDB/2.1.1 (Erlang OTP/20) Cougar/9.01.01.3841 cpaneld cpsrvd cpsrvd/11.44.3.0 CradlepointHTTPService/1.0.0 Cross Web Server CUPS/1.1 CUPS/1.7 IPP/2.1 cwpsrv Darwin/10.2.0, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Debian/4.0r8 DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0 Debian/4.0 UPnP/1.0 miniupnpd/1.0 Debian/wheezy/sid UPnP/1.1 MiniUPnPd/1.8 DeleGate/7.7.0 DNVRS-Webs DrayTek/Vigor2130 UPnP/1.0 miniupnpd/1.0 DVRDVS-Webs dwhttpd EHTTP/1.1 eHTTP v2.0 Embedded HTTP Server Embedthis-Appweb/3.2.3 Embedthis-http Embedthis-http/4.0.0 emwac EnergyICT RTU 101-F25CE1-1524 enterpriseweb Eserv/2.97 Essentia/2.1 Ews/0 Ews/0.1 EWS-NIC3/6.31 EWS-NIC4/13.39 EWS-NIC4/13.40 falcon Fedora/10 UPnP/1.0 MiniUPnPd/1.4 Fedora/8 UPnP/1.0 miniupnpd/1.0 FedoraCore/6 UPnP/1.0 miniupnpd/1.0 fnord Folkweb FreeBSD/8.2-RELEASE-p4 DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0.24 frontier frontpage FUHO-DVR GFE/1 GFE/1.3 GlassFish GoAhead-Webs GoAhead-Webs/2.5.0 GoAhead-Webs/2.5.0 PeerSec-MatrixSSL/3.4.2-OPEN Gordian Embedded goserve gosite gSOAP/2.7 gunicorn/19.7.1 gws HeiTel GmbH Web Server [V1.15/V1.14/V1.3] HeiTel GmbH Web Server [V1.26/V1.15/V1.7] Helix Server Version 9.0.4.960 (linux-2.2-libc6-i586-server) (RealServer compatible) Helix Server Version 9.0.4.960 (win32) (RealServer compatible) hellbent java webserver v0.1 Hikvision-Webs homedoor HP Apache-based Web Server/1.3.26 (Unix) HP Apache-based Web Server/1.3.26 (Unix) mod_ssl/2.8.9 OpenSSL/0.9.6c HP-ChaiServer/2.2 HP-ChaiSOE/1.0 HP HTTP Server; Hewlett-Packard HP Designjet T520 36in - ABC123; Serial Number: 0123456789; Built:Tue Sep 09, 2014 08:32:54AM {012345678901} HP HTTP Server; HP Officejet 6500 E709n - CB057A; Serial Number: abc123; Rainbow Built:Sat Dec 13, 2008 10:58:21AM {abc123, ASIC id 0x00ffc2105} HP HTTP Server; HP Photosmart C309a series - CC335A; Serial Number: abc123; Vader Built:Wed Apr 15, 2009 11:40:58AM {abc123, ASIC id 0x00280004} HP-iLO-Server/1.30 HPSMH HP Web Jetadmin 10.3.85669 HP Web Jetadmin 10.3.91358 (10.3 SR5) HP Web Jetadmin/2.0.50 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m HP Web Jetadmin/2 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m HP-Web-Server httpd HttpFileServer httpd hyperwave IBM_HTTP_Server IBM_HTTP_SERVER IBM-HTTP-Server/1.0 IBM_HTTP_Server/1.3.12 Apache/1.3.12 (Unix) IBM_HTTP_SERVER/1.3.19.2  Apache/1.3.20 (Win32) IBM_HTTP_SERVER/1.3.28.1-PK16139  Apache/1.3.28 (Unix) IBM_HTTP_Server/2.0.42.2-PK25355 Apache/2.0.47 (Unix) DAV/2 IBM_HTTP_Server/2.0.47.1 Apache/2.0.47 (Unix) DAV/2 PHP/4.3.8 IBM_HTTP_Server/2.0.47.1-PK01070 Apache/2.0.47 (Win32) PHP/5.0.4 IBM_HTTP_Server/6.0.2.19 Apache/2.0.47 (Unix) IBM_HTTP_Server/6.0.2 Apache/2.0.47 (Unix) IBM_HTTP_Server/6.0 Apache/2.0.47 (Unix) DAV/2 IBM_HTTP_Server/6.1 Apache/2.0.47 (Win32) PHP/5.1.1 IBM_HTTP_Server/7.0.0.9 (Unix) IBM HTTP Server/V5R3M0 ibm internet connection server IdeaWebServer/0.83.74 IdeaWebServer/v0.70 Intel(R) Active Management Technology Intel(R) Active Management Technology 7.1.86 Intel(R) Standard Manageability 5.0.50 Intel(R) Standard Manageability 9.0.3 IPCamera Login IPG8000 iPlanet-Web-Proxy-Server/3.6 iPlanet-Web-Proxy-Server/3.6-SP5 ipos/7.0 UPnP/1.0 TL-WR740N/1.0 ipos/7.0 UPnP/1.0 TL-WR740N/1.0/2.0 ipos/7.0 UPnP/1.0 TL-WR740N/4.0 ipos/7.0 UPnP/1.0 TL-WR741N/1.0/2.0 ipos/7.0 UPnP/1.0 TL-WR741N/4.0 ipos/7.0 UPnP/1.0 TL-WR841N/6.0/7.0 ipos/7.0 UPnP/1.0 TL-WR841N/8.0 ipos/7.0 UPnP/1.0 TL-WR940N/1.0 ipos/7.0 UPnP/1.0 TL-WR941N/2.0 Ipswitch-IMail/5.08 Ipswitch-IMail/7.07 Ipswitch-IMail/7.11 Ipswitch-IMail/8.05 ISOS/9.0 UPnP/1.0 Conexant-EmWeb/R6_1_0 Jaguar Server jakarta-tomcat-4.0.1 JavaWebServer JBoss-EAP/7 JC-HTTPD/1 JC-HTTPD/1.11.14 JC-SHTTPD/1 JC-SHTTPD/1.17.20 JetAdmin Jetty(1.4.5) Jetty/4.0.1 (SunOS 5.8 sparc) Jetty/4.2.23 (SunOS/5.9 sparc java/1.4.2_04) Jetty/4.2.x (VxWorks/WIND version 2.9 ppc java/1.1-rr-std-b12) Jetty/5.1.10 (Linux/2.6.12 i386 java/1.5.0_05) Jetty/5.1.4 (Windows Server 2008 R2/6.1 x86 java/1.5.0_22 Jetty(6.1.12.rc2) Jetty(7.6.9.v20130131) Jetty(8.1.10.v20130312) Jetty(9.4.z-SNAPSHOT) JRun/3.1 KazaaClient kHTTPd 0.1.6 LabVIEW/5.1.1 Lasso/3.6.5 lighttpd lighttpd/1.3.7 (Mar 23 2007/16:00:15) lighttpd/1.4.16 LilHTTP/2.1 Linux/2.4.18_mvl30-ixdp425, UPnP/1.0, Intel SDK for UPnP devices/1.3.1 Linux/2.4.20-46.7asp, UPnP/1.0, Portable SDK for UPnP devices/1.6.17 Linux/2.4.21 UPnP/1.0 miniupnpd/1.0 LINUX/2.4 UPnP/1.0 BRCM400/1.0 Linux/2.6.10_dev-malta-mips2_fp_le, UPnP/1.0, Intel SDK for UPnP devices /1.2 Linux/2.6.10-iop1-1, UPnP/1.0, Portable SDK for UPnP devices/1.4.1 Linux/2.6.12-5.1-brcmstb-dm800, UPnP/1.0, Portable SDK for UPnP devices/1.6.0 Linux/2.6.12.6-arm1-040, UPnP/1.0, Portable SDK for UPnP devices/1.6.5.2 Linux/2.6.12.6-VENUS, UPnP/1.0, Portable SDK for UPnP devices/1.6.10 Linux/2.6.13, UPnP/1.0, Portable SDK for UPnP devices/1.6.0 Linux/2.6.18_pro500-davinci_N03A_IPCAM_1.0-g5c649288-dirty, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.23.17_stm23_0125dorade00 UPnP/1.0 DLNADOC/1.50 Portable SDK for UPnP devices/1.4.6-5 Linux/2.6.28-11-server, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.28-17-generic, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.28.1-xxxx-std-ipv4-32, UPnP/1.0, Portable SDK for UPnP devices/1.4.3 Linux/2.6.28, UPnP/1.0, Portable SDK for UPnP devices/1.6.10 Linux/2.6.29.6-217.2.3.fc11.i686.PAE UPnP/1.0 miniupnpd/1.0 Linux/2.6.32-220.7.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-24-generic, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.32-279.11.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-279.1.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.13 Linux/2.6.32-279.14.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-279.14.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.15 Linux/2.6.36+ DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0 Linux/3.0.8 UPnP/1.0 DLNADOC/1.50 Portable SDK for UPnP devices/1.6.6 Linux-amd64-2.6.18-238.9.1.el5, UPnP/1.0, PMS/1.52.1 Linux/Cross_compiled UPnP/1.0 miniupnpd/1.0 Linux-i386-2.6.33.2, UPnP/1.0, PMS/1.21.1 Linux Mips 2.4.20 UPnP/1.0 MiniUPnPd/1.2 Linux UPnP/1.0 Huawei-ATP-IGD Linux, UPnP/1.0, Intel SDK for UPnP devices /1.2 Linux UPnP/1.0 Sonos/31.3-22220 (ANVIL) Linux UPnP/1.0 Sonos/34.16-37101 (ZP120) Linux UPnP/1.0 Sonos/36.4-41270 (WD100) Linux UPnP/1.0 Sonos/39.2-47040c (ZPS1) Linux UPnP/1.0 Sonos/47.2-59120 (BR100) Linux UPnP/1.0 Sonos/47.2-59120 (ZPS3) ListManagerWeb/8.8a (based on Tcl-Webserver/3.4.2) LiteSpeed LiteSpeed/5.2.8 Enterprise Lotus Lotus-Domino Lotus-Domino/0 Lotus-Domino/5.0.8 Lotus-Domino/Release Lotus-Domino/Release-4.6.7(Intl) Lotus Expeditor Web Container/6 Lotus Expeditor Web Container/6.1 Loxone Miniserver some name UPnP/1.0 Mac_OS_X-x86_64-10.5.8, UPnP/1.0, PMS/1.20 Mbedthis-Appweb/2 Mbedthis-Appweb/2.4.0 Mbedthis-AppWeb/2.4.0 Mbedthis-Appweb/2.4.2 micro_httpd Microplex emHTTPD/1 Microplex emHTTPD/1.0 Microplex emHTTPD/1.1 Microsoft-HTTPAPI/2.0 Microsoft-IIS Microsoft-IIS/4.0 Microsoft-IIS/5.0 Microsoft-IIS/5.1 Microsoft-IIS/6.0 Microsoft-IIS/7.0 Microsoft-IIS/7.5 Microsoft-IIS/8.0 Microsoft-IIS/8.5 Microsoft-IIS/9.0 Microsoft-PWS/4.0 Microsoft-PWS-95/4.0 Microsoft-WinCE/4.10 Microsoft-WinCE/4.20 Microsoft-WinCE/5.0 Microsoft WinCE Fidelix v11.50.29 Mikrotik HttpProxy Mini Dome IP Camera mini_httpd mini_httpd/1.14 23jun2000 mini_httpd/1 23jun2000 MiniServ/0.01 mod_security/1.71 Mongrel 1 Mongrel 1.1.5 Monkey/0.6.2 MS-MFC-HttpSvr/1.0 MS .NET Remoting, MS .NET CLR 2.0.50727.42 mt-daapd/0.2.4.1 mt-daapd/svn-999 myCIO Mylo/0.2.0 MyWebServer/1.01 ncsa neowebscript NetApp/7.2.1.1 NetApp/7.3.4P1 NetApp//8.1RC2 NetCache appliance (NetApp/5.3.1R3) NetCache appliance (NetApp/5.4R2D2) NetCache appliance (NetApp/5.6.1D22) NetCache appliance (NetApp/6.0.2P1) NetCache appliance (NetApp/6.0.4) NetCache appliance (NetApp/6.1RC2) netcloak NET-DK/1.0 NET-DK 1.1 Netgear/1.0 UPnP/1.0 miniupnpd/1.0 netpresenz Netscape-Enterprise/3.5.1 Netscape-Enterprise/3.6 SP3 Netscape-Enterprise/6.0 NetWare Netwave IP Camera nginx nginx/0.8.53 nginx/0.8.53 + Phusion Passenger 3.0.0 (mod_rails/mod_rack) nginx + Phusion Passenger nginx + Phusion Passenger 5.1.11 Niagara Web Server/3.8.111 NS_6.1 NSC/0.6.4 (JVM) nsl Nucleus/4.3 UPnP/1.0 Virata-EmWeb/R6_2_0 NULLhttpd/0.5.1 OmniHTTPd open-market-secure-webserver openresty openresty/1.13.6.2 OpenTV/5.40 OpenVPN-AS OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.2 OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.4 OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.5 Oracle9iAS/9.0.2.3.0 Oracle HTTP Server Oracle9iAS-Web-Cache/9.0.2.3.0 (N) Oracle9iAS/9.0.3.1 Oracle HTTP Server Oracle9iAS-Web-Cache/9.0.3.1.0 (N) Oracle-Application-Server-10g Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server Oracle-Application-Server-10g/10.1.2.2.0 Oracle-HTTP-Server OracleAS-Web-Cache-10g/10.1.2.2.0 (N;ecid
Content-Type: text/html
Content-Length: 84

