ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 541 in 0.038 second(s)

  • 42.54.214.32:23 (tcp/telnet) - last seen on 2024-10-31 at 21:14:32 UTC

    • IP
      42.54.214.32
      Network
      42.52.0.0/14
      Device

      <enterprise field>: device.class

      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      telnet
      Source
      sniffer

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      2f4f7837c9be8cefaa7b09b73adcc16b 
    • \xff\xfd\x01\xff\xfd\x1f\xff\xfb\x01\xff\xfb\x03\x0d\x0d
:/ # 
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T21:14:32.000Z",
   "app" : {
      "length" : "20"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "\\xff\\xfd\\x01\\xff\\xfd\\x1f\\xff\\xfb\\x01\\xff\\xfb\\x03\\x0d\\x0d\n:/ # ",
   "datamd5" : "2f4f7837c9be8cefaa7b09b73adcc16b",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "mail.jl.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-LN",
      "organization" : "China Unicom Liaoning Province Network",
      "subnet" : "42.52.0.0/14"
   },
   "ip" : "42.54.214.32",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "23",
   "protocol" : "telnet",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subnet" : "42.52.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 42.54.214.32:5555 (tcp/adb) - last seen on 2024-10-31 at 21:14:32 UTC

    • IP
      42.54.214.32
      Network
      42.52.0.0/14
      Device

      <enterprise field>: device.class

      Operating System
      Google Android
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      adb
      Source
      sniffer
    • Operating System
      Google Android

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      8159a24bf4b2bfc69242e3dcea68875e 
    • CNXN\x01\x00\x00\x01\x00\x00\x04\x00p\x00\x00\x00\x05(\x00\x00\xbc\xb1\xa7\xb1device::ro.product.name=S905l3a;ro.product.model=S905l3a;ro.product.device=S905l3a;features=stat_v2,cmd,shell_v2
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T21:14:32.000Z",
   "app" : {
      "length" : "136"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "CNXN\\x01\\x00\\x00\\x01\\x00\\x00\\x04\\x00p\\x00\\x00\\x00\\x05(\\x00\\x00\\xbc\\xb1\\xa7\\xb1device::ro.product.name=S905l3a;ro.product.model=S905l3a;ro.product.device=S905l3a;features=stat_v2,cmd,shell_v2",
   "datamd5" : "8159a24bf4b2bfc69242e3dcea68875e",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "mail.jl.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-LN",
      "organization" : "China Unicom Liaoning Province Network",
      "subnet" : "42.52.0.0/14"
   },
   "ip" : "42.54.214.32",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Android",
   "osvendor" : "Google",
   "port" : "5555",
   "protocol" : "adb",
   "reason" : "CNXN",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subnet" : "42.52.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 139.170.229.26:23 (tcp/telnet) - last seen on 2024-10-31 at 17:14:02 UTC

    • IP
      139.170.229.26
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      telnet
      Source
      sniffer

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      20b768611df52c33bc9494008b9a6c13 
    • \xff\xfd\x01\xff\xfd\x1f\xff\xfe!\xff\xfb\x01\xff\xfb\x03Username: 
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T17:14:02.000Z",
   "app" : {
      "length" : "25"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "\\xff\\xfd\\x01\\xff\\xfd\\x1f\\xff\\xfe!\\xff\\xfb\\x01\\xff\\xfb\\x03Username: ",
   "datamd5" : "20b768611df52c33bc9494008b9a6c13",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.229.26",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "23",
   "protocol" : "telnet",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 139.170.229.26:80 (tcp/http) - last seen on 2024-10-31 at 17:14:02 UTC

    • IP
      139.170.229.26
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      URL

      http://139.170.229.26/ 500

      HTTP Title
      500 - Internal Server Error
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http
      Source
      sniffer
    • Product
      lighttpd lighttpd 1.4.31
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      b5908e7bc3a9f4cfb46e7e3227a3e296
      HTTP Header MD5
      ab1ae1e6edb1b1661e95856441dfe786
      HTTP Body MD5
      5f3959c010e8e7cc04b0c0f206935e90 
    • HTTP/1.1 500 Internal Server Error
Content-Type: text/html
Content-Length: 369
Date: Thu, 31 Oct 2024 17:14:41 GMT
Server: lighttpd/1.4.31

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
         "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>
  <title>500 - Internal Server Error</title>
 </head>
 <body>
  <h1>500 - Internal Server Error</h1>
 </body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T17:14:02.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "5f3959c010e8e7cc04b0c0f206935e90",
         "headermd5" : "ab1ae1e6edb1b1661e95856441dfe786",
         "title" : "500 - Internal Server Error"
      },
      "length" : "515"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 500 Internal Server Error\r\nContent-Type: text/html\r\nContent-Length: 369\r\nDate: Thu, 31 Oct 2024 17:14:41 GMT\r\nServer: lighttpd/1.4.31\r\n\r\n<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n         \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"en\" lang=\"en\">\n <head>\n  <title>500 - Internal Server Error</title>\n </head>\n <body>\n  <h1>500 - Internal Server Error</h1>\n </body>\n</html>\n",
   "datamd5" : "b5908e7bc3a9f4cfb46e7e3227a3e296",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.229.26",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "80",
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.31",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Internal Server Error",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "status" : "500",
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 139.170.229.26:443 (tcp/http/tls) - last seen on 2024-10-31 at 17:14:02 UTC

