Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
92.96.99.173

Network
92.96.0.0/14

Domain(s)
alshamil.net.ae

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://92.96.99.173:548/ 404

Reverse DNS
bba-92-96-99-173.alshamil.net.ae

ASN
AS5384

Organization
Emirates Telecommunications Group Company (etisalat Group) Pjsc

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
4b5b496ff238cb6bc91391c80dbcb192

HTTP Header MD5
4b5b496ff238cb6bc91391c80dbcb192

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.1 404 Not Found
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:33:04.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4b5b496ff238cb6bc91391c80dbcb192",
         "headermmh3" : -2050145619
      },
      "length" : 24
   },
   "asn" : "AS5384",
   "city" : "Abu Dhabi",
   "country" : "AE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\n",
   "datamd5" : "4b5b496ff238cb6bc91391c80dbcb192",
   "datammh3" : -1733658736,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "alshamil.net.ae"
   ],
   "geolocus" : {
      "asn" : "AS5384",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "AE",
      "countryname" : "United Arab Emirates",
      "domain" : [
         "alshamil.net.ae",
         "emirates.net.ae"
      ],
      "isineu" : "false",
      "latitude" : "23.424076",
      "location" : "23.424076,53.847818",
      "longitude" : "53.847818",
      "netname" : "ETISALATADSL-EMIRNET",
      "organization" : "Emirates Telecommunications Corporation P.O. Box 1150, Dubai, UAE",
      "subnet" : "92.96.96.0/20"
   },
   "host" : [
      "bba-92-96-99-173"
   ],
   "hostname" : [
      "bba-92-96-99-173.alshamil.net.ae"
   ],
   "ip" : "92.96.99.173",
   "ipv6" : "false",
   "latitude" : "24.4542",
   "location" : "24.4542,54.4060",
   "longitude" : "54.4060",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Emirates Telecommunications Group Company (etisalat Group) Pjsc",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Not Found",
   "reverse" : [
      "bba-92-96-99-173.alshamil.net.ae"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 404,
   "subnet" : "92.96.0.0/14",
   "tld" : [
      "net.ae"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
1.231.76.50

Network
1.231.64.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://1.231.76.50:548/ 200

HTTP Title
main page

ASN
AS9318

Organization
SK Broadband Co Ltd

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
WebServer WebServer

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
64b1eedf7948473edeebe55d6a285aca

HTTP Header MD5
979761cd6f49e9ef5f8bb5795302f113

HTTP Body MD5
60b91305d545bb4d77592787df00080d

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "4185618603"
Last-Modified: Thu, 01 Jan 1970 00:00:24 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Server: WebServer
Content-Length: 289
Connection: close
Date: Thu, 21 Nov 2024 10:32:56 GMT

<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=iso8859-1">
<title>main page</title>
<script language="javascript">

function redirect() {
	location.href = "/cgi-bin/login.cgi";
}

</script>
</head>

<body onload="redirect()">
</body>

</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:32:56.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "login.cgi"
         ]
      },
      "http" : {
         "bodymd5" : "60b91305d545bb4d77592787df00080d",
         "bodymmh3" : -1159873339,
         "header" : [
            {
               "name" : "ETag",
               "value" : 4185618603
            },
            {
               "name" : "Last-Modified",
               "value" : "Thu, 01 Jan 1970 00:00:24 GMT"
            }
         ],
         "headermd5" : "979761cd6f49e9ef5f8bb5795302f113",
         "headermmh3" : -341514770,
         "title" : "main page"
      },
      "length" : 614
   },
   "asn" : "AS9318",
   "city" : "Dongdaemun-gu",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nAccept-Ranges: bytes\r\nETag: \"4185618603\"\r\nLast-Modified: Thu, 01 Jan 1970 00:00:24 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nServer: WebServer\r\nContent-Length: 289\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 10:32:56 GMT\r\n\r\n<html>\r\n<head>\r\n<meta http-equiv=\"content-type\" content=\"text/html; charset=iso8859-1\">\r\n<title>main page</title>\r\n<script language=\"javascript\">\r\n\r\nfunction redirect() {\r\n\tlocation.href = \"/cgi-bin/login.cgi\";\r\n}\r\n\r\n</script>\r\n</head>\r\n\r\n<body onload=\"redirect()\">\r\n</body>\r\n\r\n</html>\r\n\r\n",
   "datamd5" : "64b1eedf7948473edeebe55d6a285aca",
   "datammh3" : -215358228,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9318",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "nic.or.kr",
         "skbroadband.com"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "broadNnet",
      "organization" : "SK Broadband Co Ltd",
      "subnet" : "1.231.64.0/18"
   },
   "ip" : "1.231.76.50",
   "ipv6" : "false",
   "latitude" : "37.5841",
   "location" : "37.5841,127.0616",
   "longitude" : "127.0616",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SK Broadband Co Ltd",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "product" : "WebServer",
   "productvendor" : "WebServer",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "1.231.64.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
171.250.115.122

Alternative IP(s)
125.235.4.59

Network
171.248.0.0/14

Domain(s)
viettel.vn

Device

<enterprise field>: device.class <enterprise field>: device.productvendor

Operating System
Linux Linux 2

URL

http://171.250.115.122:548/ 200

HTTP Title
::: Login :::

Reverse DNS
dynamic-ip-adsl.viettel.vn

ASN
AS7552

Organization
Viettel Group

Protocol
http

Source
datascan
Operating System
Linux Linux 2

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
498757ed6cd314988f10f57b901a6c7b

HTTP Header MD5
15514d09ab3a6e41ccb6a3bff154ef8a

HTTP Body MD5
c1795339bfc5fbb0f593b34bec5a77c1

HTTP/1.1 200 OK
Date: Thu, 21 Nov 2024 17:25:06 GMT
Server: Linux/2.x UPnP/1.0 Avtech/1.0
Connection: close
Last-Modified: Tue, 31 Jul 2018 07:51:38 GMT
Content-Type: text/html
ETag: 166-15850-1533023498
Content-Length: 15850

<html>
<head>
<link rel="icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="shortcut icon" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="bookmark" href="/nobody/favicon.ico" type="image/vnd.microsoft.icon" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="googlebot" content="nosnippet">
<meta name="robots" content="noarchive">
<title>::: Login :::</title>
<style>
<!--
body {background-image: url(/nobody/jpg/bg.jpg); margin-left: 0px;margin-top: 0px;margin-right: 0px;margin-bottom: 0px;}
td { font-size:14px;color:#FFFFFF;font-weight:bold; font-family:Arial;}
.inputTxt{ width:120px; font-family:Courier New, Arial; border-right: #acacac 1px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #acacac 1px solid; background-color: #ffffff; height:20px;}
.codeBorder{border-right: #696969 2px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #696969 2px solid; background-color: #ffffff;}
.font0{font-size:36px;font-family:Arial; font-style:italic;}
.font1{font-size:24px;font-family:Arial; font-style:italic; color:#EDEDED;}
-->
</style>
<script language="JavaScript">
//Kelvin++ 2014-07-31 check is it opening from EZ server, then auto-login use ez.htm
if(document.URL.indexOf("?a=") > 0){
    var VerifyStr_Base64 = document.URL.split("?")[1].substring(2);
    location.href="/nobody/ez.htm?a="+VerifyStr_Base64+"&rnd=" + Math.random();
}
/* ========== loginQuickDevice.js ========== */
function getCookie(c_name){
    if (document.cookie.length>0){
        c_start=document.cookie.indexOf(c_name + "=");
        if (c_start!=-1){ 
            c_start=c_start + c_name.length+1; 
            c_end=document.cookie.indexOf(";",c_start);
            if (c_end==-1) c_end=document.cookie.length;
            return unescape(document.cookie.substring(c_start,c_end));
        } 
    }
    return "";
}

function setCookie(c_name,value,expiredays){
    var exdate=new Date();
    exdate.setDate(exdate.getDate()+expiredays);
    document.cookie=c_name+ "=" +escape(value)+((expiredays==null) ? "" : ";expires="+exdate.toGMTString());
}

var w = window.screen.availWidth;

if(getCookie("ViewMode")!="Classic"){
    if(w <= 800){//mobile screen width < 800
    	if(w >= 320)
    		location.href="/nobody/mobile320.htm?Login=Quick";
    	else
    		location.href="/nobody/mobile.htm?Login=Quick";
    }
}

//no use
function isMobileBrowser(){
    var u = navigator.userAgent.toLowerCase();
    
    if(u.indexOf("midp") != -1)
    	return true;
    else if(u.indexOf("mobile") != -1)
    	return true;
    else if(u.indexOf("iphone") != -1 || u.indexOf("ipod") != -1)
    	return true;
    else if(u.indexOf("series60") != -1 || u.indexOf("symbian") != -1)
    	return true;
    else if(u.indexOf("blackberry") != -1)
    	return true;
    else if(u.indexOf("android") != -1)
    	return true;
    else if(u.indexOf("windows ce") != -1 || u.indexOf("windows phone") != -1)
    	return true;
    else if(u.indexOf("htc") != -1 || u.indexOf("hd2_") != -1)
    	return true;
    else if(u.indexOf("palm") != -1)
    	return true;
    else
    	return false;
}


/* ========== webtoolkit.base64.js ========== */
var Base64 = {

	// private property
	_keyStr : "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",

	// public method for encoding
	encode : function (input) {
		var output = "";
		var chr1, chr2, chr3, enc1, enc2, enc3, enc4;
		var i = 0;

		input = Base64._utf8_encode(input);

		while (i < input.length) {

			chr1 = input.charCodeAt(i++);
			chr2 = input.charCodeAt(i++);
			chr3 = input.charCodeAt(i++);

			enc1 = chr1 >> 2;
			enc2 = ((chr1 & 3) << 4) | (chr2 >> 4);
			enc3 = ((chr2 & 15) << 2) | (chr3 >> 6);
			enc4 = chr3 & 63;

			if (isNaN(chr2)) {
				enc3 = enc4 = 64;
			} else if (isNaN(chr3)) {
				enc4 = 64;
			}

			output = output +
			this._keyStr.charAt(enc1) + this._keyStr.charAt(enc2) +
			this._keyStr.charAt(enc3) + this._keyStr.charAt(enc4);