<html>
<head>
  <title>hello</title>
</head>
<body>
  <h1>hello</h1>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:42:18.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "6.0.0.96",
            "1.3.19.2",
            "2.6.28.1",
            "1.3.28.1",
            "1.6.5.2",
            "2.1.5.146",
            "7.2.1.1",
            "7.0.0.9",
            "2.6.23.17",
            "6.0.2.19",
            "1.13.6.2",
            "2.6.12.6",
            "2.0.0.20",
            "10.1.2.0",
            "2.6.33.2",
            "2.6.29.6",
            "2.6.0.7",
            "3.0.1.73",
            "2.6.8.1",
            "9.0.2.3",
            "9.0.3.1",
            "10.1.2.2",
            "2.0.47.1",
            "3.7.0.71",
            "2.0.42.2",
            "11.44.3.0"
         ]
      },
      "http" : {
         "bodymd5" : "9900920a65e13dd0e901a28af8b6d359",
         "bodymmh3" : 1667249752,
         "component" : [
            {
               "product" : "MatrixSSL",
               "productversion" : "3.4.2",
               "productvendor" : "MatrixSSL"
            },
            {
               "productvendor" : "Apache",
               "product" : "mod_jk"
            },
            {
               "productversion" : "5.8.0",
               "productvendor" : "Perl",
               "product" : "Perl"
            },
            {
               "productvendor" : "PHP",
               "productversion" : "5.2.2",
               "product" : "PHP"
            },
            {
               "product" : "mod_dav",
               "productvendor" : "Apache",
               "productversion" : "2"
            },
            {
               "product" : "mod_ssl",
               "productvendor" : "modssl",
               "productversion" : "2.8.15"
            },
            {
               "productvendor" : "Apache",
               "productversion" : "1.28",
               "product" : "mod_perl"
            },
            {
               "productversion" : "3.0.0",
               "productvendor" : "PhusionPassenger",
               "product" : "Phusion Passenger"
            },
            {
               "product" : "OpenSSL",
               "productvendor" : "OpenSSL",
               "productversion" : "0.9.7b"
            },
            {
               "product" : "libupnp",
               "productversion" : "1.6.6",
               "productvendor" : "libupnp"
            }
         ],
         "headermd5" : "8926312e63b00ce3d9a6f5e05096d555",
         "headermmh3" : -183728662,
         "title" : "hello"
      },
      "length" : 12514
   },
   "asn" : "AS20473",
   "city" : "Sp\u00e5nga",
   "country" : "SE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 21 Nov 2024 08:42:18 GMT\r\nServer: dcv 2wire Gateway 4D_WebSTAR_S/5.0 4D_WebSTAR_S/5.102.1 5.1.2600 2/Service Pack 3, UPnP/1.0, TVersity Media Server 5.2.3790 2/Service Pack 1, UPnP/1.0, TVersity Media Server 6.0.6000 2/, UPnP/1.0, TVersity Media Server 6.1.7600 2/, UPnP/1.0, TVersity Media Server 6.2.8400 2/, UPnP/1.0, TVersity Media Server 6.2.9200 2/, UPnP/1.0, TVersity Media Server Abyss/1.0.3 Abyss/2.0.0.20-X1-Win32 AbyssLib/2.0.0.20 Abyss/2.3.2-X1-Win32 AbyssLib/2.3.2 Acme.Serve/v1.7 of 13nov96 AdSubtract Ag [47] Agranat-EMWeb Agranat-EmWeb/R4_01 Agranat-EmWeb/R5_1_2 Agranat-EmWeb/R5_2_4 Agranat-EmWeb/R5_2_6 AirTunes/220.68 AkamaiGHost alibaba allegro-software Allegro-Software-RomPager Allegro-Software-RomPager/ 2.10 Allegro-Software-RomPager/4.01 Allegro-Software-RomPager/4.30b3 Amazon-Cloud-Drive AmazonS3 Amazon SimpleDB AmazonSnowball american sitebuilder AMT aolserver apache Apache Apache/0.6.5 Apache/1 Apache/1.1.3 Apache/1.2.42 (PalmOS) Apache/1.3.27 Apache/1.3.28 (SolutionIP) mod_perl/1.28 mod_ssl/2.8.15 OpenSSL/0.9.7b Apache/1.3.28 (Unix) Apache/1.3.28 (Unix) mod_auth_pam/1.1.1 APACHE/1.3.9 Apache/2 Apache/2.0.43 Apache/2.2.3 (Red Hat) Apache/2.2.4 (Win32) PHP/5.2.2 Apache/2.2.4 (Win32) PHP/5.2.3 Apache-AdvancedExtranetServer/2.0.44 (Mandrake Linux/11mdk) mod_perl/1.99_08 Perl/v5.8.0 mod_ssl/2.0.44 OpenSSL/0.9.7a PHP/4.3.1 mod_jk2/2.0.0 Apache-AdvancedExtranetServer/2.0.47 (Mandrake Linux/6.12.92mdk) mod_perl/1.99_09 Perl/v5.8.1 mod_ssl/2.0.47 OpenSSL/0.9.7b PHP/4.3.2 Apache-AdvancedExtranetServer/2.0.47 (Mandrake Linux/6.3.92mdk) mod_ssl/2.0.47 OpenSSL/0.9.7b PHP/4.3.2 Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6.8.100mdk) mod_perl/1.99_11 Perl/v5.8.3 mod_ssl/2.0.48 OpenSSL/0.9.7c PHP/4.3.4 Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6mdk) PHP/4.3.4 Apache-AdvancedExtranetServer/2.0.53 (Mandrakelinux/PREFORK-9mdk) mod_ssl/2.0.53 OpenSSL/0.9.7e PHP/4.3.10 mod_perl/1.999.21 Perl/v5.8.6 Apache Coyote/1.0 Apache-Coyote/1.1 apachejserv/1.0.1 apache-ssl-us Apache Tomcat Apache Tomcat/4.0.3 Apache Tomcat/4.0.6 (HTTP/1.1 Connector) Apache Tomcat/4.1.10 Apache Tomcat/4.1.12 (HTTP/1.1 Connector) Apache Tomcat/4.1.27-LE-jdk14 (HTTP/1.1 Connector) aserve Aspen/0.8 ASP.NET ATPhttpd Avaya CMBE/2 Avaya CMBE/2.0.0 avenida Avirt Avocent DSView 3/3 Avocent DSView 3/3.7.0.71 AV-TECH AV787 Video Web Server awhttpd awselb/2.0 BBC 05.20.050; coda 10.00.123 BBC 06.00.083; ovbbccb 06.00.083 BBC 11.00.044; ovbbcrcp 11.00.044 BBC 11.10.035; ovbbccb 11.10.035 BBC 11.13.007; ovbbccb unknown version BBC 2.6.0.7; com.hp.openview.bbc.LLBServer 2.6.0.7 BBC 2.6.0.7; com.hp.openview.Coda 0.0.1 BigIP BIG-IP bkhttp/0.3 Blazix/1.2.1 BlueCoat-Security-Appliance boa Boa/0.92p OS-9 Version Boa/0.93.15 Boa/0.93.15 (with Intersil Extensions) Boa/0.94.14rc18-ipcam Boa/0.94.14rc21 boulevard Brickserver Modifications camera cern chainpoint-node ChaiServer Check Point SVN foundation Cherokee/0.2.7 CherryPy/3 CherryPy/3.1.2 Cisco AWARE 2.0 cisco-CPA cisco ios cisco-IOS cisco-IOS/12.1 HTTP-server/1.0(1) Citrix Web PN Server cl-http cloudflare cloudflare-nginx CloudFront Cobalt com.hp.openview.bbc.LLBServer 2.6.8.1 com.hp.openview.Coda 0.0.1 commerce-builder CompaqHTTPServer CompaqHTTPServer/4.1 CompaqHTTPServer/9.9 HP System Management Homepage CompaqHTTPServer/9.9 HP System Management Homepage/2.1.5.146 CompaqHTTPServer/9.9 HP System Management Homepage/3.0.1.73 httpd/2.2.6+ CompaqHTTPServer/9.9 HP System Management Homepage/6.0.0.96 httpd/2.2.6+ Conexant-EmWeb/R6_1_0 cosmos CouchDB/2.1.1 (Erlang OTP/20) Cougar/9.01.01.3841 cpaneld cpsrvd cpsrvd/11.44.3.0 CradlepointHTTPService/1.0.0 Cross Web Server CUPS/1.1 CUPS/1.7 IPP/2.1 cwpsrv Darwin/10.2.0, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Debian/4.0r8 DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0 Debian/4.0 UPnP/1.0 miniupnpd/1.0 Debian/wheezy/sid UPnP/1.1 MiniUPnPd/1.8 DeleGate/7.7.0 DNVRS-Webs DrayTek/Vigor2130 UPnP/1.0 miniupnpd/1.0 DVRDVS-Webs dwhttpd EHTTP/1.1 eHTTP v2.0 Embedded HTTP Server Embedthis-Appweb/3.2.3 Embedthis-http Embedthis-http/4.0.0 emwac EnergyICT RTU 101-F25CE1-1524 enterpriseweb Eserv/2.97 Essentia/2.1 Ews/0 Ews/0.1 EWS-NIC3/6.31 EWS-NIC4/13.39 EWS-NIC4/13.40 falcon Fedora/10 UPnP/1.0 MiniUPnPd/1.4 Fedora/8 UPnP/1.0 miniupnpd/1.0 FedoraCore/6 UPnP/1.0 miniupnpd/1.0 fnord Folkweb FreeBSD/8.2-RELEASE-p4 DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0.24 frontier frontpage FUHO-DVR GFE/1 GFE/1.3 GlassFish GoAhead-Webs GoAhead-Webs/2.5.0 GoAhead-Webs/2.5.0 PeerSec-MatrixSSL/3.4.2-OPEN Gordian Embedded goserve gosite gSOAP/2.7 gunicorn/19.7.1 gws HeiTel GmbH Web Server [V1.15/V1.14/V1.3] HeiTel GmbH Web Server [V1.26/V1.15/V1.7] Helix Server Version 9.0.4.960 (linux-2.2-libc6-i586-server) (RealServer compatible) Helix Server Version 9.0.4.960 (win32) (RealServer compatible) hellbent java webserver v0.1 Hikvision-Webs homedoor HP Apache-based Web Server/1.3.26 (Unix) HP Apache-based Web Server/1.3.26 (Unix) mod_ssl/2.8.9 OpenSSL/0.9.6c HP-ChaiServer/2.2 HP-ChaiSOE/1.0 HP HTTP Server; Hewlett-Packard HP Designjet T520 36in - ABC123; Serial Number: 0123456789; Built:Tue Sep 09, 2014 08:32:54AM {012345678901} HP HTTP Server; HP Officejet 6500 E709n - CB057A; Serial Number: abc123; Rainbow Built:Sat Dec 13, 2008 10:58:21AM {abc123, ASIC id 0x00ffc2105} HP HTTP Server; HP Photosmart C309a series - CC335A; Serial Number: abc123; Vader Built:Wed Apr 15, 2009 11:40:58AM {abc123, ASIC id 0x00280004} HP-iLO-Server/1.30 HPSMH HP Web Jetadmin 10.3.85669 HP Web Jetadmin 10.3.91358 (10.3 SR5) HP Web Jetadmin/2.0.50 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m HP Web Jetadmin/2 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m HP-Web-Server httpd HttpFileServer httpd hyperwave IBM_HTTP_Server IBM_HTTP_SERVER IBM-HTTP-Server/1.0 IBM_HTTP_Server/1.3.12 Apache/1.3.12 (Unix) IBM_HTTP_SERVER/1.3.19.2  Apache/1.3.20 (Win32) IBM_HTTP_SERVER/1.3.28.1-PK16139  Apache/1.3.28 (Unix) IBM_HTTP_Server/2.0.42.2-PK25355 Apache/2.0.47 (Unix) DAV/2 IBM_HTTP_Server/2.0.47.1 Apache/2.0.47 (Unix) DAV/2 PHP/4.3.8 IBM_HTTP_Server/2.0.47.1-PK01070 Apache/2.0.47 (Win32) PHP/5.0.4 IBM_HTTP_Server/6.0.2.19 Apache/2.0.47 (Unix) IBM_HTTP_Server/6.0.2 Apache/2.0.47 (Unix) IBM_HTTP_Server/6.0 Apache/2.0.47 (Unix) DAV/2 IBM_HTTP_Server/6.1 Apache/2.0.47 (Win32) PHP/5.1.1 IBM_HTTP_Server/7.0.0.9 (Unix) IBM HTTP Server/V5R3M0 ibm internet connection server IdeaWebServer/0.83.74 IdeaWebServer/v0.70 Intel(R) Active Management Technology Intel(R) Active Management Technology 7.1.86 Intel(R) Standard Manageability 5.0.50 Intel(R) Standard Manageability 9.0.3 IPCamera Login IPG8000 iPlanet-Web-Proxy-Server/3.6 iPlanet-Web-Proxy-Server/3.6-SP5 ipos/7.0 UPnP/1.0 TL-WR740N/1.0 ipos/7.0 UPnP/1.0 TL-WR740N/1.0/2.0 ipos/7.0 UPnP/1.0 TL-WR740N/4.0 ipos/7.0 UPnP/1.0 TL-WR741N/1.0/2.0 ipos/7.0 UPnP/1.0 TL-WR741N/4.0 ipos/7.0 UPnP/1.0 TL-WR841N/6.0/7.0 ipos/7.0 UPnP/1.0 TL-WR841N/8.0 ipos/7.0 UPnP/1.0 TL-WR940N/1.0 ipos/7.0 UPnP/1.0 TL-WR941N/2.0 Ipswitch-IMail/5.08 Ipswitch-IMail/7.07 Ipswitch-IMail/7.11 Ipswitch-IMail/8.05 ISOS/9.0 UPnP/1.0 Conexant-EmWeb/R6_1_0 Jaguar Server jakarta-tomcat-4.0.1 JavaWebServer JBoss-EAP/7 JC-HTTPD/1 JC-HTTPD/1.11.14 JC-SHTTPD/1 JC-SHTTPD/1.17.20 JetAdmin Jetty(1.4.5) Jetty/4.0.1 (SunOS 5.8 sparc) Jetty/4.2.23 (SunOS/5.9 sparc java/1.4.2_04) Jetty/4.2.x (VxWorks/WIND version 2.9 ppc java/1.1-rr-std-b12) Jetty/5.1.10 (Linux/2.6.12 i386 java/1.5.0_05) Jetty/5.1.4 (Windows Server 2008 R2/6.1 x86 java/1.5.0_22 Jetty(6.1.12.rc2) Jetty(7.6.9.v20130131) Jetty(8.1.10.v20130312) Jetty(9.4.z-SNAPSHOT) JRun/3.1 KazaaClient kHTTPd 0.1.6 LabVIEW/5.1.1 Lasso/3.6.5 lighttpd lighttpd/1.3.7 (Mar 23 2007/16:00:15) lighttpd/1.4.16 LilHTTP/2.1 Linux/2.4.18_mvl30-ixdp425, UPnP/1.0, Intel SDK for UPnP devices/1.3.1 Linux/2.4.20-46.7asp, UPnP/1.0, Portable SDK for UPnP devices/1.6.17 Linux/2.4.21 UPnP/1.0 miniupnpd/1.0 LINUX/2.4 UPnP/1.0 BRCM400/1.0 Linux/2.6.10_dev-malta-mips2_fp_le, UPnP/1.0, Intel SDK for UPnP devices /1.2 Linux/2.6.10-iop1-1, UPnP/1.0, Portable SDK for UPnP devices/1.4.1 Linux/2.6.12-5.1-brcmstb-dm800, UPnP/1.0, Portable SDK for UPnP devices/1.6.0 Linux/2.6.12.6-arm1-040, UPnP/1.0, Portable SDK for UPnP devices/1.6.5.2 Linux/2.6.12.6-VENUS, UPnP/1.0, Portable SDK for UPnP devices/1.6.10 Linux/2.6.13, UPnP/1.0, Portable SDK for UPnP devices/1.6.0 Linux/2.6.18_pro500-davinci_N03A_IPCAM_1.0-g5c649288-dirty, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.23.17_stm23_0125dorade00 UPnP/1.0 DLNADOC/1.50 Portable SDK for UPnP devices/1.4.6-5 Linux/2.6.28-11-server, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.28-17-generic, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.28.1-xxxx-std-ipv4-32, UPnP/1.0, Portable SDK for UPnP devices/1.4.3 Linux/2.6.28, UPnP/1.0, Portable SDK for UPnP devices/1.6.10 Linux/2.6.29.6-217.2.3.fc11.i686.PAE UPnP/1.0 miniupnpd/1.0 Linux/2.6.32-220.7.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-24-generic, UPnP/1.0, Portable SDK for UPnP devices/1.6.6 Linux/2.6.32-279.11.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-279.1.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.13 Linux/2.6.32-279.14.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.14 Linux/2.6.32-279.14.1.el6.x86_64, UPnP/1.0, Portable SDK for UPnP devices/1.6.15 Linux/2.6.36+ DLNADOC/1.50 UPnP/1.0 MiniDLNA/1.0 Linux/3.0.8 UPnP/1.0 DLNADOC/1.50 Portable SDK for UPnP devices/1.6.6 Linux-amd64-2.6.18-238.9.1.el5, UPnP/1.0, PMS/1.52.1 Linux/Cross_compiled UPnP/1.0 miniupnpd/1.0 Linux-i386-2.6.33.2, UPnP/1.0, PMS/1.21.1 Linux Mips 2.4.20 UPnP/1.0 MiniUPnPd/1.2 Linux UPnP/1.0 Huawei-ATP-IGD Linux, UPnP/1.0, Intel SDK for UPnP devices /1.2 Linux UPnP/1.0 Sonos/31.3-22220 (ANVIL) Linux UPnP/1.0 Sonos/34.16-37101 (ZP120) Linux UPnP/1.0 Sonos/36.4-41270 (WD100) Linux UPnP/1.0 Sonos/39.2-47040c (ZPS1) Linux UPnP/1.0 Sonos/47.2-59120 (BR100) Linux UPnP/1.0 Sonos/47.2-59120 (ZPS3) ListManagerWeb/8.8a (based on Tcl-Webserver/3.4.2) LiteSpeed LiteSpeed/5.2.8 Enterprise Lotus Lotus-Domino Lotus-Domino/0 Lotus-Domino/5.0.8 Lotus-Domino/Release Lotus-Domino/Release-4.6.7(Intl) Lotus Expeditor Web Container/6 Lotus Expeditor Web Container/6.1 Loxone Miniserver some name UPnP/1.0 Mac_OS_X-x86_64-10.5.8, UPnP/1.0, PMS/1.20 Mbedthis-Appweb/2 Mbedthis-Appweb/2.4.0 Mbedthis-AppWeb/2.4.0 Mbedthis-Appweb/2.4.2 micro_httpd Microplex emHTTPD/1 Microplex emHTTPD/1.0 Microplex emHTTPD/1.1 Microsoft-HTTPAPI/2.0 Microsoft-IIS Microsoft-IIS/4.0 Microsoft-IIS/5.0 Microsoft-IIS/5.1 Microsoft-IIS/6.0 Microsoft-IIS/7.0 Microsoft-IIS/7.5 Microsoft-IIS/8.0 Microsoft-IIS/8.5 Microsoft-IIS/9.0 Microsoft-PWS/4.0 Microsoft-PWS-95/4.0 Microsoft-WinCE/4.10 Microsoft-WinCE/4.20 Microsoft-WinCE/5.0 Microsoft WinCE Fidelix v11.50.29 Mikrotik HttpProxy Mini Dome IP Camera mini_httpd mini_httpd/1.14 23jun2000 mini_httpd/1 23jun2000 MiniServ/0.01 mod_security/1.71 Mongrel 1 Mongrel 1.1.5 Monkey/0.6.2 MS-MFC-HttpSvr/1.0 MS .NET Remoting, MS .NET CLR 2.0.50727.42 mt-daapd/0.2.4.1 mt-daapd/svn-999 myCIO Mylo/0.2.0 MyWebServer/1.01 ncsa neowebscript NetApp/7.2.1.1 NetApp/7.3.4P1 NetApp//8.1RC2 NetCache appliance (NetApp/5.3.1R3) NetCache appliance (NetApp/5.4R2D2) NetCache appliance (NetApp/5.6.1D22) NetCache appliance (NetApp/6.0.2P1) NetCache appliance (NetApp/6.0.4) NetCache appliance (NetApp/6.1RC2) netcloak NET-DK/1.0 NET-DK 1.1 Netgear/1.0 UPnP/1.0 miniupnpd/1.0 netpresenz Netscape-Enterprise/3.5.1 Netscape-Enterprise/3.6 SP3 Netscape-Enterprise/6.0 NetWare Netwave IP Camera nginx nginx/0.8.53 nginx/0.8.53 + Phusion Passenger 3.0.0 (mod_rails/mod_rack) nginx + Phusion Passenger nginx + Phusion Passenger 5.1.11 Niagara Web Server/3.8.111 NS_6.1 NSC/0.6.4 (JVM) nsl Nucleus/4.3 UPnP/1.0 Virata-EmWeb/R6_2_0 NULLhttpd/0.5.1 OmniHTTPd open-market-secure-webserver openresty openresty/1.13.6.2 OpenTV/5.40 OpenVPN-AS OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.2 OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.4 OpenWRT/kamikaze UPnP/1.0 MiniUPnPd/1.5 Oracle9iAS/9.0.2.3.0 Oracle HTTP Server Oracle9iAS-Web-Cache/9.0.2.3.0 (N) Oracle9iAS/9.0.3.1 Oracle HTTP Server Oracle9iAS-Web-Cache/9.0.3.1.0 (N) Oracle-Application-Server-10g Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server Oracle-Application-Server-10g/10.1.2.2.0 Oracle-HTTP-Server OracleAS-Web-Cache-10g/10.1.2.2.0 (N;ecid\r\nContent-Type: text/html\r\nContent-Length: 84\r\n\r\n<html>\n<head>\n  <title>hello</title>\n</head>\n<body>\n  <h1>hello</h1>\n</body>\n</html>",
   "datamd5" : "708f3422aae984094ce690f91472f63c",
   "datammh3" : 407638299,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "VULTR",
      "organization" : "The Constant Company, LLC",
      "subnet" : "70.34.192.0/19"
   },
   "host" : [
      70
   ],
   "hostname" : [
      "70.34.220.6.vultrusercontent.com"
   ],
   "ip" : "70.34.220.6",
   "ipv6" : "false",
   "latitude" : "59.3779",
   "location" : "59.3779,17.9155",
   "longitude" : "17.9155",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "VxWorks",
   "osbits" : 32,
   "osdistribution" : "Amazon",
   "osvendor" : "Wind River",
   "port" : 4782,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "70.34.220.6.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "220.6.vultrusercontent.com",
      "34.220.6.vultrusercontent.com",
      "6.vultrusercontent.com"
   ],
   "subnet" : "70.34.192.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

111.9.22.204

Network

111.9.0.0/18

Device

<enterprise field>: device.class

Operating System

Microsoft Windows

URL

http://111.9.22.204:4782/ 200

HTTP Title

四川百和医疗科技有限公司

ASN

AS9808

Organization

China Mobile Communications Group Co., Ltd.

Protocol

http

Source

datascan

Operating System

Microsoft Windows

Product

OpenResty OpenResty 1.21.4.1

CPE(s)

<enterprise field>: cpe

Data MD5

ed07633aa3b91be812304b885d258918

HTTP Header MD5

ae18bc322381a179bf7419afbeb79c5c

HTTP Body MD5

40f3d4de9f57b7ec0985a5bd16903bd5

HTTP/1.1 200 OK
Server: openresty/1.21.4.1
Date: Thu, 21 Nov 2024 08:40:33 GMT
Content-Type: text/html
Content-Length: 252789
Last-Modified: Mon, 08 Jan 2024 02:09:23 GMT
Connection: close
ETag: "659b5953-3db75"
Accept-Ranges: bytes

<!doctype html>
<html data-n-head-ssr lang="en" data-n-head="%7B%22lang%22:%7B%22ssr%22:%22en%22%7D%7D">
  <head>
    <title>四川百和医疗科技有限公司</title><meta data-n-head="ssr" charset="utf-8"><meta data-n-head="ssr" name="viewport" content="width=device-width,initial-scale=1"><meta data-n-head="ssr" data-hid="description" name="description" content=""><meta data-n-head="ssr" name="format-detection" content="telephone=no"><meta data-n-head="ssr" data-hid="charset" charset="utf-8"><meta data-n-head="ssr" data-hid="mobile-web-app-capable" name="mobile-web-app-capable" content="yes"><meta data-n-head="ssr" data-hid="apple-mobile-web-app-title" name="apple-mobile-web-app-title" content="byhoo-official-website"><meta data-n-head="ssr" data-hid="og:type" name="og:type" property="og:type" content="website"><meta data-n-head="ssr" data-hid="og:title" name="og:title" property="og:title" content="byhoo-official-website"><meta data-n-head="ssr" data-hid="og:site_name" name="og:site_name" property="og:site_name" content="byhoo-official-website"><meta data-n-head="ssr" data-hid="og:description" name="og:description" property="og:description" content="#### Description 百和官网"><link data-n-head="ssr" rel="icon" type="image/x-icon" href="/favicon.ico"><link data-n-head="ssr" data-hid="shortcut-icon" rel="shortcut icon" href="/_nuxt/icons/icon_64x64.e3e9fb.png"><link data-n-head="ssr" data-hid="apple-touch-icon" rel="apple-touch-icon" href="/_nuxt/icons/icon_512x512.e3e9fb.png" sizes="512x512"><link data-n-head="ssr" rel="manifest" href="/_nuxt/manifest.fa0295dd.json" data-hid="manifest"><link rel="preload" href="/_nuxt/a18fcf0.js" as="script"><link rel="preload" href="/_nuxt/1.fc046e19a0dae1091d60.js" as="script"><link rel="preload" href="/_nuxt/18.923fb97123f8047810cf.js" as="script"><link rel="preload" href="/_nuxt/0.f0ace925215a0ac2d765.js" as="script"><link rel="preload" href="/_nuxt/9.6ac5544b2777c9b7cc1e.js" as="script"><style data-vue-ssr-id="7f914dc6:0 57734ff2:0 517a8dd7:0 2a7eb0d2:0 1adc95f8:0 acb6082c:0 40ce701f:0 29488e0e:0">@font-face{font-family:element-icons;src:url(/_nuxt/fonts/element-icons.313f7da.woff) format("woff"),url(/_nuxt/fonts/element-icons.4520188.ttf) format("truetype");font-weight:400;font-display:auto;font-style:normal}[class*=" el-icon-"],[class^=el-icon-]{font-family:element-icons!important;speak:none;font-style:normal;font-weight:400;font-feature-settings:normal;font-variant:normal;text-transform:none;line-height:1;vertical-align:baseline;display:inline-block;-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}.el-icon-ice-cream-round:before{content:"\e6a0"}.el-icon-ice-cream-square:before{content:"\e6a3"}.el-icon-lollipop:before{content:"\e6a4"}.el-icon-potato-strips:before{content:"\e6a5"}.el-icon-milk-tea:before{content:"\e6a6"}.el-icon-ice-drink:before{content:"\e6a7"}.el-icon-ice-tea:before{content:"\e6a9"}.el-icon-coffee:before{content:"\e6aa"}.el-icon-orange:before{content:"\e6ab"}.el-icon-pear:before{content:"\e6ac"}.el-icon-apple:before{content:"\e6ad"}.el-icon-cherry:before{content:"\e6ae"}.el-icon-watermelon:before{content:"\e6af"}.el-icon-grape:before{content:"\e6b0"}.el-icon-refrigerator:before{content:"\e6b1"}.el-icon-goblet-square-full:before{content:"\e6b2"}.el-icon-goblet-square:before{content:"\e6b3"}.el-icon-goblet-full:before{content:"\e6b4"}.el-icon-goblet:before{content:"\e6b5"}.el-icon-cold-drink:before{content:"\e6b6"}.el-icon-coffee-cup:before{content:"\e6b8"}.el-icon-water-cup:before{content:"\e6b9"}.el-icon-hot-water:before{content:"\e6ba"}.el-icon-ice-cream:before{content:"\e6bb"}.el-icon-dessert:before{content:"\e6bc"}.el-icon-sugar:before{content:"\e6bd"}.el-icon-tableware:before{content:"\e6be"}.el-icon-burger:before{content:"\e6bf"}.el-icon-knife-fork:before{content:"\e6c1"}.el-icon-fork-spoon:before{content:"\e6c2"}.el-icon-chicken:before{content:"\e6c3"}.el-icon-food:before{content:"\e6c4"}.el-icon-dish-1:before{content:"\e6c5"}.el-icon-dish:before{content:"\e6c6"}.el-icon-moon-night:before{content:"\e6ee"}.el-icon-moon:before{content:"\e6f0"}.el-icon-cloudy-and-sunny:before{content:"\e6f1"}.el-icon-partly-cloudy:before{content:"\e6f2"}.el-icon-cloudy:before{content:"\e6f3"}.el-icon-sunny:before{content:"\e6f6"}.el-icon-sunset:before{content:"\e6f7"}.el-icon-sunrise-1:before{content:"\e6f8"}.el-icon-sunrise:before{content:"\e6f9"}.el-icon-heavy-rain:before{content:"\e6fa"}.el-icon-lightning:before{content:"\e6fb"}.el-icon-light-rain:before{content:"\e6fc"}.el-icon-wind-power:before{content:"\e6fd"}.el-icon-baseball:before{content:"\e712"}.el-icon-soccer:before{content:"\e713"}.el-icon-football:before{content:"\e715"}.el-icon-basketball:before{content:"\e716"}.el-icon-ship:before{content:"\e73f"}.el-icon-truck:before{content:"\e740"}.el-icon-bicycle:before{content:"\e741"}.el-icon-mobile-phone:before{content:"\e6d3"}.el-icon-service:before{content:"\e6d4"}.el-icon-key:before{content:"\e6e2"}.el-icon-unlock:before{content:"\e6e4"}.el-icon-lock:before{content:"\e6e5"}.el-icon-watch:before{content:"\e6fe"}.el-icon-watch-1:before{content:"\e6ff"}.el-icon-timer:before{content:"\e702"}.el-icon-alarm-clock:before{content:"\e703"}.el-icon-map-location:before{content:"\e704"}.el-icon-delete-location:before{content:"\e705"}.el-icon-add-location:before{content:"\e706"}.el-icon-location-information:before{content:"\e707"}.el-icon-location-outline:before{content:"\e708"}.el-icon-location:before{content:"\e79e"}.el-icon-place:before{content:"\e709"}.el-icon-discover:before{content:"\e70a"}.el-icon-first-aid-kit:before{content:"\e70b"}.el-icon-trophy-1:before{content:"\e70c"}.el-icon-trophy:before{content:"\e70d"}.el-icon-medal:before{content:"\e70e"}.el-icon-medal-1:before{content:"\e70f"}.el-icon-stopwatch:before{content:"\e710"}.el-icon-mic:before{content:"\e711"}.el-icon-copy-document:before{content:"\e718"}.el-icon-full-screen:before{content:"\e719"}.el-icon-switch-button:before{content:"\e71b"}.el-icon-aim:before{content:"\e71c"}.el-icon-crop:before{content:"\e71d"}.el-icon-odometer:before{content:"\e71e"}.el-icon-time:before{content:"\e71f"}.el-icon-bangzhu:before{content:"\e724"}.el-icon-close-notification:before{content:"\e726"}.el-icon-microphone:before{content:"\e727"}.el-icon-turn-off-microphone:before{content:"\e728"}.el-icon-position:before{content:"\e729"}.el-icon-postcard:before{content:"\e72a"}.el-icon-message:before{content:"\e72b"}.el-icon-chat-line-square:before{content:"\e72d"}.el-icon-chat-dot-square:before{content:"\e72e"}.el-icon-chat-dot-round:before{content:"\e72f"}.el-icon-chat-square:before{content:"\e730"}.el-icon-chat-line-round:before{content:"\e731"}.el-icon-chat-round:before{content:"\e732"}.el-icon-set-up:before{content:"\e733"}.el-icon-turn-off:before{content:"\e734"}.el-icon-open:before{content:"\e735"}.el-icon-connection:before{content:"\e736"}.el-icon-link:before{content:"\e737"}.el-icon-cpu:before{content:"\e738"}.el-icon-thumb:before{content:"\e739"}.el-icon-female:before{content:"\e73a"}.el-icon-male:before{content:"\e73b"}.el-icon-guide:before{content:"\e73c"}.el-icon-news:before{content:"\e73e"}.el-icon-price-tag:before{content:"\e744"}.el-icon-discount:before{content:"\e745"}.el-icon-wallet:before{content:"\e747"}.el-icon-coin:before{content:"\e748"}.el-icon-money:before{content:"\e749"}.el-icon-bank-card:before{content:"\e74a"}.el-icon-box:before{content:"\e74b"}.el-icon-present:before{content:"\e74c"}.el-icon-sell:before{content:"\e6d5"}.el-icon-sold-out:before{content:"\e6d6"}.el-icon-shopping-bag-2:before{content:"\e74d"}.el-icon-shopping-bag-1:before{content:"\e74e"}.el-icon-shopping-cart-2:before{content:"\e74f"}.el-icon-shopping-cart-1:before{content:"\e750"}.el-icon-shopping-cart-full:before{content:"\e751"}.el-icon-smoking:before{content:"\e752"}.el-icon-no-smoking:before{content:"\e753"}.el-icon-house:before{content:"\e754"}.el-icon-table-lamp:before{content:"\e755"}.el-icon-school:before{content:"\e756"}.el-icon-office-building:before{content:"\e757"}.el-icon-toilet-paper:before{content:"\e758"}.el-icon-notebook-2:before{content:"\e759"}.el-icon-notebook-1:before{content:"\e75a"}.el-icon-files:before{content:"\e75b"}.el-icon-collection:before{content:"\e75c"}.el-icon-receiving:before{content:"\e75d"}.el-icon-suitcase-1:before{content:"\e760"}.el-icon-suitcase:before{content:"\e761"}.el-icon-film:before{content:"\e763"}.el-icon-collection-tag:before{content:"\e765"}.el-icon-data-analysis:before{content:"\e766"}.el-icon-pie-chart:before{content:"\e767"}.el-icon-data-board:before{content:"\e768"}.el-icon-data-line:before{content:"\e76d"}.el-icon-reading:before{content:"\e769"}.el-icon-magic-stick:before{content:"\e76a"}.el-icon-coordinate:before{content:"\e76b"}.el-icon-mouse:before{content:"\e76c"}.el-icon-brush:before{content:"\e76e"}.el-icon-headset:before{content:"\e76f"}.el-icon-umbrella:before{content:"\e770"}.el-icon-scissors:before{content:"\e771"}.el-icon-mobile:before{content:"\e773"}.el-icon-attract:before{content:"\e774"}.el-icon-monitor:before{content:"\e775"}.el-icon-search:before{content:"\e778"}.el-icon-takeaway-box:before{content:"\e77a"}.el-icon-paperclip:before{content:"\e77d"}.el-icon-printer:before{content:"\e77e"}.el-icon-document-add:before{content:"\e782"}.el-icon-document:before{content:"\e785"}.el-icon-document-checked:before{content:"\e786"}.el-icon-document-copy:before{content:"\e787"}.el-icon-document-delete:before{content:"\e788"}.el-icon-document-remove:before{content:"\e789"}.el-icon-tickets:before{content:"\e78b"}.el-icon-folder-checked:before{content:"\e77f"}.el-icon-folder-delete:before{content:"\e780"}.el-icon-folder-remove:before{content:"\e781"}.el-icon-folder-add:before{content:"\e783"}.el-icon-folder-opened:before{content:"\e784"}.el-icon-folder:before{content:"\e78a"}.el-icon-edit-outline:before{content:"\e764"}.el-icon-edit:before{content:"\e78c"}.el-icon-date:before{content:"\e78e"}.el-icon-c-scale-to-original:before{content:"\e7c6"}.el-icon-view:before{content:"\e6ce"}.el-icon-loading:before{content:"\e6cf"}.el-icon-rank:before{content:"\e6d1"}.el-icon-sort-down:before{content:"\e7c4"}.el-icon-sort-up:before{content:"\e7c5"}.el-icon-sort:before{content:"\e6d2"}.el-icon-finished:before{content:"\e6cd"}.el-icon-refresh-left:before{content:"\e6c7"}.el-icon-refresh-right:before{content:"\e6c8"}.el-icon-refresh:before{content:"\e6d0"}.el-icon-video-play:before{content:"\e7c0"}.el-icon-video-pause:before{content:"\e7c1"}.el-icon-d-arrow-right:before{content:"\e6dc"}.el-icon-d-arrow-left:before{content:"\e6dd"}.el-icon-arrow-up:before{content:"\e6e1"}.el-icon-arrow-down:before{content:"\e6df"}.el-icon-arrow-right:before{content:"\e6e0"}.el-icon-arrow-left:before{content:"\e6de"}.el-icon-top-right:before{content:"\e6e7"}.el-icon-top-left:before{content:"\e6e8"}.el-icon-top:before{content:"\e6e6"}.el-icon-bottom:before{content:"\e6eb"}.el-icon-right:before{content:"\e6e9"}.el-icon-back:before{content:"\e6ea"}.el-icon-bottom-right:before{content:"\e6ec"}.el-icon-bottom-left:before{content:"\e6ed"}.el-icon-caret-top:before{content:"\e78f"}.el-icon-caret-bottom:before{content:"\e790"}.el-icon-caret-right:before{content:"\e791"}.el-icon-caret-left:before{content:"\e792"}.el-icon-d-caret:before{content:"\e79a"}.el-icon-share:before{content:"\e793"}.el-icon-menu:before{content:"\e798"}.el-icon-s-grid:before{content:"\e7a6"}.el-icon-s-check:before{content:"\e7a7"}.el-icon-s-data:before{content:"\e7a8"}.el-icon-s-opportunity:before{content:"\e7aa"}.el-icon-s-custom:before{content:"\e7ab"}.el-icon-s-claim:before{content:"\e7ad"}.el-icon-s-finance:before{content:"\e7ae"}.el-icon-s-comment:before{content:"\e7af"}.el-icon-s-flag:before{content:"\e7b0"}.el-icon-s-marketing:before{content:"\e7b1"}.el-icon-s-shop:before{content:"\e7b4"}.el-icon-s-open:before{content:"\e7b5"}.el-icon-s-management:before{content:"\e7b6"}.el-icon-s-ticket:before{content:"\e7b7"}.el-icon-s-release:before{content:"\e7b8"}.el-icon-s-home:before{content:"\e7b9"}.el-icon-s-promotion:before{content:"\e7ba"}.el-icon-s-operation:before{content:"\e7bb"}.el-icon-s-unfold:before{content:"\e7bc"}.el-icon-s-fold:before{content:"\e7a9"}.el-icon-s-platform:before{content:"\e7bd"}.el-icon-s-order:before{content:"\e7be"}.el-icon-s-cooperation:before{content:"\e7bf"}.el-icon-bell:before{content:"\e725"}.el-icon-message-solid:before{content:"\e799"}.el-icon-video-camera:before{content:"\e772"}.el-icon-video-camera-solid:before{content:"\e796"}.el-icon-camera:before{content:"\e779"}.el-icon-camera-solid:before{content:"\e79b"}.el-icon-download:before{content:"\e77c"}.el-icon-upload2:before{content:"\e77b"}.el-icon-upload:before{content:"\e7c3"}.el-icon-picture-outline-round:before{content:"\e75f"}.el-icon-picture-outline:before{content:"\e75e"}.el-icon-picture:before{content:"\e79f"}.el-icon-close:before{content:"\e6db"}.el-icon-check:before{content:"\e6da"}.el-icon-plus:before{content:"\e6d9"}.el-icon-minus:before{content:"\e6d8"}.el-icon-help:before{content:"\e73d"}.el-icon-s-help:before{content:"\e7b3"}.el-icon-circle-close:before{content:"\e78d"}.el-icon-circle-check:before{content:"\e720"}.el-icon-circle-plus-outline:before{content:"\e723"}.el-icon-remove-outline:before{content:"\e722"}.el-icon-zoom-out:before{content:"\e776"}.el-icon-zoom-in:before{content:"\e777"}.el-icon-error:before{content:"\e79d"}.el-icon-success:before{content:"\e79c"}.el-icon-circle-plus:before{content:"\e7a0"}.el-icon-remove:before{content:"\e7a2"}.el-icon-info:before{content:"\e7a1"}.el-icon-question:before{content:"\e7a4"}.el-icon-warning-outline:before{content:"\e6c9"}.el-icon-warning:before{content:"\e7a3"}.el-icon-goods:before{content:"\e7c2"}.el-icon-s-goods:before{content:"\e7b2"}.el-icon-star-off:before{content:"\e717"}.el-icon-star-on:before{content:"\e797"}.el-icon-more-outline:before{content:"\e6cc"}.el-icon-more:before{content:"\e794"}.el-icon-phone-outline:before{content:"\e6cb"}.el-icon-phone:before{content:"\e795"}.el-icon-user:before{content:"\e6e3"}.el-icon-user-solid:before{content:"\e7a5"}.el-icon-setting:before{content:"\e6ca"}.el-icon-s-tools:before{content:"\e7ac"}.el-icon-delete:before{content:"\e6d7"}.el-icon-delete-solid:before{content:"\e7c9"}.el-icon-eleme:before{content:"\e7c7"}.el-icon-platform-eleme:before{content:"\e7ca"}.el-icon-loading{animation:rotating 2s linear infinite}.el-icon--right{margin-left:5px}.el-icon--left{margin-right:5px}@keyframes rotating{0%{transform:rotate(0)}to{transform:rotate(1turn)}}.el-pagination{white-space:nowrap;padding:2px 5px;color:#303133;font-weight:700}.el-pagination:after,.el-pagination:before{display:table;content:""}.el-pagination:after{clear:both}.el-pagination button,.el-pagination span:not([class*=suffix]){display:inline-block;font-size:13px;min-width:35.5px;height:28px;line-height:28px;vertical-align:top;box-sizing:border-box}.el-pagination .el-input__inner{text-align:center;-moz-appearance:textfield;line-height:normal}.el-pagination .el-input__suffix{right:0;transform:scale(.8)}.el-pagination .el-select .el-input{width:100px;margin:0 5px}.el-pagination .el-select .el-input .el-input__inner{padding-right:25px;border-radius:3px}.el-pagination button{border:none;padding:0 6px;background:0 0}.el-pagination button:focus{outline:0}.el-pagination button:hover{color:#409eff}.el-pagination button:disabled{color:#c0c4cc;background-color:#fff;cursor:not-allowed}.el-pagination .btn-next,.el-pagination .btn-prev{background:50% no-repeat #fff;background-size:16px;cursor:pointer;margin:0;color:#303133}.el-pagination .btn-next .el-icon,.el-pagination .btn-prev .el-icon{display:block;font-size:12px;font-weight:700}.el-pagination .btn-prev{padding-right:12px}.el-pagination .btn-next{padding-left:12px}.el-pagination .el-pager li.disabled{color:#c0c4cc;cursor:not-allowed}.el-pager li,.el-pager li.btn-quicknext:hover,.el-pager li.btn-quickprev:hover{cursor:pointer}.el-pagination--small .btn-next,.el-pagination--small .btn-prev,.el-pagination--small .el-pager li,.el-pagination--small .el-pager li.btn-quicknext,.el-pagination--small .el-pager li.btn-quickprev,.el-pagination--small .el-pager li:l