    • IP
      139.170.229.26
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      URL

      https://139.170.229.26/ 500

      HTTP Title
      500 - Internal Server Error
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http Cert expired http
      Source
      sniffer
    • Product
      lighttpd lighttpd 1.4.31
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      lenovo
      Issuer Organization
      bjasljsgs
      Subject Organization
      bjasljsgs
      Subject Common Name
      lenovo
      SHA256 Fingerprint
      ce35990416909c04aafb7dfdb494dcdcc0a3757a4978ca04da41ce4c01567026
      Validity Not Before
      2009-09-23T08:15:23Z
      Validity Not After
      2010-09-23T08:15:23Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      b5908e7bc3a9f4cfb46e7e3227a3e296
      HTTP Header MD5
      ab1ae1e6edb1b1661e95856441dfe786
      HTTP Body MD5
      5f3959c010e8e7cc04b0c0f206935e90 
    • HTTP/1.1 500 Internal Server Error
Content-Type: text/html
Content-Length: 369
Date: Thu, 31 Oct 2024 17:14:48 GMT
Server: lighttpd/1.4.31

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
         "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>
  <title>500 - Internal Server Error</title>
 </head>
 <body>
  <h1>500 - Internal Server Error</h1>
 </body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T17:14:02.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "5f3959c010e8e7cc04b0c0f206935e90",
         "headermd5" : "ab1ae1e6edb1b1661e95856441dfe786",
         "title" : "500 - Internal Server Error"
      },
      "length" : "515"
   },
   "asn" : "AS4837",
   "ca" : "true",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 500 Internal Server Error\r\nContent-Type: text/html\r\nContent-Length: 369\r\nDate: Thu, 31 Oct 2024 17:14:48 GMT\r\nServer: lighttpd/1.4.31\r\n\r\n<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n         \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"en\" lang=\"en\">\n <head>\n  <title>500 - Internal Server Error</title>\n </head>\n <body>\n  <h1>500 - Internal Server Error</h1>\n </body>\n</html>\n",
   "datamd5" : "b5908e7bc3a9f4cfb46e7e3227a3e296",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "fingerprint" : {
      "md5" : "0b45805e45561a6faf46b2af85b3b3f1",
      "sha1" : "0014697f2a152d4ef4a3b151cd2ead0253875247",
      "sha256" : "ce35990416909c04aafb7dfdb494dcdcc0a3757a4978ca04da41ce4c01567026"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.229.26",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "lenovo",
      "country" : "lm",
      "organization" : "bjasljsgs",
      "organizationalunit" : "ch"
   },
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "443",
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.31",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : "1024"
   },
   "reason" : "Internal Server Error",
   "seen_date" : "2024-10-31",
   "serial" : "f5:8c:d4:b8:c4:2b:f2:4d",
   "signature" : {
      "algorithm" : "sha1WithRSAEncryption"
   },
   "source" : "sniffer",
   "status" : "500",
   "subject" : {
      "commonname" : "lenovo",
      "country" : "lm",
      "organization" : "bjasljsgs",
      "organizationalunit" : "ch"
   },
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2010-09-23T08:15:23Z",
      "notbefore" : "2009-09-23T08:15:23Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 42.180.212.134:23 (tcp/telnet) - last seen on 2024-10-31 at 16:45:45 UTC

    • IP
      42.180.212.134
      Network
      42.176.0.0/13
      Device

      <enterprise field>: device.class

      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      telnet
      Source
      sniffer

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      20b768611df52c33bc9494008b9a6c13 
    • \xff\xfd\x01\xff\xfd\x1f\xff\xfe!\xff\xfb\x01\xff\xfb\x03Username: 
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T16:45:45.000Z",
   "app" : {
      "length" : "25"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "\\xff\\xfd\\x01\\xff\\xfd\\x1f\\xff\\xfe!\\xff\\xfb\\x01\\xff\\xfb\\x03Username: ",
   "datamd5" : "20b768611df52c33bc9494008b9a6c13",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "mail.jl.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-LN",
      "organization" : "China Unicom Liaoning Province Network",
      "subnet" : "42.176.0.0/13"
   },
   "ip" : "42.180.212.134",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "23",
   "protocol" : "telnet",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subnet" : "42.176.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 139.170.141.179:443 (tcp/http/tls) - last seen on 2024-10-31 at 15:23:42 UTC

    • IP
      139.170.141.179
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      https://139.170.141.179/ 200

      HTTP Title
      Web user login
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http Cert expired http
      Source
      sniffer
    • Operating System
      Linux Linux sUse
      Product
      lighttpd lighttpd 1.4.31
      HTTP Component(s)
      PHP PHP 5.2.9
      CPE(s)

      <enterprise field>: cpe

      CVE(s)

      <enterprise field>: cve

    • Issuer Common Name
      lenovo
      Issuer Organization
      bjasljsgs
      Subject Organization
      bjasljsgs
      Subject Common Name
      lenovo
      SHA256 Fingerprint
      ce35990416909c04aafb7dfdb494dcdcc0a3757a4978ca04da41ce4c01567026
      Validity Not Before
      2009-09-23T08:15:23Z
      Validity Not After
      2010-09-23T08:15:23Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      212fb9518a192023b579006a4ab734e6
      HTTP Header MD5
      da5f1b026c6c6f42bb9178b96c9e928e
      HTTP Body MD5
      4a1fdd33f30b34da5300d095e9d46a11 
    • HTTP/1.1 200 OK
X-Powered-By: PHP/5.2.9
Set-Cookie: PHPSESSID=0f8c0c173df848f25e4d716d86a844b3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-cache,must-revalidate
Pragma: no-cache
Content-type: text/html
Transfer-Encoding: chunked
Date: Thu, 31 Oct 2024 15:24:20 GMT
Server: lighttpd/1.4.31

1410


<!-- saved from url=(0022)http://127.0.0.1:8099/ -->

<HTML><HEAD>

<TITLE>Web user login</TITLE>

<style type="text/css">

p {
	text-indent:50px;
	text-align: left;
	font-size: 200%;
}
</style>
<META http-equiv=Content-Type content="text/html; charset=utf-8">
<LINK href="css/login.css" type=text/css rel=stylesheet>