		}

		return output;
	},

	// public method for decoding
	decode : function (input) {
		var output = "";
		var chr1, chr2, chr3;
		var enc1, enc2, enc3, enc4;
		var i = 0;

		input = input.replace(/[^A-Za-z0-9\+\/\=]/g, "");

		while (i < input.length) {

			enc1 = this._keyStr.indexOf(input.charAt(i++));
			enc2 = this._keyStr.indexOf(input.charAt(i++));
			enc3 = this._keyStr.indexOf(input.charAt(i++));
			enc4 = this._keyStr.indexOf(input.charAt(i++));

			chr1 = (enc1 << 2) | (enc2 >> 4);
			chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
			chr3 = ((enc3 & 3) << 6) | enc4;

			output = output + String.fromCharCode(chr1);

			if (enc3 != 64) {
				output = output + String.fromCharCode(chr2);
			}
			if (enc4 != 64) {
				output = output + String.fromCharCode(chr3);
			}

		}

		output = Base64._utf8_decode(output);

		return output;

	},

	// private method for UTF-8 encoding
	_utf8_encode : function (string) {
		string = string.replace(/\r\n/g,"\n");
		var utftext = "";

		for (var n = 0; n < string.length; n++) {

			var c = string.charCodeAt(n);

			if (c < 128) {
				utftext += String.fromCharCode(c);
			}
			else if((c > 127) && (c < 2048)) {
				utftext += String.fromCharCode((c >> 6) | 192);
				utftext += String.fromCharCode((c & 63) | 128);
			}
			else {
				utftext += String.fromCharCode((c >> 12) | 224);
				utftext += String.fromCharCode(((c >> 6) & 63) | 128);
				utftext += String.fromCharCode((c & 63) | 128);
			}

		}

		return utftext;
	},

	// private method for UTF-8 decoding
	_utf8_decode : function (utftext) {
		var string = "";
		var i = 0;
		var c = c1 = c2 = 0;

		while ( i < utftext.length ) {

			c = utftext.charCodeAt(i);

			if (c < 128) {
				string += String.fromCharCode(c);
				i++;
			}
			else if((c > 191) && (c < 224)) {
				c2 = utftext.charCodeAt(i+1);
				string += String.fromCharCode(((c & 31) << 6) | (c2 & 63));
				i += 2;
			}
			else {
				c2 = utftext.charCodeAt(i+1);
				c3 = utftext.charCodeAt(i+2);
				string += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));
				i += 3;
			}

		}

		return string;
	}

}

/* ========== loginQuick.js ========== */
var ff;
var CheckOnlySupportIE = false;
var DVR_ONLY_SUPPORT_IE = "_042_082_162_046_";
var isIEBrowser = false;

if ((navigator.appName == "Microsoft Internet Explorer") && (navigator.platform != "MacPPC") && (navigator.platform != "Mac68k")) {
  isIEBrowser = true;
}

/* disabled backspace key */
if(typeof window.event != 'undefined'){
    document.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}
}else{
    document.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}
}

function init(){
	ff = document.myForm;
	ff.Username.value = "";
	ff.Password.value = "";
	ff.Username.focus();
	//setTimeout("getCaptchaImg()", 1000);
}

function getCaptchaImg(){
	document.getElementById("Captcha").src = "/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp";
}

function goCheck(e){
    if(window.event && e.keyCode ==13) //IE
        check(); 
    else if(e.which == 13) // Netscape/Firefox/Opera
        check();
}

function check(){
    if(!ff){return false;}
    
    document.cookie = "x=1";
    if (document.cookie.indexOf("x=")==-1){
        alert("Browser Cookie not supported.");
        frmReload();
        return false;
    }
    var actionStr = "/cgi-bin/nobody/VerifyCode.cgi"
    actionStr += "?account="+Base64.encode(ff.Username.value+":"+ff.Password.value);
    //actionStr += "&captcha_code="+ff.CaptchaCode.value;
    //actionStr += "&verify_code="+getCookie("captcha");
    actionStr += "&rnd="+Math.random();
	var httpObj = createHttpRequestObj();
	httpObj.onreadystatechange = function(){
    	if (httpObj.readyState == 4 && httpObj.status == 200){
    		var objStr    = new Object();
    		objStr.strSrc = httpObj.responseText;
    		tmpStr = objStr.strSrc.split("\n");
            if (tmpStr[1] == "OK"){
                getUserLevel();
            }else{
                alert(tmpStr[1]);
                frmReload();
            }
        }
    };
	httpObj.open("get", actionStr, true);
	httpObj.send(null);
	return false;
}

function getUserLevel(){
	/*
	var httpObj = createHttpRequestObj();
	requestData = "/cgi-bin/guest/Login.cgi?rnd="+Math.random();
	httpObj.onreadystatechange = function(){
    	if (httpObj.readyState == 4 && httpObj.status == 200){
    		var objStr    = new Object();
    		objStr.strSrc = httpObj.responseText;
    		
    		if (CheckOnlySupportIE && GetCgiParam(objStr, "Product-ID-Minor=") == 1){
    		    var pid = objStr.strGet;
    		    var pidc = "_"+pid+"_";
    		    if(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){
    		        //alert("This machine is not supported, please visit 'www.avtech.com.tw' for more details.");
    		        if(confirm("This machine is not supported.\nDo you want to get more details?")){
    		            location.href = "http://www.eagleeyescctv.com/jump/dvr.htm";
    		        }
    		        return false;
    		    }
    		}
    		
    		if (GetCgiParam(objStr, "User-Level=") == 1){
    			setCookie("LifeTime", "");
    			setCookie("ReloWebTime", 0);
    			if(objStr.strGet == "SUPERVISOR")
                    location.href="/index.htm";
                else
                    location.href="/index.htm";
					//location.href="/default.htm";
            }else{alert('Login Failed.');}
            
    	}
    };
	httpObj.open("get", requestData, true);
	httpObj.send(null);
	*/
	setCookie("brokenhdd", "");
	setCookie("LifeTime", "");
	setCookie("ReloWebTime", 0);
	location.href="/index.htm";
}

function frmReload(){
    ff.Username.value="";
    ff.Password.value="";
    //ff.CaptchaCode.value="";
    location.reload();
}

function createHttpRequestObj(){
	var XMLhttpObject = null;
	try {XMLhttpObject = new XMLHttpRequest();}
	catch(e){
		try {XMLhttpObject = new ActiveXObject("Msxml2.XMLHTTP");}
		catch(e){
			try {XMLhttpObject = new ActiveXObject("Microsoft.XMLHTTP");}
			catch(e) {return null;}
		}
	}
	return XMLhttpObject;
}

function GetCgiParam(objStr, strSearch){
	var curr_pos;var result;
	objStr.strSearch=strSearch;
	objStr.curr_pos=0;
	do{
		result = 1;
		curr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);
		if (curr_pos < 0){
			result = 0;
			break;
		}
		objStr.curr_pos = curr_pos + objStr.strSearch.length;
		curr_pos = objStr.strSrc.indexOf('\n', objStr.curr_pos);
		if (curr_pos < 0){
			if (objStr.curr_pos < objStr.strSrc.length){
				objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);
				objStr.curr_pos = curr_pos;	
				break;
			}
			result = 0;
			break;
		}
		objStr.strGet 	= objStr.strSrc.substring(objStr.curr_pos, curr_pos);
		objStr.curr_pos = curr_pos;
	} while(0);
	return result;
}

function goMobile(){
    setCookie("ViewMode", "Mobile");
	var w = window.screen.availWidth;
	if(w >= 320)
		location.href="/nobody/mobile320.htm?Login=Quick";
	else
		location.href="/nobody/mobile.htm?Login=Quick";
}

</script>
</head>
<body onload="init()">
<form name="myForm" method="POST" target="_top" onSubmit="return check();">
<table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
    <tr><td width="778" height="197" valign="middle" >
        <table width="201" border="0" cellspacing="0" cellpadding="0">
            <tr><td width="201" height="25">&nbsp;</td></tr>
        </table>
        <table width="467" height="88" border="0" align="center" cellpadding="0" cellspacing="0">
            <tr><td width="493" height="53" class="font0">&nbsp;&nbsp;&nbsp;Any time &amp; Any where</td></tr>
            <tr><td class="font1">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;IP Surveillance for Your Life</td></tr>
        </table></td></tr>
    <tr><td height="114" valign="middle">
        <table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
            <tr><td width="221" height="247" valign="top"></td>
        <td valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td height="94" valign="top"><table width="341" border="0" cellspacing="0" cellpadding="0">
              <tr>
                <td width="21"><img src="/nobody/jpg/lcorner.jpg" width="21" height="33" alt=""></td>
                <td width="306" align="center" background="/nobody/jpg/banner.jpg"> Customer Login </td>
                <td width="14"><img src="/nobody/jpg/rcor.jpg" width="18" height="33"></td>
              </tr>
            </table>
                    <table width="341" border="0" align="left" cellpadding="0" cellspacing="0">
                      <tr>
                        <td width="8%"><img src="/nobody/jpg/mem.jpg" width="83" height="168"></td>
                        <td width="87%" background="/nobody/jpg/bg09.gif">
                            <!-- input box -->
                            <table width="233" height="80" border="0" cellpadding="0" cellspacing="0">
                            <tr>
                              <td width="96" height="41" align="right">Username :&nbsp;</td>
                              <td width="124"><input name="Username" maxlength="31" type="text" class="inputTxt" size="17" onkeydown="goCheck(event);"></td>
                            </tr>
                            <tr>
                              <td width="96" height="37" align="right">Password :&nbsp;</td>
                              <td><input name="Password" maxlength="31" type="password" class="inputTxt" size="17" onkeydown="goCheck(event);"></td>
                            </tr>
                            </table></td>

                        <td width="5%"><img src="/nobody/jpg/line11.jpg" width="18" height="168"></td>
                      </tr>
                  </table></td>
          </tr>
          <tr>
            <td valign="top"><table width="341" border="0" align="center" cellpadding="0" cellspacing="0">
              <tr>
                <td width="17" valign="top" background="/nobody/jpg/bg14.jpg"><img src="/nobody/jpg/cor.jpg" width="17" height="46"></td>
                <td width="305" background="/nobody/jpg/bg14.jpg">
                    <!-- button -->
                    <table width="100%" border="0" cellspacing="0" cellpadding="0">
                    <tr><td align="center"><img src="/nobody/jpg/login.gif" style="cursor:pointer" width="103" height="29" border="0" onClick="check();"></td></tr>
                    </table></td>
                <td width="18" valign="top"><img src="/nobody/jpg/cor18.jpg" width="18" height="46"></td>
              </tr>
            </table></td>
          </tr>
        </table></td>
        <td width="218" valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td></td>
          </tr>
          
