HTTP/1.1 404 Not Found
Date: Thu, 03 Apr 2025 23:33:46 GMT
Server: Apache
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:46.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "62962daa1b19bbcc2db10b7bfd531ea6",
         "bodymmh3" : -780928015,
         "headermd5" : "76cdaa6fe148c67dca211f49fad8f9c5",
         "headermmh3" : 838719780,
         "title" : "404 Not Found"
      },
      "length" : 360
   },
   "asn" : "AS7738",
   "ca" : "false",
   "city" : "Salvador",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nDate: Thu, 03 Apr 2025 23:33:46 GMT\r\nServer: Apache\r\nContent-Length: 196\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p>The requested URL was not found on this server.</p>\n</body></html>\n",
   "datamd5" : "d3c05ced6a988d101069084bf16bdb8a",
   "datammh3" : 843908962,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "net.br"
   ],
   "fingerprint" : {
      "md5" : "07b8c11128cdfbbbad0902536947fb26",
      "sha1" : "3c438281d82c58a5fb2afcc6fac5aa46b37ac955",
      "sha256" : "bb2bf4103adaaf5730dc806e2a7f917cf2595d5794475a62335f3582b95c30ad"
   },
   "forward" : "187.76.146.6",
   "geolocus" : {
      "asn" : "AS7738",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "net.br",
         "vtal.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.041.460/0001-93",
      "organization" : "V tal",
      "subnet" : "187.76.0.0/14"
   },
   "host" : [
      "18776146006"
   ],
   "hostname" : [
      "187.76.146.6",
      "18776146006.telemar.net.br"
   ],
   "ip" : "187.76.146.6",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "FortiGate",
      "organization" : "Fortinet Ltd."
   },
   "latitude" : "-12.8665",
   "location" : "-12.8665,-38.4858",
   "longitude" : "-38.4858",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "V tal",
   "os" : "FortiOS",
   "osvendor" : "Fortinet",
   "port" : 9443,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "18776146006.telemar.net.br"
   ],
   "rtt" : 0.220193,
   "seen_date" : "2025-04-03",
   "serial" : "3e:08:1e:24",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan::redirect::1",
   "srcip" : "15.204.37.26",
   "srcport" : 38655,
   "status" : 404,
   "subdomains" : [
      "telemar.net.br"
   ],
   "subject" : {
      "commonname" : "FortiGate",
      "organization" : "Fortinet Ltd."
   },
   "subnet" : "187.76.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "br"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 48,
   "url" : "/ng",
   "validity" : {
      "notafter" : "2031-04-07T20:25:51Z",
      "notbefore" : "2021-04-06T20:25:51Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

HTTP/1.1 404 Not Found
Set-Cookie: AIROS_24A43CDEEA35=e898b9060b35f599e5bb666ae50aa558; Path=/; Version=1
Content-Type: text/html
Content-Length: 1027
Connection: close
Date: Mon, 27 Feb 2017 18:41:49 GMT
Server: lighttpd/1.4.39

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head><title>Error 404 - Page Not Found</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="Refresh" content="5; URL=/">
<link rel="shortcut icon" href="/210818.1929/favicon.ico" >
<link rel="stylesheet" href="/210818.1929/style.css" type="text/css">
</head>
<body>
<table class="maintable" cellpadding="0" align="center" cellspacing="0">
<tr><td height="60">&nbsp;</td></tr>
<tr><td class="centr">
<table border="0" cellpadding="0" cellspacing="0" class="linktable">
<tr><td>&nbsp;</td></tr>
<tr><th>Error 404 - Page Not Found</th></tr>
<tr>
  <td><br />
   <p>The page you attempted to access does not seem to exist.</p>
   <p>In a few seconds you will be redirected to the main page.
  If you are not redirected, then please click the following link:
  <a href="/">Main</a>
  </p>
  </td>
</tr>
<tr><td>&nbsp;</td></tr>
</table>
</td></tr>
</table>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:38.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "6dcab71e60f0242907940f0fcda69ea5",
         "imagemmh3" : -697231354,
         "length" : 1406,
         "url" : "/210818.1929/favicon.ico"
      },
      "http" : {
         "bodymd5" : "99bd6ce9760c067cd1529d7a39b71a2a",
         "bodymmh3" : 1662488423,
         "headermd5" : "264aaf36e7f3d499aa3af142812d0361",
         "headermmh3" : 2115908102,
         "title" : "Error 404 - Page Not Found"
      },
      "length" : 1265
   },
   "asn" : "AS3257",
   "ca" : "false",
   "city" : "Corciano",
   "country" : "IT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nSet-Cookie: AIROS_24A43CDEEA35=e898b9060b35f599e5bb666ae50aa558; Path=/; Version=1\r\nContent-Type: text/html\r\nContent-Length: 1027\r\nConnection: close\r\nDate: Mon, 27 Feb 2017 18:41:49 GMT\r\nServer: lighttpd/1.4.39\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">\n<html>\n<head><title>Error 404 - Page Not Found</title>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\n<meta http-equiv=\"Pragma\" content=\"no-cache\">\n<meta http-equiv=\"Refresh\" content=\"5; URL=/\">\n<link rel=\"shortcut icon\" href=\"/210818.1929/favicon.ico\" >\n<link rel=\"stylesheet\" href=\"/210818.1929/style.css\" type=\"text/css\">\n</head>\n<body>\n<table class=\"maintable\" cellpadding=\"0\" align=\"center\" cellspacing=\"0\">\n<tr><td height=\"60\">&nbsp;</td></tr>\n<tr><td class=\"centr\">\n<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" class=\"linktable\">\n<tr><td>&nbsp;</td></tr>\n<tr><th>Error 404 - Page Not Found</th></tr>\n<tr>\n  <td><br />\n   <p>The page you attempted to access does not seem to exist.</p>\n   <p>In a few seconds you will be redirected to the main page.\n  If you are not redirected, then please click the following link:\n  <a href=\"/\">Main</a>\n  </p>\n  </td>\n</tr>\n<tr><td>&nbsp;</td></tr>\n</table>\n</td></tr>\n</table>\n</body>\n</html>\n",
   "datamd5" : "c34183e9a48198ff91265664f2da817a",
   "datammh3" : 133552625,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "48d26f6a7d89ee16a3e0b1e106c0e87d",
      "sha1" : "43595b179d298729d9c4109b2c830d9925a422a0",
      "sha256" : "5b7803d484fdc376347f208aa08b31a7e880afdc22ed38a6226fd5f88c1cc849"
   },
   "forward" : "185.68.177.106",
   "geolocus" : {
      "asn" : "AS8928",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "IT",
      "countryname" : "Italy",
      "domain" : [
         "bluskynet.com"
      ],
      "isineu" : "true",
      "latitude" : "41.87194",
      "location" : "41.87194,12.56738",
      "longitude" : "12.56738",
      "netname" : "bluskysud",
      "organization" : "BLUSKY soc. coop.",
      "subnet" : "185.68.176.0/23"
   },
   "hostname" : [
      "185.68.177.106"
   ],
   "ip" : "185.68.177.106",
   "ipv6" : "false",
   "issuer" : {
      "city" : "San Jose",
      "commonname" : "UBNT-24:A4:3C:DE:EA:35",
      "country" : "US",
      "email" : "support@ubnt.com",
      "organization" : "Ubiquiti Networks Inc.",
      "organizationalunit" : "Technical Support"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.1316",
   "location" : "43.1316,12.2893",
   "longitude" : "12.2893",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTT Communications Inc.",
   "port" : 9443,
   "product" : "lighttpd",
   "productvendor" : "lighttpd",
   "productversion" : "1.4.39",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "rtt" : 0.189487,
   "seen_date" : "2025-04-03",
   "serial" : "-6:e1:b8:cc:0",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan::redirect::5",
   "srcip" : "51.81.144.34",
   "srcport" : 55491,
   "status" : 404,
   "subject" : {
      "altname" : [
         "UBNT-24:A4:3C:DE:EA:35"
      ],
      "city" : "San Jose",
      "commonname" : "UBNT-24:A4:3C:DE:EA:35",
      "country" : "US",
      "email" : "support@ubnt.com",
      "organization" : "Ubiquiti Networks Inc.",
      "organizationalunit" : "Technical Support"
   },
   "subnet" : "185.68.176.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 50,
   "url" : "/nocookies.html",
   "validity" : {
      "notafter" : "2037-12-31T23:00:00Z",
      "notbefore" : "2018-12-31T23:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