<script src="../js_script/function.js" language="javascript"></script>
<!--script src="../js_script/crypto.js" language="javascript"></script-->
<script src="../js_script/crypt/core-min.js" language="javascript"></script>
<script src="../js_script/crypt/enc-base64-min.js" language="javascript"></script>
<script src="../js_script/crypt/crypt.js" language="javascript"></script>
<script language=javascript>
var xmlHttp;
function GetXmlHttpObject()
{
	var xmlHttp=null;
	try
	{
		// Firefox, Opera 8.0+, Safari
		xmlHttp=new XMLHttpRequest();
	}
	catch (e)
	{
		// Internet Explorer
		try
		{
			xmlHttp=new ActiveXObject("Msxml2.XMLHTTP");
		}
		catch (e)
		{
			xmlHttp=new ActiveXObject("Microsoft.XMLHTTP");
		}
	}
	return xmlHttp;
}
function change_language(value)
{
	xmlHttp = GetXmlHttpObject();
	if(xmlHttp == null)
	{
		alert('Browser does not support HTTP Request !');
		return;
	}	
	if (value == 1)
	{		
		var url ='top_operation.php?top_parts=set_language_en';		
	}
	else
	{
		var url ='top_operation.php?top_parts=set_language_ru';
	}
	if(navigator.userAgent.indexOf("MSIE")>0) 
	{
		xmlHttp.open('GET',url,true);/*ie:异步方式*/
	}
	else
	{
		xmlHttp.open('GET',url,false);/*其它:同步方式*/
	}
	xmlHttp.send(null);
	location.reload(true);
}
function initcookie()
{
	var cpu_value =''; 
	var mem_value ='';
	
	SetCookie('last_cpu_list',cpu_value);
	SetCookie('last_mem_list', mem_value);	
}
function onBodyLoad()
{	
	initcookie();
	document.forms[0].user_name.focus();
}

function trim( str )
{
    str = str.replace(/^\s*/, "");
    str = str.replace(/\s*$/, "");
    return str;
}

function mySubmit(oForm)
{
    var sUserName = trim(oForm.user_name.value);
	oForm.user_name.value = sUserName;
	  try 
	        {  
	             if(typeof(eval(top.getNavigatorString))=="function")  
	             {
	               oForm.navigator.value = top.getNavigatorString();
	             }
	        }catch(e)
	         {
	         //alert("not function"); 
	        } 

	if ( sUserName=="" )
	{
	    alert("请输入用户名");
	    oForm.user_name.focus();
	    return false;
	}

    try{
        // save the language to cookie, and no expiress 
        document.cookie = "lang=" + oForm.lang.value + ";path=/";       
    }
	catch(e)
	{
	    // 不支持cookie, 不做处理
	}
	
	//var encrypt = oForm.password.value;	
	/*if(oForm.password.value == ""){
		alert("请输入密码");
		return false;
	}*/
	//oForm.password.value = encrypt(oForm.password.value);
	//oForm.encrypt.value = encrypt(oForm.password.value);
	oForm.encrypt.value = encrypt(oForm.password.value);
	oForm.password.value = "";
	//alert(encrypt); 
	return true;
}
</script>

<!--登陆时从服务器端获取SESSION[]变量,保存到本地JS Cookie-->
<script language="javascript">
		SetCookie('device_language', 'chinese');
	</script>


<META content="MSHTML 6.00.2900.5583" name=GENERATOR></HEAD>

<body onload=onBodyLoad()>
<div align="center">

	
<form name = "form1" onSubmit="return mySubmit(this);" method=post action="">


<div><table background="./images/raisecom/back.gif" width="980px;" height="350px;" align="center" cellpadding="0px" cellspacing="0px;"><tr><td width="50%"></td><td width="50%"><table width="100%"><tr height="25px"><td></td></tr><tr>
			<td align="right">用户名</td>
			<td>
				<input type="text" class="dl_text" name="user_name" maxlength="63" />
			</td>
		</tr> 
		<tr>
			<td align="right">密&nbsp;&nbsp;码</td>
			<td>
				<input type="password" class="dl_text" name="password" maxlength="38"/>
			</td>
		</tr>
		
		<tr>
			<td>
				<input type="hidden" class="dl_text" name="encrypt"/>
			</td>
		</tr> <tr height="8px"></tr><tr><td colspan="2" align="left" style="padding-left:100px;">                	

                    	<input type="submit" name="login" value="登录" class="an" />
                        <input type="reset" name="reset" value="重置" class="an" />
                        <input id="loid_register" type="button" name="register_loid" onclick="location.href='./tr069_auth_login.php'" value="LOID注册" class="an" style="display:none;" />
                        <input id="snmp_loid_register" type="button" name="snmp_register_loid" onclick="location.href='./snmp_auth_login.php'" value="SNMP注册" class="an" style="display:none;" />

                    </td>

                </tr> 


            </table>

        </td>

    </tr>

</table>


<INPUT id=navigator type=hidden name=navigator> 

<INPUT id=lang type=hidden value=1 name=lang>

 </div>

</form>
 </div>

<script language="javascript">
    var loid_register = document.getElementById("loid_register");
    var snmp_loid_register = document.getElementById("snmp_loid_register");
    snmp_loid_register.style.display = "";snmp_loid_register.disabled = false;</script>
</body>