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:41:05.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "fa0295dd.json"
         ],
         "ip" : [
            "1.21.4.1"
         ]
      },
      "http" : {
         "bodymd5" : "40f3d4de9f57b7ec0985a5bd16903bd5",
         "bodymmh3" : 13502917,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Mon, 08 Jan 2024 02:09:23 GMT"
            },
            {
               "value" : "659b5953-3db75",
               "name" : "ETag"
            }
         ],
         "headermd5" : "ae18bc322381a179bf7419afbeb79c5c",
         "headermmh3" : 1414787072,
         "title" : "\u56db\u5ddd\u767e\u548c\u533b\u7597\u79d1\u6280\u6709\u9650\u516c\u53f8"
      },
      "length" : 16384
   },
   "asn" : "AS9808",
   "city" : "Chengdu",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: openresty/1.21.4.1\r\nDate: Thu, 21 Nov 2024 08:40:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 252789\r\nLast-Modified: Mon, 08 Jan 2024 02:09:23 GMT\r\nConnection: close\r\nETag: \"659b5953-3db75\"\r\nAccept-Ranges: bytes\r\n\r\n<!doctype html>\n<html data-n-head-ssr lang=\"en\" data-n-head=\"%7B%22lang%22:%7B%22ssr%22:%22en%22%7D%7D\">\n  <head>\n    <title>\u56db\u5ddd\u767e\u548c\u533b\u7597\u79d1\u6280\u6709\u9650\u516c\u53f8</title><meta data-n-head=\"ssr\" charset=\"utf-8\"><meta data-n-head=\"ssr\" name=\"viewport\" content=\"width=device-width,initial-scale=1\"><meta data-n-head=\"ssr\" data-hid=\"description\" name=\"description\" content=\"\"><meta data-n-head=\"ssr\" name=\"format-detection\" content=\"telephone=no\"><meta data-n-head=\"ssr\" data-hid=\"charset\" charset=\"utf-8\"><meta data-n-head=\"ssr\" data-hid=\"mobile-web-app-capable\" name=\"mobile-web-app-capable\" content=\"yes\"><meta data-n-head=\"ssr\" data-hid=\"apple-mobile-web-app-title\" name=\"apple-mobile-web-app-title\" content=\"byhoo-official-website\"><meta data-n-head=\"ssr\" data-hid=\"og:type\" name=\"og:type\" property=\"og:type\" content=\"website\"><meta data-n-head=\"ssr\" data-hid=\"og:title\" name=\"og:title\" property=\"og:title\" content=\"byhoo-official-website\"><meta data-n-head=\"ssr\" data-hid=\"og:site_name\" name=\"og:site_name\" property=\"og:site_name\" content=\"byhoo-official-website\"><meta data-n-head=\"ssr\" data-hid=\"og:description\" name=\"og:description\" property=\"og:description\" content=\"#### Description \u767e\u548c\u5b98\u7f51\"><link data-n-head=\"ssr\" rel=\"icon\" type=\"image/x-icon\" href=\"/favicon.ico\"><link data-n-head=\"ssr\" data-hid=\"shortcut-icon\" rel=\"shortcut icon\" href=\"/_nuxt/icons/icon_64x64.e3e9fb.png\"><link data-n-head=\"ssr\" data-hid=\"apple-touch-icon\" rel=\"apple-touch-icon\" href=\"/_nuxt/icons/icon_512x512.e3e9fb.png\" sizes=\"512x512\"><link data-n-head=\"ssr\" rel=\"manifest\" href=\"/_nuxt/manifest.fa0295dd.json\" data-hid=\"manifest\"><link rel=\"preload\" href=\"/_nuxt/a18fcf0.js\" as=\"script\"><link rel=\"preload\" href=\"/_nuxt/1.fc046e19a0dae1091d60.js\" as=\"script\"><link rel=\"preload\" href=\"/_nuxt/18.923fb97123f8047810cf.js\" as=\"script\"><link rel=\"preload\" href=\"/_nuxt/0.f0ace925215a0ac2d765.js\" as=\"script\"><link rel=\"preload\" href=\"/_nuxt/9.6ac5544b2777c9b7cc1e.js\" as=\"script\"><style data-vue-ssr-id=\"7f914dc6:0 57734ff2:0 517a8dd7:0 2a7eb0d2:0 1adc95f8:0 acb6082c:0 40ce701f:0 29488e0e:0\">@font-face{font-family:element-icons;src:url(/_nuxt/fonts/element-icons.313f7da.woff) format(\"woff\"),url(/_nuxt/fonts/element-icons.4520188.ttf) format(\"truetype\");font-weight:400;font-display:auto;font-style:normal}[class*=\" el-icon-\"],[class^=el-icon-]{font-family:element-icons!important;speak:none;font-style:normal;font-weight:400;font-feature-settings:normal;font-variant:normal;text-transform:none;line-height:1;vertical-align:baseline;display:inline-block;-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}.el-icon-ice-cream-round:before{content:\"\\e6a0\"}.el-icon-ice-cream-square:before{content:\"\\e6a3\"}.el-icon-lollipop:before{content:\"\\e6a4\"}.el-icon-potato-strips:before{content:\"\\e6a5\"}.el-icon-milk-tea:before{content:\"\\e6a6\"}.el-icon-ice-drink:before{content:\"\\e6a7\"}.el-icon-ice-tea:before{content:\"\\e6a9\"}.el-icon-coffee:before{content:\"\\e6aa\"}.el-icon-orange:before{content:\"\\e6ab\"}.el-icon-pear:before{content:\"\\e6ac\"}.el-icon-apple:before{content:\"\\e6ad\"}.el-icon-cherry:before{content:\"\\e6ae\"}.el-icon-watermelon:before{content:\"\\e6af\"}.el-icon-grape:before{content:\"\\e6b0\"}.el-icon-refrigerator:before{content:\"\\e6b1\"}.el-icon-goblet-square-full:before{content:\"\\e6b2\"}.el-icon-goblet-square:before{content:\"\\e6b3\"}.el-icon-goblet-full:before{content:\"\\e6b4\"}.el-icon-goblet:before{content:\"\\e6b5\"}.el-icon-cold-drink:before{content:\"\\e6b6\"}.el-icon-coffee-cup:before{content:\"\\e6b8\"}.el-icon-water-cup:before{content:\"\\e6b9\"}.el-icon-hot-water:before{content:\"\\e6ba\"}.el-icon-ice-cream:before{content:\"\\e6bb\"}.el-icon-dessert:before{content:\"\\e6bc\"}.el-icon-sugar:before{content:\"\\e6bd\"}.el-icon-tableware:before{content:\"\\e6be\"}.el-icon-burger:before{content:\"\\e6bf\"}.el-icon-knife-fork:before{content:\"\\e6c1\"}.el-icon-fork-spoon:before{content:\"\\e6c2\"}.el-icon-chicken:before{content:\"\\e6c3\"}.el-icon-food:before{content:\"\\e6c4\"}.el-icon-dish-1:before{content:\"\\e6c5\"}.el-icon-dish:before{content:\"\\e6c6\"}.el-icon-moon-night:before{content:\"\\e6ee\"}.el-icon-moon:before{content:\"\\e6f0\"}.el-icon-cloudy-and-sunny:before{content:\"\\e6f1\"}.el-icon-partly-cloudy:before{content:\"\\e6f2\"}.el-icon-cloudy:before{content:\"\\e6f3\"}.el-icon-sunny:before{content:\"\\e6f6\"}.el-icon-sunset:before{content:\"\\e6f7\"}.el-icon-sunrise-1:before{content:\"\\e6f8\"}.el-icon-sunrise:before{content:\"\\e6f9\"}.el-icon-heavy-rain:before{content:\"\\e6fa\"}.el-icon-lightning:before{content:\"\\e6fb\"}.el-icon-light-rain:before{content:\"\\e6fc\"}.el-icon-wind-power:before{content:\"\\e6fd\"}.el-icon-baseball:before{content:\"\\e712\"}.el-icon-soccer:before{content:\"\\e713\"}.el-icon-football:before{content:\"\\e715\"}.el-icon-basketball:before{content:\"\\e716\"}.el-icon-ship:before{content:\"\\e73f\"}.el-icon-truck:before{content:\"\\e740\"}.el-icon-bicycle:before{content:\"\\e741\"}.el-icon-mobile-phone:before{content:\"\\e6d3\"}.el-icon-service:before{content:\"\\e6d4\"}.el-icon-key:before{content:\"\\e6e2\"}.el-icon-unlock:before{content:\"\\e6e4\"}.el-icon-lock:before{content:\"\\e6e5\"}.el-icon-watch:before{content:\"\\e6fe\"}.el-icon-watch-1:before{content:\"\\e6ff\"}.el-icon-timer:before{content:\"\\e702\"}.el-icon-alarm-clock:before{content:\"\\e703\"}.el-icon-map-location:before{content:\"\\e704\"}.el-icon-delete-location:before{content:\"\\e705\"}.el-icon-add-location:before{content:\"\\e706\"}.el-icon-location-information:before{content:\"\\e707\"}.el-icon-location-outline:before{content:\"\\e708\"}.el-icon-location:before{content:\"\\e79e\"}.el-icon-place:before{content:\"\\e709\"}.el-icon-discover:before{content:\"\\e70a\"}.el-icon-first-aid-kit:before{content:\"\\e70b\"}.el-icon-trophy-1:before{content:\"\\e70c\"}.el-icon-trophy:before{content:\"\\e70d\"}.el-icon-medal:before{content:\"\\e70e\"}.el-icon-medal-1:before{content:\"\\e70f\"}.el-icon-stopwatch:before{content:\"\\e710\"}.el-icon-mic:before{content:\"\\e711\"}.el-icon-copy-document:before{content:\"\\e718\"}.el-icon-full-screen:before{content:\"\\e719\"}.el-icon-switch-button:before{content:\"\\e71b\"}.el-icon-aim:before{content:\"\\e71c\"}.el-icon-crop:before{content:\"\\e71d\"}.el-icon-odometer:before{content:\"\\e71e\"}.el-icon-time:before{content:\"\\e71f\"}.el-icon-bangzhu:before{content:\"\\e724\"}.el-icon-close-notification:before{content:\"\\e726\"}.el-icon-microphone:before{content:\"\\e727\"}.el-icon-turn-off-microphone:before{content:\"\\e728\"}.el-icon-position:before{content:\"\\e729\"}.el-icon-postcard:before{content:\"\\e72a\"}.el-icon-message:before{content:\"\\e72b\"}.el-icon-chat-line-square:before{content:\"\\e72d\"}.el-icon-chat-dot-square:before{content:\"\\e72e\"}.el-icon-chat-dot-round:before{content:\"\\e72f\"}.el-icon-chat-square:before{content:\"\\e730\"}.el-icon-chat-line-round:before{content:\"\\e731\"}.el-icon-chat-round:before{content:\"\\e732\"}.el-icon-set-up:before{content:\"\\e733\"}.el-icon-turn-off:before{content:\"\\e734\"}.el-icon-open:before{content:\"\\e735\"}.el-icon-connection:before{content:\"\\e736\"}.el-icon-link:before{content:\"\\e737\"}.el-icon-cpu:before{content:\"\\e738\"}.el-icon-thumb:before{content:\"\\e739\"}.el-icon-female:before{content:\"\\e73a\"}.el-icon-male:before{content:\"\\e73b\"}.el-icon-guide:before{content:\"\\e73c\"}.el-icon-news:before{content:\"\\e73e\"}.el-icon-price-tag:before{content:\"\\e744\"}.el-icon-discount:before{content:\"\\e745\"}.el-icon-wallet:before{content:\"\\e747\"}.el-icon-coin:before{content:\"\\e748\"}.el-icon-money:before{content:\"\\e749\"}.el-icon-bank-card:before{content:\"\\e74a\"}.el-icon-box:before{content:\"\\e74b\"}.el-icon-present:before{content:\"\\e74c\"}.el-icon-sell:before{content:\"\\e6d5\"}.el-icon-sold-out:before{content:\"\\e6d6\"}.el-icon-shopping-bag-2:before{content:\"\\e74d\"}.el-icon-shopping-bag-1:before{content:\"\\e74e\"}.el-icon-shopping-cart-2:before{content:\"\\e74f\"}.el-icon-shopping-cart-1:before{content:\"\\e750\"}.el-icon-shopping-cart-full:before{content:\"\\e751\"}.el-icon-smoking:before{content:\"\\e752\"}.el-icon-no-smoking:before{content:\"\\e753\"}.el-icon-house:before{content:\"\\e754\"}.el-icon-table-lamp:before{content:\"\\e755\"}.el-icon-school:before{content:\"\\e756\"}.el-icon-office-building:before{content:\"\\e757\"}.el-icon-toilet-paper:before{content:\"\\e758\"}.el-icon-notebook-2:before{content:\"\\e759\"}.el-icon-notebook-1:before{content:\"\\e75a\"}.el-icon-files:before{content:\"\\e75b\"}.el-icon-collection:before{content:\"\\e75c\"}.el-icon-receiving:before{content:\"\\e75d\"}.el-icon-suitcase-1:before{content:\"\\e760\"}.el-icon-suitcase:before{content:\"\\e761\"}.el-icon-film:before{content:\"\\e763\"}.el-icon-collection-tag:before{content:\"\\e765\"}.el-icon-data-analysis:before{content:\"\\e766\"}.el-icon-pie-chart:before{content:\"\\e767\"}.el-icon-data-board:before{content:\"\\e768\"}.el-icon-data-line:before{content:\"\\e76d\"}.el-icon-reading:before{content:\"\\e769\"}.el-icon-magic-stick:before{content:\"\\e76a\"}.el-icon-coordinate:before{content:\"\\e76b\"}.el-icon-mouse:before{content:\"\\e76c\"}.el-icon-brush:before{content:\"\\e76e\"}.el-icon-headset:before{content:\"\\e76f\"}.el-icon-umbrella:before{content:\"\\e770\"}.el-icon-scissors:before{content:\"\\e771\"}.el-icon-mobile:before{content:\"\\e773\"}.el-icon-attract:before{content:\"\\e774\"}.el-icon-monitor:before{content:\"\\e775\"}.el-icon-search:before{content:\"\\e778\"}.el-icon-takeaway-box:before{content:\"\\e77a\"}.el-icon-paperclip:before{content:\"\\e77d\"}.el-icon-printer:before{content:\"\\e77e\"}.el-icon-document-add:before{content:\"\\e782\"}.el-icon-document:before{content:\"\\e785\"}.el-icon-document-checked:before{content:\"\\e786\"}.el-icon-document-copy:before{content:\"\\e787\"}.el-icon-document-delete:before{content:\"\\e788\"}.el-icon-document-remove:before{content:\"\\e789\"}.el-icon-tickets:before{content:\"\\e78b\"}.el-icon-folder-checked:before{content:\"\\e77f\"}.el-icon-folder-delete:before{content:\"\\e780\"}.el-icon-folder-remove:before{content:\"\\e781\"}.el-icon-folder-add:before{content:\"\\e783\"}.el-icon-folder-opened:before{content:\"\\e784\"}.el-icon-folder:before{content:\"\\e78a\"}.el-icon-edit-outline:before{content:\"\\e764\"}.el-icon-edit:before{content:\"\\e78c\"}.el-icon-date:before{content:\"\\e78e\"}.el-icon-c-scale-to-original:before{content:\"\\e7c6\"}.el-icon-view:before{content:\"\\e6ce\"}.el-icon-loading:before{content:\"\\e6cf\"}.el-icon-rank:before{content:\"\\e6d1\"}.el-icon-sort-down:before{content:\"\\e7c4\"}.el-icon-sort-up:before{content:\"\\e7c5\"}.el-icon-sort:before{content:\"\\e6d2\"}.el-icon-finished:before{content:\"\\e6cd\"}.el-icon-refresh-left:before{content:\"\\e6c7\"}.el-icon-refresh-right:before{content:\"\\e6c8\"}.el-icon-refresh:before{content:\"\\e6d0\"}.el-icon-video-play:before{content:\"\\e7c0\"}.el-icon-video-pause:before{content:\"\\e7c1\"}.el-icon-d-arrow-right:before{content:\"\\e6dc\"}.el-icon-d-arrow-left:before{content:\"\\e6dd\"}.el-icon-arrow-up:before{content:\"\\e6e1\"}.el-icon-arrow-down:before{content:\"\\e6df\"}.el-icon-arrow-right:before{content:\"\\e6e0\"}.el-icon-arrow-left:before{content:\"\\e6de\"}.el-icon-top-right:before{content:\"\\e6e7\"}.el-icon-top-left:before{content:\"\\e6e8\"}.el-icon-top:before{content:\"\\e6e6\"}.el-icon-bottom:before{content:\"\\e6eb\"}.el-icon-right:before{content:\"\\e6e9\"}.el-icon-back:before{content:\"\\e6ea\"}.el-icon-bottom-right:before{content:\"\\e6ec\"}.el-icon-bottom-left:before{content:\"\\e6ed\"}.el-icon-caret-top:before{content:\"\\e78f\"}.el-icon-caret-bottom:before{content:\"\\e790\"}.el-icon-caret-right:before{content:\"\\e791\"}.el-icon-caret-left:before{content:\"\\e792\"}.el-icon-d-caret:before{content:\"\\e79a\"}.el-icon-share:before{content:\"\\e793\"}.el-icon-menu:before{content:\"\\e798\"}.el-icon-s-grid:before{content:\"\\e7a6\"}.el-icon-s-check:before{content:\"\\e7a7\"}.el-icon-s-data:before{content:\"\\e7a8\"}.el-icon-s-opportunity:before{content:\"\\e7aa\"}.el-icon-s-custom:before{content:\"\\e7ab\"}.el-icon-s-claim:before{content:\"\\e7ad\"}.el-icon-s-finance:before{content:\"\\e7ae\"}.el-icon-s-comment:before{content:\"\\e7af\"}.el-icon-s-flag:before{content:\"\\e7b0\"}.el-icon-s-marketing:before{content:\"\\e7b1\"}.el-icon-s-shop:before{content:\"\\e7b4\"}.el-icon-s-open:before{content:\"\\e7b5\"}.el-icon-s-management:before{content:\"\\e7b6\"}.el-icon-s-ticket:before{content:\"\\e7b7\"}.el-icon-s-release:before{content:\"\\e7b8\"}.el-icon-s-home:before{content:\"\\e7b9\"}.el-icon-s-promotion:before{content:\"\\e7ba\"}.el-icon-s-operation:before{content:\"\\e7bb\"}.el-icon-s-unfold:before{content:\"\\e7bc\"}.el-icon-s-fold:before{content:\"\\e7a9\"}.el-icon-s-platform:before{content:\"\\e7bd\"}.el-icon-s-order:before{content:\"\\e7be\"}.el-icon-s-cooperation:before{content:\"\\e7bf\"}.el-icon-bell:before{content:\"\\e725\"}.el-icon-message-solid:before{content:\"\\e799\"}.el-icon-video-camera:before{content:\"\\e772\"}.el-icon-video-camera-solid:before{content:\"\\e796\"}.el-icon-camera:before{content:\"\\e779\"}.el-icon-camera-solid:before{content:\"\\e79b\"}.el-icon-download:before{content:\"\\e77c\"}.el-icon-upload2:before{content:\"\\e77b\"}.el-icon-upload:before{content:\"\\e7c3\"}.el-icon-picture-outline-round:before{content:\"\\e75f\"}.el-icon-picture-outline:before{content:\"\\e75e\"}.el-icon-picture:before{content:\"\\e79f\"}.el-icon-close:before{content:\"\\e6db\"}.el-icon-check:before{content:\"\\e6da\"}.el-icon-plus:before{content:\"\\e6d9\"}.el-icon-minus:before{content:\"\\e6d8\"}.el-icon-help:before{content:\"\\e73d\"}.el-icon-s-help:before{content:\"\\e7b3\"}.el-icon-circle-close:before{content:\"\\e78d\"}.el-icon-circle-check:before{content:\"\\e720\"}.el-icon-circle-plus-outline:before{content:\"\\e723\"}.el-icon-remove-outline:before{content:\"\\e722\"}.el-icon-zoom-out:before{content:\"\\e776\"}.el-icon-zoom-in:before{content:\"\\e777\"}.el-icon-error:before{content:\"\\e79d\"}.el-icon-success:before{content:\"\\e79c\"}.el-icon-circle-plus:before{content:\"\\e7a0\"}.el-icon-remove:before{content:\"\\e7a2\"}.el-icon-info:before{content:\"\\e7a1\"}.el-icon-question:before{content:\"\\e7a4\"}.el-icon-warning-outline:before{content:\"\\e6c9\"}.el-icon-warning:before{content:\"\\e7a3\"}.el-icon-goods:before{content:\"\\e7c2\"}.el-icon-s-goods:before{content:\"\\e7b2\"}.el-icon-star-off:before{content:\"\\e717\"}.el-icon-star-on:before{content:\"\\e797\"}.el-icon-more-outline:before{content:\"\\e6cc\"}.el-icon-more:before{content:\"\\e794\"}.el-icon-phone-outline:before{content:\"\\e6cb\"}.el-icon-phone:before{content:\"\\e795\"}.el-icon-user:before{content:\"\\e6e3\"}.el-icon-user-solid:before{content:\"\\e7a5\"}.el-icon-setting:before{content:\"\\e6ca\"}.el-icon-s-tools:before{content:\"\\e7ac\"}.el-icon-delete:before{content:\"\\e6d7\"}.el-icon-delete-solid:before{content:\"\\e7c9\"}.el-icon-eleme:before{content:\"\\e7c7\"}.el-icon-platform-eleme:before{content:\"\\e7ca\"}.el-icon-loading{animation:rotating 2s linear infinite}.el-icon--right{margin-left:5px}.el-icon--left{margin-right:5px}@keyframes rotating{0%{transform:rotate(0)}to{transform:rotate(1turn)}}.el-pagination{white-space:nowrap;padding:2px 5px;color:#303133;font-weight:700}.el-pagination:after,.el-pagination:before{display:table;content:\"\"}.el-pagination:after{clear:both}.el-pagination button,.el-pagination span:not([class*=suffix]){display:inline-block;font-size:13px;min-width:35.5px;height:28px;line-height:28px;vertical-align:top;box-sizing:border-box}.el-pagination .el-input__inner{text-align:center;-moz-appearance:textfield;line-height:normal}.el-pagination .el-input__suffix{right:0;transform:scale(.8)}.el-pagination .el-select .el-input{width:100px;margin:0 5px}.el-pagination .el-select .el-input .el-input__inner{padding-right:25px;border-radius:3px}.el-pagination button{border:none;padding:0 6px;background:0 0}.el-pagination button:focus{outline:0}.el-pagination button:hover{color:#409eff}.el-pagination button:disabled{color:#c0c4cc;background-color:#fff;cursor:not-allowed}.el-pagination .btn-next,.el-pagination .btn-prev{background:50% no-repeat #fff;background-size:16px;cursor:pointer;margin:0;color:#303133}.el-pagination .btn-next .el-icon,.el-pagination .btn-prev .el-icon{display:block;font-size:12px;font-weight:700}.el-pagination .btn-prev{padding-right:12px}.el-pagination .btn-next{padding-left:12px}.el-pagination .el-pager li.disabled{color:#c0c4cc;cursor:not-allowed}.el-pager li,.el-pager li.btn-quicknext:hover,.el-pager li.btn-quickprev:hover{cursor:pointer}.el-pagination--small .btn-next,.el-pagination--small .btn-prev,.el-pagination--small .el-pager li,.el-pagination--small .el-pager li.btn-quicknext,.el-pagination--small .el-pager li.btn-quickprev,.el-pagination--small .el-pager li:l",
   "datamd5" : "ed07633aa3b91be812304b885d258918",
   "datammh3" : -1830903672,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9808",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile",
      "subnet" : "111.9.0.0/16"
   },
   "ip" : "111.9.22.204",
   "ipv6" : "false",
   "latitude" : "30.6498",
   "location" : "30.6498,104.0555",
   "longitude" : "104.0555",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile Communications Group Co., Ltd.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 4782,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "productversion" : "1.21.4.1",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "111.9.0.0/18",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