HTTP/1.0 200 OK
Date: Fri Apr  4 07:33:32 2025
Server: GoAhead-Webs
Pragma: no-cache
Cache-Control: no-cache
Pragma: no-cache
Cache-control: no-cache
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
	<head>
		<META HTTP-EQUIV="Pragma" CONTENT="no-cache" />
		<META HTTP-EQUIV="Cache-Control" CONTENT="no-cache" />
		<META HTTP-EQUIV="Expires" CONTENT="-1" />
		<script type="text/javascript" src="./js/common.js"></script>
		<meta http-equiv="Content-Type" content="application/xhtml+xml; charset=utf-8" />
<script type="text/javascript" src="/lang_pack/language_en.js"></script>
<link type="text/css" rel="stylesheet" href="/style/common.css">
<link type="text/css" rel="stylesheet" href="/style/style_CAMBIUM.css">

		<META HTTP-EQUIV="Content-Type" CONTENT="application/xhtml+xml; charset=UTF-8" />
		<script language="javascript">
			document.oncontextmenu=function(e){return false;}
			//<![CDATA[
			if (top.location != location)
			top.location.href = location.href;
			var basicPage = "";
			if(basicPage == "1")
				var product_name="";
			else
				var product_name="cnPilot R200P";
			document.title = product_name + title.login;
			var has_register = "0";
			var has_captcha="";
			function getFocus()
			{
				document.websLogin.user_name.focus();
				if(has_register == "1")
					u_hide_by_id("websRegister");

			}
			function displaySysInfo()
			{
				var hassysinfo="";
				if(hassysinfo == "1")
				{
					u_hide_by_id("sysinfotable");
					var has_ap = "1";
					if(has_ap == "1")
						u_hide_by_id("Channel_24g_tr");

					var has_second_ap = "0";
					if(has_second_ap == "1")
						u_hide_by_id("Channel_5g_tr");
				}

			}
			function OnSubmit(obj)
			{
					obj.action = "/goform/websLogin";
			}
			function makeRequest(url, content)
			{
				http_request = false;
				if (window.XMLHttpRequest)
					{ // Mozilla, Safari,...
						http_request = new XMLHttpRequest();
						if (http_request.overrideMimeType)
							{
								http_request.overrideMimeType('text/xml');
							}
					}
				else if (window.ActiveXObject)
					{ // IE
						try {
							http_request = new ActiveXObject("Msxml2.XMLHTTP");
						} catch (e) {
							try {
							http_request = new ActiveXObject("Microsoft.XMLHTTP");
							} catch (e) {}
						}
					}
				if (!http_request)
					{
						return false;
					}
				http_request.onreadystatechange = alertContents;
				http_request.open('POST', url, true);
				http_request.send(content);
			}

			function alertContents()
			{
				//alert("==>test readyState= "+http_request.readyState);
				if (http_request.readyState == 4)
					{
						//alert("==>test state= "+http_request.status);
						if (http_request.status == 200)
							{
								uploadLogField(http_request.responseText);
							}
					}
			}

			function uploadLogField(str)
			{
				document.getElementById("captchaimg_div").innerHTML="<img id=\"captchaimg\"width=160 height=48 src=\"data:image/png;base64," + str + "\">";
			}
			function reLoadCaptchaimg()
			{
				SetValueById("captcha", "");
				makeRequest("/goform/updateCaptchaimg", "n/a");
			}
			function CheckForceLogout(obj)
			{
				if(obj.checked == true)
					obj.value = "1";
				else
					obj.value = "0";
			}
            function check_ind()
			{
				var flag="0";
				if(flag == "1")
				{
					u_hide_by_id("change_pwd_ind");
				}
				else if(flag == "2")
				{
					u_hide_by_id("access_denied_ind");
				}
				else if(flag == "3")
				{
					u_hide_by_id("password_error");
				}
				else if(flag == "4")
				{
					u_hide_by_id("captcha_error");
				}
				else if(flag == "5")
				{
					u_hide_by_id("only_single_login");
					u_hide_by_id("forcelogout_tr");
				}
				else if(flag == "6")
				{
					u_hide_by_id("radius_not_available");
				}
				var is_lan_login="0";
				var has_password_prompt="";
				if(is_lan_login == "1" && has_password_prompt == "1")
				{
					u_hide_by_id("password_prompt_div");
				}
				var lte_scell_error="";
				var lte_connection_error="";
				var has_lte_url="";
				if(has_lte_url == "1")
				{
					if(lte_scell_error == "1")
					{
						u_hide_by_id("scell_lock_error");
					}
					if(lte_connection_error == "1")
					{
						u_hide_by_id("connection_error");
					}
				}
			}