</html>


0


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T15:23:42.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "snmp_auth_login.php",
            "tr069_auth_login.php"
         ],
         "ip" : [
            "127.0.0.1"
         ],
         "url" : [
            "http://127.0.0.1:8099/"
         ]
      },
      "http" : {
         "bodymd5" : "4a1fdd33f30b34da5300d095e9d46a11",
         "component" : [
            {
               "product" : "PHP",
               "productversion" : "5.2.9",
               "productvendor" : "PHP"
            }
         ],
         "headermd5" : "da5f1b026c6c6f42bb9178b96c9e928e",
         "title" : "Web user login"
      },
      "length" : "5471"
   },
   "asn" : "AS4837",
   "ca" : "true",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "cve" : "<enterprise field>: cve",
   "cvecount" : "<enterprise field>: cvecount",
   "data" : "HTTP/1.1 200 OK\r\nX-Powered-By: PHP/5.2.9\r\nSet-Cookie: PHPSESSID=0f8c0c173df848f25e4d716d86a844b3; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-cache,must-revalidate\r\nPragma: no-cache\r\nContent-type: text/html\r\nTransfer-Encoding: chunked\r\nDate: Thu, 31 Oct 2024 15:24:20 GMT\r\nServer: lighttpd/1.4.31\r\n\r\n1410\r\n\r\n\n<!-- saved from url=(0022)http://127.0.0.1:8099/ -->\n\n<HTML><HEAD>\n\n<TITLE>Web user login</TITLE>\n\n<style type=\"text/css\">\n\np {\n\ttext-indent:50px;\n\ttext-align: left;\n\tfont-size: 200%;\n}\n</style>\n<META http-equiv=Content-Type content=\"text/html; charset=utf-8\">\n<LINK href=\"css/login.css\" type=text/css rel=stylesheet>\n\n\n<script src=\"../js_script/function.js\" language=\"javascript\"></script>\n<!--script src=\"../js_script/crypto.js\" language=\"javascript\"></script-->\n<script src=\"../js_script/crypt/core-min.js\" language=\"javascript\"></script>\n<script src=\"../js_script/crypt/enc-base64-min.js\" language=\"javascript\"></script>\n<script src=\"../js_script/crypt/crypt.js\" language=\"javascript\"></script>\n<script language=javascript>\nvar xmlHttp;\nfunction GetXmlHttpObject()\n{\n\tvar xmlHttp=null;\n\ttry\n\t{\n\t\t// Firefox, Opera 8.0+, Safari\n\t\txmlHttp=new XMLHttpRequest();\n\t}\n\tcatch (e)\n\t{\n\t\t// Internet Explorer\n\t\ttry\n\t\t{\n\t\t\txmlHttp=new ActiveXObject(\"Msxml2.XMLHTTP\");\n\t\t}\n\t\tcatch (e)\n\t\t{\n\t\t\txmlHttp=new ActiveXObject(\"Microsoft.XMLHTTP\");\n\t\t}\n\t}\n\treturn xmlHttp;\n}\nfunction change_language(value)\n{\n\txmlHttp = GetXmlHttpObject();\n\tif(xmlHttp == null)\n\t{\n\t\talert('Browser does not support HTTP Request !');\n\t\treturn;\n\t}\t\n\tif (value == 1)\n\t{\t\t\n\t\tvar url ='top_operation.php?top_parts=set_language_en';\t\t\n\t}\n\telse\n\t{\n\t\tvar url ='top_operation.php?top_parts=set_language_ru';\n\t}\n\tif(navigator.userAgent.indexOf(\"MSIE\")>0) \n\t{\n\t\txmlHttp.open('GET',url,true);/*ie:\u5f02\u6b65\u65b9\u5f0f*/\n\t}\n\telse\n\t{\n\t\txmlHttp.open('GET',url,false);/*\u5176\u5b83:\u540c\u6b65\u65b9\u5f0f*/\n\t}\n\txmlHttp.send(null);\n\tlocation.reload(true);\n}\nfunction initcookie()\n{\n\tvar cpu_value =''; \n\tvar mem_value ='';\n\t\n\tSetCookie('last_cpu_list',cpu_value);\n\tSetCookie('last_mem_list', mem_value);\t\n}\nfunction onBodyLoad()\n{\t\n\tinitcookie();\n\tdocument.forms[0].user_name.focus();\n}\n\nfunction trim( str )\n{\n    str = str.replace(/^\\s*/, \"\");\n    str = str.replace(/\\s*$/, \"\");\n    return str;\n}\n\nfunction mySubmit(oForm)\n{\n    var sUserName = trim(oForm.user_name.value);\n\toForm.user_name.value = sUserName;\n\t  try \n\t        {  \n\t             if(typeof(eval(top.getNavigatorString))==\"function\")  \n\t             {\n\t               oForm.navigator.value = top.getNavigatorString();\n\t             }\n\t        }catch(e)\n\t         {\n\t         //alert(\"not function\"); \n\t        } \n\n\tif ( sUserName==\"\" )\n\t{\n\t    alert(\"\u8bf7\u8f93\u5165\u7528\u6237\u540d\");\n\t    oForm.user_name.focus();\n\t    return false;\n\t}\n\n    try{\n        // save the language to cookie, and no expiress \n        document.cookie = \"lang=\" + oForm.lang.value + \";path=/\";       \n    }\n\tcatch(e)\n\t{\n\t    // \u4e0d\u652f\u6301cookie, \u4e0d\u505a\u5904\u7406\n\t}\n\t\n\t//var encrypt = oForm.password.value;\t\n\t/*if(oForm.password.value == \"\"){\n\t\talert(\"\u8bf7\u8f93\u5165\u5bc6\u7801\");\n\t\treturn false;\n\t}*/\n\t//oForm.password.value = encrypt(oForm.password.value);\n\t//oForm.encrypt.value = encrypt(oForm.password.value);\n\toForm.encrypt.value = encrypt(oForm.password.value);\n\toForm.password.value = \"\";\n\t//alert(encrypt); \n\treturn true;\n}\n</script>\n\n<!