47.251.73.54

Network

47.251.0.0/17

Device

<enterprise field>: device.class

Operating System

Linux Linux sUse

URL

http://47.251.73.54:4782/ 200

HTTP Title

OpenWrt - LuCI

HTTP Keyword(s)

voip vos3000

HTTP Copyright

www.linknat.com, 昆石网络

ASN

AS45102

Organization

Alibaba US Technology Co., Ltd.

Protocol

http

Source

datascan

Operating System

Linux Linux sUse

HTTP Component(s)

Drupal Drupal 7 Atlassian Confluence PHP PHP SPIP SPIP 4.1.11 Jenkins Jenkins 2.121.3 Gitlab Gitlab Roundcube Webmail

CPE(s)

<enterprise field>: cpe

Data MD5

5b57c8f287d2b0e2d29d3b0307cf70b7

HTTP Header MD5

5bf864e83d3b9929fd7762c4ab68c770

HTTP Body MD5

1649db1eb98c84c32135bd32588ead31

HTTP/1.1 200 OK
Composed-By: SPIP 4.1.11 @ www.spip.net
Content-Length: 53111
Content-Type: text/html;charset=utf-8
Last-Modified: Fri, 29 Jul 2022 16:53:01 GMT
Loginip: <srcip>
Nel: {'report_to': 'network-errors', 'max_age': 2592000, 'failure_fraction': 0.01, 'success_fraction': 0.0001}
P3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Pragma: private
Proxy-Authenticate: Basic realm="Tinyproxy"
Server: Stoneoim
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/
Set-Cookie: did=A67B8F9C;
Set-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
Set-Cookie: webvpnlogin=; path=/; secure;
Set-Cookie: acSamlv2Token=; path=/; secure;
Set-Cookie: samlPreauthSessionHash=; path=/; secure;
Set-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;
Set-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains
Set-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;
Set-Cookie: id=A67B8F9C;
Set-Cookie: token=21263a2bf; path=/;
Set-Cookie: fsm_u=admin; Path=/;
Set-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;
Set-Cookie: SESSID=22363a2bf; path=/;
Set-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax
Set-Cookie: swap=vFuUpy5thP2HBPenIBJZtmjQHvBP2UiSJNhstyNXrAs=; path=/; secure; HttpOnly;
Set-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/
X-Akaunting: Free Accounting Software
X-Cache: MISS from Hello
X-Cache-Lookup: NONE from ezproxies.com:3128
X-Cacheable: SHORT
X-Content-Powered-By: K2 v2.8.0 (by JoomlaWor
X-Content-Type-Options: nosniff
X-Drupal-Cache: xHIT
X-Drupal-Dynamic-Cache: MISS
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 7 (http://drupal.org)
X-Jenkins: 2.121.3
X-Jenkins-Session: f72d6619
X-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372
X-Varnish-Cache: Miss
X-Xss-Protection: 1; mode=block
Date: Thu, 21 Nov 2024 08:40:34 GMT
Connection: close

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta http-equiv="Pragma" content="no-cache" />
<meta charset="utf-8">
<meta content="IE=edge" http-equiv="X-UA-Compatible">
<meta content="object" property="og:type">
<meta content="GitLab" property="og:site_name">
<meta content="Help" property="og:title">
<meta content="GitLab Community Edition" property="og:description">
<meta content="summary" property="twitter:card">
<meta content="Help" property="twitter:title">
<meta content="GitLab Community Edition" property="twitter:description">
<meta content="GitLab Community Edition" name="description">
<meta content="#474D57" name="theme-color">
<meta content="#30353E" name="msapplication-TileColor">
<meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac2390d==" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta http-equiv="expires" content="-1"/>
<meta name="keywords" content="VOS3000, VoIP, VoIP运营支撑系统, 软交换"/>
<meta name="author" content="www.linknat.com, 昆石网络"/>
<meta name="copyright" content="www.linknat.com, 昆石网络"/>
<meta name="generator" content="SPIP 4.1.11" />
<script src="/jquery.min.js"></script> 
<title>OpenWrt - LuCI</title>
</head>
<body>
<div style="display: none;">
<script>SC.util.mergeIntoContext({"focusedControlID":null,"userName":"","userDisplayName":"","isUserAuthenticated":false,"antiForgeryToken":"THtoAUxH4sS9","isUserAdministrator":false,"canManageSharedToolbox":false,"pageBaseFileName":"Guest","notifyActivityFrequencyMilliseconds":600000,"loginAfterInactivityMilliseconds":36000000,"canChangePassword":false,"controlPanelUrl":null,"pageType":"GuestPage","processType":2,"userAgentOverride":null,"sessionTypeInfos":[]});</script>
<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last="1">fritzr</User></Users></SessionInfo>
<Account>
<Entry0 Active="Yes" username="CMCCAdmin" web_passwd="CmcC4dm1n5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry1 Active="Yes" username="useradmin" web_passwd="Gu4ngx1pd5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<Entry2 Active="Yes" username="CUAdmin"   web_passwd="CUAdmin5591" display_mask="FF FF D7 DD FF 1D FF FF FF" Logged="1" LoginIp="192.168.1.10"/>
<TelnetEntry Active="Yes" telnet_username="Admin" telnet_passwd="cxx4dm1n5591" telnet_port="23"/>
<FtpEntry Active="Yes" ftp_right="1" ftp_auth="1" ftp_username="Admin" ftp_passwd="cxx4dm1n5591" ftp_port="21" />
<SambaEntry Active="Yes" smb_right="1" smb_auth="1" smb_username="Admin" smb_passwd="cxx4dm1n5591" />
<ConsoleEntry Active="Yes" console_username="Admin" console_passwd="cxx4dm1n5591"/>
<CTDefParaEntry setDefValueFlag="1" />
</Account>
<div>8.5.5 (Build:20200530.307-TEMP)</div>
<span class="greyNote version"><span class="vWord">Version</span> 2023.11.3 (build 147512)</span>
<h1>Logged in as <strong>admin</strong></h1><input type="hidden" name="csrfmiddlewaretoken" value="e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y"><textarea id="3revi" name="revi" rows="4" cols="50">server1 Ubuntu 22.04 LTS</textarea>
<ca status="disabled" href="/+CSCOCA+/login.html" />
<form action="/login/vpnSdef" enctype="multipart/form-data" method="post" name="login">
    <div data-user="root" data-module="package-updates"></div>
    <code>The zip file did not contain an entry exportDescriptor.properties</code>
    <span class="form-hidden"><input name="page" value="login" type="hidden"/><input name="formulaire_action" type="hidden" value="login" /><input name="formulaire_action_args" type="hidden" value="dzdNV0MzUGFDV0NHemR6bWorekNEWHY=" /><input name="formulaire_action_sign" type="hidden" value="" /></span>
    <message>Please enter your username and password.</message>
    <input name="formid" type="hidden" value="012afed" />
    <input name="javax.faces.ViewState" type="hidden" value="012afed" />
    <input name="queryString" type="hidden" value="1406192" />
    <div class="versionInfo">The Cacti Group Version 1.2.25</div>
    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>
    <input type="hidden" name="token" value="0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec">
    <input type='hidden' name='__csrf_magic' value="key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654" />
    <input type="hidden" name="tokenid"  value="1804289383" >
    <input type="hidden" name="name"  value="1804289383" >
    <input type="hidden" name="csrfKey" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="hidden" name="csrf_token" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" name="ref" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="username_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" name="password_fieldname" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="csrf" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="csrf" name="xd_check" value="aHR0cHM6Ly9pcHMuY2x1Yi8=">
	<input type="hidden" id="give-form-id" name="give-form-id" value="621aec6b886ff81169bed7de5d47b5ed">
	<input type="hidden" id="give-form-hash" name="give-form-hash" value="621aec6b886ff81169bed7de5d47b5ed">
    <input type="text" name="username" label="Username:" value="admin" />
    <input type="password" name="password" label="Password:" value="123456" />
    <input type="hidden" name="tgroup" value="DefaultADMINGroup" />
    <input type="submit" name="Login" value="Login" />
    <input type="reset" name="Clear" value="Clear" />
</form>
<input type="hidden" value="Maintain/cloud_index.php" id="cloud_addr">
<li class="lisel" onclick="location.href='index.php'">日志系统</li>
<li class="linormal" onclick="location.href='Maintain/cloud_index.php'" style="margin-left:1px;">云平台</li>
<button type="button" data-price-id=True>sb</button>
<div class="prod_madelName">RT-AC5300</div>
<div class="p1 title_gap">Sign in with your ASUS router account</div>
<tr class="h"><th>PHP Group</th></tr>
<tr><td class="e">upload_tmp_dir</td><td class="v">/etc/httpd/_tmp</td><td class="v">/etc/httpd/_tmp</td></tr>
<tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/mnt/HDD2/web/</td></tr>
<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>
<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>
<div class="text" id="jive-loginVersion"> Openfire, Version: 3.6.0a</div>
<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>
<div id="mcname">LoadMaster</div>
<p><br/><span>出厂IP：192.168.1.1</span><br/><span>用户名、密码：admin admin</span></p>
<td colspan="2">Please enter your Cacti user name and password below:</td>
<meta id="confluence-context-path" name="confluence-context-path" content="">
<meta id="confluence-base-url" name="confluence-base-url" content="https://192.168.1.4">
<meta id="atlassian-token" name="atlassian-token" content="d78e2b977d28428e411e31b958c9c502c2425083">
<script id="frontend-js-extra">var hashform_vars = {"ajaxurl":"\/wp-admin\/admin-ajax.php","ajax_nounce":"d78e2b97","preview_img":""};</script>
<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>
<B>SonicWall Universal Management Suite v9.3</B>
<br>OK<br>
<script type="text/javascript">var csrfMagicToken = "sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646";var csrfMagicName = "__vtrftk";</script>
<select id="cars" name="name">
<option value="olvo">olvo</option>
</select>
<a href="/VICIdial/phone">MODIFY</a>
<input type="hidden" name="extension"  value="1804289383" >
<input type="hidden" name="pass"  value="1804289383" >
<input type="hidden" name="recording_exten"  value="1804289383" >
<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>
<input type='hidden' name='LDCSA_CSRF' value="sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985" />
<input type="hidden" name="admin-nonce" value="4419bb0cd2d21ef7b4cf25c9e5206f89" />
<h3 class="text-center"> <span class="soplanning_index_title2">Simple Online Planning</span> <small>v1.51.01</small> </h3>
<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>
<script type='text/javascript'>
	var cactiVersion='1.2.27';
	var cactiServerOS='unix';
	var cactiAction='';
	var theme='modern';
	var refreshIsLogout=true;
	var refreshPage='/logout.php?action=timeout';
	var refreshMSeconds=1440000;
	var urlPath='/';
	var previousPage='';
	var sessionMessage=[];
	var csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';
</script>

<!--
<Username Level="40/40" Dispatch="account">admin</Username><User1><Password Level="40/40" Dispatch="account">admin</Password></User1>
/var/pinglog
<TITLE>Login</TITLE>
<a href="jpg.html">LIVE JPEG</a><br>
<a href="liveie.html">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>
<a href="DVRRemoteAP.exe">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVRRemoteAP_X64.exe">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>
<a href="DVFPlayer.zip">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>
<\?xml version="1.0" encoding="utf-8"?><base64Binary xmlns="http://micros-hosting.com/EGateway/">
Location: /admin
<meta name="generator" content="vBulletin 5.5.4" />
Location: http://<ip>:80/relogin.htm?_t=3541144909
Location: http://<ip>:80/syscmd.htm" Location: /ui/login
/cgi-bin/webctrl.cgi?action=index_page
PDR-M800
function btnPing()
<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF="http://<ip>:80/relogin.htm?_t=179439949">here</A></BODY></HTML>
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_shortcut.png">
<link type="image/x-icon" rel="shortcut icon" href="/themes/img/icon/cisco_logo.png">
<td class="Copyright" colspan="2" style="text-align:justify" height="20" valign="bottom">© 2017 Cisco Systems, Inc. All Rights Reserved.
<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered
trademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates
in the United States and certain other countries.
</td>
:
#
>
$
SSH key is good
is not a valid ref and may not be archived
pcPassword2
'&sessionKey=790148060;'
name="sessionKey" value="790148060"
Set-Cookie: loginName=admin
var fgt_lang = /dev/cmdb/sslvpn_websession
php 8.1.0-dev exit
springframework
Tomcat
DEVICE.ACCOUNT=admin
AUTHORIZED_GROUP=1
<uid></uid>
<name>Admin</name>
<usrid></usrid>
<password>admin</password>
<group></group>
cpto /tmp/"root"
Model=AC1450
Firmware=V1.0.0.36_10.0.17
"exceptionMessageValue":"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found."
BIG-IP release 15.0.0
user:root
12345admin123'
Failed to process image

Location: http://192.168.0.1:52869/picsdesc.xml
You don't have permission to access /vpns/ on this server.
[global]
    workgroup = intranet
    encrypt passwords = Yes
    update encrypted = Yes

funcionando
system_sofia
name resolve order
InfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo
<b>File Uploaded !!!</b><br>
ant=951d11e51392117311602d0c25435d7f
38ee63071a04dc5e04ed22624c38e648
6f3249aa304055d63828af3bfab778f6
<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>
[local]
 tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyMzkwZD09
 addr = <ip>
"Powered by vBulletin Version 5.5.4"
789551
Linear eMerge
SuperSign
ubiq
Yacht
Zeroshell
FastWeb
AuthInfo:
loadingIndicator_bk
Zyxel
skyrouter
WAP54
org.apache.spark.ui



ID: "00af", version: "7.7.31.1", AddItem: function (a, item, c) {}
<insert implant configuration content here>
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api
Copyright (c) 2015-2020 by Cisco Systems, Inc.
All rights reserved.
SSL VPN Service
wsConvertPptResponse
<input id="txtUserName" class="txt-input" type="text" name="userName" value="" />
<input id="txtPassword" class="txt-input" type="password" name="password" value="" />
<button id="btnLogin" lc="html" lk="IDCS_LOGIN_NBSP">
<span lc="html" lk="IDCS_BS_PLUGIN_DOWNLOAD" style="line-height: 30px; vertical-align: top;"></span>
<script src="../Scripts/login.htm.js?v={JS_CSS_V}" type="text/javascript"></script>
<LegacyDN>eD2bxe4</LegacyDN>
<title class="_ctxstxt_NetscalerGateway">
SAML Assertion verification failed; Please contact your administrator
v=2b46554c087d2d5516559e9b8bc1875d
/vpn/images/AccessGateway.ico
frame-busting
/vpn/js/logout_view.js?v=
_ctxstxt_NetscalerAAA
lib.min20200813.js
401 Unauthorized Basic realm=
sName='1';onTest(this);
var passadm = "admin";
OPMODE_BRIDGE
document.all.cmd_result
<input id="key" type="text" style="width: 200px" value="02108CB9-2200D5A4">
<input id="date" type="text" style="width: 200px" value="12/25/2023">
main page cgi-bin/login.cgi
var sessionKey='030ff030ff88';
loc += '&sessionKey=19dec20030ff8dcb2';
}

var code = 'location="' + loc + '"';