			function build_captcha_block()
				{

					var str="";
					if(has_captcha == "1")
					{

						str="<table><tr class=\"setting\">";
						str+="<td width=\"25%\"> &nbsp;</td>"
						str+="<td width=\"18%\" align=\"left\">"+login.captcha+"</td>";
						str+="<td >";
						str+="<input type=\"text\" name=\"captcha\" id=\"captcha\" size=\"15\" maxlength=\"25\" value=\"\"/>&nbsp;&nbsp;<input id=\"login\" type=\"submit\" onclick=\"OnSubmit(this.form);\" value=\""+ login.Login +"\"/>";
						str+="</td>";
						str+="</tr>";
						str+="<tr class=\"imgtr\">";
						str+="<td width=\"25%\"> &nbsp;</td>";
						str+="<td colspan=2>";
						str+="<div style=\"display:inline\" id=\"captchaimg_div\"></div>";
						str+="&nbsp;<input id=\"captrefresh\" type=\"button\" onclick=\"reLoadCaptchaimg();\" value=\""+ button.ref +"\"/>";
						str+="</td>";
						str+="</tr></table><br /><br />";
						document.write(str);
						reLoadCaptchaimg();
					}
				}
			function extraDisplay()
			{
				var ext_mount_error="";
				if(ext_mount_error == "1")
				{
					u_hide_by_id("abc_layout_error_table");
				}
				else
					hide_by_id("abc_layout_error_table");
			}
			//]]>
		</script>
	</head>
<body class="gui" onload="getFocus();check_ind();displaySysInfo();extraDisplay()">
	<div id="wrapper">
		<div id="content">
			<div id="Loginheader">
				<div id="logodiv">
					<div id="logo">
						<div id="logostr">
						<script>
							var dev="cnPilot R200P";
							if(typeof(logo.str_) != "undefined")
								document.write(logo.str_ + "("+ dev + ")");
							else
								document.write("<font>" + dev+ "</font>");
						</script>
						</div>
					</div>
				</div>
			</div>
				<div id="menu2" style="height:3em">
							<div id="menuSub">
								<ul id="menuSubList"></ul>
							</div>
				</div>

			<div id="main">
				<div id="contents">
					<form name="websLogin" action="" method="POST">
						<table>
							<tr class="setting">
								<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(login.username)</script></td>
								<td >
									<input type="text" name="user_name" id="user_name" size="15" maxlength="25" value="">
								</td>
							</tr>
							<tr class="setting">
								<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(login.password)</script></td>
								<td >
									<input type="password" name="password" id="password" size="15" maxlength="25" value=""/>
								<script>
									if(has_captcha != "1")
										document.write("<input id=\"login\" type=\"submit\" onclick=\"OnSubmit(this.form);\" value=\""+ login.Login +"\"/>");
								</script></td>
							</tr>
							</table>
							<table id="abc_layout_error_table">
								<tr>
								<td width="25%"> &nbsp;</td>
								<td width="75%">
								<script>
								var abc_layout_enable="1";
									if(abc_layout_enable == "1")
									{
										var ext_mount_error="";
										if(ext_mount_error == "1")
										{
											document.write("<font color=red>"+status_basic.abcErrorWarning+"</font>");
										}
									}
								</script>
								</td>
							</tr>
							</table>
							<script>build_captcha_block();</script>
							<table>
							<tr class="setting" id="forcelogout_tr" style="display:none">
								<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(login.force)</script></td>
								<td >
									<input type="checkbox" name="forcelogout"  id="forcelogout" value="0" onClick="CheckForceLogout(this)">
								</td>
							</tr>
                            <tr id="change_pwd_ind"  style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.chang_password)</script></font></td>
							</tr>
							 <tr id="access_denied_ind" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.access_denied)</script></font></td>
							</tr>
							 <tr id="password_error" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.passerror)</script></font></td>
							</tr>
							<tr id="captcha_error" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.captchawrong)</script></font></td>
							</tr>
							<tr id="only_single_login" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.haslogin)</script></font></td>
							</tr>
							<tr id="radius_not_available" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.radius_not_available)</script></font></td>
							</tr>
						</table>
						<table>
							<tr id="scell_lock_error" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.scell_lock_error)</script></font></td>
							</tr>
							<tr id="connection_error" style="display:none">
							   <td width="25%"> &nbsp;</td>
							   <td colspan=2><font color="red"><script type="text/javascript">Capture(login.connection_error)</script></font></td>
							</tr>
						</table>
					</form>

					<form name="websRegister" action="/goform/websRegister" method="POST" style="display:none">
						<table>
							<tr class="setting">
								<td width="25%"> &nbsp;</td>
								<td width="18%" align="left">Account ID</td>
								<td >
									<input type="text" name="register_account" id="register_account" size="15" maxlength="25" value="">
								</td>
							</tr>
							<tr class="setting">
								<td width="25%"> &nbsp;</td>
								<td width="18%" align="left">Account PW</td>
								<td >
									<input type="password" name="register_password" id="register_password" size="15" maxlength="25" value=""/>
								<script>
									document.write("<input id=\"login\" type=\"submit\" value=\""+ "Register" +"\"/>");
								</script></td>
							</tr>
						</table>
					</form>
					<div id="password_prompt_div" style="display:none">
						<br />
						<br />
						<table>
							<script type="text/javascript">Capture(login.hyc_password_prompt)</script>
						</table>
					</div>
					<table id="sysinfotable" style="display:none" >
						<tr id="Wanip_tr" height="22px">
							<td width="25%"> &nbsp;</td>
							<td width="18%" align="left"><script type="text/javascript">Capture(status_basic.ip)</script></td>
							<td>172.31.31.2</td>
						</tr>
						<tr  id="dnspri_tr" height="22px">
							<td width="25%"> &nbsp;</td>
							<td width="18%" align="left"><script type="text/javascript">Capture(status_basic.dns_1)</script></td>
							<td>208.67.222.222</td>
						</tr>
						<tr  id="ConnectMode_tr" height="22px">
							<td width="25%"> &nbsp;</td>
							<td width="18%" align="left"><script type="text/javascript">Capture(status_basic.conn_type)</script></td>
							<td>Static</td>
						</tr>
						<tr  id="linkStatus_tr" height="22px">
							<td width="25%"> &nbsp;</td>
							<td width="18%" align="left"><script type="text/javascript">Capture(link_status.wan_port_status)</script></td>
							<td><script type="text/javascript">
											wan_link_status="100MFull";