--\u767b\u9646\u65f6\u4ece\u670d\u52a1\u5668\u7aef\u83b7\u53d6SESSION[]\u53d8\u91cf\uff0c\u4fdd\u5b58\u5230\u672c\u5730JS Cookie-->\n<script language=\"javascript\">\n\t\tSetCookie('device_language', 'chinese');\n\t</script>\n\n\n<META content=\"MSHTML 6.00.2900.5583\" name=GENERATOR></HEAD>\n\n<body onload=onBodyLoad()>\n<div align=\"center\">\n\n\t\n<form name = \"form1\" onSubmit=\"return mySubmit(this);\" method=post action=\"\">\n\n\n<div><table background=\"./images/raisecom/back.gif\" width=\"980px;\" height=\"350px;\" align=\"center\" cellpadding=\"0px\" cellspacing=\"0px;\"><tr><td width=\"50%\"></td><td width=\"50%\"><table width=\"100%\"><tr height=\"25px\"><td></td></tr><tr>\n\t\t\t<td align=\"right\">\u7528\u6237\u540d</td>\n\t\t\t<td>\n\t\t\t\t<input type=\"text\" class=\"dl_text\" name=\"user_name\" maxlength=\"63\" />\n\t\t\t</td>\n\t\t</tr> \n\t\t<tr>\n\t\t\t<td align=\"right\">\u5bc6&nbsp;&nbsp;\u7801</td>\n\t\t\t<td>\n\t\t\t\t<input type=\"password\" class=\"dl_text\" name=\"password\" maxlength=\"38\"/>\n\t\t\t</td>\n\t\t</tr>\n\t\t\n\t\t<tr>\n\t\t\t<td>\n\t\t\t\t<input type=\"hidden\" class=\"dl_text\" name=\"encrypt\"/>\n\t\t\t</td>\n\t\t</tr> <tr height=\"8px\"></tr><tr><td colspan=\"2\" align=\"left\" style=\"padding-left:100px;\">                \t\n\n                    \t<input type=\"submit\" name=\"login\" value=\"\u767b\u5f55\" class=\"an\" />\n                        <input type=\"reset\" name=\"reset\" value=\"\u91cd\u7f6e\" class=\"an\" />\n                        <input id=\"loid_register\" type=\"button\" name=\"register_loid\" onclick=\"location.href='./tr069_auth_login.php'\" value=\"LOID\u6ce8\u518c\" class=\"an\" style=\"display:none;\" />\n                        <input id=\"snmp_loid_register\" type=\"button\" name=\"snmp_register_loid\" onclick=\"location.href='./snmp_auth_login.php'\" value=\"SNMP\u6ce8\u518c\" class=\"an\" style=\"display:none;\" />\n\n                    </td>\n\n                </tr> \n\n\n            </table>\n\n        </td>\n\n    </tr>\n\n</table>\n\n\n<INPUT id=navigator type=hidden name=navigator> \n\n<INPUT id=lang type=hidden value=1 name=lang>\n\n </div>\n\n</form>\n </div>\n\n<script language=\"javascript\">\n    var loid_register = document.getElementById(\"loid_register\");\n    var snmp_loid_register = document.getElementById(\"snmp_loid_register\");\n    snmp_loid_register.style.display = \"\";snmp_loid_register.disabled = false;</script>\n</body>\n\n</html>\n\n\r\n0\r\n\r\n",
   "datamd5" : "212fb9518a192023b579006a4ab734e6",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "fingerprint" : {
      "md5" : "0b45805e45561a6faf46b2af85b3b3f1",
      "sha1" : "0014697f2a152d4ef4a3b151cd2ead0253875247",
      "sha256" : "ce35990416909c04aafb7dfdb494dcdcc0a3757a4978ca04da41ce4c01567026"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.141.179",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "lenovo",
      "country" : "lm",
      "organization" : "bjasljsgs",
      "organizationalunit" : "ch"
   },
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : "443",
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.31",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : "1024"
   },
   "reason" : "OK",
   "seen_date" : "2024-10-31",
   "serial" : "f5:8c:d4:b8:c4:2b:f2:4d",
   "signature" : {
      "algorithm" : "sha1WithRSAEncryption"
   },
   "source" : "sniffer",
   "status" : "200",
   "subject" : {
      "commonname" : "lenovo",
      "country" : "lm",
      "organization" : "bjasljsgs",
      "organizationalunit" : "ch"
   },
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2010-09-23T08:15:23Z",
      "notbefore" : "2009-09-23T08:15:23Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 139.170.141.179:23 (tcp/telnet) - last seen on 2024-10-31 at 15:23:42 UTC