Password change successful
J2100N GPON ONT
/cgi-bin/webui/admin
sesskey
name=admin pass=123 priv=ppp
service=www.dlinkddns.com
sysCmdType
Content-Type: auth/request


Content-Type: command/reply

Reply-Text: +OK accepted


X-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)
007b2000-007c1000 rw-p 00000000 00:00 0
Size:                 60 kB
Rss:                  52 kB
Pss:                  52 kB
Shared_Clean:          0 kB
Shared_Dirty:          0 kB
Private_Clean:         0 kB
Private_Dirty:        52 kB
Referenced:           52 kB
Anonymous:            52 kB
AnonHugePages:        

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:40:34.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "micros-hosting.com",
            "drupal.org"
         ],
         "file" : [
            "p3p.xml",
            "admin-ajax.php",
            "dvrremoteap_x64.exe",
            "dvrremoteap.exe",
            "index.php",
            "dvfplayer.zip",
            "cloud_index.php"
         ],
         "hostname" : [
            "drupal.org",
            "micros-hosting.com"
         ],
         "ip" : [
            "192.168.1.10",
            "192.168.0.1",
            "192.168.1.1",
            "192.168.1.4",
            "7.7.31.1",
            "1.0.0.36"
         ],
         "url" : [
            "http://192.168.0.1:52869/picsdesc.xml",
            "http://drupal.org",
            "http://micros-hosting.com/EGateway/",
            "https://192.168.1.4"
         ]
      },
      "http" : {
         "bodymd5" : "1649db1eb98c84c32135bd32588ead31",
         "bodymmh3" : -1840064959,
         "component" : [
            {
               "product" : "Webmail",
               "productvendor" : "Roundcube"
            },
            {
               "productvendor" : "PHP",
               "product" : "PHP"
            },
            {
               "product" : "Drupal",
               "productvendor" : "Drupal",
               "productversion" : "7"
            },
            {
               "productversion" : "2.121.3",
               "productvendor" : "Jenkins",
               "product" : "Jenkins"
            },
            {
               "productvendor" : "SPIP",
               "productversion" : "4.1.11",
               "product" : "SPIP"
            },
            {
               "product" : "Gitlab",
               "productvendor" : "Gitlab"
            },
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            }
         ],
         "copyright" : "www.linknat.com, \u6606\u77f3\u7f51\u7edc",
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Jul 2022 16:53:01 GMT"
            }
         ],
         "headermd5" : "5bf864e83d3b9929fd7762c4ab68c770",
         "headermmh3" : -1356445021,
         "keywords" : [
            "voip",
            "vos3000"
         ],
         "realm" : "Tinyproxy",
         "title" : "OpenWrt - LuCI"
      },
      "length" : 16307
   },
   "asn" : "AS45102",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nComposed-By: SPIP 4.1.11 @ www.spip.net\r\nContent-Length: 53111\r\nContent-Type: text/html;charset=utf-8\r\nLast-Modified: Fri, 29 Jul 2022 16:53:01 GMT\r\nLoginip: <srcip>\r\nNel: {'report_to': 'network-errors', 'max_age': 2592000, 'failure_fraction': 0.01, 'success_fraction': 0.0001}\r\nP3p: policyref=\"/bitrix/p3p.xml\", CP=\"NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA\"\r\nPragma: private\r\nProxy-Authenticate: Basic realm=\"Tinyproxy\"\r\nServer: Stoneoim\r\nSet-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: __s_sessionid__=hh5rq45u9srt079v063jkb8c13; path=/\r\nSet-Cookie: did=A67B8F9C;\r\nSet-Cookie: roundcube_cookies=enabled; HttpOnly; expires=Tue, 01-Jan-1970 00:00:01 GMT; path=/; port=2095\r\nSet-Cookie: webvpnlogin=; path=/; secure;\r\nSet-Cookie: acSamlv2Token=; path=/; secure;\r\nSet-Cookie: samlPreauthSessionHash=; path=/; secure;\r\nSet-Cookie: SID=hBc7TxF76ERhvIw0jQQ4LZ7Z1jQUV0tQ; path=/;\r\nSet-Cookie: csrftoken=Pt1Guz0uK8QPbP3EV8zBKcxaRaxgrZUPbjZeCK50MLR00VR7THTsnwRPH0otS1lS; Path=/; SameSite=Lax;HttpOnly;Secure;SameSite=Strict; Strict-Transport-Security: max-age=63072000; includeSubDomains\r\nSet-Cookie: sdplogincsrfcookie=6cc9d6ad-33d5-4b5a-adc8-b5bf284cb492; Path=/; SameSite=None; Secure;\r\nSet-Cookie: id=A67B8F9C;\r\nSet-Cookie: token=21263a2bf; path=/;\r\nSet-Cookie: fsm_u=admin; Path=/;\r\nSet-Cookie: TRACKID=111d130c363c6795f9897e3368d2926e; Path=/; Version=1;\r\nSet-Cookie: SESSID=22363a2bf; path=/;\r\nSet-Cookie: grafana_session_expiry=1990089920; Path=/; Max-Age=2592000; SameSite=Lax\r\nSet-Cookie: swap=vFuUpy5thP2HBPenIBJZtmjQHvBP2UiSJNhstyNXrAs=; path=/; secure; HttpOnly;\r\nSet-Cookie: PHPSESSID=n91i168jps8rd856bcrln2isqe; path=/\r\nX-Akaunting: Free Accounting Software\r\nX-Cache: MISS from Hello\r\nX-Cache-Lookup: NONE from ezproxies.com:3128\r\nX-Cacheable: SHORT\r\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWor\r\nX-Content-Type-Options: nosniff\r\nX-Drupal-Cache: xHIT\r\nX-Drupal-Dynamic-Cache: MISS\r\nX-Frame-Options: SAMEORIGIN\r\nX-Generator: Drupal 7 (http://drupal.org)\r\nX-Jenkins: 2.121.3\r\nX-Jenkins-Session: f72d6619\r\nX-Shopify-Generated-Cart-Token: aa1b6d68e41056d2955ae9e6fb516372\r\nX-Varnish-Cache: Miss\r\nX-Xss-Protection: 1; mode=block\r\nDate: Thu, 21 Nov 2024 08:40:34 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\" />\n<meta charset=\"utf-8\">\n<meta content=\"IE=edge\" http-equiv=\"X-UA-Compatible\">\n<meta content=\"object\" property=\"og:type\">\n<meta content=\"GitLab\" property=\"og:site_name\">\n<meta content=\"Help\" property=\"og:title\">\n<meta content=\"GitLab Community Edition\" property=\"og:description\">\n<meta content=\"summary\" property=\"twitter:card\">\n<meta content=\"Help\" property=\"twitter:title\">\n<meta content=\"GitLab Community Edition\" property=\"twitter:description\">\n<meta content=\"GitLab Community Edition\" name=\"description\">\n<meta content=\"#474D57\" name=\"theme-color\">\n<meta content=\"#30353E\" name=\"msapplication-TileColor\">\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"8dcb74a64dc984fb9abe3e7c201f810d9ec90ed8e0cb6ed03ba384e2fac2390d==\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/>\n<meta http-equiv=\"expires\" content=\"-1\"/>\n<meta name=\"keywords\" content=\"VOS3000, VoIP, VoIP\u8fd0\u8425\u652f\u6491\u7cfb\u7edf, \u8f6f\u4ea4\u6362\"/>\n<meta name=\"author\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"copyright\" content=\"www.linknat.com, \u6606\u77f3\u7f51\u7edc\"/>\n<meta name=\"generator\" content=\"SPIP 4.1.11\" />\n<script src=\"/jquery.min.js\"></script> \n<title>OpenWrt - LuCI</title>\n</head>\n<body>\n<div style=\"display: none;\">\n<script>SC.util.mergeIntoContext({\"focusedControlID\":null,\"userName\":\"\",\"userDisplayName\":\"\",\"isUserAuthenticated\":false,\"antiForgeryToken\":\"THtoAUxH4sS9\",\"isUserAdministrator\":false,\"canManageSharedToolbox\":false,\"pageBaseFileName\":\"Guest\",\"notifyActivityFrequencyMilliseconds\":600000,\"loginAfterInactivityMilliseconds\":36000000,\"canChangePassword\":false,\"controlPanelUrl\":null,\"pageType\":\"GuestPage\",\"processType\":2,\"userAgentOverride\":null,\"sessionTypeInfos\":[]});</script>\n<SessionInfo><SID>a29d421feecf680a</SID><Challenge>680a</Challenge><BlockTime>0</BlockTime><Rights></Rights><Users><User last=\"1\">fritzr</User></Users></SessionInfo>\n<Account>\n<Entry0 Active=\"Yes\" username=\"CMCCAdmin\" web_passwd=\"CmcC4dm1n5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry1 Active=\"Yes\" username=\"useradmin\" web_passwd=\"Gu4ngx1pd5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<Entry2 Active=\"Yes\" username=\"CUAdmin\"   web_passwd=\"CUAdmin5591\" display_mask=\"FF FF D7 DD FF 1D FF FF FF\" Logged=\"1\" LoginIp=\"192.168.1.10\"/>\n<TelnetEntry Active=\"Yes\" telnet_username=\"Admin\" telnet_passwd=\"cxx4dm1n5591\" telnet_port=\"23\"/>\n<FtpEntry Active=\"Yes\" ftp_right=\"1\" ftp_auth=\"1\" ftp_username=\"Admin\" ftp_passwd=\"cxx4dm1n5591\" ftp_port=\"21\" />\n<SambaEntry Active=\"Yes\" smb_right=\"1\" smb_auth=\"1\" smb_username=\"Admin\" smb_passwd=\"cxx4dm1n5591\" />\n<ConsoleEntry Active=\"Yes\" console_username=\"Admin\" console_passwd=\"cxx4dm1n5591\"/>\n<CTDefParaEntry setDefValueFlag=\"1\" />\n</Account>\n<div>8.5.5 (Build:20200530.307-TEMP)</div>\n<span class=\"greyNote version\"><span class=\"vWord\">Version</span> 2023.11.3 (build 147512)</span>\n<h1>Logged in as <strong>admin</strong></h1><input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"e9tIOET3iTncMVL4E0ESylCCQupBWlfL9NobFzaQDir2ktC0Wgy5pafsCrkonl5y\"><textarea id=\"3revi\" name=\"revi\" rows=\"4\" cols=\"50\">server1 Ubuntu 22.04 LTS</textarea>\n<ca status=\"disabled\" href=\"/+CSCOCA+/login.html\" />\n<form action=\"/login/vpnSdef\" enctype=\"multipart/form-data\" method=\"post\" name=\"login\">\n    <div data-user=\"root\" data-module=\"package-updates\"></div>\n    <code>The zip file did not contain an entry exportDescriptor.properties</code>\n    <span class=\"form-hidden\"><input name=\"page\" value=\"login\" type=\"hidden\"/><input name=\"formulaire_action\" type=\"hidden\" value=\"login\" /><input name=\"formulaire_action_args\" type=\"hidden\" value=\"dzdNV0MzUGFDV0NHemR6bWorekNEWHY=\" /><input name=\"formulaire_action_sign\" type=\"hidden\" value=\"\" /></span>\n    <message>Please enter your username and password.</message>\n    <input name=\"formid\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"javax.faces.ViewState\" type=\"hidden\" value=\"012afed\" />\n    <input name=\"queryString\" type=\"hidden\" value=\"1406192\" />\n    <div class=\"versionInfo\">The Cacti Group Version 1.2.25</div>\n    <strong>IPFire 2.19 (2017v) - Core Update 110 introduces significant changes</strong>\n    <input type=\"hidden\" name=\"token\" value=\"0feacf5a1cafc9fcea1ce1255e65fd9a7c11ae3f9235eb6038a2c9fe702ec7ec\">\n    <input type='hidden' name='__csrf_magic' value=\"key:12eef1d88692f7673fb80ab6ba8d051fdce64ccb,1710777654\" />\n    <input type=\"hidden\" name=\"tokenid\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"name\"  value=\"1804289383\" >\n    <input type=\"hidden\" name=\"csrfKey\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"hidden\" name=\"csrf_token\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" name=\"ref\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"username_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" name=\"password_fieldname\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"csrf\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"csrf\" name=\"xd_check\" value=\"aHR0cHM6Ly9pcHMuY2x1Yi8=\">\n\t<input type=\"hidden\" id=\"give-form-id\" name=\"give-form-id\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n\t<input type=\"hidden\" id=\"give-form-hash\" name=\"give-form-hash\" value=\"621aec6b886ff81169bed7de5d47b5ed\">\n    <input type=\"text\" name=\"username\" label=\"Username:\" value=\"admin\" />\n    <input type=\"password\" name=\"password\" label=\"Password:\" value=\"123456\" />\n    <input type=\"hidden\" name=\"tgroup\" value=\"DefaultADMINGroup\" />\n    <input type=\"submit\" name=\"Login\" value=\"Login\" />\n    <input type=\"reset\" name=\"Clear\" value=\"Clear\" />\n</form>\n<input type=\"hidden\" value=\"Maintain/cloud_index.php\" id=\"cloud_addr\">\n<li class=\"lisel\" onclick=\"location.href='index.php'\">\u65e5\u5fd7\u7cfb\u7edf</li>\n<li class=\"linormal\" onclick=\"location.href='Maintain/cloud_index.php'\" style=\"margin-left:1px;\">\u4e91\u5e73\u53f0</li>\n<button type=\"button\" data-price-id=True>sb</button>\n<div class=\"prod_madelName\">RT-AC5300</div>\n<div class=\"p1 title_gap\">Sign in with your ASUS router account</div>\n<tr class=\"h\"><th>PHP Group</th></tr>\n<tr><td class=\"e\">upload_tmp_dir</td><td class=\"v\">/etc/httpd/_tmp</td><td class=\"v\">/etc/httpd/_tmp</td></tr>\n<tr><td class=\"e\">$_SERVER['DOCUMENT_ROOT']</td><td class=\"v\">/mnt/HDD2/web/</td></tr>\n<var name='uuid'><string>7db3eea5-9996-4032-a9cc-3afd06bd11fe</string></var>\n<span >Powered by <a href='#'>Gibbon</a> v23.0.01</span>\n<div class=\"text\" id=\"jive-loginVersion\"> Openfire, Version: 3.6.0a</div>\n<a href='#' title='Community Forum Software by Invision Power Services'>IP.Board</a>\n<div id=\"mcname\">LoadMaster</div>\n<p><br/><span>\u51fa\u5382IP\uff1a192.168.1.1</span><br/><span>\u7528\u6237\u540d\u3001\u5bc6\u7801\uff1aadmin admin</span></p>\n<td colspan=\"2\">Please enter your Cacti user name and password below:</td>\n<meta id=\"confluence-context-path\" name=\"confluence-context-path\" content=\"\">\n<meta id=\"confluence-base-url\" name=\"confluence-base-url\" content=\"https://192.168.1.4\">\n<meta id=\"atlassian-token\" name=\"atlassian-token\" content=\"d78e2b977d28428e411e31b958c9c502c2425083\">\n<script id=\"frontend-js-extra\">var hashform_vars = {\"ajaxurl\":\"\\/wp-admin\\/admin-ajax.php\",\"ajax_nounce\":\"d78e2b97\",\"preview_img\":\"\"};</script>\n<div class='content-messages errorMessage'><p>java.lang.Exception: y9pcHMuY</p></div>\n<B>SonicWall Universal Management Suite v9.3</B>\n<br>OK<br>\n<script type=\"text/javascript\">var csrfMagicToken = \"sid:ed04c4a1c86fe99a92cbe3441e2b1e2989d5deec,1725277646\";var csrfMagicName = \"__vtrftk\";</script>\n<select id=\"cars\" name=\"name\">\n<option value=\"olvo\">olvo</option>\n</select>\n<a href=\"/VICIdial/phone\">MODIFY</a>\n<input type=\"hidden\" name=\"extension\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"pass\"  value=\"1804289383\" >\n<input type=\"hidden\" name=\"recording_exten\"  value=\"1804289383\" >\n<script var session_name = '621aec6b886ff81'; var session_id = '1804289383';</script>\n<input type='hidden' name='LDCSA_CSRF' value=\"sid:7830302ba478216ecf2cf24b53afe6f385998104,1726156985\" />\n<input type=\"hidden\" name=\"admin-nonce\" value=\"4419bb0cd2d21ef7b4cf25c9e5206f89\" />\n<h3 class=\"text-center\"> <span class=\"soplanning_index_title2\">Simple Online Planning</span> <small>v1.51.01</small> </h3>\n<span>F3x26Q v1.1 (Sep 15 2023 12:36:09) std</span>\n<script type='text/javascript'>\n\tvar cactiVersion='1.2.27';\n\tvar cactiServerOS='unix';\n\tvar cactiAction='';\n\tvar theme='modern';\n\tvar refreshIsLogout=true;\n\tvar refreshPage='/logout.php?action=timeout';\n\tvar refreshMSeconds=1440000;\n\tvar urlPath='/';\n\tvar previousPage='';\n\tvar sessionMessage=[];\n\tvar csrfMagicToken='sid:4024e82870233374a2255351fb45057c8f7f9aa6,1728459021;ip:bee133099404bd4ddc2dd5f43c6b86dc3618b300,1728459021';\n</script>\n\n<!--\n<Username Level=\"40/40\" Dispatch=\"account\">admin</Username><User1><Password Level=\"40/40\" Dispatch=\"account\">admin</Password></User1>\n/var/pinglog\n<TITLE>Login</TITLE>\n<a href=\"jpg.html\">LIVE JPEG</a><br>\n<a href=\"liveie.html\">Internet Monitor (Microsoft Internet Explorer 8, 9, 10, 11) </a><br>\n<a href=\"DVRRemoteAP.exe\">Download 32 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVRRemoteAP_X64.exe\">Download 64 bits DVR Client (Windows 7, Windows 8, Windows 10)</a><br>\n<a href=\"DVFPlayer.zip\">Download 32/64 bits File Player (Windows 7, Windows 8, Windows 10)</a><br>\n<\\?xml version=\"1.0\" encoding=\"utf-8\"?><base64Binary xmlns=\"http://micros-hosting.com/EGateway/\">\nLocation: /admin\n<meta name=\"generator\" content=\"vBulletin 5.5.4\" />\nLocation: http://<ip>:80/relogin.htm?_t=3541144909\nLocation: http://<ip>:80/syscmd.htm\" Location: /ui/login\n/cgi-bin/webctrl.cgi?action=index_page\nPDR-M800\nfunction btnPing()\n<HTML><HEAD><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>.The document has moved<A HREF=\"http://<ip>:80/relogin.htm?_t=179439949\">here</A></BODY></HTML>\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_shortcut.png\">\n<link type=\"image/x-icon\" rel=\"shortcut icon\" href=\"/themes/img/icon/cisco_logo.png\">\n<td class=\"Copyright\" colspan=\"2\" style=\"text-align:justify\" height=\"20\" valign=\"bottom\">\u00a9 2017 Cisco Systems, Inc. All Rights Reserved.\n<br>Cisco, Cisco Systems, and the Cisco Systems logo are registered\ntrademarks or trademarks of Cisco Systems, Inc. and/or it's affiliates\nin the United States and certain other countries.\n</td>\n:\n#\n>\n$\nSSH key is good\nis not a valid ref and may not be archived\npcPassword2\n'&sessionKey=790148060;'\nname=\"sessionKey\" value=\"790148060\"\nSet-Cookie: loginName=admin\nvar fgt_lang = /dev/cmdb/sslvpn_websession\nphp 8.1.0-dev exit\nspringframework\nTomcat\nDEVICE.ACCOUNT=admin\nAUTHORIZED_GROUP=1\n<uid></uid>\n<name>Admin</name>\n<usrid></usrid>\n<password>admin</password>\n<group></group>\ncpto /tmp/\"root\"\nModel=AC1450\r\nFirmware=V1.0.0.36_10.0.17\r\n\"exceptionMessageValue\":\"javax.servlet.ServletException: No valid forensics analysis solrDocIds parameter found.\"\nBIG-IP release 15.0.0\nuser:root\n12345admin123'\nFailed to process image\n\nLocation: http://192.168.0.1:52869/picsdesc.xml\nYou don't have permission to access /vpns/ on this server.\n[global]\n    workgroup = intranet\n    encrypt passwords = Yes\n    update encrypted = Yes\n\nfuncionando\nsystem_sofia\nname resolve order\nInfoOS:Linux node01 uid=0(root) gid=0(root) groups=0(root)OSInfo\n<b>File Uploaded !!!</b><br>\nant=951d11e51392117311602d0c25435d7f\n38ee63071a04dc5e04ed22624c38e648\n6f3249aa304055d63828af3bfab778f6\n<h1> c80fc6428eb4fe4a3b77898ebf9f3945 </h1>\n[local]\n tid = OGRjYjc0YTY0ZGM5ODRmYjlhYmUzZTdjMjAxZjgxMGQ5ZWM5MGVkOGUwY2I2ZWQwM2JhMzg0ZTJmYWMyMzkwZD09\n addr = <ip>\n\"Powered by vBulletin Version 5.5.4\"\n789551\nLinear eMerge\nSuperSign\nubiq\nYacht\nZeroshell\nFastWeb\nAuthInfo:\nloadingIndicator_bk\nZyxel\nskyrouter\nWAP54\norg.apache.spark.ui\n\n\n\nID: \"00af\", version: \"7.7.31.1\", AddItem: function (a, item, c) {}\n<insert implant configuration content here>\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' ws://<ip> ws://<ip>:443 wss://<ip> wss://<ip>:8443 http://<ip>/api\nCopyright (c) 2015-2020 by Cisco Systems, Inc.\nAll rights reserved.\nSSL VPN Service\nwsConvertPptResponse\n<input id=\"txtUserName\" class=\"txt-input\" type=\"text\" name=\"userName\" value=\"\" />\n<input id=\"txtPassword\" class=\"txt-input\" type=\"password\" name=\"password\" value=\"\" />\n<button id=\"btnLogin\" lc=\"html\" lk=\"IDCS_LOGIN_NBSP\">\n<span lc=\"html\" lk=\"IDCS_BS_PLUGIN_DOWNLOAD\" style=\"line-height: 30px; vertical-align: top;\"></span>\n<script src=\"../Scripts/login.htm.js?v={JS_CSS_V}\" type=\"text/javascript\"></script>\n<LegacyDN>eD2bxe4</LegacyDN>\n<title class=\"_ctxstxt_NetscalerGateway\">\nSAML Assertion verification failed; Please contact your administrator\nv=2b46554c087d2d5516559e9b8bc1875d\n/vpn/images/AccessGateway.ico\nframe-busting\n/vpn/js/logout_view.js?v=\n_ctxstxt_NetscalerAAA\nlib.min20200813.js\n401 Unauthorized Basic realm=\nsName='1';onTest(this);\nvar passadm = \"admin\";\nOPMODE_BRIDGE\ndocument.all.cmd_result\n<input id=\"key\" type=\"text\" style=\"width: 200px\" value=\"02108CB9-2200D5A4\">\n<input id=\"date\" type=\"text\" style=\"width: 200px\" value=\"12/25/2023\">\nmain page cgi-bin/login.cgi\nvar sessionKey='030ff030ff88';\nloc += '&sessionKey=19dec20030ff8dcb2';\n}\n\nvar code = 'location=\"' + loc + '\"';\n\nPassword change successful\nJ2100N GPON ONT\n/cgi-bin/webui/admin\nsesskey\nname=admin pass=123 priv=ppp\nservice=www.dlinkddns.com\nsysCmdType\nContent-Type: auth/request\n\n\nContent-Type: command/reply\n\nReply-Text: +OK accepted\n\n\nX-Content-Powered-By: K2 v2.8.0 (by JoomlaWorks)\n007b2000-007c1000 rw-p 00000000 00:00 0\nSize:                 60 kB\nRss:                  52 kB\nPss:                  52 kB\nShared_Clean:          0 kB\nShared_Dirty:          0 kB\nPrivate_Clean:         0 kB\nPrivate_Dirty:        52 kB\nReferenced:           52 kB\nAnonymous:            52 kB\nAnonHugePages:        ",
   "datamd5" : "5b57c8f287d2b0e2d29d3b0307cf70b7",
   "datammh3" : -990581784,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS45102",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "alibaba-inc.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "ALICLOUD-US",
      "organization" : "Alibaba Cloud LLC",
      "subnet" : "47.251.0.0/17"
   },
   "ip" : "47.251.73.54",
   "ipv6" : "false",
   "latitude" : "34.0544",
   "location" : "34.0544,-118.2440",
   "longitude" : "-118.2440",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Alibaba US Technology Co., Ltd.",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : 4782,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "47.251.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

122.50.6.117

Network

122.50.4.0/22

Domain(s)

moratelindo.net.id

Device

<enterprise field>: device.class

Operating System

Linux Linux Kernel

URL

http://122.50.6.117:4782/ 303

HTTP Title

Redirecting...