        </table></td>
      </tr>
    </table>
    <table width="778" border="0" align="center" cellpadding="0" cellspacing="0">
      <tr>
        <td width="213"></td>
        <td width="339" height="132" align="center">View: <a href="#" style='color:#00ffff' onclick="goMobile()">Mobile</a> | PC</td>
        <td width="226"></td>
      </tr>
    </table></td>
  </tr>
</table>
</form>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:25:07.000Z",
   "alternativeip" : [
      "125.235.4.59"
   ],
   "app" : {
      "extract" : {
         "domain" : [
            "eagleeyescctv.com"
         ],
         "file" : [
            "verifycode.cgi"
         ],
         "hostname" : [
            "www.eagleeyescctv.com"
         ],
         "url" : [
            "http://www.eagleeyescctv.com/jump/dvr.htm"
         ]
      },
      "favicon" : {
         "url" : "/nobody/favicon.ico"
      },
      "http" : {
         "bodymd5" : "c1795339bfc5fbb0f593b34bec5a77c1",
         "bodymmh3" : -878287826,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Tue, 31 Jul 2018 07:51:38 GMT"
            },
            {
               "value" : "166-15850-1533023498",
               "name" : "ETag"
            }
         ],
         "headermd5" : "15514d09ab3a6e41ccb6a3bff154ef8a",
         "headermmh3" : 1926362089,
         "title" : "::: Login :::"
      },
      "length" : 16086
   },
   "asn" : "AS7552",
   "city" : "Ho Chi Minh City",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 21 Nov 2024 17:25:06 GMT\r\nServer: Linux/2.x UPnP/1.0 Avtech/1.0\r\nConnection: close\r\nLast-Modified: Tue, 31 Jul 2018 07:51:38 GMT\r\nContent-Type: text/html\r\nETag: 166-15850-1533023498\r\nContent-Length: 15850\r\n\r\n<html>\r\n<head>\r\n<link rel=\"icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"shortcut icon\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<link rel=\"bookmark\" href=\"/nobody/favicon.ico\" type=\"image/vnd.microsoft.icon\" />\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\r\n<meta name=\"googlebot\" content=\"nosnippet\">\r\n<meta name=\"robots\" content=\"noarchive\">\r\n<title>::: Login :::</title>\r\n<style>\r\n<!--\r\nbody {background-image: url(/nobody/jpg/bg.jpg); margin-left: 0px;margin-top: 0px;margin-right: 0px;margin-bottom: 0px;}\r\ntd { font-size:14px;color:#FFFFFF;font-weight:bold; font-family:Arial;}\r\n.inputTxt{ width:120px; font-family:Courier New, Arial; border-right: #acacac 1px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #acacac 1px solid; background-color: #ffffff; height:20px;}\r\n.codeBorder{border-right: #696969 2px solid; border-top: #acacac 1px solid; border-left: #acacac 1px solid; border-bottom: #696969 2px solid; background-color: #ffffff;}\r\n.font0{font-size:36px;font-family:Arial; font-style:italic;}\r\n.font1{font-size:24px;font-family:Arial; font-style:italic; color:#EDEDED;}\r\n-->\r\n</style>\r\n<script language=\"JavaScript\">\r\n//Kelvin++ 2014-07-31 check is it opening from EZ server, then auto-login use ez.htm\r\nif(document.URL.indexOf(\"?a=\") > 0){\r\n    var VerifyStr_Base64 = document.URL.split(\"?\")[1].substring(2);\r\n    location.href=\"/nobody/ez.htm?a=\"+VerifyStr_Base64+\"&rnd=\" + Math.random();\r\n}\r\n/* ========== loginQuickDevice.js ========== */\r\nfunction getCookie(c_name){\r\n    if (document.cookie.length>0){\r\n        c_start=document.cookie.indexOf(c_name + \"=\");\r\n        if (c_start!=-1){ \r\n            c_start=c_start + c_name.length+1; \r\n            c_end=document.cookie.indexOf(\";\",c_start);\r\n            if (c_end==-1) c_end=document.cookie.length;\r\n            return unescape(document.cookie.substring(c_start,c_end));\r\n        } \r\n    }\r\n    return \"\";\r\n}\r\n\r\nfunction setCookie(c_name,value,expiredays){\r\n    var exdate=new Date();\r\n    exdate.setDate(exdate.getDate()+expiredays);\r\n    document.cookie=c_name+ \"=\" +escape(value)+((expiredays==null) ? \"\" : \";expires=\"+exdate.toGMTString());\r\n}\r\n\r\nvar w = window.screen.availWidth;\r\n\r\nif(getCookie(\"ViewMode\")!=\"Classic\"){\r\n    if(w <= 800){//mobile screen width < 800\r\n    \tif(w >= 320)\r\n    \t\tlocation.href=\"/nobody/mobile320.htm?Login=Quick\";\r\n    \telse\r\n    \t\tlocation.href=\"/nobody/mobile.htm?Login=Quick\";\r\n    }\r\n}\r\n\r\n//no use\r\nfunction isMobileBrowser(){\r\n    var u = navigator.userAgent.toLowerCase();\r\n    \r\n    if(u.indexOf(\"midp\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"mobile\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"iphone\") != -1 || u.indexOf(\"ipod\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"series60\") != -1 || u.indexOf(\"symbian\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"blackberry\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"android\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"windows ce\") != -1 || u.indexOf(\"windows phone\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"htc\") != -1 || u.indexOf(\"hd2_\") != -1)\r\n    \treturn true;\r\n    else if(u.indexOf(\"palm\") != -1)\r\n    \treturn true;\r\n    else\r\n    \treturn false;\r\n}\r\n\r\n\r\n/* ========== webtoolkit.base64.js ========== */\r\nvar Base64 = {\r\n\r\n\t// private property\r\n\t_keyStr : \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=\",\r\n\r\n\t// public method for encoding\r\n\tencode : function (input) {\r\n\t\tvar output = \"\";\r\n\t\tvar chr1, chr2, chr3, enc1, enc2, enc3, enc4;\r\n\t\tvar i = 0;\r\n\r\n\t\tinput = Base64._utf8_encode(input);\r\n\r\n\t\twhile (i < input.length) {\r\n\r\n\t\t\tchr1 = input.charCodeAt(i++);\r\n\t\t\tchr2 = input.charCodeAt(i++);\r\n\t\t\tchr3 = input.charCodeAt(i++);\r\n\r\n\t\t\tenc1 = chr1 >> 2;\r\n\t\t\tenc2 = ((chr1 & 3) << 4) | (chr2 >> 4);\r\n\t\t\tenc3 = ((chr2 & 15) << 2) | (chr3 >> 6);\r\n\t\t\tenc4 = chr3 & 63;\r\n\r\n\t\t\tif (isNaN(chr2)) {\r\n\t\t\t\tenc3 = enc4 = 64;\r\n\t\t\t} else if (isNaN(chr3)) {\r\n\t\t\t\tenc4 = 64;\r\n\t\t\t}\r\n\r\n\t\t\toutput = output +\r\n\t\t\tthis._keyStr.charAt(enc1) + this._keyStr.charAt(enc2) +\r\n\t\t\tthis._keyStr.charAt(enc3) + this._keyStr.charAt(enc4);\r\n\r\n\t\t}\r\n\r\n\t\treturn output;\r\n\t},\r\n\r\n\t// public method for decoding\r\n\tdecode : function (input) {\r\n\t\tvar output = \"\";\r\n\t\tvar chr1, chr2, chr3;\r\n\t\tvar enc1, enc2, enc3, enc4;\r\n\t\tvar i = 0;\r\n\r\n\t\tinput = input.replace(/[^A-Za-z0-9\\+\\/\\=]/g, \"\");\r\n\r\n\t\twhile (i < input.length) {\r\n\r\n\t\t\tenc1 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc2 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc3 = this._keyStr.indexOf(input.charAt(i++));\r\n\t\t\tenc4 = this._keyStr.indexOf(input.charAt(i++));\r\n\r\n\t\t\tchr1 = (enc1 << 2) | (enc2 >> 4);\r\n\t\t\tchr2 = ((enc2 & 15) << 4) | (enc3 >> 2);\r\n\t\t\tchr3 = ((enc3 & 3) << 6) | enc4;\r\n\r\n\t\t\toutput = output + String.fromCharCode(chr1);\r\n\r\n\t\t\tif (enc3 != 64) {\r\n\t\t\t\toutput = output + String.fromCharCode(chr2);\r\n\t\t\t}\r\n\t\t\tif (enc4 != 64) {\r\n\t\t\t\toutput = output + String.fromCharCode(chr3);\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\toutput = Base64._utf8_decode(output);\r\n\r\n\t\treturn output;\r\n\r\n\t},\r\n\r\n\t// private method for UTF-8 encoding\r\n\t_utf8_encode : function (string) {\r\n\t\tstring = string.replace(/\\r\\n/g,\"\\n\");\r\n\t\tvar utftext = \"\";\r\n\r\n\t\tfor (var n = 0; n < string.length; n++) {\r\n\r\n\t\t\tvar c = string.charCodeAt(n);\r\n\r\n\t\t\tif (c < 128) {\r\n\t\t\t\tutftext += String.fromCharCode(c);\r\n\t\t\t}\r\n\t\t\telse if((c > 127) && (c < 2048)) {\r\n\t\t\t\tutftext += String.fromCharCode((c >> 6) | 192);\r\n\t\t\t\tutftext += String.fromCharCode((c & 63) | 128);\r\n\t\t\t}\r\n\t\t\telse {\r\n\t\t\t\tutftext += String.fromCharCode((c >> 12) | 224);\r\n\t\t\t\tutftext += String.fromCharCode(((c >> 6) & 63) | 128);\r\n\t\t\t\tutftext += String.fromCharCode((c & 63) | 128);\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\treturn utftext;\r\n\t},\r\n\r\n\t// private method for UTF-8 decoding\r\n\t_utf8_decode : function (utftext) {\r\n\t\tvar string = \"\";\r\n\t\tvar i = 0;\r\n\t\tvar c = c1 = c2 = 0;\r\n\r\n\t\twhile ( i < utftext.length ) {\r\n\r\n\t\t\tc = utftext.charCodeAt(i);\r\n\r\n\t\t\tif (c < 128) {\r\n\t\t\t\tstring += String.fromCharCode(c);\r\n\t\t\t\ti++;\r\n\t\t\t}\r\n\t\t\telse if((c > 191) && (c < 224)) {\r\n\t\t\t\tc2 = utftext.charCodeAt(i+1);\r\n\t\t\t\tstring += String.fromCharCode(((c & 31) << 6) | (c2 & 63));\r\n\t\t\t\ti += 2;\r\n\t\t\t}\r\n\t\t\telse {\r\n\t\t\t\tc2 = utftext.charCodeAt(i+1);\r\n\t\t\t\tc3 = utftext.charCodeAt(i+2);\r\n\t\t\t\tstring += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));\r\n\t\t\t\ti += 3;\r\n\t\t\t}\r\n\r\n\t\t}\r\n\r\n\t\treturn string;\r\n\t}\r\n\r\n}\r\n\r\n/* ========== loginQuick.js ========== */\r\nvar ff;\r\nvar CheckOnlySupportIE = false;\r\nvar DVR_ONLY_SUPPORT_IE = \"_042_082_162_046_\";\r\nvar isIEBrowser = false;\r\n\r\nif ((navigator.appName == \"Microsoft Internet Explorer\") && (navigator.platform != \"MacPPC\") && (navigator.platform != \"Mac68k\")) {\r\n  isIEBrowser = true;\r\n}\r\n\r\n/* disabled backspace key */\r\nif(typeof window.event != 'undefined'){\r\n    document.onkeydown = function(){if(event.srcElement.tagName.toUpperCase() != 'INPUT'){return (event.keyCode != 8);}}\r\n}else{\r\n    document.onkeypress = function(e){if(e.target.nodeName.toUpperCase() != 'INPUT'){return (e.keyCode != 8);}}\r\n}\r\n\r\nfunction init(){\r\n\tff = document.myForm;\r\n\tff.Username.value = \"\";\r\n\tff.Password.value = \"\";\r\n\tff.Username.focus();\r\n\t//setTimeout(\"getCaptchaImg()\", 1000);\r\n}\r\n\r\nfunction getCaptchaImg(){\r\n\tdocument.getElementById(\"Captcha\").src = \"/cgi-bin/nobody/Captcha.cgi?action=get&image=login_bmp\";\r\n}\r\n\r\nfunction goCheck(e){\r\n    if(window.event && e.keyCode ==13) //IE\r\n        check(); \r\n    else if(e.which == 13) // Netscape/Firefox/Opera\r\n        check();\r\n}\r\n\r\nfunction check(){\r\n    if(!ff){return false;}\r\n    \r\n    document.cookie = \"x=1\";\r\n    if (document.cookie.indexOf(\"x=\")==-1){\r\n        alert(\"Browser Cookie not supported.