    • IP
      139.170.141.179
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      telnet
      Source
      sniffer

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      20b768611df52c33bc9494008b9a6c13 
    • \xff\xfd\x01\xff\xfd\x1f\xff\xfe!\xff\xfb\x01\xff\xfb\x03Username: 
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T15:23:42.000Z",
   "app" : {
      "length" : "25"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "\\xff\\xfd\\x01\\xff\\xfd\\x1f\\xff\\xfe!\\xff\\xfb\\x01\\xff\\xfb\\x03Username: ",
   "datamd5" : "20b768611df52c33bc9494008b9a6c13",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.141.179",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "23",
   "protocol" : "telnet",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 139.170.141.179:80 (tcp/http) - last seen on 2024-10-31 at 15:23:42 UTC

    • IP
      139.170.141.179
      Network
      139.170.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux sUse
      URL

      http://139.170.141.179/ 200

      HTTP Title
      Web user login
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http
      Source
      sniffer
    • Operating System
      Linux Linux sUse
      Product
      lighttpd lighttpd 1.4.31
      HTTP Component(s)
      PHP PHP 5.2.9
      CPE(s)

      <enterprise field>: cpe

      CVE(s)

      <enterprise field>: cve

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      212fb9518a192023b579006a4ab734e6
      HTTP Header MD5
      da5f1b026c6c6f42bb9178b96c9e928e
      HTTP Body MD5
      4a1fdd33f30b34da5300d095e9d46a11 
    • HTTP/1.1 200 OK
X-Powered-By: PHP/5.2.9
Set-Cookie: PHPSESSID=85678cc1fb54c89ac49329f212ebb511; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-cache,must-revalidate
Pragma: no-cache
Content-type: text/html
Transfer-Encoding: chunked
Date: Thu, 31 Oct 2024 15:24:48 GMT
Server: lighttpd/1.4.31

1410


<!-- saved from url=(0022)http://127.0.0.1:8099/ -->

<HTML><HEAD>

<TITLE>Web user login</TITLE>

<style type="text/css">

p {
	text-indent:50px;
	text-align: left;
	font-size: 200%;
}
</style>
<META http-equiv=Content-Type content="text/html; charset=utf-8">
<LINK href="css/login.css" type=text/css rel=stylesheet>


<script src="../js_script/function.js" language="javascript"></script>
<!--script src="../js_script/crypto.js" language="javascript"></script-->
<script src="../js_script/crypt/core-min.js" language="javascript"></script>
<script src="../js_script/crypt/enc-base64-min.js" language="javascript"></script>
<script src="../js_script/crypt/crypt.js" language="javascript"></script>
<script language=javascript>
var xmlHttp;
function GetXmlHttpObject()
{
	var xmlHttp=null;
	try
	{
		// Firefox, Opera 8.0+, Safari
		xmlHttp=new XMLHttpRequest();
	}
	catch (e)
	{
		// Internet Explorer
		try
		{
			xmlHttp=new ActiveXObject("Msxml2.XMLHTTP");
		}
		catch (e)
		{
			xmlHttp=new ActiveXObject("Microsoft.XMLHTTP");
		}
	}
	return xmlHttp;
}
function change_language(value)
{
	xmlHttp = GetXmlHttpObject();
	if(xmlHttp == null)
	{
		alert('Browser does not support HTTP Request !');
		return;
	}	
	if (value == 1)
	{		
		var url ='top_operation.php?top_parts=set_language_en';		
	}
	else
	{
		var url ='top_operation.php?top_parts=set_language_ru';
	}
	if(navigator.userAgent.indexOf("MSIE")>0) 
	{
		xmlHttp.open('GET',url,true);/*ie:异步方式*/
	}
	else
	{
		xmlHttp.open('GET',url,false);/*其它:同步方式*/
	}
	xmlHttp.send(null);
	location.reload(true);
}
function initcookie()
{
	var cpu_value =''; 
	var mem_value ='';
	
	SetCookie('last_cpu_list',cpu_value);
	SetCookie('last_mem_list', mem_value);	
}
function onBodyLoad()
{	
	initcookie();
	document.forms[0].user_name.focus();
}

function trim( str )
{
    str = str.replace(/^\s*/, "");
    str = str.replace(/\s*$/, "");
    return str;
}

function mySubmit(oForm)
{
    var sUserName = trim(oForm.user_name.value);
	oForm.user_name.value = sUserName;
	  try 
	        {  
	             if(typeof(eval(top.getNavigatorString))=="function")  
	             {
	               oForm.navigator.value = top.getNavigatorString();
	             }
	        }catch(e)
	         {
	         //alert("not function"); 
	        } 

	if ( sUserName=="" )
	{
	    alert("请输入用户名");
	    oForm.user_name.focus();
	    return false;
	}

    try{
        // save the language to cookie, and no expiress 
        document.cookie = "lang=" + oForm.lang.value + ";path=/";       
    }
	catch(e)
	{
	    // 不支持cookie, 不做处理
	}
	
	//var encrypt = oForm.password.value;	
	/*if(oForm.password.value == ""){
		alert("请输入密码");
		return false;
	}*/
	//oForm.password.value = encrypt(oForm.password.value);
	//oForm.encrypt.value = encrypt(oForm.password.value);
	oForm.encrypt.value = encrypt(oForm.password.value);
	oForm.password.value = "";
	//alert(encrypt); 
	return true;
}
</script>

<!--登陆时从服务器端获取SESSION[]变量,保存到本地JS Cookie-->
<script language="javascript">
		SetCookie('device_language', 'chinese');
	</script>


<META content="MSHTML 6.00.2900.5583" name=GENERATOR></HEAD>

<body onload=onBodyLoad()>
<div align="center">

	
<form name = "form1" onSubmit="return mySubmit(this);" method=post action="">


<div><table background="./images/raisecom/back.gif" width="980px;" height="350px;" align="center" cellpadding="0px" cellspacing="0px;"><tr><td width="50%"></td><td width="50%"><table width="100%"><tr height="25px"><td></td></tr><tr>
			<td align="right">用户名</td>
			<td>
				<input type="text" class="dl_text" name="user_name" maxlength="63" />
			</td>
		</tr> 
		<tr>
			<td align="right">密&nbsp;&nbsp;码</td>
			<td>
				<input type="password" class="dl_text" name="password" maxlength="38"/>
			</td>
		</tr>
		
		<tr>
			<td>
				<input type="hidden" class="dl_text" name="encrypt"/>
			</td>
		</tr> <tr height="8px"></tr><tr><td colspan="2" align="left" style="padding-left:100px;">                	

                    	<input type="submit" name="login" value="登录" class="an" />
                        <input type="reset" name="reset" value="重置" class="an" />
                        <input id="loid_register" type="button" name="register_loid" onclick="location.href='./tr069_auth_login.php'" value="LOID注册" class="an" style="display:none;" />
                        <input id="snmp_loid_register" type="button" name="snmp_register_loid" onclick="location.href='./snmp_auth_login.php'" value="SNMP注册" class="an" style="display:none;" />