Reverse DNS

ip-122-50-6-117.moratelindo.net.id

ASN

AS131111

Organization

PT Mora Telematika Indonesia

Protocol

http

Source

datascan

Operating System

Linux Linux Kernel

Product

Pocoo Werkzeug 2.0.2

HTTP Component(s)

Python Python 3.12.3

CPE(s)

<enterprise field>: cpe

Data MD5

b5d3481a870ff7b699f7b13603eeb99a

HTTP Header MD5

3590fba057596e3f856bd3de27b33921

HTTP Body MD5

1c5a45f4b194463af6c313e4d2a9eed0

HTTP/1.0 303 SEE OTHER
Content-Type: text/html; charset=utf-8
Content-Length: 214
Location: http://<ip>:4782/web
Set-Cookie: session_id=9242f1cce0a50919ef4033884c4c1c192b971785; Expires=Thu, 28 Nov 2024 15:33:15 GMT; Max-Age=604800; HttpOnly; Path=/
Server: Werkzeug/2.0.2 Python/3.12.3
Date: Thu, 21 Nov 2024 15:33:15 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>Redirecting...</title>
<h1>Redirecting...</h1>
<p>You should be redirected automatically to target URL: <a href="/web">/web</a>. If not click the link.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:40:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1c5a45f4b194463af6c313e4d2a9eed0",
         "bodymmh3" : -595372620,
         "component" : [
            {
               "product" : "Python",
               "productvendor" : "Python",
               "productversion" : "3.12.3"
            }
         ],
         "headermd5" : "3590fba057596e3f856bd3de27b33921",
         "headermmh3" : 2143189844,
         "title" : "Redirecting..."
      },
      "length" : 546
   },
   "asn" : "AS131111",
   "city" : "Pademangan Timur",
   "country" : "ID",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 303 SEE OTHER\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 214\r\nLocation: http://<ip>:4782/web\r\nSet-Cookie: session_id=9242f1cce0a50919ef4033884c4c1c192b971785; Expires=Thu, 28 Nov 2024 15:33:15 GMT; Max-Age=604800; HttpOnly; Path=/\r\nServer: Werkzeug/2.0.2 Python/3.12.3\r\nDate: Thu, 21 Nov 2024 15:33:15 GMT\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2 Final//EN\">\n<title>Redirecting...</title>\n<h1>Redirecting...</h1>\n<p>You should be redirected automatically to target URL: <a href=\"/web\">/web</a>. If not click the link.",
   "datamd5" : "b5d3481a870ff7b699f7b13603eeb99a",
   "datammh3" : 359773890,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "moratelindo.net.id"
   ],
   "geolocus" : {
      "asn" : "AS131111",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "ID",
      "countryname" : "Indonesia",
      "domain" : [
         "live.com",
         "moratelindo.co.id"
      ],
      "isineu" : "false",
      "latitude" : "-0.789275",
      "location" : "-0.789275,113.921327",
      "longitude" : "113.921327",
      "netname" : "IDNIC-MQM-ID",
      "organization" : "MORATELINDONAP-ID",
      "subnet" : "122.50.4.0/22"
   },
   "host" : [
      "ip-122-50-6-117"
   ],
   "hostname" : [
      "ip-122-50-6-117.moratelindo.net.id"
   ],
   "ip" : "122.50.6.117",
   "ipv6" : "false",
   "latitude" : "-6.1398",
   "location" : "-6.1398,106.8457",
   "longitude" : "106.8457",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "PT Mora Telematika Indonesia",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4782,
   "product" : "Werkzeug",
   "productvendor" : "Pocoo",
   "productversion" : "2.0.2",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "SEE OTHER",
   "reverse" : [
      "ip-122-50-6-117.moratelindo.net.id"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 303,
   "subnet" : "122.50.4.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.id"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

211.83.10.14

Network

211.80.0.0/13

Device

<enterprise field>: device.class

URL

http://211.83.10.14:4782/ 200

ASN

AS4538

Organization

China Education and Research Network Center

Protocol

http

Source

datascan

Product

Apache HTTP Server

CPE(s)

<enterprise field>: cpe

Data MD5

18f3cac0275e516a9a42ffc93a4c5c4a

HTTP Header MD5

97eb73c41d2d1f332d0a4ddd4c85c3de

HTTP Body MD5

510981d7b90abd38defceb24f5ea52fd

HTTP/1.1 200 ok
Server: Apache
Content-Length:  223
Cache-Control: no-cache
Connection: close

<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:4782/'</script>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:40:05.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "211.83.41.225",
            "10.100.100.114"
         ],
         "url" : [
            "http://211.83.41.225/eportal/index.jsp?wlanuserip="
         ]
      },
      "http" : {
         "bodymd5" : "510981d7b90abd38defceb24f5ea52fd",
         "bodymmh3" : -1841038282,
         "headermd5" : "97eb73c41d2d1f332d0a4ddd4c85c3de",
         "headermmh3" : -2113301773
      },
      "length" : 311
   },
   "asn" : "AS4538",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 ok\r\nServer: Apache\r\nContent-Length:  223\r\nCache-Control: no-cache\r\nConnection: close\r\n\r\n<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:4782/'</script>\r\n\r\n",
   "datamd5" : "18f3cac0275e516a9a42ffc93a4c5c4a",
   "datammh3" : -1467452572,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "211.in-addr.arpa",
         "apnic.net",
         "cernet.edu.cn",
         "scut.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "211.80.0.0/13"
   },
   "ip" : "211.83.10.14",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 4782,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "ok",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "211.80.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

180.74.231.240

Network

180.72.0.0/14

Device

<enterprise field>: device.class <enterprise field>: device.productvendor

Operating System

Linux Linux 2

URL

http://180.74.231.240:4782/ 200

HTTP Title

::: Login :::

ASN

AS4788

Organization

TM TECHNOLOGY SERVICES SDN. BHD.

Protocol

http

Source

datascan

Operating System

Linux Linux 2

CPE(s)

<enterprise field>: cpe

Data MD5

498757ed6cd314988f10f57b901a6c7b

HTTP Header MD5

15514d09ab3a6e41ccb6a3bff154ef8a

HTTP Body MD5

c1795339bfc5fbb0f593b34bec5a77c1

HTTP/1.1 200 OK
Date: Thu, 21 Nov 2024 16:37:07 GMT
Server: Linux/2.x UPnP/1.0 Avtech/1.0
Connection: close
Last-Modified: Wed, 27 Jun 2018 03:19:35 GMT
Content-Type: text/html
ETag: 388-15850-1530069575
Content-Length: 15850

<html>
<head>
<link rel="icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="shortcut icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="bookmark" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="googlebot" content="nosnippet">
<meta name="robots" content="noarchive">
<title>::: Login :::</title>
<style>
<!--
body {background-image: url(/nobody/jpg/bg.jpg); margin-left: 0px;margin-top: 0px;margin-right: 0px;margin-bottom: 0px;}
td { font-size:14px;color:#FFFFFF;font-weight:bold; font-family:Arial;}
.inputTxt{ width:120px; font-family:Courier New, Arial; border-right: #acacac 1px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #acacac 1px solid; background-color: #ffffff; height:20px;}
.codeBorder{border-right: #696969 2px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #696969 2px solid; background-color: #ffffff;}
.font0{font-size:36px;font-family:Arial; font-style:italic;}
.font1{font-size:24px;font-family:Arial; font-style:italic; color:#EDEDED;}
-->
</style>
<script language="JavaScript">
//Kelvin++ 2014-07-31 check is it opening from EZ server, then auto-login use ez.htm
if(document.URL.indexOf("?a=") > 0){
    var VerifyStr_Base64 = document.URL.split("?")[1].substring(2);
    location.href="/nobody/ez.htm?a="+VerifyStr_Base64+"&rnd=" + Math.random();
}
/* ========== loginQuickDevice.js ========== */
function getCookie(c_name){
    if (document.cookie.length>0){
        c_start=document.cookie.indexOf(c_name + "=");
        if (c_start!=-1){ 
            c_start=c_start + c_name.length+1; 
            c_end=document.cookie.indexOf(";",c_start);
            if (c_end==-1) c_end=document.cookie.length;
            return unescape(document.cookie.substring(c_start,c_end));
        } 
    }
    return "";
}

function setCookie(c_name,value,expiredays){
    var exdate=new Date();
    exdate.setDate(exdate.getDate()+expiredays);
    document.cookie=c_name+ "=" +escape(value)+((expiredays==null) ? "" : ";expires="+exdate.toGMTString());
}

var w = window.screen.availWidth;

if(getCookie("ViewMode")!="Classic"){
    if(w <= 800){//mobile screen width < 800
    	if(w >= 320)
    		location.href="/nobody/mobile320.htm?Login=Quick";
    	else
    		location.href="/nobody/mobile.htm?Login=Quick";
    }
}

//no use
function isMobileBrowser(){
    var u = navigator.userAgent.toLowerCase();
    
    if(u.indexOf("midp") != -1)
    	return true;
    else if(u.indexOf("mobile") != -1)
    	return true;
    else if(u.indexOf("iphone") != -1 || u.indexOf("ipod") != -1)
    	return true;
    else if(u.indexOf("series60") != -1 || u.indexOf("symbian") != -1)
    	return true;
    else if(u.indexOf("blackberry") != -1)
    	return true;
    else if(u.indexOf("android") != -1)
    	return true;
    else if(u.indexOf("windows ce") != -1 || u.indexOf("windows phone") != -1)
    	return true;
    else if(u.indexOf("htc") != -1 || u.indexOf("hd2_") != -1)
    	return true;
    else if(u.indexOf("palm") != -1)
    	return true;
    else
    	return false;
}


/* ========== webtoolkit.base64.js ========== */
var Base64 = {

	// private property
	_keyStr : "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",

	// public method for encoding
	encode : function (input) {
		var output = "";
		var chr1, chr2, chr3, enc1, enc2, enc3, enc4;
		var i = 0;

		input = Base64._utf8_encode(input);

		while (i < input.length) {

			chr1 = input.charCodeAt(i++);
			chr2 = input.charCodeAt(i++);
			chr3 = input.charCodeAt(i++);

			enc1 = chr1 >> 2;
			enc2 = ((chr1 & 3) << 4) | (chr2 >> 4);
			enc3 = ((chr2 & 15) << 2) | (chr3 >> 6);
			enc4 = chr3 & 63;

			if (isNaN(chr2)) {
				enc3 = enc4 = 64;
			} else if (isNaN(chr3)) {
				enc4 = 64;
			}

			output = output +
			this._keyStr.charAt(enc1) + this._keyStr.charAt(enc2) +
			this._keyStr.charAt(enc3) + this._keyStr.charAt(enc4);

		}

		return output;
	},

	// public method for decoding
	decode : function (input) {
		var output = "";
		var chr1, chr2, chr3;
		var enc1, enc2, enc3, enc4;
		var i = 0;

		input = input.replace(/[^A-Za-z0-9\+\/\=]/g, "");

		while (i < input.length) {

			enc1 = this._keyStr.indexOf(input.charAt(i++));
			enc2 = this._keyStr.indexOf(input.charAt(i++));
			enc3 = this._keyStr.indexOf(input.charAt(i++));
			enc4 = this._keyStr.indexOf(input.charAt(i++));

			chr1 = (enc1 << 2) | (enc2 >> 4);
			chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
			chr3 = ((enc3 & 3) << 6) | enc4;

			output = output + String.fromCharCode(chr1);

			if (enc3 != 64) {
				output = output + String.fromCharCode(chr2);
			}
			if (enc4 != 64) {
				output = output + String.fromCharCode(chr3);
			}

		}

		output = Base64._utf8_decode(output);

		return output;

	},

	// private method for UTF-8 encoding
	_utf8_encode : function (string) {
		string = string.replace(/\r\n/g,"\n");
		var utftext = "";

		for (var n = 0; n < string.length; n++) {

			var c = string.charCodeAt(n);

			if (c < 128) {
				utftext += String.fromCharCode(c);
			}
			else if((c > 127) && (c < 2048)) {
				utftext += String.fromCharCode((c >> 6) | 192);
				utftext += String.fromCharCode((c & 63) | 128);
			}
			else {
				utftext += String.fromCharCode((c >> 12) | 224);
				utftext += String.fromCharCode(((c >> 6) & 63) | 128);
				utftext += String.fromCharCode((c & 63) | 128);
			}

		}

		return utftext;
	},

	// private method for UTF-8 decoding
	_utf8_decode : function (utftext) {
		var string = "";
		var i = 0;
		var c = c1 = c2 = 0;

		while ( i < utftext.length ) {

			c = utftext.charCodeAt(i);

			if (c < 128) {
				string += String.fromCharCode(c);
				i++;
			}
			else if((c > 191) && (c < 224)) {
				c2 = utftext.charCodeAt(i+1);
				string += String.fromCharCode(((c & 31) << 6) | (c2 & 63));
				i += 2;
			}
			else {
				c2 = utftext.charCodeAt(i+1);
				c3 = utftext.charCodeAt(i+2);
				string += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));
				i += 3;
			}

		}

		return string;
	}

}

/* ========== loginQuick.js ========== */
var ff;
var CheckOnlySupportIE = false;
var DVR_ONLY_SUPPORT_IE = "_042_082_162_046_";
var isIEBrowser = false;

if ((navigator.appName == "Microsoft Internet Explorer") && (navigator.platform != "MacPPC") && (navigator.platform != "Mac68k")) {
  isIEBrowser = true;
}

/* disabled backspace key */
if(typeof window.event != 'undefined'){
    document.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}
}else{
    document.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}
}

function init(){
	ff = document.myForm;
	ff.Username.value = "";
	ff.Password.value = "";
	ff.Username.focus();
	//setTimeout("getCaptchaImg()", 1000);
}

function getCaptchaImg(){
	document.getElementById("Captcha").src = "/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp";
}

function goCheck(e){
    if(window.event && e.keyCode ==13) //IE
        check(); 
    else if(e.which == 13) // Netscape/Firefox/Opera
        check();
}

function check(){
    if(!ff){return false;}
    
    document.cookie = "x=1";
    if (document.cookie.indexOf("x=")==-1){
        alert("Browser Cookie not supported.");
        frmReload();
        return false;
    }
    var actionStr = "/cgi-bin/nobody/VerifyCode.cgi"
    actionStr += "?account="+Base64.encode(ff.Username.value+":"+ff.Password.value);
    //actionStr += "&captcha_code="+ff.CaptchaCode.value;
    //actionStr += "&verify_code="+getCookie("captcha");
    actionStr += "&rnd="+Math.random();
	var httpObj = createHttpRequestObj();
	httpObj.onreadystatechange = function(){
    	if (httpObj.readyState == 4 && httpObj.status == 200){
    		var objStr    = new Object();
    		objStr.strSrc = httpObj.responseText;
    		tmpStr = objStr.strSrc.split("\n");
            if (tmpStr[1] == "OK"){
                getUserLevel();
            }else{
                alert(tmpStr[1]);
                frmReload();
            }
        }
    };
	httpObj.open("get", actionStr, true);
	httpObj.send(null);
	return false;
}

function getUserLevel(){
	/*
	var httpObj = createHttpRequestObj();
	requestData = "/cgi-bin/guest/Login.cgi?rnd="+Math.random();
	httpObj.onreadystatechange = function(){
    	if (httpObj.readyState == 4 && httpObj.status == 200){
    		var objStr    = new Object();
    		objStr.strSrc = httpObj.responseText;
    		
    		if (CheckOnlySupportIE && GetCgiParam(objStr, "Product-ID-Minor=") == 1){
    		    var pid = objStr.strGet;
    		    var pidc = "_"+pid+"_";
    		    if(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){
    		        //alert("This machine is not supported, please visit 'www.avtech.com.tw' for more details.");
    		        if(confirm("This machine is not supported.\nDo you want to get more details?")){
    		            location.href = "http://www.eagleeyescctv.com/jump/dvr.htm";
    		        }
    		        return false;
    		    }
    		}
    		
    		if (GetCgiParam(objStr, "User-Level=") == 1){
    			setCookie("LifeTime", "");
    			setCookie("ReloWebTime", 0);
    			if(objStr.strGet == "SUPERVISOR")
                    location.href="/index.htm";
                else
                    location.href="/index.htm";
					//location.href="/default.htm";
            }else{alert('Login Failed.');}
            
    	}
    };
	httpObj.open("get", requestData, true);
	httpObj.send(null);
	*/
	setCookie("brokenhdd", "");
	setCookie("LifeTime", "");
	setCookie("ReloWebTime", 0);
	location.href="/index.htm";
}

function frmReload(){
    ff.Username.value="";
    ff.Password.value="";
    //ff.CaptchaCode.value="";
    location.reload();
}

function createHttpRequestObj(){
	var XMLhttpObject = null;
	try {XMLhttpObject = new XMLHttpRequest();}
	catch(e){
		try {XMLhttpObject = new ActiveXObject("Msxml2.XMLHTTP");}
		catch(e){
			try {XMLhttpObject = new ActiveXObject("Microsoft.XMLHTTP");}
			catch(e) {return null;}
		}
	}
	return XMLhttpObject;
}

function GetCgiParam(objStr, strSearch){
	var curr_pos;var result;
	objStr.strSearch=strSearch;
	objStr.curr_pos=0;
	do{
		result = 1;
		curr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);
		if (curr_pos < 0){
			result = 0;
			break;
		}
		objStr.curr_pos = curr_pos + objStr.strSearch.length;
		curr_pos = objStr.strSrc.indexOf('\n', objStr.curr_pos);
		if (curr_pos < 0){
			if (objStr.curr_pos < objStr.strSrc.length){
				objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);
				objStr.curr_pos = curr_pos;	
				break;
			}
			result = 0;
			break;
		}
		objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, curr_pos);
		objStr.curr_pos = curr_pos;
	} while(0);
	return result;
}

function goMobile(){
    setCookie("ViewMode", "Mobile");
	var w = window.screen.availWidth;
	if(w >= 320)
		location.href="/nobody/mobile320.htm?Login=Quick";
	else
		location.href="/nobody/mobile.htm?Login=Quick";
}

</script>
</head>
<body onload="init()">
<form name="myForm" method="POST" target="_top" onSubmit="return check();">
<table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
    <tr><td width="778" height="197" valign="middle" >
        <table width="201" border="0" cellspacing="0" cellpadding="0">
            <tr><td width="201" height="25">&nbsp;</td></tr>
        </table>
        <table width="467" height="88" border="0" align="center" cellpadding="0" cellspacing="0">
            <tr><td width="493" height="53" class="font0">&nbsp;&nbsp;&nbsp;Any time &amp; Any where</td></tr>
            <tr><td class="font1">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;IP Surveillance for Your Life</td></tr>
        </table></td></tr>
    <tr><td height="114" valign="middle">
        <table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
            <tr><td width="221" height="247" valign="top"></td>
        <td valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td height="94" valign="top"><table width="341" border="0" cellspacing="0" cellpadding="0">
              <tr>
                <td width="21"><img src="/nobody/jpg/lcorner.jpg" width="21" height="33" alt=""></td>
                <td width="306" align="center" background="/nobody/jpg/banner.jpg"> Customer Login </td>
                <td width="14"><img src="/nobody/jpg/rcor.jpg" width="18" height="33"></td>
              </tr>
            </table>
                    <table width="341" border="0" align="left" cellpadding="0" cellspacing="0">
                      <tr>
                        <td width="8%"><img src="/nobody/jpg/mem.jpg" width="83" height="168"></td>
                        <td width="87%" background="/nobody/jpg/bg09.gif">
                            <!-- input box -->
                            <table width="233" height="80" border="0" cellpadding="0" cellspacing="0">
                            <tr>
                              <td width="96" height="41" align="right">Username :&nbsp;</td>
                              <td width="124"><input name="Username" maxlength="31" type="text" class="inputTxt" size="17" onkeydown="goCheck(event);"></td>
                            </tr>
                            <tr>
                              <td width="96" height="37" align="right">Password :&nbsp;</td>
                              <td><input name="Password" maxlength="31" type="password" class="inputTxt" size="17" onkeydown="goCheck(event);"></td>
                            </tr>
                            </table></td>

                        <td width="5%"><img src="/nobody/jpg/line11.jpg" width="18" height="168"></td>
                      </tr>
                  </table></td>
          </tr>
          <tr>
            <td valign="top"><table width="341" border="0" align="center" cellpadding="0" cellspacing="0">
              <tr>
                <td width="17" valign="top" background="/nobody/jpg/bg14.jpg"><img src="/nobody/jpg/cor.jpg" width="17" height="46"></td>
                <td width="305" background="/nobody/jpg/bg14.jpg">
                    <!-- button -->
                    <table width="100%" border="0" cellspacing="0" cellpadding="0">
                    <tr><td align="center"><img src="/nobody/jpg/login.gif" style="cursor:pointer" width="103" height="29" border="0" onClick="check();"></td></tr>
                    </table></td>
                <td width="18" valign="top"><img src="/nobody/jpg/cor18.jpg" width="18" height="46"></td>
              </tr>
            </table></td>
          </tr>
        </table></td>
        <td width="218" valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td></td>
          </tr>
          