											link_str=speedtostr(wan_link_status);
											document.write(link_str);
										</script>
							</td>
						</tr>
						<tr height="22px">
							<td width="25%"> &nbsp;</td>
							<td width="18%" align="left"><script type="text/javascript">Capture(status_basic.firmware_v)</script></td>
							<td >
								4.6-R16(201912271526)&nbsp;
								<script type="text/javascript">
									var showfwstatus="";
									var fw_update_status = "";
									if( showfwstatus == "1" ){
										if(fw_update_status == "1")
										 {
										 	document.write(firmware.checking_new_fw);
										 }
										 else if(fw_update_status =="2")
										 {
										 	document.write(firmware.downloading_new_fw);
										 }
										 else if(fw_update_status == "3")
										 {
										 	document.write("<font color=red>"+firmware.new_fw_ready+"</font>");
										 }
										 else if(fw_update_status == "4")
										 {
											document.write("<font color=blue>"+firmware.lastest_fw+"</font>");
										 }
									}
								</script>
							</td>
						</tr>
						<tr id="ElapsedTime_tr" height="22px">
							<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(status_basic.elapsed_time)</script></td>
								<td>1 <script>Capture(share.day)</script>, 10 <script>Capture(share.hours)</script>, 3 <script>Capture(share.mins)</script></td>
						</tr>
						<tr  id="Channel_24g_tr" style="display:none" height="22px">
							<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(login.wifi_channel)</script>(2.4GHz)</td>
								<td>
								<script type="text/javascript">
									var channel="cur_channel=1";
									var bw="20";
										document.write(channel.split('=')[1] + "&nbsp;(" + bw + "MHz)" );
								</script>
								</td>
						</tr>
						<tr  id="Channel_5g_tr" style="display:none" height="22px">
							<td width="25%"> &nbsp;</td>
								<td width="18%" align="left"><script type="text/javascript">Capture(login.wifi_channel)</script>(5GHz)</td>
								<td>
								<script type="text/javascript">
									var channel="cur_channel=1";
									var bw="20";
									document.write(channel.split('=')[1] + "&nbsp;(" + bw + "MHz)" );
								</script>
								</td>
						</tr>
					</table>
				</div>
			</div>
			<div id="floatKiller"></div>
					<script type="text/javascript">
						var vendorname = "0";
						var copyright = "";
						if(copyright != "")
							document.write("<div id=\"web_bottom\"><h2>" + copyright +"</h2></div>");
						else if(typeof(copy_right.CAMBIUM)!="undefined")
							document.write("<div id='web_bottom'><h2>" + copy_right.CAMBIUM + "</h2></div>");
					</script>
			</div>
		</div>
		</div>
	</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:33.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "ip" : [
            "172.31.31.2",
            "208.67.222.222"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "79e97e218468e22cde8e6a385ceab806",
         "bodymmh3" : -961143177,
         "headermd5" : "ce0fd9b65fd3ea7153e7bc1b024103a0",
         "headermmh3" : -234766065
      },
      "length" : 15294
   },
   "asn" : "AS3257",
   "ca" : "true",
   "city" : "Corciano",
   "country" : "IT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nDate: Fri Apr  4 07:33:32 2025\r\nServer: GoAhead-Webs\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nPragma: no-cache\r\nCache-control: no-cache\r\nContent-type: text/html\r\nConnection: close\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n\t<head>\r\n\t\t<META HTTP-EQUIV=\"Pragma\" CONTENT=\"no-cache\" />\r\n\t\t<META HTTP-EQUIV=\"Cache-Control\" CONTENT=\"no-cache\" />\r\n\t\t<META HTTP-EQUIV=\"Expires\" CONTENT=\"-1\" />\r\n\t\t<script type=\"text/javascript\" src=\"./js/common.js\"></script>\r\n\t\t<meta http-equiv=\"Content-Type\" content=\"application/xhtml+xml; charset=utf-8\" />\r\n<script type=\"text/javascript\" src=\"/lang_pack/language_en.js\"></script>\r\n<link type=\"text/css\" rel=\"stylesheet\" href=\"/style/common.css\">\r\n<link type=\"text/css\" rel=\"stylesheet\" href=\"/style/style_CAMBIUM.css\">\r\n\r\n\t\t<META HTTP-EQUIV=\"Content-Type\" CONTENT=\"application/xhtml+xml; charset=UTF-8\" />\r\n\t\t<script language=\"javascript\">\r\n\t\t\tdocument.oncontextmenu=function(e){return false;}\r\n\t\t\t//<![CDATA[\r\n\t\t\tif (top.location != location)\r\n\t\t\ttop.location.href = location.href;\r\n\t\t\tvar basicPage = \"\";\r\n\t\t\tif(basicPage == \"1\")\r\n\t\t\t\tvar product_name=\"\";\r\n\t\t\telse\r\n\t\t\t\tvar product_name=\"cnPilot R200P\";\r\n\t\t\tdocument.title = product_name + title.login;\r\n\t\t\tvar has_register = \"0\";\r\n\t\t\tvar has_captcha=\"\";\r\n\t\t\tfunction getFocus()\r\n\t\t\t{\r\n\t\t\t\tdocument.websLogin.user_name.focus();\r\n\t\t\t\tif(has_register == \"1\")\r\n\t\t\t\t\tu_hide_by_id(\"websRegister\");\r\n\t\t\t\t\t\r\n\t\t\t}\r\n\t\t\tfunction displaySysInfo()\r\n\t\t\t{\r\n\t\t\t\tvar hassysinfo=\"\";\r\n\t\t\t\tif(hassysinfo == \"1\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"sysinfotable\");\r\n\t\t\t\t\tvar has_ap = \"1\";\r\n\t\t\t\t\tif(has_ap == \"1\")\r\n\t\t\t\t\t\tu_hide_by_id(\"Channel_24g_tr\");\r\n\r\n\t\t\t\t\tvar has_second_ap = \"0\";\r\n\t\t\t\t\tif(has_second_ap == \"1\")\r\n\t\t\t\t\t\tu_hide_by_id(\"Channel_5g_tr\");\t\r\n\t\t\t\t}\r\n\t\t\t\t\t\r\n\t\t\t}\r\n\t\t\tfunction OnSubmit(obj)\r\n\t\t\t{\r\n\t\t\t\t\tobj.action = \"/goform/websLogin\";\r\n\t\t\t}\r\n\t\t\tfunction makeRequest(url, content) \r\n\t\t\t{\r\n\t\t\t\thttp_request = false;\r\n\t\t\t\tif (window.XMLHttpRequest) \r\n\t\t\t\t\t{ // Mozilla, Safari,...\r\n\t\t\t\t\t\thttp_request = new XMLHttpRequest();\r\n\t\t\t\t\t\tif (http_request.overrideMimeType) \r\n\t\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t\thttp_request.overrideMimeType('text/xml');\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t} \r\n\t\t\t\telse if (window.ActiveXObject) \r\n\t\t\t\t\t{ // IE\r\n\t\t\t\t\t\ttry {\r\n\t\t\t\t\t\t\thttp_request = new ActiveXObject(\"Msxml2.XMLHTTP\");\r\n\t\t\t\t\t\t} catch (e) {\r\n\t\t\t\t\t\t\ttry {\r\n\t\t\t\t\t\t\thttp_request = new ActiveXObject(\"Microsoft.XMLHTTP\");\r\n\t\t\t\t\t\t\t} catch (e) {}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\tif (!http_request) \r\n\t\t\t\t\t{\r\n\t\t\t\t\t\treturn false;\r\n\t\t\t\t\t}\r\n\t\t\t\thttp_request.onreadystatechange = alertContents;\r\n\t\t\t\thttp_request.open('POST', url, true);\r\n\t\t\t\thttp_request.send(content);\r\n\t\t\t}\r\n\t\t\r\n\t\t\tfunction alertContents()\r\n\t\t\t{\r\n\t\t\t\t//alert(\"==>test readyState= \"+http_request.readyState);\r\n\t\t\t\tif (http_request.readyState == 4) \r\n\t\t\t\t\t{\r\n\t\t\t\t\t\t//alert(\"==>test state= \"+http_request.status);\r\n\t\t\t\t\t\tif (http_request.status == 200) \r\n\t\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t\tuploadLogField(http_request.responseText);\r\n\t\t\t\t\t\t\t} \r\n\t\t\t\t\t}\r\n\t\t\t}\r\n\t\t\r\n\t\t\tfunction uploadLogField(str)\r\n\t\t\t{\r\n\t\t\t\tdocument.getElementById(\"captchaimg_div\").innerHTML=\"<img id=\\\"captchaimg\\\"width=160 height=48 src=\\\"data:image/png;base64,\" + str + \"\\\">\";\r\n\t\t\t}\r\n\t\t\tfunction reLoadCaptchaimg()\r\n\t\t\t{\r\n\t\t\t\tSetValueById(\"captcha\", \"\");\r\n\t\t\t\tmakeRequest(\"/goform/updateCaptchaimg\", \"n/a\");\r\n\t\t\t}\r\n\t\t\tfunction CheckForceLogout(obj)\r\n\t\t\t{\r\n\t\t\t\tif(obj.checked == true) \r\n\t\t\t\t\tobj.value = \"1\";\r\n\t\t\t\telse\r\n\t\t\t\t\tobj.value = \"0\";\r\n\t\t\t}\r\n            function check_ind()\r\n\t\t\t{\r\n\t\t\t\tvar flag=\"0\";\r\n\t\t\t\tif(flag == \"1\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"change_pwd_ind\");\r\n\t\t\t\t}\r\n\t\t\t\telse