\");\r\n        frmReload();\r\n        return false;\r\n    }\r\n    var actionStr = \"/cgi-bin/nobody/VerifyCode.cgi\"\r\n    actionStr += \"?account=\"+Base64.encode(ff.Username.value+\":\"+ff.Password.value);\r\n    //actionStr += \"&captcha_code=\"+ff.CaptchaCode.value;\r\n    //actionStr += \"&verify_code=\"+getCookie(\"captcha\");\r\n    actionStr += \"&rnd=\"+Math.random();\r\n\tvar httpObj = createHttpRequestObj();\r\n\thttpObj.onreadystatechange = function(){\r\n    \tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n    \t\tvar objStr    = new Object();\r\n    \t\tobjStr.strSrc = httpObj.responseText;\r\n    \t\ttmpStr = objStr.strSrc.split(\"\\n\");\r\n            if (tmpStr[1] == \"OK\"){\r\n                getUserLevel();\r\n            }else{\r\n                alert(tmpStr[1]);\r\n                frmReload();\r\n            }\r\n        }\r\n    };\r\n\thttpObj.open(\"get\", actionStr, true);\r\n\thttpObj.send(null);\r\n\treturn false;\r\n}\r\n\r\nfunction getUserLevel(){\r\n\t/*\r\n\tvar httpObj = createHttpRequestObj();\r\n\trequestData = \"/cgi-bin/guest/Login.cgi?rnd=\"+Math.random();\r\n\thttpObj.onreadystatechange = function(){\r\n    \tif (httpObj.readyState == 4 && httpObj.status == 200){\r\n    \t\tvar objStr    = new Object();\r\n    \t\tobjStr.strSrc = httpObj.responseText;\r\n    \t\t\r\n    \t\tif (CheckOnlySupportIE && GetCgiParam(objStr, \"Product-ID-Minor=\") == 1){\r\n    \t\t    var pid = objStr.strGet;\r\n    \t\t    var pidc = \"_\"+pid+\"_\";\r\n    \t\t    if(!isIEBrowser && DVR_ONLY_SUPPORT_IE.indexOf(pidc) != -1){\r\n    \t\t        //alert(\"This machine is not supported, please visit 'www.avtech.com.tw' for more details.\");\r\n    \t\t        if(confirm(\"This machine is not supported.\\nDo you want to get more details?\")){\r\n    \t\t            location.href = \"http://www.eagleeyescctv.com/jump/dvr.htm\";\r\n    \t\t        }\r\n    \t\t        return false;\r\n    \t\t    }\r\n    \t\t}\r\n    \t\t\r\n    \t\tif (GetCgiParam(objStr, \"User-Level=\") == 1){\r\n    \t\t\tsetCookie(\"LifeTime\", \"\");\r\n    \t\t\tsetCookie(\"ReloWebTime\", 0);\r\n    \t\t\tif(objStr.strGet == \"SUPERVISOR\")\r\n                    location.href=\"/index.htm\";\r\n                else\r\n                    location.href=\"/index.htm\";\r\n\t\t\t\t\t//location.href=\"/default.htm\";\r\n            }else{alert('Login Failed.');}\r\n            \r\n    \t}\r\n    };\r\n\thttpObj.open(\"get\", requestData, true);\r\n\thttpObj.send(null);\r\n\t*/\r\n\tsetCookie(\"brokenhdd\", \"\");\r\n\tsetCookie(\"LifeTime\", \"\");\r\n\tsetCookie(\"ReloWebTime\", 0);\r\n\tlocation.href=\"/index.htm\";\r\n}\r\n\r\nfunction frmReload(){\r\n    ff.Username.value=\"\";\r\n    ff.Password.value=\"\";\r\n    //ff.CaptchaCode.value=\"\";\r\n    location.reload();\r\n}\r\n\r\nfunction createHttpRequestObj(){\r\n\tvar XMLhttpObject = null;\r\n\ttry {XMLhttpObject = new XMLHttpRequest();}\r\n\tcatch(e){\r\n\t\ttry {XMLhttpObject = new ActiveXObject(\"Msxml2.XMLHTTP\");}\r\n\t\tcatch(e){\r\n\t\t\ttry {XMLhttpObject = new ActiveXObject(\"Microsoft.XMLHTTP\");}\r\n\t\t\tcatch(e) {return null;}\r\n\t\t}\r\n\t}\r\n\treturn XMLhttpObject;\r\n}\r\n\r\nfunction GetCgiParam(objStr, strSearch){\r\n\tvar curr_pos;var result;\r\n\tobjStr.strSearch=strSearch;\r\n\tobjStr.curr_pos=0;\r\n\tdo{\r\n\t\tresult = 1;\r\n\t\tcurr_pos = objStr.strSrc.indexOf(objStr.strSearch, objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.curr_pos = curr_pos + objStr.strSearch.length;\r\n\t\tcurr_pos = objStr.strSrc.indexOf('\\n', objStr.curr_pos);\r\n\t\tif (curr_pos < 0){\r\n\t\t\tif (objStr.curr_pos < objStr.strSrc.length){\r\n\t\t\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, objStr.strSrc.length);\r\n\t\t\t\tobjStr.curr_pos = curr_pos;\t\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tresult = 0;\r\n\t\t\tbreak;\r\n\t\t}\r\n\t\tobjStr.strGet \t= objStr.strSrc.substring(objStr.curr_pos, curr_pos);\r\n\t\tobjStr.curr_pos = curr_pos;\r\n\t} while(0);\r\n\treturn result;\r\n}\r\n\r\nfunction goMobile(){\r\n    setCookie(\"ViewMode\", \"Mobile\");\r\n\tvar w = window.screen.availWidth;\r\n\tif(w >= 320)\r\n\t\tlocation.href=\"/nobody/mobile320.htm?Login=Quick\";\r\n\telse\r\n\t\tlocation.href=\"/nobody/mobile.htm?Login=Quick\";\r\n}\r\n\r\n</script>\r\n</head>\r\n<body onload=\"init()\">\r\n<form name=\"myForm\" method=\"POST\" target=\"_top\" onSubmit=\"return check();\">\r\n<table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n    <tr><td width=\"778\" height=\"197\" valign=\"middle\" >\r\n        <table width=\"201\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n            <tr><td width=\"201\" height=\"25\">&nbsp;</td></tr>\r\n        </table>\r\n        <table width=\"467\" height=\"88\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n            <tr><td width=\"493\" height=\"53\" class=\"font0\">&nbsp;&nbsp;&nbsp;Any time &amp; Any where</td></tr>\r\n            <tr><td class=\"font1\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;IP Surveillance for Your Life</td></tr>\r\n        </table></td></tr>\r\n    <tr><td height=\"114\" valign=\"middle\">\r\n        <table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n            <tr><td width=\"221\" height=\"247\" valign=\"top\"></td>\r\n        <td valign=\"top\"><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n          <tr>\r\n            <td height=\"94\" valign=\"top\"><table width=\"341\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n              <tr>\r\n                <td width=\"21\"><img src=\"/nobody/jpg/lcorner.jpg\" width=\"21\" height=\"33\" alt=\"\"></td>\r\n                <td width=\"306\" align=\"center\" background=\"/nobody/jpg/banner.jpg\"> Customer Login </td>\r\n                <td width=\"14\"><img src=\"/nobody/jpg/rcor.jpg\" width=\"18\" height=\"33\"></td>\r\n              </tr>\r\n            </table>\r\n                    <table width=\"341\" border=\"0\" align=\"left\" cellpadding=\"0\" cellspacing=\"0\">\r\n                      <tr>\r\n                        <td width=\"8%\"><img src=\"/nobody/jpg/mem.jpg\" width=\"83\" height=\"168\"></td>\r\n                        <td width=\"87%\" background=\"/nobody/jpg/bg09.gif\">\r\n                            <!-- input box -->\r\n                            <table width=\"233\" height=\"80\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\r\n                            <tr>\r\n                              <td width=\"96\" height=\"41\" align=\"right\">Username :&nbsp;</td>\r\n                              <td width=\"124\"><input name=\"Username\" maxlength=\"31\" type=\"text\" class=\"inputTxt\" size=\"17\" onkeydown=\"goCheck(event);\"></td>\r\n                            </tr>\r\n                            <tr>\r\n                              <td width=\"96\" height=\"37\" align=\"right\">Password :&nbsp;</td>\r\n                              <td><input name=\"Password\" maxlength=\"31\" type=\"password\" class=\"inputTxt\" size=\"17\" onkeydown=\"goCheck(event);\"></td>\r\n                            </tr>\r\n                            </table></td>\r\n\r\n                        <td width=\"5%\"><img src=\"/nobody/jpg/line11.jpg\" width=\"18\" height=\"168\"></td>\r\n                      </tr>\r\n                  </table></td>\r\n          </tr>\r\n          <tr>\r\n            <td valign=\"top\"><table width=\"341\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n              <tr>\r\n                <td width=\"17\" valign=\"top\" background=\"/nobody/jpg/bg14.jpg\"><img src=\"/nobody/jpg/cor.jpg\" width=\"17\" height=\"46\"></td>\r\n                <td width=\"305\" background=\"/nobody/jpg/bg14.jpg\">\r\n                    <!-- button -->\r\n                    <table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n                    <tr><td align=\"center\"><img src=\"/nobody/jpg/login.gif\" style=\"cursor:pointer\" width=\"103\" height=\"29\" border=\"0\" onClick=\"check();\"></td></tr>\r\n                    </table></td>\r\n                <td width=\"18\" valign=\"top\"><img src=\"/nobody/jpg/cor18.jpg\" width=\"18\" height=\"46\"></td>\r\n              </tr>\r\n            </table></td>\r\n          </tr>\r\n        </table></td>\r\n        <td width=\"218\" valign=\"top\"><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n          <tr>\r\n            <td></td>\r\n          </tr>\r\n          \r\n        </table></td>\r\n      </tr>\r\n    </table>\r\n    <table width=\"778\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">\r\n      <tr>\r\n        <td width=\"213\"></td>\r\n        <td width=\"339\" height=\"132\" align=\"center\">View: <a href=\"#\" style='color:#00ffff' onclick=\"goMobile()\">Mobile</a> | PC</td>\r\n        <td width=\"226\"></td>\r\n      </tr>\r\n    </table></td>\r\n  </tr>\r\n</table>\r\n</form>\r\n</body>\r\n</html>",
   "datamd5" : "498757ed6cd314988f10f57b901a6c7b",
   "datammh3" : -1933980046,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "viettel.vn"
   ],
   "geolocus" : {
      "asn" : "AS7552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "viettel.com.vn",
         "viettel.vn",
         "vnnic.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VIETTEL-VN",
      "organization" : "VIETTEL-VN",
      "subnet" : "171.248.0.0/13"
   },
   "host" : [
      "dynamic-ip-adsl"
   ],
   "hostname" : [
      "dynamic-ip-adsl.viettel.vn"
   ],
   "ip" : "171.250.115.122",
   "ipv6" : "false",
   "latitude" : "10.8220",
   "location" : "10.8220,106.6257",
   "longitude" : "106.6257",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Viettel Group",
   "os" : "Linux",
   "osvendor" : "Linux",
   "osversion" : "2",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "dynamic-ip-adsl.viettel.vn"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "171.248.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "vn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
103.56.17.49