        </table></td>
      </tr>
    </table>
    <table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
      <tr>
        <td width="213"></td>
        <td width="339" height="132" align="center">View: <a href="#" style='color:#00ffff' onclick="goMobile()">Mobile</a> | PC</td>
        <td width="226"></td>
      </tr>
    </table></td>
  </tr>
</table>
</form>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:37:08.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "eagleeyescctv.com"
         ],
         "file" : [
            "verifycode.cgi"
         ],
         "hostname" : [
            "www.eagleeyescctv.com"
         ],
         "url" : [
            "http://www.eagleeyescctv.com/jump/dvr.htm"
         ]
      },
      "favicon" : {
         "url" : "/nobody/favicon.ico"
      },
      "http" : {
         "bodymd5" : "c1795339bfc5fbb0f593b34bec5a77c1",
         "bodymmh3" : -878287826,
         "header" : [
            {
               "value" : "Wed, 27 Jun 2018 03:19:35 GMT",
               "name" : "Last-Modified"
            },
            {
               "value" : "388-15850-1530069575",
               "name" : "ETag"
            }
         ],
         "headermd5" : "15514d09ab3a6e41ccb6a3bff154ef8a",
         "headermmh3" : 178570068,
         "title" : "::: Login :::"
      },
      "length" : 16086
   },
   "asn" : "AS4788",
   "city" : "Johor Bahru",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 21 Nov 2024 16:37:07 GMT\r\nServer: Linux/2.x UPnP/1.0 Avtech/1.0\r\nConnection: close\r\nLast-Modified: Wed, 27 Jun 2018 03:19:35 GMT\r\nContent-Type: text/html\r\nETag: 388-15850-1530069575\r\nContent-Length: 15850\r\n\r\n<html>\r\n<head>\r\n<link rel=\"icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"shortcut icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"bookmark\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\r\n<meta name=\"googlebot\" content=\"nosnippet\">\r\n<meta name=\"robots\" content=\"noarchive\">\r\n<title>::: Login :::</title>\r\n<style>\r\n<!--\r\nbody {background-image: url(/nobody/jpg/bg.jpg); margin-left: 0px;margin-top: 0px;margin-right: 0px;margin-bottom: 0px;}\r\ntd { font-size:14px;color:#FFFFFF;font-weight:bold; font-family:Arial;}\r\n.inputTxt{ width:120px; font-family:Courier New, Arial; border-right: #acacac 1px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #acacac 1px solid; background-color: #ffffff; height:20px;}\r\n.codeBorder{border-right: #696969 2px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #696969 2px solid; background-color: #ffffff;}\r\n.font0{font-size:36px;font-family:Arial; font-style:italic;}\r\n.font1{font-size:24px;font-family:Arial; font-style:italic; color:#EDEDED;}\r\n-->\r\n</style>\r\n<script language=\"JavaScript\">\r\n//Kelvin++ 2014-07-31 check is it opening from EZ server, then auto-login use ez.htm\r\nif(document.URL.indexOf(\"?a=\") > 0){\r\n    var VerifyStr_Base64 = document.URL.split(\"?\")[1].substring(2);\r\n    location.href=\"/nobody/ez.htm?a=\"+VerifyStr_Base64+\"&rnd=\" + Math.random();\r\n}\r\n/* ========== loginQuickDevice.js ========== */\r\nfunction getCookie(c_name){\r\n    if (document.cookie.length>0){\r\n        c_start=document.cookie.indexOf(c_name + \"=\");\r\n        if (c_start!=-1){ \r\n            c_start=c_start + c_name.length+1; \r\n            c_end=document.cookie.indexOf(\";\",c_start);\r\n            if (c_end==-1) c_end=document.cookie.length;\r\n            return unescape(document.cookie.substring(c_start,c_end));\r\n        } \r\n    }\r\n    return \"\";\r\n}\r\n\r\nfunction setCookie(c_name,value,expiredays){\r\n    var exdate=new Date();\r\n    exdate.setDate(exdate.getDate()+expiredays);\r\n    document.cookie=c_name+ \"=\" +escape(value)+((expiredays==null) ? \"\" : \";expires=\"+exdate.toGMTString());\r\n}\r\n\r\nvar w = window.screen.availWidth;\r\n\r\nif(getCookie(\"ViewMode\")!=\"Classic\"){\r\n    if(w <= 800){//mobile screen width < 800\r\n    \tif(w >= 320)\r\n    \t\tlocation.href=\"/nobody/mobile320.htm?Login=Quick\";\r\n    \telse\r\n    \t\tlocation.href=\"/nobody/mobile.htm?Login=Quick\";\r\n    }\r\n}\r\n\r\n//no use\r\nfunction isMobileBrowser(){\r\n    var u = navigator.userAgent.toLowerCase();\r\n    \r\n    if(u.indexOf(\"midp\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"mobile\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"iphone\") != -1 || u.indexOf(\"ipod\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"series60\") != -1 || u.indexOf(\"symbian\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"blackberry\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"android\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"windows ce\") != -1 || u.indexOf(\"windows phone\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"htc\") != -1 || u.indexOf(\"hd2_\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"palm\") != -1)\r\n    \treturn true;\r\n    else\r\n    \treturn false;\r\n}\r\n\r\n\r\n/* ========== webtoolkit.base64.js ========== */\r\nvar Base64 = {\r\n\r\n\t// private property\r\n\t_keyStr : \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=\",\r\n\r\n\t// public method for encoding\r\n\tencode : function (input) {\r\n\t\tvar output = \"\";\r\n\t\tvar chr1, chr2, chr3, enc1, enc2, enc3, enc4;\r\n\t\tvar i = 0;\r\n\r\n\t\tinput = Base64._utf8_encode(input);\r\n\r\n\t\twhile (i < input.length) {\r\n\r\n\t\t\tchr1 = input.charCodeAt(i++);\r\n\t\t\tchr2 = input.charCodeAt(i++);\r\n\t\t\tchr3 = input.charCodeAt(i++);\r\n\r\n\t\t\tenc1 = chr1 >> 2;\r\n\t\t\tenc2 = ((chr1 & 3) << 4) | (chr2 >> 4);\r\n\t\t\tenc3 = ((chr2 & 15) << 2) | (chr3 >> 6);\r\n\t\t\tenc4 = chr3 & 63;\r\n\r\n\t\t\tif (isNaN(chr2)) {\r\n\t\t\t\tenc3 = enc4 = 64;\r\n\t\t\t} else if (isNaN(chr3)) {\r\n\t\t\t\tenc4 = 64;\r\n\t\t\t}\r\n\r\n\t\t\toutput = output +\r\n\t\t\tthis._keyStr.charAt(enc1) + this._keyStr.charAt(enc2) +\r\n\t\t\tthis._keyStr.charAt(enc3) + this._keyStr.charAt(enc4);\r\n\r\n\t\t}\r\n\r\n\t\treturn output;\r\n\t},\r\n\r\n\t// public method for decoding\r\n\tdecode : function (input) {\r\n\t\tvar output = \"\";\r\n\t\tvar chr1, chr2, chr3;\r\n\t\tvar enc1, enc2, enc3, enc4;\r\n\t\tvar i = 0;\r\n\r\n\t\tinput = input.replace(/[^A-Za-z0-9\\+\\/\\=]/g, \"\");\r\n\r\n\t\twhile (i < input.length) {\r\n\r\n\t\t\tenc1 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc2 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc3 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc4 = this._keyStr.indexOf(input.charAt(i++));\r\n\r\n\t\t\tchr1 = (enc1 << 2) | (enc2 >> 4);\r\n\t\t\tchr2 = ((enc2 & 15) << 4) | (enc3 >> 2);\r\n\t\t\tchr3 = ((enc3 & 3) << 6) | enc4;\r\n\r\n\t\t\toutput = output + String.fromCharCode(chr1);\r\n\r\n\t\t\tif (enc3 != 64) {\r\n\t\t\t\toutput = output + String.fromCharCode(chr2);\r\n\t\t\t}\r\n\t\t\tif (enc4 != 64) {\r\n\t\t\t\toutput = output + String.fromCharCode(chr3);\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\toutput = Base64._utf8_decode(output);\r\n\r\n\t\treturn output;\r\n\r\n\t},\r\n\r\n\t// private method for UTF-8 encoding\r\n\t_utf8_encode : function (string) {\r\n\t\tstring = string.replace(/\\r\\n/g,\"\\n\");\r\n\t\tvar utftext = \"\";\r\n\r\n\t\tfor (var n = 0; n < string.length; n++) {\r\n\r\n\t\t\tvar c = string.charCodeAt(n);\r\n\r\n\t\t\tif (c < 128) {\r\n\t\t\t\tutftext += String.fromCharCode(c);\r\n\t\t\t}\r\n\t\t\telse if((c > 127) && (c < 2048)) {\r\n\t\t\t\tutftext += String.fromCharCode((c >> 6) | 192);\r\n\t\t\t\tutftext += String.fromCharCode((c & 63) | 128);\r\n\t\t\t}\r\n\t\t\telse {\r\n\t\t\t\tutftext += String.fromCharCode((c >> 12) | 224);\r\n\t\t\t\tutftext += String.fromCharCode(((c >> 6) & 63) | 128);\r\n\t\t\t\tutftext += String.fromCharCode((c & 63) | 128);\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\treturn utftext;\r\n\t},\r\n\r\n\t// private method for UTF-8 decoding\r\n\t_utf8_decode : function (utftext) {\r\n\t\tvar string = \"\";\r\n\t\tvar i = 0;\r\n\t\tvar c = c1 = c2 = 0;\r\n\r\n\t\twhile ( i < utftext.length ) {\r\n\r\n\t\t\tc = utftext.charCodeAt(i);\r\n\r\n\t\t\tif (c < 128) {\r\n\t\t\t\tstring += String.fromCharCode(c);\r\n\t\t\t\ti++;\r\n\t\t\t}\r\n\t\t\telse if((c > 191) && (c < 224)) {\r\n\t\t\t\tc2 = utftext.charCodeAt(i+1);\r\n\t\t\t\tstring += String.fromCharCode(((c & 31) << 6) | (c2 & 63));\r\n\t\t\t\ti += 2;\r\n\t\t\t}\r\n\t\t\telse {\r\n\t\t\t\tc2 = utftext.charCodeAt(i+1);\r\n\t\t\t\tc3 = utftext.charCodeAt(i+2);\r\n\t\t\t\tstring += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));\r\n\t\t\t\ti += 3;\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\treturn string;\r\n\t}\r\n\r\n}\r\n\r\n/* ========== loginQuick.js ========== */\r\nvar ff;\r\nvar CheckOnlySupportIE = false;\r\nvar DVR_ONLY_SUPPORT_IE = \"_042_082_162_046_\";\r\nvar isIEBrowser = false;\r\n\r\nif ((navigator.appName == \"Microsoft Internet Explorer\") && (navigator.platform != \"MacPPC\") && (navigator.platform != \"Mac68k\")) {\r\n  isIEBrowser = true;\r\n}\r\n\r\n/* disabled backspace key */\r\nif(typeof window.event != 'undefined'){\r\n    document.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}\r\n}else{\r\n    document.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}\r\n}\r\n\r\nfunction init(){\r\n\tff = document.myForm;\r\n\tff.Username.value = \"\";\r\n\tff.Password.value = \"\";\r\n\tff.Username.focus();\r\n\t//setTimeout(\"getCaptchaImg()\", 1000);\r\n}\r\n\r\nfunction getCaptchaImg(){\r\n\tdocument.getElementById(\"Captcha\").src = \"/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp\";\r\n}\r\n\r\nfunction goCheck(e){\r\n    if(window.event && e.keyCode ==13) //IE\r\n        check(); \r\n    else if(e.which == 13) // Netscape/Firefox/Opera\r\n        check();\r\n}\r\n\r\nfunction check(){\r\n    if(!ff){return false;}\r\n    \r\n    document.cookie = \"x=1\";\r\n    if (document.cookie.indexOf(\"x=\")==-1){\r\n        alert(\"Browser Cookie not supported.\");\r\n        frmReload();\r\n        return false;\r\n    }\r\n    var actionStr = \"/cgi-bin/nobody/VerifyCode.cgi\"\r\n    actionStr += \"?account=\"+Base64.encode(ff.Username.value+\":\"+ff.Password.value);\r\n    //actionStr += \"&captcha_code=\"+ff.CaptchaCode.value;\r\n    //actionStr += \"&verify_code=\"+getCookie(\"captcha\");\r\n    actionStr += \"&rnd=\"+Math.random();\r\n\tvar httpObj = createHttpRequestObj();\r\n\thttpObj.onreadystatechange = function(){\r\n    \tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n    \t\tvar objStr    = new Object();\r\n    \t\tobjStr.strSrc = httpObj.responseText;\r\n    \t\ttmpStr = objStr.strSrc.split(\"\\n\");\r\n            if (tmpStr[1] == \"OK\"){\r\n                getUserLevel();\r\n            }else{\r\n                alert(tmpStr[1]);\r\n                frmReload();\r\n            }\r\n        }\r\n    };\r\n\thttpObj.open(\"get\", actionStr, true);\r\n\thttpObj.send(null);\r\n\treturn false;\r\n}\r\n\r\nfunction getUserLevel(){\r\n\t/*\r\n\tvar httpObj = createHttpRequestObj();\r\n\trequestData = \"/cgi-bin/guest/Login.cgi?rnd=\"+Math.random();\r\n\thttpObj.onreadystatechange = function(){\r\n    \tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n    \t\tvar objStr    = new Object();\r\n    \t\tobjStr.strSrc = httpObj.responseText;\r\n    \t\t\r\n    \t\tif (CheckOnlySupportIE && GetCgiParam(objStr, \"Product-ID-Minor=\") == 1){\r\n    \t\t    var pid = objStr.strGet;\r\n    \t\t    var pidc = \"_\"+pid+\"_\";\r\n    \t\t    if(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){\r\n    \t\t        //alert(\"This machine is not supported, please visit 'www.avtech.com.tw' for more details.\");\r\n    \t\t        if(confirm(\"This machine is not supported.\\nDo you want to get more details?\")){\r\n    \t\t            location.href = \"http://www.eagleeyescctv.com/jump/dvr.htm\";\r\n    \t\t        }\r\n    \t\t        return false;\r\n    \t\t    }\r\n    \t\t}\r\n    \t\t\r\n    \t\tif (GetCgiParam(objStr, \"User-Level=\") == 1){\r\n    \t\t\tsetCookie(\"LifeTime\", \"\");\r\n    \t\t\tsetCookie(\"ReloWebTime\", 0);\r\n    \t\t\tif(objStr.strGet == \"SUPERVISOR\")\r\n                    location.href=\"/index.htm\";\r\n                else\r\n                    location.href=\"/index.htm\";\r\n\t\t\t\t\t//location.href=\"/default.htm\";\r\n            }else{alert('Login Failed.');}\r\n            \r\n    \t}\r\n    };\r\n\thttpObj.open(\"get\", requestData, true);\r\n\thttpObj.send(null);\r\n\t*/\r\n\tsetCookie(\"brokenhdd\", \"\");\r\n\tsetCookie(\"LifeTime\", \"\");\r\n\tsetCookie(\"ReloWebTime\", 0);\r\n\tlocation.href=\"/index.htm\";\r\n}\r\n\r\nfunction frmReload(){\r\n    ff.Username.value=\"\";\r\n    ff.Password.value=\"\";\r\n    //ff.CaptchaCode.value=\"\";\r\n    location.reload();\r\n}\r\n\r\nfunction createHttpRequestObj(){\r\n\tvar XMLhttpObject = null;\r\n\ttry {XMLhttpObject = new XMLHttpRequest();}\r\n\tcatch(e){\r\n\t\ttry {XMLhttpObject = new ActiveXObject(\"Msxml2.XMLHTTP\");}\r\n\t\tcatch(e){\r\n\t\t\ttry {XMLhttpObject = new ActiveXObject(\"Microsoft.XMLHTTP\");}\r\n\t\t\tcatch(e) {return null;}\r\n\t\t}\r\n\t}\r\n\treturn XMLhttpObject;\r\n}\r\n\r\nfunction GetCgiParam(objStr, strSearch){\r\n\tvar curr_pos;var result;\r\n\tobjStr.strSearch=strSearch;\r\n\tobjStr.curr_pos=0;\r\n\tdo{\r\n\t\tresult = 1;\r\n\t\tcurr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.curr_pos = curr_pos + objStr.strSearch.length;\r\n\t\tcurr_pos = objStr.strSrc.indexOf('\\n', objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tif (objStr.curr_pos < objStr.strSrc.length){\r\n\t\t\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);\r\n\t\t\t\tobjStr.curr_pos = curr_pos;\t\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, curr_pos);\r\n\t\tobjStr.curr_pos = curr_pos;\r\n\t} while(0);\r\n\treturn result;\r\n}\r\n\r\nfunction goMobile(){\r\n    setCookie(\"ViewMode\", \"Mobile\");\r\n\tvar w = window.screen.availWidth;\r\n\tif(w >= 320)\r\n\t\tlocation.href=\"/nobody/mobile320.htm?Login=Quick\";\r\n\telse\r\n\t\tlocation.href=\"/nobody/mobile.htm?Login=Quick\";\r\n}\r\n\r\n</script>\r\n</head>\r\n<body onload=\"init()\">\r\n<form name=\"myForm\" method=\"POST\" target=\"_top\" onSubmit=\"return check();\">\r\n<table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n    <tr><td width=\"778\" height=\"197\" valign=\"middle\" >\r\n        <table width=\"201\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n            <tr><td width=\"201\" height=\"25\">&nbsp;</td></tr>\r\n        </table>\r\n        <table width=\"467\" height=\"88\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n            <tr><td width=\"493\" height=\"53\" class=\"font0\">&nbsp;&nbsp;&nbsp;Any time &amp; Any where</td></tr>\r\n            <tr><td class=\"font1\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;IP Surveillance for Your Life</td></tr>\r\n        </table></td></tr>\r\n    <tr><td height=\"114\" valign=\"middle\">\r\n        <table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n            <tr><td width=\"221\" height=\"247\" valign=\"top\"></td>\r\n        <td valign=\"top\"><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n          <tr>\r\n            <td height=\"94\" valign=\"top\"><table width=\"341\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n              <tr>\r\n                <td width=\"21\"><img src=\"/nobody/jpg/lcorner.jpg\" width=\"21\" height=\"33\" alt=\"\"></td>\r\n                <td width=\"306\" align=\"center\" background=\"/nobody/jpg/banner.jpg\"> Customer Login </td>\r\n                <td width=\"14\"><img src=\"/nobody/jpg/rcor.jpg\" width=\"18\" height=\"33\"></td>\r\n              </tr>\r\n            </table>\r\n                    <table width=\"341\" border=\"0\" align=\"left\" cellpadding=\"0\" cellspacing=\"0\">\r\n                      <tr>\r\n                        <td width=\"8%\"><img src=\"/nobody/jpg/mem.jpg\" width=\"83\" height=\"168\"></td>\r\n                        <td width=\"87%\" background=\"/nobody/jpg/bg09.gif\">\r\n                            <!-- input box -->\r\n                            <table width=\"233\" height=\"80\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\r\n                            <tr>\r\n                              <td width=\"96\" height=\"41\" align=\"right\">Username :&nbsp;</td>\r\n                              <td width=\"124\"><input name=\"Username\" maxlength=\"31\" type=\"text\" class=\"inputTxt\" size=\"17\" onkeydown=\"goCheck(event);\"></td>\r\n                            </tr>\r\n                            <tr>\r\n                              <td width=\"96\" height=\"37\" align=\"right\">Password :&nbsp;</td>\r\n                              <td><input name=\"Password\" maxlength=\"31\" type=\"password\" class=\"inputTxt\" size=\"17\" onkeydown=\"goCheck(event);\"></td>\r\n                            </tr>\r\n                            </table></td>\r\n\r\n                        <td width=\"5%\"><img src=\"/nobody/jpg/line11.jpg\" width=\"18\" height=\"168\"></td>\r\n                      </tr>\r\n                  </table></td>\r\n          </tr>\r\n          <tr>\r\n            <td valign=\"top\"><table width=\"341\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n              <tr>\r\n                <td width=\"17\" valign=\"top\" background=\"/nobody/jpg/bg14.jpg\"><img src=\"/nobody/jpg/cor.jpg\" width=\"17\" height=\"46\"></td>\r\n                <td width=\"305\" background=\"/nobody/jpg/bg14.jpg\">\r\n                    <!-- button -->\r\n                    <table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n                    <tr><td align=\"center\"><img src=\"/nobody/jpg/login.gif\" style=\"cursor:pointer\" width=\"103\" height=\"29\" border=\"0\" onClick=\"check();\"></td></tr>\r\n                    </table></td>\r\n                <td width=\"18\" valign=\"top\"><img src=\"/nobody/jpg/cor18.jpg\" width=\"18\" height=\"46\"></td>\r\n              </tr>\r\n            </table></td>\r\n          </tr>\r\n        </table></td>\r\n        <td width=\"218\" valign=\"top\"><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n          <tr>\r\n            <td></td>\r\n          </tr>\r\n          \r\n        </table></td>\r\n      </tr>\r\n    </table>\r\n    <table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n      <tr>\r\n        <td width=\"213\"></td>\r\n        <td width=\"339\" height=\"132\" align=\"center\">View: <a href=\"#\" style='color:#00ffff' onclick=\"goMobile()\">Mobile</a> | PC</td>\r\n        <td width=\"226\"></td>\r\n      </tr>\r\n    </table></td>\r\n  </tr>\r\n</table>\r\n</form>\r\n</body>\r\n</html>",
   "datamd5" : "498757ed6cd314988f10f57b901a6c7b",
   "datammh3" : -1933980046,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "UNIFI-HOME",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "180.74.224.0/19"
   },
   "ip" : "180.74.231.240",
   "ipv6" : "false",
   "latitude" : "1.5554",
   "location" : "1.5554,103.6962",
   "longitude" : "103.6962",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux",
   "osvendor" : "Linux",
   "osversion" : "2",
   "port" : 4782,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "180.72.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

167.71.224.155

Network

167.71.0.0/16

Device

<enterprise field>: device.class

Operating System

Linux Linux Kernel

ASN

AS14061

Organization

DIGITALOCEAN-ASN

Protocol

telnet

Source

datascan

Operating System

Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

Data MD5

479ac06a951795de9acdf909bdd71ab6

\xff\xfb\x01\xff\xfb\x03\xff\xfc".155:4782\x0d
Connection: close\x0d
\x0d
\x1b[?1049l

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:36:35.000Z",
   "app" : {
      "length" : 49
   },
   "asn" : "AS14061",
   "city" : "Bengaluru",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\xff\\xfb\\x01\\xff\\xfb\\x03\\xff\\xfc\".155:4782\\x0d\nConnection: close\\x0d\n\\x0d\n\\x1b[?1049l",
   "datamd5" : "479ac06a951795de9acdf909bdd71ab6",
   "datammh3" : -825859804,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DIGITALOCEAN-167-71-0-0",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "167.71.224.0/20"
   },
   "ip" : "167.71.224.155",
   "ipv6" : "false",
   "latitude" : "12.9634",
   "location" : "12.9634,77.5855",
   "longitude" : "77.5855",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4782,
   "protocol" : "telnet",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "167.71.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP

195.123.227.49

Network

195.123.224.0/21

Domain(s)

hostry.com

Device

<enterprise field>: device.class

URL

http://195.123.227.49:4782/helpdesk/WebObjects/Helpdesk.woa 200

HTTP Title

PODPORA Z&Scaron;RS PLANICA

HTTP Description

Exceptionally powerful and friendly web-based software for technical support.