if(flag == \"2\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"access_denied_ind\");\r\n\t\t\t\t}\r\n\t\t\t\telse if(flag == \"3\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"password_error\");\r\n\t\t\t\t}\r\n\t\t\t\telse if(flag == \"4\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"captcha_error\");\r\n\t\t\t\t}\r\n\t\t\t\telse if(flag == \"5\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"only_single_login\");\r\n\t\t\t\t\tu_hide_by_id(\"forcelogout_tr\");\r\n\t\t\t\t}\r\n\t\t\t\telse if(flag == \"6\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"radius_not_available\");\r\n\t\t\t\t}\r\n\t\t\t\tvar is_lan_login=\"0\";\r\n\t\t\t\tvar has_password_prompt=\"\";\r\n\t\t\t\tif(is_lan_login == \"1\" && has_password_prompt == \"1\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"password_prompt_div\");\r\n\t\t\t\t}\r\n\t\t\t\tvar lte_scell_error=\"\";\r\n\t\t\t\tvar lte_connection_error=\"\";\r\n\t\t\t\tvar has_lte_url=\"\";\r\n\t\t\t\tif(has_lte_url == \"1\")\r\n\t\t\t\t{\r\n\t\t\t\t\tif(lte_scell_error == \"1\")\r\n\t\t\t\t\t{\r\n\t\t\t\t\t\tu_hide_by_id(\"scell_lock_error\");\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(lte_connection_error == \"1\")\r\n\t\t\t\t\t{\r\n\t\t\t\t\t\tu_hide_by_id(\"connection_error\");\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t} \r\n\r\n\t\t\tfunction build_captcha_block()\r\n\t\t\t\t{\r\n\t\t\t\t\r\n\t\t\t\t\tvar str=\"\";\r\n\t\t\t\t\tif(has_captcha == \"1\")\r\n\t\t\t\t\t{\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\tstr=\"<table><tr class=\\\"setting\\\">\";\r\n\t\t\t\t\t\tstr+=\"<td width=\\\"25%\\\"> &nbsp;</td>\"\r\n\t\t\t\t\t\tstr+=\"<td width=\\\"18%\\\" align=\\\"left\\\">\"+login.captcha+\"</td>\";\r\n\t\t\t\t\t\tstr+=\"<td >\";\r\n\t\t\t\t\t\tstr+=\"<input type=\\\"text\\\" name=\\\"captcha\\\" id=\\\"captcha\\\" size=\\\"15\\\" maxlength=\\\"25\\\" value=\\\"\\\"/>&nbsp;&nbsp;<input id=\\\"login\\\" type=\\\"submit\\\" onclick=\\\"OnSubmit(this.form);\\\" value=\\\"\"+ login.Login +\"\\\"/>\";\r\n\t\t\t\t\t\tstr+=\"</td>\";\r\n\t\t\t\t\t\tstr+=\"</tr>\";\r\n\t\t\t\t\t\tstr+=\"<tr class=\\\"imgtr\\\">\";\r\n\t\t\t\t\t\tstr+=\"<td width=\\\"25%\\\"> &nbsp;</td>\";\r\n\t\t\t\t\t\tstr+=\"<td colspan=2>\";\r\n\t\t\t\t\t\tstr+=\"<div style=\\\"display:inline\\\" id=\\\"captchaimg_div\\\"></div>\";\r\n\t\t\t\t\t\tstr+=\"&nbsp;<input id=\\\"captrefresh\\\" type=\\\"button\\\" onclick=\\\"reLoadCaptchaimg();\\\" value=\\\"\"+ button.ref +\"\\\"/>\";\r\n\t\t\t\t\t\tstr+=\"</td>\";\r\n\t\t\t\t\t\tstr+=\"</tr></table><br /><br />\";\r\n\t\t\t\t\t\tdocument.write(str);\r\n\t\t\t\t\t\treLoadCaptchaimg();\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\tfunction extraDisplay()\r\n\t\t\t{\r\n\t\t\t\tvar ext_mount_error=\"\";\r\n\t\t\t\tif(ext_mount_error == \"1\")\r\n\t\t\t\t{\r\n\t\t\t\t\tu_hide_by_id(\"abc_layout_error_table\");\r\n\t\t\t\t}\r\n\t\t\t\telse\r\n\t\t\t\t\thide_by_id(\"abc_layout_error_table\");\r\n\t\t\t}\r\n\t\t\t//]]>\r\n\t\t</script>\r\n\t</head>\r\n<body class=\"gui\" onload=\"getFocus();check_ind();displaySysInfo();extraDisplay()\">\r\n\t<div id=\"wrapper\">\r\n\t\t<div id=\"content\">\r\n\t\t\t<div id=\"Loginheader\">\r\n\t\t\t\t<div id=\"logodiv\">\r\n\t\t\t\t\t<div id=\"logo\">\r\n\t\t\t\t\t\t<div id=\"logostr\">\r\n\t\t\t\t\t\t<script>\r\n\t\t\t\t\t\t\tvar dev=\"cnPilot R200P\";\r\n\t\t\t\t\t\t\tif(typeof(logo.str_) != \"undefined\")\r\n\t\t\t\t\t\t\t\tdocument.write(logo.str_ + \"(\"+ dev + \")\");\r\n\t\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t\tdocument.write(\"<font>\" + dev+ \"</font>\");\r\n\t\t\t\t\t\t</script>\t\t\r\n\t\t\t\t\t\t</div>\r\n\t\t\t\t\t</div>\r\n\t\t\t\t</div>\r\n\t\t\t</div>\r\n\t\t\t\t<div id=\"menu2\" style=\"height:3em\">\r\n\t\t\t\t\t\t\t<div id=\"menuSub\">\r\n\t\t\t\t\t\t\t\t<ul id=\"menuSubList\"></ul>\r\n\t\t\t\t\t\t\t</div>\r\n\t\t\t\t</div>\r\n\t\t\t\r\n\t\t\t<div id=\"main\">\r\n\t\t\t\t<div id=\"contents\">\r\n\t\t\t\t\t<form name=\"websLogin\" action=\"\" method=\"POST\">\r\n\t\t\t\t\t\t<table>\r\n\t\t\t\t\t\t\t<tr class=\"setting\">\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(login.username)</script></td>\r\n\t\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t\t<input type=\"text\" name=\"user_name\" id=\"user_name\" size=\"15\" maxlength=\"25\" value=\"\">\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr class=\"setting\">\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(login.password)</script></td>\r\n\t\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t\t<input type=\"password\" name=\"password\" id=\"password\" size=\"15\" maxlength=\"25\" value=\"\"/>\r\n\t\t\t\t\t\t\t\t<script>\r\n\t\t\t\t\t\t\t\t\tif(has_captcha != \"1\")\r\n\t\t\t\t\t\t\t\t\t\tdocument.write(\"<input id=\\\"login\\\" type=\\\"submit\\\" onclick=\\\"OnSubmit(this.form);\\\" value=\\\"\"+ login.Login +\"\\\"/>\");\r\n\t\t\t\t\t\t\t\t</script></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t</table>\r\n\t\t\t\t\t\t\t<table id=\"abc_layout_error_table\">\r\n\t\t\t\t\t\t\t\t<tr>\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"75%\">\r\n\t\t\t\t\t\t\t\t<script>\r\n\t\t\t\t\t\t\t\tvar abc_layout_enable=\"1\";\r\n\t\t\t\t\t\t\t\t\tif(abc_layout_enable == \"1\")\r\n\t\t\t\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t\t\t\tvar ext_mount_error=\"\";\r\n\t\t\t\t\t\t\t\t\t\tif(ext_mount_error == \"1\")\r\n\t\t\t\t\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t\t\t\t\tdocument.write(\"<font color=red>\"+status_basic.abcErrorWarning+\"</font>\");\r\n\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t</script>\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t</table>\r\n\t\t\t\t\t\t\t<script>build_captcha_block();</script>\r\n\t\t\t\t\t\t\t<table>\r\n\t\t\t\t\t\t\t<tr class=\"setting\" id=\"forcelogout_tr\" style=\"display:none\">\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(login.force)</script></td>\r\n\t\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t\t<input type=\"checkbox\" name=\"forcelogout\"  id=\"forcelogout\" value=\"0\" onClick=\"CheckForceLogout(this)\">\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t\t</tr>\r\n                            <tr id=\"change_pwd_ind\"  style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.chang_password)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t <tr id=\"access_denied_ind\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.access_denied)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t <tr id=\"password_error\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.passerror)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr id=\"captcha_error\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.captchawrong)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr id=\"only_single_login\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.haslogin)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr id=\"radius_not_available\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.radius_not_available)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t</table>\r\n\t\t\t\t\t\t<table>\r\n\t\t\t\t\t\t\t<tr id=\"scell_lock_error\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.scell_lock_error)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr id=\"connection_error\" style=\"display:none\">\r\n\t\t\t\t\t\t\t   <td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t   <td colspan=2><font color=\"red\"><script type=\"text/javascript\">Capture(login.connection_error)</script></font></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t</table>\r\n\t\t\t\t\t</form>\r\n\t\t\t\t\t\r\n\t\t\t\t\t<form