Network
103.56.16.0/22

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://103.56.17.49:548/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS132883

Organization
TOPWAY GLOBAL LIMITED

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
F5 Nginx 1.17.6

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
023c8c5e51d9ce9369af8e1f921f5e3f

HTTP Header MD5
f4eaba8998b0e515f84d95c1ad5ea5c7

HTTP Body MD5
a2b4897849c71fbcb21dd632d3506361

HTTP/1.1 400 Bad Request
Server: nginx/1.17.6
Date: Thu, 21 Nov 2024 10:17:03 GMT
Content-Type: text/html
Content-Length: 255
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.17.6</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:17:59.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "a2b4897849c71fbcb21dd632d3506361",
         "bodymmh3" : -2063426561,
         "headermd5" : "f4eaba8998b0e515f84d95c1ad5ea5c7",
         "headermmh3" : 1825501563,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 407
   },
   "asn" : "AS132883",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.17.6\r\nDate: Thu, 21 Nov 2024 10:17:03 GMT\r\nContent-Type: text/html\r\nContent-Length: 255\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx/1.17.6</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "023c8c5e51d9ce9369af8e1f921f5e3f",
   "datammh3" : 457427036,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS132883",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnaaa.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "cnaaa",
      "organization" : "Jiangsu Sanai network science and technology co ,LTD",
      "subnet" : "103.56.16.0/22"
   },
   "ip" : "103.56.17.49",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TOPWAY GLOBAL LIMITED",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 548,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.17.6",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "103.56.16.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
59.75.38.182

Network
59.64.0.0/12

Device

<enterprise field>: device.class

URL

http://59.75.38.182:548/ 302

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
96d7aced4477a5334c7de4616620bcc7

HTTP Header MD5
17494da67b263d49a356f29516833bab

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Moved Temporarily
Server: DrcomServer1.0
Location: http://192.168.254.3
Cache-Control: no-cache
Content-Length: 0
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:17:25.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.254.3"
         ],
         "url" : [
            "http://192.168.254.3"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "17494da67b263d49a356f29516833bab",
         "headermmh3" : 1664562682
      },
      "length" : 153
   },
   "asn" : "AS4538",
   "country" : "CN",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: DrcomServer1.0\r\nLocation: http://192.168.254.3\r\nCache-Control: no-cache\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "96d7aced4477a5334c7de4616620bcc7",
   "datammh3" : 1446480259,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cernet.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "XAR-CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "59.75.32.0/21"
   },
   "ip" : "59.75.38.182",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "59.64.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
211.83.8.178

Network
211.80.0.0/13

Device

<enterprise field>: device.class

URL

http://211.83.8.178:548/ 200

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan
Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ed6f5db44a39537b1fea9f4afeea0b84

HTTP Header MD5
97eb73c41d2d1f332d0a4ddd4c85c3de

HTTP Body MD5
f67b880d0d039774547768787964aac2

HTTP/1.1 200 ok
Server: Apache
Content-Length:  221
Cache-Control: no-cache
Connection: close

<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:548/'</script>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:56.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "211.83.41.225",
            "10.100.100.114"
         ],
         "url" : [
            "http://211.83.41.225/eportal/index.jsp?wlanuserip="
         ]
      },
      "http" : {
         "bodymd5" : "f67b880d0d039774547768787964aac2",
         "bodymmh3" : 1683164388,
         "headermd5" : "97eb73c41d2d1f332d0a4ddd4c85c3de",
         "headermmh3" : -1664957083
      },
      "length" : 310
   },
   "asn" : "AS4538",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 ok\r\nServer: Apache\r\nContent-Length:  221\r\nCache-Control: no-cache\r\nConnection: close\r\n\r\n<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:548/'</script>\r\n\r\n",
   "datamd5" : "ed6f5db44a39537b1fea9f4afeea0b84",
   "datammh3" : -415134619,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "211.in-addr.arpa",
         "apnic.net",
         "cernet.edu.cn",
         "scut.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "211.80.0.0/13"
   },
   "ip" : "211.83.8.178",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 548,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "ok",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "211.80.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
167.179.166.31

Network
167.179.128.0/18

Domain(s)
aussiebb.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://167.179.166.31:548/ 200

HTTP Title
Home Assistant

Reverse DNS
167-179-166-31.a7b3a6.bne.nbn.aussiebb.net

ASN
AS4764

Organization
Aussie Broadband

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
39b0050dfea38e3c28e00d8c3cf706d9

HTTP Header MD5
d41ff784e252b14fcd8398d21bab18cd

HTTP Body MD5
3cc4e4e0259a1d538b52084ec56c605f

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
Server: 
X-Frame-Options: SAMEORIGIN
Content-Length: 5446
Date: Thu, 21 Nov 2024 10:16:29 GMT
Connection: close