Reverse DNS

vps.hostry.com

ASN

AS59729

Organization

Green Floid LLC

Protocol

http

Source

datascan::redirect::1

HTTP Component(s)

SolarWinds WebHelpDesk 12.7.8 8471 Oracle Java

CPE(s)

<enterprise field>: cpe

Data MD5

f7d48c8bfb46908855787acaf192b875

HTTP Header MD5

e5831291e6a0d54da7f6b800b419e6da

HTTP Body MD5

4a29b25411d24b736670149724694fda

HTTP/1.1 200 OK
Cache-Control: private
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: XSRF-TOKEN=53d0eb75-6365-4311-b3d7-08297126ffee; Path=/helpdesk; Secure; SameSite=Lax
Set-Cookie: JSESSIONID=46DBB293FB3E1C336A3805F74CB54832; Path=/helpdesk; Secure; HttpOnly; SameSite=Lax
Set-Cookie: XSRF-TOKEN=8a0e8b0a-ef13-4270-9609-301d9ab3c5f8; Path=/helpdesk; Secure; SameSite=Lax
cache-control: private
cache-control: no-cache
cache-control: no-store
cache-control: must-revalidate
cache-control: max-age=0
date: Thu, 21 Nov 2024 08:35:09 UTC
expires: Thu, 21 Nov 2024 08:35:09 UTC
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: whduser_helpdesk=; version="1"; max-age=0; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
set-cookie: whdauth_helpdesk=; version="1"; max-age=0; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
set-cookie: woinst=-1; version="1"; path=/; secure; HttpOnly
x-webobjects-loadaverage: 3
x-webobjects-servlet: YES
vary: accept-encoding
Content-Type: text/html;charset=UTF-8
Content-Length: 10371

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta name="keywords"
          content="help desk, helpdesk, web, web-based, technical support, cross-platform, user-friendly, mac, windows, linux"/>
    <meta name="description" content="Exceptionally powerful and friendly web-based software for technical support."/>

    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>

    
    
        <link rel="StyleSheet" href="/helpdesk/css/sharedStyles.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>
        <link rel="StyleSheet" href="/helpdesk/css/clientStyles.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>
        <script language="javascript" type="text/javascript" src="/helpdesk/js/xsrf/xsrf-interceptor.js?v=12_7_8_8471-HF2"></script>
        

	<link rel="StyleSheet" href="/helpdesk/css/clientInterface.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>

    

    
<script src="/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Fprototype.js"></script>
<script src="/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Feffects.js"></script>
<script src="/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Fwonder.js"></script>
<script src="/helpdesk/js/popup.js?v=12_7_8_8471-HF2"></script>
<title>PODPORA Z&Scaron;RS PLANICA</title></head>




    <body onload="window.document.loginForm.userName.focus(); window.document.loginForm.userName.select()">
        <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
	<link rel="StyleSheet" href="/helpdesk/css/sharedStyles.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>
	<script language="javascript" type="text/javascript" src="/helpdesk/js/xsrf/xsrf-interceptor.js?v=12_7_8_8471-HF2"></script>
	
	
		<link rel="StyleSheet" href="/helpdesk/css/whdStyles.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>
		<link rel="StyleSheet" href="/helpdesk/css/clientStyles.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>
	

	

	<link rel="StyleSheet" href="/helpdesk/css/clientInterface.css?v=12_7_8_8471-HF2" type="text/css" media="all"/>

</head>
<body>
<div id="header">
	<div id="logoWell">

	
		<img alt="Logo" height="61" src="/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=-4161649982383419126" />
	
	
</div>
	<div id="helpDeskName">PODPORA ZŠRS PLANICA</div>
	
</div>
<div id="content">
	
            

            

            <div class="loginErrorMessageContainer">
                <div  id="DialogMessageUpdateContainer" updateUrl="/helpdesk/WebObjects/Helpdesk.woa/ajax/0.11.1.1.13.5.0">

</div><script>AUC.register('DialogMessageUpdateContainer');</script>

            </div>

            
<div id="loginBox">

<div class="roundbox">
			<b class="b1"></b><b class="b2"></b><b class="b3"></b><b class="b4"></b>

<div class="boxcontent">
		
			<div class="roundboxHeader">
				<div class="moduleLabel">Log In</div>
			</div>
		

	
                <script language="JavaScript">
/* MDSForm__JavaScript */
	Event.observe(window, 'load', function() { 
		Event.observe(document,'keypress', function(e){ 
  var evt = e ? e : (event ? event : null);
  if( evt ) {
    var keyCode = evt.charCode ? evt.charCode : (evt.keyCode ? evt.keyCode : (evt.which ? evt.which : 0));
    var eventTarget = e ? e.target : event.srcElement;
    var isTextArea = eventTarget.type == 'textarea';
    var fields;
    var i;
    if( keyCode == 13 || keyCode == 3 ) {
       if( evt.shiftKey ) {
          fields = document.getElementsByName( "MDSForm__ShiftKeyPressed" );
          for( i = 0; i < fields.length; ++i )
				fields[i].value = "1";
        }
       if( evt.altKey ) {
          fields = document.getElementsByName( "MDSForm__AltKeyPressed" );
          for( i = 0; i < fields.length; ++i )
				fields[i].value = "1";
        }
        if ( ! isTextArea ) {
          var fields = document.getElementsByName( "MDSForm__EnterKeyPressed" );
          for( i = 0; i < fields.length; ++i )
                 fields[i].value = "1";
        }
      if( document.forms.length == 1 && ! isTextArea ) {
        document.forms[0].submit();
        return false;
      }
    }
  }
});
});
</script>
<form method="post" name="loginForm" id="loginForm" action="/helpdesk/WebObjects/Helpdesk.woa/wo/0.11.1.1.13.7.4.1"><input type="hidden" name="MDSForm__EnterKeyPressed" value="0"><input type="hidden" name="MDSForm__ShiftKeyPressed" value="0"><input type="hidden" name="MDSForm__AltKeyPressed" value="0"><input type="hidden"  name="_csrf"  value="8a0e8b0a-ef13-4270-9609-301d9ab3c5f8"/>
                    <div id="dialog" class="loginFormBox">
                        <label for="userName" class="loginLabel">
                            E-Mail
                        </label>

                        <input size="20" maxlength="100" class="tabletext" id="userName" type="text" name="userName" />

                        <label for="password" class="loginLabel">
                            Password
                        </label>

                        <input size="20" maxlength="50" autocomplete="off" class="tabletext" id="password" type="password" name="password" />




                        
                            <input type="checkbox" name="11.1.1.13.7.4.1.9.1" value="11.1.1.13.7.4.1.9.1" />
                            

	
	
		
			<a onClick="clicked=true; return !showPopup('MDSDivHelpLink11_1_1_13_7_4_1_9_3', event);" href="javascript:window.open('/helpdesk/WebObjects/Helpdesk.woa/wo/0.11.1.1.13.7.4.1.9.3.2.3.1.0.3','Help','toolbar=no,location=no,status=no,menubar=no,resizable=yes,scrollbars=yes,top=100,left=100,width=300,height=175')"
			    target="_help" class="term" onMouseOver="if( !clicked ) return !showPopup('MDSDivHelpLink11_1_1_13_7_4_1_9_3', event);" onMouseOut="if( clicked==false ) hideCurrentPopup(); return false;">
			    <span>
                                <span id="rememberMeLabel">
                                    Remember me
                                </span>
                            </span>
			</a>
			<DIV align="left" onclick='event.cancelBubble = true;' class="helpPopup" id="MDSDivHelpLink11_1_1_13_7_4_1_9_3" style="left:0;top:0;width:400px;"><strong class="label"><span id="rememberMeLabel">                                    Remember me                                </span><br></strong>If checked, an authentication token will be stored in a cookie in your browser for the next two weeks, preventing the need to re-enter your login credentials when your session expires. Logging out will clear the authentication cookie.
<br/> 
<br/> <b><font color='red'>Do not check this option if you are using a public computer.</font></b></DIV>
		
		
	

                        

                        <div class="formLoginButton">
                            <script language="JavaScript">
// __MDSSubmitLink_sharedJavaScript__
function MDSSubmitLink_submitAction( event, formName, elementId, newWindow, closeNewWindow ) {
       if( event.shiftKey ) {
          fields = document.getElementsByName( "MDSForm__ShiftKeyPressed" );
          for( i = 0; i < fields.length; ++i )
				fields[i].value = "1";
        }
       if( event.altKey ) {
          fields = document.getElementsByName( "MDSForm__AltKeyPressed" );
          for( i = 0; i < fields.length; ++i )
				fields[i].value = "1";
        }
  var inputObj = document.forms[formName].elements["MDSSubmitLink" + elementId];
  inputObj.setAttribute( "name", elementId );
  if ( newWindow) {
		document.forms[formName].setAttribute("target", "popupWindow");
		popupWindow = window.open('', 'popupWindow', 'scrollbars=auto,menubar=yes,height=768,width=1024,resizable=yes,toolbar=no,status=no');
  }
  document.forms[formName].submit();
  inputObj.setAttribute( "name", "MDSSubmitLink" + elementId );
  return false;}
 function nullUpdate() { return false;}</script>
<input type="hidden" name="MDSSubmitLink11.1.1.13.7.4.1.11.0.1.0" value="DUMMY"><a name="11.1.1.13.7.4.1.11.0.1.0" onClick="MDSSubmitLink_submitAction( event, 'loginForm','11.1.1.13.7.4.1.11.0.1.0', false);" class="aquaButtonLink"  ><div class="aquaSquareButton"><div class="aquaSquareLeft"></div><div class="aquaSquareMiddle">Log In</div><div class="aquaSquareRight"></div></div></a>
                        </div>
                        <div id = "e_11_1_1_13_7_4_1_13"></div><script>ASB.observeDescendentFields(null, 'e_11_1_1_13_7_4_1_13', null, true, null, {_asbn:'11.1.1.13.7.4.1.13'});</script>
                        <div class="forgotPasswordButton">
                            
                                <input type="hidden" name="MDSSubmitLink11.1.1.13.7.4.1.15.1.0.1.0" value="DUMMY"><a name="11.1.1.13.7.4.1.15.1.0.1.0" onClick="MDSSubmitLink_submitAction( event, 'loginForm','11.1.1.13.7.4.1.15.1.0.1.0', false);" class="aquaButtonLink"  ><div class="aquaSquareButton"><div class="aquaSquareLeft"></div><div class="aquaSquareMiddle">Forgot Password</div><div class="aquaSquareRight"></div></div></a>
                            
                        </div>
                        
                    </div>
                </form>
            
	<div class="spacer"></div>
</div>
<div class="boxBottom">
	<table class="boxBottom" cellpadding="0" cellspacing="0" border="0">
		<tr>
			<td class="boxBottomLeft">
			</td>
			<td class="boxBottom">
				<div class="spacer">
				</div>
			</td>
			<td class="boxBottomRight">
			</td>
		</tr>
	</table>
</div>
</div>

</div>

            <!-- end login box -->

            
            
        
</div>
<div id="footer">
	<div id="footerWhd">
		<a target="_blank" href="http://www.webhelpdesk.com">Web Help Desk Software</a> &copy; 2021 SolarWinds WorldWide, LLC. All rights reserved.
	</div>
</div>
</body>

</html>

    </body>

</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:09.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "webhelpdesk.com",
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org",
            "www.webhelpdesk.com"
         ],
         "ip" : [
            "7.4.1.9",
            "7.4.1.11",
            "13.7.4.1",
            "9.3.2.3",
            "7.4.1.15",
            "7.4.1.13",
            "1.0.1.0",
            "11.1.1.13"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd",
            "http://www.webhelpdesk.com"
         ]
      },
      "http" : {
         "bodymd5" : "4a29b25411d24b736670149724694fda",
         "bodymmh3" : -1390284028,
         "component" : [
            {
               "productversionpatch" : "8471",
               "productversion" : "12.7.8",
               "productvendor" : "SolarWinds",
               "product" : "WebHelpDesk"
            },
            {
               "productvendor" : "Oracle",
               "product" : "Java"
            }
         ],
         "description" : "Exceptionally powerful and friendly web-based software for technical support.",
         "headermd5" : "e5831291e6a0d54da7f6b800b419e6da",
         "headermmh3" : 956262303,
         "title" : "PODPORA ZŠRS PLANICA"
      },
      "length" : 11541
   },
   "asn" : "AS59729",
   "city" : "Sofia",
   "country" : "BG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCache-Control: private\r\nStrict-Transport-Security: max-age=31536000\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nSet-Cookie: XSRF-TOKEN=53d0eb75-6365-4311-b3d7-08297126ffee; Path=/helpdesk; Secure; SameSite=Lax\r\nSet-Cookie: JSESSIONID=46DBB293FB3E1C336A3805F74CB54832; Path=/helpdesk; Secure; HttpOnly; SameSite=Lax\r\nSet-Cookie: XSRF-TOKEN=8a0e8b0a-ef13-4270-9609-301d9ab3c5f8; Path=/helpdesk; Secure; SameSite=Lax\r\ncache-control: private\r\ncache-control: no-cache\r\ncache-control: no-store\r\ncache-control: must-revalidate\r\ncache-control: max-age=0\r\ndate: Thu, 21 Nov 2024 08:35:09 UTC\r\nexpires: Thu, 21 Nov 2024 08:35:09 UTC\r\npragma: no-cache\r\nreferrer-policy: strict-origin-when-cross-origin\r\nset-cookie: whduser_helpdesk=; version=\"1\"; max-age=0; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/\r\nset-cookie: whdauth_helpdesk=; version=\"1\"; max-age=0; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/\r\nset-cookie: woinst=-1; version=\"1\"; path=/; secure; HttpOnly\r\nx-webobjects-loadaverage: 3\r\nx-webobjects-servlet: YES\r\nvary: accept-encoding\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 10371\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n        \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n    <meta name=\"keywords\"\n          content=\"help desk, helpdesk, web, web-based, technical support, cross-platform, user-friendly, mac, windows, linux\"/>\n    <meta name=\"description\" content=\"Exceptionally powerful and friendly web-based software for technical support.\"/>\n\n    <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"/>\n\n    \n    \n        <link rel=\"StyleSheet\" href=\"/helpdesk/css/sharedStyles.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n        <link rel=\"StyleSheet\" href=\"/helpdesk/css/clientStyles.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n        <script language=\"javascript\" type=\"text/javascript\" src=\"/helpdesk/js/xsrf/xsrf-interceptor.js?v=12_7_8_8471-HF2\"></script>\n        \n\n\t<link rel=\"StyleSheet\" href=\"/helpdesk/css/clientInterface.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n\n    \n\n    \n<script src=\"/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Fprototype.js\"></script>\n<script src=\"/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Feffects.js\"></script>\n<script src=\"/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=jar%3Afile%3A%2F%2F%2Fusr%2Flocal%2Fwebhelpdesk%2Fbin%2Fwebapps%2Fhelpdesk%2FWEB-INF%2Flib%2FAjax.jar%21%2FWebServerResources%2Fwonder.js\"></script>\n<script src=\"/helpdesk/js/popup.js?v=12_7_8_8471-HF2\"></script>\n<title>PODPORA Z&Scaron;RS PLANICA</title></head>\n\n\n\n\n    <body onload=\"window.document.loginForm.userName.focus(); window.document.loginForm.userName.select()\">\n        <!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n\t<link rel=\"StyleSheet\" href=\"/helpdesk/css/sharedStyles.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n\t<script language=\"javascript\" type=\"text/javascript\" src=\"/helpdesk/js/xsrf/xsrf-interceptor.js?v=12_7_8_8471-HF2\"></script>\n\t\n\t\n\t\t<link rel=\"StyleSheet\" href=\"/helpdesk/css/whdStyles.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n\t\t<link rel=\"StyleSheet\" href=\"/helpdesk/css/clientStyles.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n\t\n\n\t\n\n\t<link rel=\"StyleSheet\" href=\"/helpdesk/css/clientInterface.css?v=12_7_8_8471-HF2\" type=\"text/css\" media=\"all\"/>\n\n</head>\n<body>\n<div id=\"header\">\n\t<div id=\"logoWell\">\n\n\t\n\t\t<img alt=\"Logo\" height=\"61\" src=\"/helpdesk/WebObjects/Helpdesk.woa/wr?wodata=-4161649982383419126\" />\n\t\n\t\n</div>\n\t<div id=\"helpDeskName\">PODPORA Z\u0160RS PLANICA</div>\n\t\n</div>\n<div id=\"content\">\n\t\n            \n\n            \n\n            <div class=\"loginErrorMessageContainer\">\n                <div  id=\"DialogMessageUpdateContainer\" updateUrl=\"/helpdesk/WebObjects/Helpdesk.woa/ajax/0.11.1.1.13.5.0\">\n\n</div><script>AUC.register('DialogMessageUpdateContainer');</script>\n\n            </div>\n\n            \n<div id=\"loginBox\">\n\n<div class=\"roundbox\">\n\t\t\t<b class=\"b1\"></b><b class=\"b2\"></b><b class=\"b3\"></b><b class=\"b4\"></b>\n\n<div class=\"boxcontent\">\n\t\t\n\t\t\t<div class=\"roundboxHeader\">\n\t\t\t\t<div class=\"moduleLabel\">Log In</div>\n\t\t\t</div>\n\t\t\n\n\t\n                <script language=\"JavaScript\">\n/* MDSForm__JavaScript */\n\tEvent.observe(window, 'load', function() { \n\t\tEvent.observe(document,'keypress', function(e){ \n  var evt = e ? e : (event ? event : null);\n  if( evt ) {\n    var keyCode = evt.charCode ? evt.charCode : (evt.keyCode ? evt.keyCode : (evt.which ? evt.which : 0));\n    var eventTarget = e ? e.target : event.srcElement;\n    var isTextArea = eventTarget.type == 'textarea';\n    var fields;\n    var i;\n    if( keyCode == 13 || keyCode == 3 ) {\n       if( evt.shiftKey ) {\n          fields = document.getElementsByName( \"MDSForm__ShiftKeyPressed\" );\n          for( i = 0; i < fields.length; ++i )\n\t\t\t\tfields[i].value = \"1\";\n        }\n       if( evt.altKey ) {\n          fields = document.getElementsByName( \"MDSForm__AltKeyPressed\" );\n          for( i = 0; i < fields.length; ++i )\n\t\t\t\tfields[i].value = \"1\";\n        }\n        if ( ! isTextArea ) {\n          var fields = document.getElementsByName( \"MDSForm__EnterKeyPressed\" );\n          for( i = 0; i < fields.length; ++i )\n                 fields[i].value = \"1\";\n        }\n      if( document.forms.length == 1 && ! isTextArea ) {\n        document.forms[0].submit();\n        return false;\n      }\n    }\n  }\n});\n});\n</script>\n<form method=\"post\" name=\"loginForm\" id=\"loginForm\" action=\"/helpdesk/WebObjects/Helpdesk.woa/wo/0.11.1.1.13.7.4.1\"><input type=\"hidden\" name=\"MDSForm__EnterKeyPressed\" value=\"0\"><input type=\"hidden\" name=\"MDSForm__ShiftKeyPressed\" value=\"0\"><input type=\"hidden\" name=\"MDSForm__AltKeyPressed\" value=\"0\"><input type=\"hidden\"  name=\"_csrf\"  value=\"8a0e8b0a-ef13-4270-9609-301d9ab3c5f8\"/>\n                    <div id=\"dialog\" class=\"loginFormBox\">\n                        <label for=\"userName\" class=\"loginLabel\">\n                            E-Mail\n                        </label>\n\n                        <input size=\"20\" maxlength=\"100\" class=\"tabletext\" id=\"userName\" type=\"text\" name=\"userName\" />\n\n                        <label for=\"password\" class=\"loginLabel\">\n                            Password\n                        </label>\n\n                        <input size=\"20\" maxlength=\"50\" autocomplete=\"off\" class=\"tabletext\" id=\"password\" type=\"password\" name=\"password\" />\n\n\n\n\n                        \n                            <input type=\"checkbox\" name=\"11.1.1.13.7.4.1.9.1\" value=\"11.1.1.13.7.4.1.9.1\" />\n                            \n\n\t\n\t\n\t\t\n\t\t\t<a onClick=\"clicked=true; return !showPopup('MDSDivHelpLink11_1_1_13_7_4_1_9_3', event);\" href=\"javascript:window.open('/helpdesk/WebObjects/Helpdesk.woa/wo/0.11.1.1.13.7.4.1.9.3.2.3.1.0.3','Help','toolbar=no,location=no,status=no,menubar=no,resizable=yes,scrollbars=yes,top=100,left=100,width=300,height=175')\"\n\t\t\t    target=\"_help\" class=\"term\" onMouseOver=\"if( !clicked ) return !showPopup('MDSDivHelpLink11_1_1_13_7_4_1_9_3', event);\" onMouseOut=\"if( clicked==false ) hideCurrentPopup(); return false;\">\n\t\t\t    <span>\n                                <span id=\"rememberMeLabel\">\n                                    Remember me\n                                </span>\n                            </span>\n\t\t\t</a>\n\t\t\t<DIV align=\"left\" onclick='event.cancelBubble = true;' class=\"helpPopup\" id=\"MDSDivHelpLink11_1_1_13_7_4_1_9_3\" style=\"left:0;top:0;width:400px;\"><strong class=\"label\"><span id=\"rememberMeLabel\">                                    Remember me                                </span><br></strong>If checked, an authentication token will be stored in a cookie in your browser for the next two weeks, preventing the need to re-enter your login credentials when your session expires. Logging out will clear the authentication cookie.\r<br/> \r<br/> <b><font color='red'>Do not check this option if you are using a public computer.</font></b></DIV>\n\t\t\n\t\t\n\t\n\n                        \n\n                        <div class=\"formLoginButton\">\n                            <script language=\"JavaScript\">\n// __MDSSubmitLink_sharedJavaScript__\nfunction MDSSubmitLink_submitAction( event, formName, elementId, newWindow, closeNewWindow ) {\n       if( event.shiftKey ) {\n          fields = document.getElementsByName( \"MDSForm__ShiftKeyPressed\" );\n          for( i = 0; i < fields.length; ++i )\n\t\t\t\tfields[i].value = \"1\";\n        }\n       if( event.altKey ) {\n          fields = document.getElementsByName( \"MDSForm__AltKeyPressed\" );\n          for( i = 0; i < fields.length; ++i )\n\t\t\t\tfields[i].value = \"1\";\n        }\n  var inputObj = document.forms[formName].elements[\"MDSSubmitLink\" + elementId];\n  inputObj.setAttribute( \"name\", elementId );\n  if ( newWindow) {\n\t\tdocument.forms[formName].setAttribute(\"target\", \"popupWindow\");\n\t\tpopupWindow = window.open('', 'popupWindow', 'scrollbars=auto,menubar=yes,height=768,width=1024,resizable=yes,toolbar=no,status=no');\n  }\n  document.forms[formName].submit();\n  inputObj.setAttribute( \"name\", \"MDSSubmitLink\" + elementId );\n  return false;}\n function nullUpdate() { return false;}</script>\n<input type=\"hidden\" name=\"MDSSubmitLink11.1.1.13.7.4.1.11.0.1.0\" value=\"DUMMY\"><a name=\"11.1.1.13.7.4.1.11.0.1.0\" onClick=\"MDSSubmitLink_submitAction( event, 'loginForm','11.1.1.13.7.4.1.11.0.1.0', false);\" class=\"aquaButtonLink\"  ><div class=\"aquaSquareButton\"><div class=\"aquaSquareLeft\"></div><div class=\"aquaSquareMiddle\">Log In</div><div class=\"aquaSquareRight\"></div></div></a>\n                        </div>\n                        <div id = \"e_11_1_1_13_7_4_1_13\"></div><script>ASB.observeDescendentFields(null, 'e_11_1_1_13_7_4_1_13', null, true, null, {_asbn:'11.1.1.13.7.4.1.13'});</script>\n                        <div class=\"forgotPasswordButton\">\n                            \n                                <input type=\"hidden\" name=\"MDSSubmitLink11.1.1.13.7.4.1.15.1.0.1.0\" value=\"DUMMY\"><a name=\"11.1.1.13.7.4.1.15.1.0.1.0\" onClick=\"MDSSubmitLink_submitAction( event, 'loginForm','11.1.1.13.7.4.1.15.1.0.1.0', false);\" class=\"aquaButtonLink\"  ><div class=\"aquaSquareButton\"><div class=\"aquaSquareLeft\"></div><div class=\"aquaSquareMiddle\">Forgot Password</div><div class=\"aquaSquareRight\"></div></div></a>\n                            \n                        </div>\n                        \n                    </div>\n                </form>\n            \n\t<div class=\"spacer\"></div>\n</div>\n<div class=\"boxBottom\">\n\t<table class=\"boxBottom\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\">\n\t\t<tr>\n\t\t\t<td class=\"boxBottomLeft\">\n\t\t\t</td>\n\t\t\t<td class=\"boxBottom\">\n\t\t\t\t<div class=\"spacer\">\n\t\t\t\t</div>\n\t\t\t</td>\n\t\t\t<td class=\"boxBottomRight\">\n\t\t\t</td>\n\t\t</tr>\n\t</table>\n</div>\n</div>\n\n</div>\n\n            <!-- end login box -->\n\n            \n            \n        \n</div>\n<div id=\"footer\">\n\t<div id=\"footerWhd\">\n\t\t<a target=\"_blank\" href=\"http://www.webhelpdesk.com\">Web Help Desk Software</a> &copy; 2021 SolarWinds WorldWide, LLC. All rights reserved.\n\t</div>\n</div>\n</body>\n\n</html>\n\n    </body>\n\n</html>\n",
   "datamd5" : "f7d48c8bfb46908855787acaf192b875",
   "datammh3" : 1878589515,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hostry.com"
   ],
   "forward" : "195.123.227.49",
   "host" : [
      "vps"
   ],
   "hostname" : [
      "195.123.227.49",
      "vps.hostry.com"
   ],
   "ip" : "195.123.227.49",
   "ipv6" : "false",
   "latitude" : "42.6667",
   "location" : "42.6667,23.8000",
   "longitude" : "23.8000",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Green Floid LLC",
   "port" : 4782,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "vps.hostry.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan::redirect::1",
   "status" : 200,
   "subnet" : "195.123.224.0/21",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/helpdesk/WebObjects/Helpdesk.woa"
}