                    </td>

                </tr> 


            </table>

        </td>

    </tr>

</table>


<INPUT id=navigator type=hidden name=navigator> 

<INPUT id=lang type=hidden value=1 name=lang>

 </div>

</form>
 </div>

<script language="javascript">
    var loid_register = document.getElementById("loid_register");
    var snmp_loid_register = document.getElementById("snmp_loid_register");
    snmp_loid_register.style.display = "";snmp_loid_register.disabled = false;</script>
</body>

</html>


0


    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T15:23:42.000Z",
   "app" : {
      "extract" : {
         "file" : [
            "snmp_auth_login.php",
            "tr069_auth_login.php"
         ],
         "ip" : [
            "127.0.0.1"
         ],
         "url" : [
            "http://127.0.0.1:8099/"
         ]
      },
      "http" : {
         "bodymd5" : "4a1fdd33f30b34da5300d095e9d46a11",
         "component" : [
            {
               "productvendor" : "PHP",
               "productversion" : "5.2.9",
               "product" : "PHP"
            }
         ],
         "headermd5" : "da5f1b026c6c6f42bb9178b96c9e928e",
         "title" : "Web user login"
      },
      "length" : "5471"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "cve" : "<enterprise field>: cve",
   "cvecount" : "<enterprise field>: cvecount",
   "data" : "HTTP/1.1 200 OK\r\nX-Powered-By: PHP/5.2.9\r\nSet-Cookie: PHPSESSID=85678cc1fb54c89ac49329f212ebb511; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-cache,must-revalidate\r\nPragma: no-cache\r\nContent-type: text/html\r\nTransfer-Encoding: chunked\r\nDate: Thu, 31 Oct 2024 15:24:48 GMT\r\nServer: lighttpd/1.4.31\r\n\r\n1410\r\n\r\n\n<!-- saved from url=(0022)http://127.0.0.1:8099/ -->\n\n<HTML><HEAD>\n\n<TITLE>Web user login</TITLE>\n\n<style type=\"text/css\">\n\np {\n\ttext-indent:50px;\n\ttext-align: left;\n\tfont-size: 200%;\n}\n</style>\n<META http-equiv=Content-Type content=\"text/html; charset=utf-8\">\n<LINK href=\"css/login.css\" type=text/css rel=stylesheet>\n\n\n<script src=\"../js_script/function.js\" language=\"javascript\"></script>\n<!--script src=\"../js_script/crypto.js\" language=\"javascript\"></script-->\n<script src=\"../js_script/crypt/core-min.js\" language=\"javascript\"></script>\n<script src=\"../js_script/crypt/enc-base64-min.js\" language=\"javascript\"></script>\n<script src=\"../js_script/crypt/crypt.js\" language=\"javascript\"></script>\n<script language=javascript>\nvar xmlHttp;\nfunction GetXmlHttpObject()\n{\n\tvar xmlHttp=null;\n\ttry\n\t{\n\t\t// Firefox, Opera 8.0+, Safari\n\t\txmlHttp=new XMLHttpRequest();\n\t}\n\tcatch (e)\n\t{\n\t\t// Internet Explorer\n\t\ttry\n\t\t{\n\t\t\txmlHttp=new ActiveXObject(\"Msxml2.XMLHTTP\");\n\t\t}\n\t\tcatch (e)\n\t\t{\n\t\t\txmlHttp=new ActiveXObject(\"Microsoft.XMLHTTP\");\n\t\t}\n\t}\n\treturn xmlHttp;\n}\nfunction change_language(value)\n{\n\txmlHttp = GetXmlHttpObject();\n\tif(xmlHttp == null)\n\t{\n\t\talert('Browser does not support HTTP Request !');\n\t\treturn;\n\t}\t\n\tif (value == 1)\n\t{\t\t\n\t\tvar url ='top_operation.php?top_parts=set_language_en';\t\t\n\t}\n\telse\n\t{\n\t\tvar url ='top_operation.php?top_parts=set_language_ru';\n\t}\n\tif(navigator.userAgent.indexOf(\"MSIE\")>0) \n\t{\n\t\txmlHttp.open('GET',url,true);/*ie:\u5f02\u6b65\u65b9\u5f0f*/\n\t}\n\telse\n\t{\n\t\txmlHttp.open('GET',url,false);/*\u5176\u5b83:\u540c\u6b65\u65b9\u5f0f*/\n\t}\n\txmlHttp.send(null);\n\tlocation.reload(true);\n}\nfunction initcookie()\n{\n\tvar cpu_value =''; \n\tvar mem_value ='';\n\t\n\tSetCookie('last_cpu_list',cpu_value);\n\tSetCookie('last_mem_list', mem_value);\t\n}\nfunction onBodyLoad()\n{\t\n\tinitcookie();\n\tdocument.forms[0].user_name.focus();\n}\n\nfunction trim( str )\n{\n    str = str.replace(/^\\s*/, \"\");\n    str = str.replace(/\\s*$/, \"\");\n    return str;\n}\n\nfunction mySubmit(oForm)\n{\n    var sUserName = trim(oForm.user_name.value);\n\toForm.user_name.value = sUserName;\n\t  try \n\t        {  \n\t             if(typeof(eval(top.getNavigatorString))==\"function\")  \n\t             {\n\t               oForm.navigator.value = top.getNavigatorString();\n\t             }\n\t        }catch(e)\n\t         {\n\t         //alert(\"not function\"); \n\t        } \n\n\tif ( sUserName==\"\" )\n\t{\n\t    alert(\"\u8bf7\u8f93\u5165\u7528\u6237\u540d\");\n\t    oForm.user_name.focus();\n\t    return false;\n\t}\n\n    try{\n        // save the language to cookie, and no expiress \n        document.cookie = \"lang=\" + oForm.lang.value + \";path=/\";       \n    }\n\tcatch(e)\n\t{\n\t    // \u4e0d\u652f\u6301cookie, \u4e0d\u505a\u5904\u7406\n\t}\n\t\n\t//var encrypt = oForm.password.value;\t\n\t/*if(oForm.password.value == \"\"){\n\t\talert(\"\u8bf7\u8f93\u5165\u5bc6\u7801\");\n\t\treturn false;\n\t}*/\n\t//oForm.password.value = encrypt(oForm.password.value);\n\t//oForm.encrypt.value = encrypt(oForm.password.value);\n\toForm.encrypt.value = encrypt(oForm.password.value);\n\toForm.password.value = \"\";\n\t//alert(encrypt); \n\treturn true;\n}\n</script>\n\n<!--\u767b\u9646\u65f6\u4ece\u670d\u52a1\u5668\u7aef\u83b7\u53d6SESSION[]\u53d8\u91cf\uff0c\u4fdd\u5b58\u5230\u672c\u5730JS Cookie-->\n<script language=\"javascript\">\n\t\tSetCookie('device_language', 'chinese');\n\t</script>\n\n\n<META content=\"MSHTML 6.00.2900.5583\" name=GENERATOR></HEAD>\n\n<body onload=onBodyLoad()>\n<div align=\"center\">\n\n\t\n<form name = \"form1\" onSubmit=\"return mySubmit(this);\" method=post action=\"\">\n\n\n<div><table background=\"./images/raisecom/back.gif\" width=\"980px;\" height=\"350px;\" align=\"center\" cellpadding=\"0px\" cellspacing=\"0px;\"><tr><td width=\"50%\"></td><td width=\"50%\"><table width=\"100%\"><tr height=\"25px\"><td></td></tr><tr>\n\t\t\t<td align=\"right\">\u7528\u6237\u540d</td>\n\t\t\t<td>\n\t\t\t\t<input type=\"text\" class=\"dl_text\" name=\"user_name\" maxlength=\"63\" />\n\t\t\t</td>\n\t\t</tr> \n\t\t<tr>\n\t\t\t<td align=\"right\">\u5bc6&nbsp;&nbsp;\u7801</td>\n\t\t\t<td>\n\t\t\t\t<input type=\"password\" class=\"dl_text\" name=\"password\" maxlength=\"38\"/>\n\t\t\t</td>\n\t\t</tr>\n\t\t\n\t\t<tr>\n\t\t\t<td>\n\t\t\t\t<input type=\"hidden\" class=\"dl_text\" name=\"encrypt\"/>\n\t\t\t</td>\n\t\t</tr> <tr height=\"8px\"></tr><tr><td colspan=\"2\" align=\"left\" style=\"padding-left:100px;\">                \t\n\n                    \t<input type=\"submit\" name=\"login\" value=\"\u767b\u5f55\" class=\"an\" />\n                        <input type=\"reset\" name=\"reset\" value=\"\u91cd\u7f6e\" class=\"an\" />\n                        <input id=\"loid_register\" type=\"button\" name=\"register_loid\" onclick=\"location.href='./tr069_auth_login.php'\" value=\"LOID\u6ce8\u518c\" class=\"an\" style=\"display:none;\" />\n                        <input id=\"snmp_loid_register\" type=\"button\" name=\"snmp_register_loid\" onclick=\"location.href='./snmp_auth_login.php'\" value=\"SNMP\u6ce8\u518c\" class=\"an\" style=\"display:none;\" />\n\n                    </td>\n\n                </tr> \n\n\n            </table>\n\n        </td>\n\n    </tr>\n\n</table>\n\n\n<INPUT id=navigator type=hidden name=navigator> \n\n<INPUT id=lang type=hidden value=1 name=lang>\n\n </div>\n\n</form>\n </div>\n\n<script language=\"javascript\">\n    var loid_register = document.getElementById(\"loid_register\");\n    var snmp_loid_register = document.getElementById(\"snmp_loid_register\");\n    snmp_loid_register.style.display = \"\";snmp_loid_register.disabled = false;</script>\n</body>\n\n</html>\n\n\r\n0\r\n\r\n",
   "datamd5" : "212fb9518a192023b579006a4ab734e6",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-QH",
      "organization" : "China Unicom Qinghai Province Network",
      "subnet" : "139.170.0.0/16"
   },
   "ip" : "139.170.141.179",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux",
   "osdistribution" : "sUse",
   "osvendor" : "Linux",
   "port" : "80",
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.31",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "status" : "200",
   "subnet" : "139.170.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 115.56.98.249:21 (tcp/ftp) - last seen on 2024-10-31 at 14:19:02 UTC