<!DOCTYPE html><html><head><title>Home Assistant</title><meta charset="utf-8"><link rel="manifest" href="/manifest.json" crossorigin="use-credentials"><link rel="icon" href="/static/icons/favicon.ico"><link rel="modulepreload" href="/frontend_latest/core.BoYKLfRRrJc.js" crossorigin="use-credentials"><link rel="modulepreload" href="/frontend_latest/app.qDmKXsR0UBw.js" crossorigin="use-credentials"><link rel="mask-icon" href="/static/icons/mask-icon.svg" color="#18bcf2"><link rel="apple-touch-icon" href="/static/icons/favicon-apple-180x180.png"><meta name="apple-itunes-app" content="app-id=1099568401"><meta name="apple-mobile-web-app-capable" content="yes"><meta name="apple-mobile-web-app-status-bar-style" content="default"><meta name="apple-mobile-web-app-title" content="Home Assistant"><meta name="msapplication-config" content="/static/icons/browserconfig.xml"><meta name="mobile-web-app-capable" content="yes"><meta name="application-name" content="Home Assistant"><meta name="referrer" content="same-origin"><meta name="theme-color" content="#03A9F4"><meta name="color-scheme" content="dark light"><meta name="viewport" content="width=device-width,user-scalable=no,viewport-fit=cover,initial-scale=1"><style>body{font-family:Roboto,Noto,Noto Sans,sans-serif;-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;font-weight:400;margin:0;padding:0;height:100%}</style><style>html{background-color:var(--primary-background-color,#fafafa);color:var(--primary-text-color,#212121);height:100vh}@media (prefers-color-scheme:dark){html{background-color:var(--primary-background-color,#111);color:var(--primary-text-color,#e1e1e1)}}#ha-launch-screen{height:100%;display:flex;flex-direction:column;justify-content:center;align-items:center}#ha-launch-screen svg{width:112px;flex-shrink:0}#ha-launch-screen .ha-launch-screen-spacer-top{flex:1;margin-top:calc(2 * max(env(safe-area-inset-bottom),48px) + 46px);padding-top:48px}#ha-launch-screen .ha-launch-screen-spacer-bottom{flex:1;padding-top:48px}.ohf-logo{margin:max(env(safe-area-inset-bottom),48px) 0;display:flex;flex-direction:column;align-items:center;opacity:.66}@media (prefers-color-scheme:dark){.ohf-logo{filter:invert(1)}}</style></head><body><div id="ha-launch-screen"><div class="ha-launch-screen-spacer-top"></div><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 240 240"><path fill="#18BCF2" d="M240 224.762a15 15 0 0 1-15 15H15a15 15 0 0 1-15-15v-90c0-8.25 4.77-19.769 10.61-25.609l98.78-98.7805c5.83-5.83 15.38-5.83 21.21 0l98.79 98.7895c5.83 5.83 10.61 17.36 10.61 25.61v90-.01Z"/><path fill="#F2F4F9" d="m107.27 239.762-40.63-40.63c-2.09.72-4.32 1.13-6.64 1.13-11.3 0-20.5-9.2-20.5-20.5s9.2-20.5 20.5-20.5 20.5 9.2 20.5 20.5c0 2.33-.41 4.56-1.13 6.65l31.63 31.63v-115.88c-6.8-3.3395-11.5-10.3195-11.5-18.3895 0-11.3 9.2-20.5 20.5-20.5s20.5 9.2 20.5 20.5c0 8.07-4.7 15.05-11.5 18.3895v81.27l31.46-31.46c-.62-1.96-.96-4.04-.96-6.2 0-11.3 9.2-20.5 20.5-20.5s20.5 9.2 20.5 20.5-9.2 20.5-20.5 20.5c-2.5 0-4.88-.47-7.09-1.29L129 208.892v30.88z"/></svg><div id="ha-launch-screen-info-box" class="ha-launch-screen-spacer-bottom"></div><div class="ohf-logo"><img src="/static/images/ohf-badge.svg" alt="Home Assistant is a project by the Open Home Foundation" height="46"></div></div><home-assistant></home-assistant><script>function _ls(d,e){var o=document.createElement("script");return e&&(o.crossOrigin="use-credentials"),o.src=d,document.head.appendChild(o)}window.polymerSkipLoadingFontRoboto=!0,"customElements"in window&&"content"in document.createElement("template")||_ls("/static/polyfills/webcomponents-bundle.js",!0);var isModern=/Edge?\/(12\d|1[3-9]\d|[2-9]\d{2}|\d{4,})\.\d+(\.\d+|)|Firefox\/(1{2}[5-9]|1[2-9]\d|[2-9]\d{2}|\d{4,})\.\d+(\.\d+|)|Chrom(ium|e)\/(109|1[1-9]\d|[2-9]\d{2}|\d{4,})\.\d+(\.\d+|)|(Maci|X1{2}).+ Version\/(17\.([2-9]|\d{2,})|(1[89]|[2-9]\d|\d{3,})\.\d+)([,.]\d+|)( \(\w+\)|)( Mobile\/\w+|) Safari\/|Chrome.+OPR\/(10[4-9]|1[1-9]\d|[2-9]\d{2}|\d{4,})\.\d+\.\d+|(CPU[ +]OS|iPhone[ +]OS|CPU[ +]iPhone|CPU IPhone OS|CPU iPad OS)[ +]+(15[._]([6-9]|\d{2,})|(1[6-9]|[2-9]\d|\d{3,})[._]\d+)([._]\d+|)|Android:?[ /-](12\d|1[3-9]\d|[2-9]\d{2}|\d{4,})(\.\d+|)(\.\d+|)|Mobile Safari.+OPR\/([89]\d|\d{3,})\.\d+\.\d+|Android.+Firefox\/(12\d|1[3-9]\d|[2-9]\d{2}|\d{4,})\.\d+(\.\d+|)|Android.+Chrom(ium|e)\/(12\d|1[3-9]\d|[2-9]\d{2}|\d{4,})\.\d+(\.\d+|)|SamsungBrowser\/(2[4-9]|[3-9]\d|\d{3,})\.\d+|Home As{2}istant\/[\d.]+ \(.+; macOS (1[2-9]|[2-9]\d|\d{3,})\.\d+(\.\d+)?\)/.test(navigator.userAgent)&&"findLast"in Array.prototype</script><script>if(-1===navigator.userAgent.indexOf("Android")&&-1===navigator.userAgent.indexOf("CrOS")){function _pf(o,t){var n=document.createElement("link");n.rel="preload",n.as="font",n.type="font/woff2",n.href=o,n.crossOrigin="anonymous",document.head.appendChild(n)}_pf("/static/fonts/roboto/Roboto-Regular.woff2"),_pf("/static/fonts/roboto/Roboto-Medium.woff2")}</script><script crossorigin="use-credentials">isModern&&(import("/frontend_latest/core.BoYKLfRRrJc.js"),import("/frontend_latest/app.qDmKXsR0UBw.js"),window.customPanelJS="/frontend_latest/custom-panel.Ig1sa18TiHc.js",window.latestJS=!0)</script><script>import("/hacsfiles/iconset.js");</script><script>window.latestJS||(window.customPanelJS="/frontend_es5/custom-panel.31PPXGrRX_U.js",_ls("/frontend_es5/core.lpWTDfdgHGI.js",!0),_ls("/frontend_es5/app.UDq7gq22Xuw.js",!0))</script><script>if (!window.latestJS) {}</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:16:29.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "file" : [
            "browserconfig.xml",
            "manifest.json"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/2000/svg"
         ]
      },
      "http" : {
         "bodymd5" : "3cc4e4e0259a1d538b52084ec56c605f",
         "bodymmh3" : 540784859,
         "headermd5" : "d41ff784e252b14fcd8398d21bab18cd",
         "headermmh3" : -1478097662,
         "title" : "Home Assistant"
      },
      "length" : 5685
   },
   "asn" : "AS4764",
   "city" : "Brisbane",
   "country" : "AU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nReferrer-Policy: no-referrer\r\nX-Content-Type-Options: nosniff\r\nServer: \r\nX-Frame-Options: SAMEORIGIN\r\nContent-Length: 5446\r\nDate: Thu, 21 Nov 2024 10:16:29 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE html><html><head><title>Home Assistant</title><meta charset=\"utf-8\"><link rel=\"manifest\" href=\"/manifest.json\" crossorigin=\"use-credentials\"><link rel=\"icon\" href=\"/static/icons/favicon.ico\"><link rel=\"modulepreload\" href=\"/frontend_latest/core.BoYKLfRRrJc.js\" crossorigin=\"use-credentials\"><link rel=\"modulepreload\" href=\"/frontend_latest/app.qDmKXsR0UBw.js\" crossorigin=\"use-credentials\"><link rel=\"mask-icon\" href=\"/static/icons/mask-icon.svg\" color=\"#18bcf2\"><link rel=\"apple-touch-icon\" href=\"/static/icons/favicon-apple-180x180.png\"><meta name=\"apple-itunes-app\" content=\"app-id=1099568401\"><meta name=\"apple-mobile-web-app-capable\" content=\"yes\"><meta name=\"apple-mobile-web-app-status-bar-style\" content=\"default\"><meta name=\"apple-mobile-web-app-title\" content=\"Home Assistant\"><meta name=\"msapplication-config\" content=\"/static/icons/browserconfig.xml\"><meta name=\"mobile-web-app-capable\" content=\"yes\"><meta name=\"application-name\" content=\"Home Assistant\"><meta name=\"referrer\" content=\"same-origin\"><meta name=\"theme-color\" content=\"#03A9F4\"><meta name=\"color-scheme\" content=\"dark light\"><meta name=\"viewport\" content=\"width=device-width,user-scalable=no,viewport-fit=cover,initial-scale=1\"><style>body{font-family:Roboto,Noto,Noto Sans,sans-serif;-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;font-weight:400;margin:0;padding:0;height:100%}</style><style>html{background-color:var(--primary-background-color,#fafafa);color:var(--primary-text-color,#212121);height:100vh}@media (prefers-color-scheme:dark){html{background-color:var(--primary-background-color,#111);color:var(--primary-text-color,#e1e1e1)}}#ha-launch-screen{height:100%;display:flex;flex-direction:column;justify-content:center;align-items:center}#ha-launch-screen svg{width:112px;flex-shrink:0}#ha-launch-screen .ha-launch-screen-spacer-top{flex:1;margin-top:calc(2 * max(env(safe-area-inset-bottom),48px) + 46px);padding-top:48px}#ha-launch-screen .ha-launch-screen-spacer-bottom{flex:1;padding-top:48px}.ohf-logo{margin:max(env(safe-area-inset-bottom),48px) 0;display:flex;flex-direction:column;align-items:center;opacity:.66}@media (prefers-color-scheme:dark){.ohf-logo{filter:invert(1)}}</style></head><body><div id=\"ha-launch-screen\"><div class=\"ha-launch-screen-spacer-top\"></div><svg xmlns=\"http://www.w3.org/2000/svg\" viewBox=\"0 0 240 240\"><path fill=\"#18BCF2\" d=\"M240 224.762a15 15 0 0 1-15 15H15a15 15 0 0 1-15-15v-90c0-8.25 4.77-19.769 10.61-25.609l98.78-98.7805c5.83-5.83 15.38-5.83 21.21 0l98.79 98.7895c5.83 5.83 10.61 17.36 10.61 25.61v90-.01Z\"/><path fill=\"#F2F4F9\" d=\"m107.27 239.762-40.63-40.63c-2.09.72-4.32 1.13-6.64 1.13-11.3 0-20.5-9.2-20.5-20.5s9.2-20.5 20.5-20.5 20.5 9.2 20.5 20.5c0 2.33-.41 4.56-1.13 6.65l31.63 31.63v-115.88c-6.8-3.3395-11.5-10.3195-11.5-18.3895 0-11.3 9.2-20.5 20.5-20.5s20.5 9.2 20.5 20.5c0 8.07-4.7 15.05-11.5 18.3895v81.27l31.46-31.46c-.62-1.96-.96-4.04-.96-6.2 0-11.3 9.2-20.5 20.5-20.5s20.5 9.2 20.5 20.5-9.2 20.5-20.5 20.5c-2.5 0-4.88-.47-7.09-1.29L129 208.892v30.88z\"/></svg><div id=\"ha-launch-screen-info-box\" class=\"ha-launch-screen-spacer-bottom\"></div><div class=\"ohf-logo\"><img src=\"/static/images/ohf-badge.svg\" alt=\"Home Assistant is a project by the Open Home Foundation\" height=\"46\"></div></div><home-assistant></home-assistant><script>function _ls(d,e){var o=document.createElement(\"script\");return e&&(o.crossOrigin=\"use-credentials\"),o.src=d,document.head.appendChild(o)}window.polymerSkipLoadingFontRoboto=!0,\"customElements\"in window&&\"content\"in document.createElement(\"template\")||_ls(\"/static/polyfills/webcomponents-bundle.js\",!0);var isModern=/Edge?\\/(12\\d|1[3-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+(\\.\\d+|)|Firefox\\/(1{2}[5-9]|1[2-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+(\\.\\d+|)|Chrom(ium|e)\\/(109|1[1-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+(\\.\\d+|)|(Maci|X1{2}).+ Version\\/(17\\.([2-9]|\\d{2,})|(1[89]|[2-9]\\d|\\d{3,})\\.\\d+)([,.]\\d+|)( \\(\\w+\\)|)( Mobile\\/\\w+|) Safari\\/|Chrome.+OPR\\/(10[4-9]|1[1-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+\\.\\d+|(CPU[ +]OS|iPhone[ +]OS|CPU[ +]iPhone|CPU IPhone OS|CPU iPad OS)[ +]+(15[._]([6-9]|\\d{2,})|(1[6-9]|[2-9]\\d|\\d{3,})[._]\\d+)([._]\\d+|)|Android:?[ /-](12\\d|1[3-9]\\d|[2-9]\\d{2}|\\d{4,})(\\.\\d+|)(\\.\\d+|)|Mobile Safari.+OPR\\/([89]\\d|\\d{3,})\\.\\d+\\.\\d+|Android.+Firefox\\/(12\\d|1[3-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+(\\.\\d+|)|Android.+Chrom(ium|e)\\/(12\\d|1[3-9]\\d|[2-9]\\d{2}|\\d{4,})\\.\\d+(\\.\\d+|)|SamsungBrowser\\/(2[4-9]|[3-9]\\d|\\d{3,})\\.\\d+|Home As{2}istant\\/[\\d.]+ \\(.+; macOS (1[2-9]|[2-9]\\d|\\d{3,})\\.\\d+(\\.\\d+)?\\)/.test(navigator.userAgent)&&\"findLast\"in Array.prototype</script><script>if(-1===navigator.userAgent.indexOf(\"Android\")&&-1===navigator.userAgent.indexOf(\"CrOS\")){function _pf(o,t){var n=document.createElement(\"link\");n.rel=\"preload\",n.as=\"font\",n.type=\"font/woff2\",n.href=o,n.crossOrigin=\"anonymous\",document.head.appendChild(n)}_pf(\"/static/fonts/roboto/Roboto-Regular.woff2\"),_pf(\"/static/fonts/roboto/Roboto-Medium.woff2\")}</script><script crossorigin=\"use-credentials\">isModern&&(import(\"/frontend_latest/core.BoYKLfRRrJc.js\"),import(\"/frontend_latest/app.qDmKXsR0UBw.js\"),window.customPanelJS=\"/frontend_latest/custom-panel.Ig1sa18TiHc.js\",window.latestJS=!0)</script><script>import(\"/hacsfiles/iconset.js\");</script><script>window.latestJS||(window.customPanelJS=\"/frontend_es5/custom-panel.31PPXGrRX_U.js\",_ls(\"/frontend_es5/core.lpWTDfdgHGI.js\",!0),_ls(\"/frontend_es5/app.UDq7gq22Xuw.js\",!0))</script><script>if (!window.latestJS) {}</script></body></html>",
   "datamd5" : "39b0050dfea38e3c28e00d8c3cf706d9",
   "datammh3" : 1326887807,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "aussiebb.net"
   ],
   "geolocus" : {
      "asn" : "AS4764",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "aussiebb.com.au",
         "aussiebb.net",
         "aussiebroadband.com.au",
         "wideband.net.au"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "WIDEBAND",
      "organization" : "Wideband Networks Pty Ltd",
      "subnet" : "167.179.128.0/18"
   },
   "host" : [
      "167-179-166-31"
   ],
   "hostname" : [
      "167-179-166-31.a7b3a6.bne.nbn.aussiebb.net"
   ],
   "ip" : "167.179.166.31",
   "ipv6" : "false",
   "latitude" : "-27.4437",
   "location" : "-27.4437,153.0244",
   "longitude" : "153.0244",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Aussie Broadband",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "167-179-166-31.a7b3a6.bne.nbn.aussiebb.net"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "a7b3a6.bne.nbn.aussiebb.net",
      "bne.nbn.aussiebb.net",
      "nbn.aussiebb.net"
   ],
   "subnet" : "167.179.128.0/18",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
3.68.69.200