name=\"websRegister\" action=\"/goform/websRegister\" method=\"POST\" style=\"display:none\">\r\n\t\t\t\t\t\t<table>\r\n\t\t\t\t\t\t\t<tr class=\"setting\">\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\">Account ID</td>\r\n\t\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t\t<input type=\"text\" name=\"register_account\" id=\"register_account\" size=\"15\" maxlength=\"25\" value=\"\">\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t\t<tr class=\"setting\">\r\n\t\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\">Account PW</td>\r\n\t\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t\t<input type=\"password\" name=\"register_password\" id=\"register_password\" size=\"15\" maxlength=\"25\" value=\"\"/>\r\n\t\t\t\t\t\t\t\t<script>\r\n\t\t\t\t\t\t\t\t\tdocument.write(\"<input id=\\\"login\\\" type=\\\"submit\\\" value=\\\"\"+ \"Register\" +\"\\\"/>\");\r\n\t\t\t\t\t\t\t\t</script></td>\r\n\t\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t</table>\r\n\t\t\t\t\t</form>\r\n\t\t\t\t\t<div id=\"password_prompt_div\" style=\"display:none\">\r\n\t\t\t\t\t\t<br />\r\n\t\t\t\t\t\t<br />\r\n\t\t\t\t\t\t<table>\r\n\t\t\t\t\t\t\t<script type=\"text/javascript\">Capture(login.hyc_password_prompt)</script>\r\n\t\t\t\t\t\t</table>\r\n\t\t\t\t\t</div>\r\n\t\t\t\t\t<table id=\"sysinfotable\" style=\"display:none\" >\r\n\t\t\t\t\t\t<tr id=\"Wanip_tr\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(status_basic.ip)</script></td>\r\n\t\t\t\t\t\t\t<td>172.31.31.2</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr  id=\"dnspri_tr\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(status_basic.dns_1)</script></td>\r\n\t\t\t\t\t\t\t<td>208.67.222.222</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr  id=\"ConnectMode_tr\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(status_basic.conn_type)</script></td>\r\n\t\t\t\t\t\t\t<td>Static</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr  id=\"linkStatus_tr\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(link_status.wan_port_status)</script></td>\r\n\t\t\t\t\t\t\t<td><script type=\"text/javascript\">\r\n\t\t\t\t\t\t\t\t\t\t\twan_link_status=\"100MFull\";\r\n\t\t\t\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t\t\t\t\tlink_str=speedtostr(wan_link_status);\t\r\n\t\t\t\t\t\t\t\t\t\t\tdocument.write(link_str);\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t\t\t\t</script>\r\n\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(status_basic.firmware_v)</script></td>\r\n\t\t\t\t\t\t\t<td >\r\n\t\t\t\t\t\t\t\t4.6-R16(201912271526)&nbsp;\r\n\t\t\t\t\t\t\t\t<script type=\"text/javascript\">\r\n\t\t\t\t\t\t\t\t\tvar showfwstatus=\"\";\r\n\t\t\t\t\t\t\t\t\tvar fw_update_status = \"\";\r\n\t\t\t\t\t\t\t\t\tif( showfwstatus == \"1\" ){\r\n\t\t\t\t\t\t\t\t\t\tif(fw_update_status == \"1\")\r\n\t\t\t\t\t\t\t\t\t\t {\r\n\t\t\t\t\t\t\t\t\t\t \tdocument.write(firmware.checking_new_fw);\r\n\t\t\t\t\t\t\t\t\t\t }\r\n\t\t\t\t\t\t\t\t\t\t else if(fw_update_status ==\"2\")\r\n\t\t\t\t\t\t\t\t\t\t {\r\n\t\t\t\t\t\t\t\t\t\t \tdocument.write(firmware.downloading_new_fw);\r\n\t\t\t\t\t\t\t\t\t\t }\r\n\t\t\t\t\t\t\t\t\t\t else if(fw_update_status == \"3\")\r\n\t\t\t\t\t\t\t\t\t\t {\r\n\t\t\t\t\t\t\t\t\t\t \tdocument.write(\"<font color=red>\"+firmware.new_fw_ready+\"</font>\");\r\n\t\t\t\t\t\t\t\t\t\t }\r\n\t\t\t\t\t\t\t\t\t\t else if(fw_update_status == \"4\")\r\n\t\t\t\t\t\t\t\t\t\t {\r\n\t\t\t\t\t\t\t\t\t\t\tdocument.write(\"<font color=blue>\"+firmware.lastest_fw+\"</font>\");\r\n\t\t\t\t\t\t\t\t\t\t }\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t</script>\r\n\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr id=\"ElapsedTime_tr\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(status_basic.elapsed_time)</script></td>\r\n\t\t\t\t\t\t\t\t<td>1 <script>Capture(share.day)</script>, 10 <script>Capture(share.hours)</script>, 3 <script>Capture(share.mins)</script></td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr  id=\"Channel_24g_tr\" style=\"display:none\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(login.wifi_channel)</script>(2.4GHz)</td>\r\n\t\t\t\t\t\t\t\t<td>\r\n\t\t\t\t\t\t\t\t<script type=\"text/javascript\">\r\n\t\t\t\t\t\t\t\t\tvar channel=\"cur_channel=1\";\r\n\t\t\t\t\t\t\t\t\tvar bw=\"20\";\r\n\t\t\t\t\t\t\t\t\t\tdocument.write(channel.split('=')[1] + \"&nbsp;(\" + bw + \"MHz)\" );\r\n\t\t\t\t\t\t\t\t</script>\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t\t<tr  id=\"Channel_5g_tr\" style=\"display:none\" height=\"22px\">\r\n\t\t\t\t\t\t\t<td width=\"25%\"> &nbsp;</td>\r\n\t\t\t\t\t\t\t\t<td width=\"18%\" align=\"left\"><script type=\"text/javascript\">Capture(login.wifi_channel)</script>(5GHz)</td>\r\n\t\t\t\t\t\t\t\t<td>\r\n\t\t\t\t\t\t\t\t<script type=\"text/javascript\">\r\n\t\t\t\t\t\t\t\t\tvar channel=\"cur_channel=1\";\r\n\t\t\t\t\t\t\t\t\tvar bw=\"20\";\r\n\t\t\t\t\t\t\t\t\tdocument.write(channel.split('=')[1] + \"&nbsp;(\" + bw + \"MHz)\" );\r\n\t\t\t\t\t\t\t\t</script>\r\n\t\t\t\t\t\t\t\t</td>\r\n\t\t\t\t\t\t</tr>\r\n\t\t\t\t\t</table>\r\n\t\t\t\t</div>\r\n\t\t\t</div>\r\n\t\t\t<div id=\"floatKiller\"></div>\r\n\t\t\t\t\t<script type=\"text/javascript\">\r\n\t\t\t\t\t\tvar vendorname = \"0\";\r\n\t\t\t\t\t\tvar copyright = \"\";\r\n\t\t\t\t\t\tif(copyright != \"\")\r\n\t\t\t\t\t\t\tdocument.write(\"<div id=\\\"web_bottom\\\"><h2>\" + copyright +\"</h2></div>\");\r\n\t\t\t\t\t\telse if(typeof(copy_right.CAMBIUM)!=\"undefined\")\r\n\t\t\t\t\t\t\tdocument.write(\"<div id='web_bottom'><h2>\" + copy_right.CAMBIUM + \"</h2></div>\");\r\n\t\t\t\t\t</script>\r\n\t\t\t</div>\r\n\t\t</div>\r\n\t\t</div>\r\n\t</body>\r\n</html>\r\n",
   "datamd5" : "6627a818c96a39de53473cb0372087d0",
   "datammh3" : -1033125857,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "6dc5ec853c831ff39a6a377054a6bbbd",
      "sha1" : "12cdb1683740e9a0d3d3718de0027d66e52e05cf",
      "sha256" : "73083dc1dd1db4d5663b85587a58ea49a81743d6cafe308ded44c956d9406899"
   },
   "forward" : "185.68.179.213",
   "geolocus" : {
      "asn" : "AS8928",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "IT",
      "countryname" : "Italy",
      "domain" : [
         "bluskynet.com"
      ],
      "isineu" : "true",
      "latitude" : "41.87194",
      "location" : "41.87194,12.56738",
      "longitude" : "12.56738",
      "netname" : "bluskynord",
      "organization" : "BLUSKY soc. coop.",
      "subnet" : "185.68.178.0/23"
   },
   "hostname" : [
      "185.68.179.213"
   ],
   "ip" : "185.68.179.213",
   "ipv6" : "false",
   "issuer" : {
      "city" : "San Jose",
      "commonname" : "R200P",
      "country" : "US",
      "organization" : "Cambium Networks Inc",
      "organizationalunit" : "Products"
   },
   "latitude" : "43.1316",
   "location" : "43.1316,12.2893",
   "longitude" : "12.2893",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTT Communications Inc.",
   "port" : 9443,
   "product" : "GoAhead",
   "productvendor" : "Embedthis",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "rtt" : 0.055419,
   "seen_date" : "2025-04-03",
   "serial" : "a2:7e:07:76:31:56:b9:2b",
   "signature" : {
      "algorithm" : "sha1WithRSAEncryption"
   },
   "source" : "datascan::redirect::1",
   "srcip" : "91.196.152.80",
   "srcport" : 51487,
   "status" : 200,
   "subject" : {
      "city" : "San Jose",
      "commonname" : "R200P",
      "country" : "US",
      "organization" : "Cambium Networks Inc",
      "organizationalunit" : "Products"
   },
   "subnet" : "185.68.176.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 50,
   "url" : "/index.asp",
   "validity" : {
      "notafter" : "2035-03-31T13:31:18Z",
      "notbefore" : "2025-04-02T13:31:18Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