    • IP
      115.56.98.249
      Network
      115.48.0.0/12
      Domain(s)
      ny.adsl
      Device

      <enterprise field>: device.class

      Reverse DNS
      hn.kd.ny.adsl
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      ftp
      Source
      sniffer

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fc05de5eab8aa1d9fbb7f18b921ac5e3 
    • 220 115.56.96.1

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T14:19:02.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "115.56.96.1"
         ]
      },
      "length" : "17"
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "220 115.56.96.1\r\n",
   "datamd5" : "fc05de5eab8aa1d9fbb7f18b921ac5e3",
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ny.adsl"
   ],
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "ny.adsl",
         "zz.ha.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-HA",
      "organization" : "CNC Group CHINA169 Henan Province Network",
      "subnet" : "115.56.96.0/19"
   },
   "host" : [
      "hn"
   ],
   "hostname" : [
      "hn.kd.ny.adsl"
   ],
   "ip" : "115.56.98.249",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "organization" : "CHINA UNICOM China169 Backbone",
   "port" : "21",
   "protocol" : "ftp",
   "reverse" : [
      "hn.kd.ny.adsl"
   ],
   "seen_date" : "2024-10-31",
   "source" : "sniffer",
   "subdomains" : [
      "kd.ny.adsl"
   ],
   "subnet" : "115.48.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "adsl"
   ],
   "tls" : "false",
   "transport" : "tcp"
}