Network
3.64.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://3.68.69.200:548/ 200

Reverse DNS
ec2-3-68-69-200.eu-central-1.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
502364b4947035af3929d7c7c1366bf5

HTTP Header MD5
c3107926acada8cdd5184d209c4d148a

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

Favicon MD5
2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3
-1216248324

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 10:06:57 GMT
Server: Apache
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:13:06.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "c3107926acada8cdd5184d209c4d148a",
         "headermmh3" : -1659809169
      },
      "length" : 110
   },
   "asn" : "AS16509",
   "city" : "Frankfurt am Main",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 10:06:57 GMT\r\nServer: Apache\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "502364b4947035af3929d7c7c1366bf5",
   "datammh3" : -1757667577,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "AMAZON-FRA",
      "organization" : "A100 ROW GmbH",
      "subnet" : "3.64.0.0/12"
   },
   "host" : [
      "ec2-3-68-69-200"
   ],
   "hostname" : [
      "ec2-3-68-69-200.eu-central-1.compute.amazonaws.com"
   ],
   "ip" : "3.68.69.200",
   "ipv6" : "false",
   "latitude" : "50.1187",
   "location" : "50.1187,8.6842",
   "longitude" : "8.6842",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-68-69-200.eu-central-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-central-1.compute.amazonaws.com"
   ],
   "subnet" : "3.64.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
172.234.99.88

Network
172.234.0.0/16

Domain(s)
linodeusercontent.com

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

http://172.234.99.88:548/ 200

HTTP Title
Ivanti(R) Cloud Services Appliance

Reverse DNS
172-234-99-88.ip.linodeusercontent.com

ASN
AS63949

Organization
Akamai Connected Cloud

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
Ivanti Cloud Services Appliance

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
83eb70c10a6347e4c0880ff953168ef1

HTTP Header MD5
f40e6b9b426872ded1dd829bad3feddb

HTTP Body MD5
8e8836fc2bafe97857564df1eff78ebb

HTTP/1.1 200 OK
Date: Thu, 21 Nov 2024 10:07:58 UTC
X-Frame-Options: sameorigin
Content-Type: text/html
Content-Length: 1611
Cache-Control: no-cache, no-store, must-revalidate, max-age=0
Content-Security-Policy: default-src 'self'
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer

<HTML>
	<head>
		<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
		<title>Ivanti(R) Cloud Services Appliance</title>
		<style type="text/css">
		<!--
		body {
			margin: 0;
		}

		div.header	{
			padding: 0;
			border-top: 5px solid #505d95;
			background-image: url(allowed/hdr_lsdk.gif); background-repeat:no-repeat;
			background-position: 300px 1px;
			border-bottom: 1px solid #505d95;
			height: 105px;
		}
		span.title {
			font-family:Geneva, Arial, Helvetica, sans-serif;
			font-size: 24pt;
			color: #003060;
		}
		.super {
			font-family:Geneva, Arial, Helvetica, sans-serif;
			font-size: 8.25pt;
			color: #003060;
			vertical-align: super;
		}
		table.linklist { 
			border: none;
			font-weight: bold;
		}
		a	{ text-decoration: none; color: #003060; }
		a:visited { color: #003060; }
		a:hover { text-decoration: underline;  }

		-->
		</style>
	</head>
	<body>
		<div class="header"><img src="allowed/ivanti-logo.png" align="absmiddle"><span class="title">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Ivanti<span class="super">&reg;</span>Cloud Services Appliance</span></div>
		<table class="linklist" width="100%" border="0" cellspacing="0" cellpadding="5"><TR><TD>
		<a href="http://<ip>:548/client/">Cloud Services Appliance Utilities</a>
                <br>
                <a href="http://<ip>:548/client/LDMGdeploy.pdf">User's Guide</a>
	</TD></TR><TR><TD><a href="https://<ip>:548/gsb/">Cloud Services Appliance Console</a></TD></TR><TR><TD><a href="https://<ip>:548/rc/">Remote Control Agents</a></TD></TR></table>
	</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:07:58.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "ldmgdeploy.pdf"
         ]
      },
      "http" : {
         "bodymd5" : "8e8836fc2bafe97857564df1eff78ebb",
         "bodymmh3" : -721751626,
         "component" : [
            {
               "product" : "Cloud Services Appliance",
               "productvendor" : "Ivanti"
            }
         ],
         "headermd5" : "f40e6b9b426872ded1dd829bad3feddb",
         "headermmh3" : -1852996741,
         "title" : "Ivanti(R) Cloud Services Appliance"
      },
      "length" : 1911
   },
   "asn" : "AS63949",
   "city" : "Stockholm",
   "country" : "SE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 21 Nov 2024 10:07:58 UTC\r\nX-Frame-Options: sameorigin\r\nContent-Type: text/html\r\nContent-Length: 1611\r\nCache-Control: no-cache, no-store, must-revalidate, max-age=0\r\nContent-Security-Policy: default-src 'self'\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: no-referrer\r\n\r\n<HTML>\n\t<head>\n\t\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\">\n\t\t<title>Ivanti(R) Cloud Services Appliance</title>\n\t\t<style type=\"text/css\">\n\t\t<!--\n\t\tbody {\n\t\t\tmargin: 0;\n\t\t}\n\n\t\tdiv.header\t{\n\t\t\tpadding: 0;\n\t\t\tborder-top: 5px solid #505d95;\n\t\t\tbackground-image: url(allowed/hdr_lsdk.gif); background-repeat:no-repeat;\n\t\t\tbackground-position: 300px 1px;\n\t\t\tborder-bottom: 1px solid #505d95;\n\t\t\theight: 105px;\n\t\t}\n\t\tspan.title {\n\t\t\tfont-family:Geneva, Arial, Helvetica, sans-serif;\n\t\t\tfont-size: 24pt;\n\t\t\tcolor: #003060;\n\t\t}\n\t\t.super {\n\t\t\tfont-family:Geneva, Arial, Helvetica, sans-serif;\n\t\t\tfont-size: 8.25pt;\n\t\t\tcolor: #003060;\n\t\t\tvertical-align: super;\n\t\t}\n\t\ttable.linklist { \n\t\t\tborder: none;\n\t\t\tfont-weight: bold;\n\t\t}\n\t\ta\t{ text-decoration: none; color: #003060; }\n\t\ta:visited { color: #003060; }\n\t\ta:hover { text-decoration: underline;  }\n\n\t\t-->\n\t\t</style>\n\t</head>\n\t<body>\n\t\t<div class=\"header\"><img src=\"allowed/ivanti-logo.png\" align=\"absmiddle\"><span class=\"title\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Ivanti<span class=\"super\">&reg;</span>Cloud Services Appliance</span></div>\n\t\t<table class=\"linklist\" width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"5\"><TR><TD>\n\t\t<a href=\"http://<ip>:548/client/\">Cloud Services Appliance Utilities</a>\n                <br>\n                <a href=\"http://<ip>:548/client/LDMGdeploy.pdf\">User's Guide</a>\n\t</TD></TR><TR><TD><a href=\"https://<ip>:548/gsb/\">Cloud Services Appliance Console</a></TD></TR><TR><TD><a href=\"https://<ip>:548/rc/\">Remote Control Agents</a></TD></TR></table>\n\t</BODY>\n</HTML>",
   "datamd5" : "83eb70c10a6347e4c0880ff953168ef1",
   "datammh3" : -1264871741,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "linodeusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS63949",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "akamai.com",
         "linode.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LINODE",
      "organization" : "Linode",
      "subnet" : "172.234.96.0/19"
   },
   "host" : [
      "172-234-99-88"
   ],
   "hostname" : [
      "172-234-99-88.ip.linodeusercontent.com"
   ],
   "ip" : "172.234.99.88",
   "ipv6" : "false",
   "latitude" : "59.3241",
   "location" : "59.3241,18.0517",
   "longitude" : "18.0517",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Akamai Connected Cloud",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "172-234-99-88.ip.linodeusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "ip.linodeusercontent.com"
   ],
   "subnet" : "172.234.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
189.71.52.153

Network
189.70.0.0/15

Domain(s)
net.br

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://189.71.52.153:548/ 200

HTTP Title
Intelbras

Reverse DNS
189-71-52-153.user3p.vtal.net.br

ASN
AS7738

Organization
V tal

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
868475b4aca3a48420b9d9d49f7cfed6

HTTP Header MD5
16aa56a7bf550a630e80c815add27257

HTTP Body MD5
6a35cd9fe3b97a762951b506109366ab

HTTP/1.1 200 OK
CONNECTION: keep-alive
Date: Thu, 21 Nov 2024 07:10:30 GMT
Last-Modified: Thu, 15 Aug 2024 07:42:35 GMT
Etag: "1723707755:c96"
CONTENT-LENGTH: 3222
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: text/html

<!DOCTYPE HTML> <html> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta charset="UTF-8"> <title>Intelbras</title> <link href="./baseProj/images/favicon.ico" type="image/x-icon" rel="shortcut icon"> <script src="ext/ext-all.js"></script> <script type="text/javascript" src="./projectPath.js"></script> <script type="text/javascript" src="/app/libs/require.js"></script> <script type="text/javascript" src="/app/jsCore/require-config.js"></script> <script type="text/javascript"> Ext.onReady(function () {
            //启用缓存
            Ext.Loader.setConfig({
                "disableCaching": true,
                "paths":{
                    "basePath": BASEURL, //配置基础项目的文件路径
                    "projectPath": PROJECT_URL //配置定制项目的文件路径
                }
            });

            //定义项目的加载路径
            var basePath = Ext.Loader.getPath('basePath'),
                projectPath = Ext.Loader.getPath('projectPath');

            //设置类的地址路径
            Ext.Loader.setPath({
                "jsCore": "app/jsCore",
                'component': "baseProj/js/component",
                'js': 'baseProj/js',
                'plugin': 'app/plugin',
                'widget': 'baseProj/js/widget',
                'baseCls':'app/baseCls',
				'app': 'baseCls', //各个项目统一一个app
                'customJs': projectPath+'js', // 非基线项目引用的js路径
                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //加载指定项目的Desktop.js
                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //加载指定项目的数据文件
            });

            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',
                'libs/base64',
                'libs/md5', 'libs/aes', 'libs/rsa', 'libs/xss', 'libs/moment',
                'timeaxes/TimeAxes',
                'timeaxes/TimeAxesAdaptor',
                'timeaxes/TimeGridLayer',
                'timeaxes/TimeAxes_old',
                'timeaxes/TimeGridLayer_old',
                'h5Player'
            ], function () {
                //载入必要的模块，字符串文件加载完成后，初始化和加载应用
                Ext.require(['jsCore.Common'], function () {
                    //清除cookie,防止存在ipc独有的session
                    Ext.util.Cookies.clearAllCookie();
                    jsCore.Common.getJsonLanguage().done(function () {
                        //自验问题修改：设备初始化界面，密码输入框输入时，报js错误,修改为先设置规则
                        jsCore.Common.setFieldVtype();
                        Ext.require(['baseCls.App']);
                        //***密码输入框输入时，报js错误 END***//
                    });
                });
            });
        }); </script> </head> <body></body> <script type="text/javascript" src="./pluginVersion.js"></script> <script type="text/javascript" src="./webVersion.js"></script> <script type="text/javascript" src="./cap.js"></script> </html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:07:19.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6a35cd9fe3b97a762951b506109366ab",
         "bodymmh3" : -415528198,
         "header" : [
            {
               "value" : "Thu, 15 Aug 2024 07:42:35 GMT",
               "name" : "Last-Modified"
            },
            {
               "value" : "1723707755:c96",
               "name" : "Etag"
            }
         ],
         "headermd5" : "16aa56a7bf550a630e80c815add27257",
         "headermmh3" : 87097782,
         "title" : "Intelbras"
      },
      "length" : 3608
   },
   "asn" : "AS7738",
   "city" : "Belo Horizonte",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCONNECTION: keep-alive\r\nDate: Thu, 21 Nov 2024 07:10:30 GMT\r\nLast-Modified: Thu, 15 Aug 2024 07:42:35 GMT\r\nEtag: \"1723707755:c96\"\r\nCONTENT-LENGTH: 3222\r\nP3P: CP=CAO PSA OUR\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1;mode=block\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'\r\nX-Content-Type-Options: nosniff\r\nCONTENT-TYPE: text/html\r\n\r\n<!DOCTYPE HTML> <html> <head> <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"> <meta charset=\"UTF-8\"> <title>Intelbras</title> <link href=\"./baseProj/images/favicon.ico\" type=\"image/x-icon\" rel=\"shortcut icon\"> <script src=\"ext/ext-all.js\"></script> <script type=\"text/javascript\" src=\"./projectPath.js\"></script> <script type=\"text/javascript\" src=\"/app/libs/require.js\"></script> <script type=\"text/javascript\" src=\"/app/jsCore/require-config.js\"></script> <script type=\"text/javascript\"> Ext.onReady(function () {\n            //\u542f\u7528\u7f13\u5b58\n            Ext.Loader.setConfig({\n                \"disableCaching\": true,\n                \"paths\":{\n                    \"basePath\": BASEURL, //\u914d\u7f6e\u57fa\u7840\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                    \"projectPath\": PROJECT_URL //\u914d\u7f6e\u5b9a\u5236\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                }\n            });\n\n            //\u5b9a\u4e49\u9879\u76ee\u7684\u52a0\u8f7d\u8def\u5f84\n            var basePath = Ext.Loader.getPath('basePath'),\n                projectPath = Ext.Loader.getPath('projectPath');\n\n            //\u8bbe\u7f6e\u7c7b\u7684\u5730\u5740\u8def\u5f84\n            Ext.Loader.setPath({\n                \"jsCore\": \"app/jsCore\",\n                'component': \"baseProj/js/component\",\n                'js': 'baseProj/js',\n                'plugin': 'app/plugin',\n                'widget': 'baseProj/js/widget',\n                'baseCls':'app/baseCls',\n\t\t\t\t'app': 'baseCls', //\u5404\u4e2a\u9879\u76ee\u7edf\u4e00\u4e00\u4e2aapp\n                'customJs': projectPath+'js', // \u975e\u57fa\u7ebf\u9879\u76ee\u5f15\u7528\u7684js\u8def\u5f84\n                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684Desktop.js\n                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684\u6570\u636e\u6587\u4ef6\n            });\n\n            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',\n                'libs/base64',\n                'libs/md5', 'libs/aes', 'libs/rsa', 'libs/xss', 'libs/moment',\n                'timeaxes/TimeAxes',\n                'timeaxes/TimeAxesAdaptor',\n                'timeaxes/TimeGridLayer',\n                'timeaxes/TimeAxes_old',\n                'timeaxes/TimeGridLayer_old',\n                'h5Player'\n            ], function () {\n                //\u8f7d\u5165\u5fc5\u8981\u7684\u6a21\u5757\uff0c\u5b57\u7b26\u4e32\u6587\u4ef6\u52a0\u8f7d\u5b8c\u6210\u540e\uff0c\u521d\u59cb\u5316\u548c\u52a0\u8f7d\u5e94\u7528\n                Ext.require(['jsCore.Common'], function () {\n                    //\u6e05\u9664cookie,\u9632\u6b62\u5b58\u5728ipc\u72ec\u6709\u7684session\n                    Ext.util.Cookies.clearAllCookie();\n                    jsCore.Common.getJsonLanguage().done(function () {\n                        //\u81ea\u9a8c\u95ee\u9898\u4fee\u6539\uff1a\u8bbe\u5907\u521d\u59cb\u5316\u754c\u9762\uff0c\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef,\u4fee\u6539\u4e3a\u5148\u8bbe\u7f6e\u89c4\u5219\n                        jsCore.Common.setFieldVtype();\n                        Ext.require(['baseCls.App']);\n                        //***\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef END***//\n                    });\n                });\n            });\n        }); </script> </head> <body></body> <script type=\"text/javascript\" src=\"./pluginVersion.js\"></script> <script type=\"text/javascript\" src=\"./webVersion.js\"></script> <script type=\"text/javascript\" src=\"./cap.js\"></script> </html>",
   "datamd5" : "868475b4aca3a48420b9d9d49f7cfed6",
   "datammh3" : 477364710,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "net.br"
   ],
   "geolocus" : {
      "asn" : "AS7738",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "veloxzone.com.br",
         "vtal.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.041.460/0001-93",
      "organization" : "V tal",
      "subnet" : "189.70.0.0/15"
   },
   "host" : [
      "189-71-52-153"
   ],
   "hostname" : [
      "189-71-52-153.user3p.vtal.net.br"
   ],
   "ip" : "189.71.52.153",
   "ipv6" : "false",
   "latitude" : "-19.9029",
   "location" : "-19.9029,-43.9572",
   "longitude" : "-43.9572",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "V tal",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 548,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "189-71-52-153.user3p.vtal.net.br"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "user3p.vtal.net.br",
      "vtal.net.br"
   ],
   "subnet" : "189.70.0.0/15",
   "tld" : [
      "br"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 15,755 in 0.039 second(s)

92.96.99.173:548 (tcp/http) - last seen on 2024-11-21 at 10:33:04 UTC

1.231.76.50:548 (tcp/http) - last seen on 2024-11-21 at 10:32:56 UTC

171.250.115.122:548 (tcp/http) - last seen on 2024-11-21 at 10:25:07 UTC

103.56.17.49:548 (tcp/http) - last seen on 2024-11-21 at 10:17:59 UTC

59.75.38.182:548 (tcp/http) - last seen on 2024-11-21 at 10:17:25 UTC

211.83.8.178:548 (tcp/http) - last seen on 2024-11-21 at 10:16:56 UTC

167.179.166.31:548 (tcp/http) - last seen on 2024-11-21 at 10:16:29 UTC

3.68.69.200:548 (tcp/http) - last seen on 2024-11-21 at 10:13:06 UTC

172.234.99.88:548 (tcp/http) - last seen on 2024-11-21 at 10:07:58 UTC

189.71.52.153:548 (tcp/http) - last seen on 2024-11-21 at 10:07:19 UTC