HTTP/1.1 200 OK
Server: Web Server
Cache-Control: no-store, max-age=0
Content-type: text/html; charset=UTF-8;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-src 'self' https://www.sonicwall.com/ https://securitynews.sonicwall.com/sonicwall-news/ https://blog.sonicwall.com/; default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: ws: wss:;
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: microphone=()
Content-Encoding: gzip

��V]o�6}߯�RH��H���X�
�Æ�a/{�)�fBK�D;q���]J���5t6L��^�/^j��o?������o�rq���������z�˝7q~���V�{��ۦ�H5�׵/o�m�7e��V�x�����Ž�N��͔��Fw��NMg׶^.��N/�l,�,zp�C�K�_|��~l�Ъ������ܣ�?��[�7q�_���}��a�V�QO[W�%v��l���)��Q��������O�m�?No�ӧ-��/����vZyۀ��q�m}�Kg�ul��� �8��,|��ޚC|ѥ�/\�n&^�nj}����׎et:���i�5��3\���;cD�ʳ�r��C��h׹�w��&n�v+��9[k١�G�6�H4��m�Ca��w�e�'ǚ�}ӆdM}zu���I� �qo?jX�O��c|8!#��A��wP��C���V����^w֜�9>������O���D~�½�S`b�jQ(E�T��+���F�SU��7Z�y�Ω�l�Q�v9���T��Mm��&"q�\�:�J�"��fB���E���J�?�K �y�j&��Dj�-r�̗�P�Oh��*t���)�7��d�HQU�
�uڕC��o&M�,5U�X%�"4�rF��%�G�j%���XAr*x��f�D݆����Ѕ����X](Q	*��H�4���c�S��+F�a���d��Lƫ)4�墲{d�R�-��y�dߗ��?�G���J��ćn�SX�ک����A��pY�\D�%Nz}3�G1����������TD9���/!c3L�0Q�-0�i4�aZd�L)γ4b�,�X�,b�
�3�g�t��48(#g�.��f�bV�(K�H
f9�"�Q�V5X	eq�9MхS�'�s�{�"<�aM �cN�<|}�^��4"��L���R���Z04���m�0ư7,z%8�c�$�������

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:20.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "sonicwall.com"
         ],
         "hostname" : [
            "blog.sonicwall.com",
            "securitynews.sonicwall.com",
            "www.sonicwall.com"
         ],
         "url" : [
            "https://blog.sonicwall.com/;",
            "https://securitynews.sonicwall.com/sonicwall-news/",
            "https://www.sonicwall.com/"
         ]
      },
      "http" : {
         "bodymd5" : "e0d30d94aeb9525cf0f95f8d271abe56",
         "bodymmh3" : -1193464445,
         "component" : [
            {
               "productvendor" : "SonicWall",
               "product" : "SonicWall"
            }
         ],
         "headermd5" : "238e5fe3ab561309370e50ab105712ed",
         "headermmh3" : -1290606687
      },
      "length" : 1604
   },
   "asn" : "AS4755",
   "city" : "Gurugram",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nServer: Web Server\r\nCache-Control: no-store, max-age=0\r\nContent-type: text/html; charset=UTF-8;\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-src 'self' https://www.sonicwall.com/ https://securitynews.sonicwall.com/sonicwall-news/ https://blog.sonicwall.com/; default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: ws: wss:;\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nPermissions-Policy: microphone=()\r\nContent-Encoding: gzip\r\n\r\n\u001f\ufffd\b\u0000\u0000\u0000\u0000\u0000\u0002\u0003\ufffdV]o\ufffd6\u0014}\u07ef\ufffdR\fH\u0000\ufffd\ufffdH\ufffd\ufffd\u001c\ufffdX\ufffd\r\ufffd\u00c6\ufffda/{\ufffd)\ufffdfBK\ufffdD;q\ufffd\ufffd\ufffd]J\ufffd\ufffd\ufffd5\u001at6L\ufffd\ufffd^\u001e\ufffd/^j\ufffd\ufffdo?\ufffd\ufffd\ufffd\ufffd\ufffd\ufffdo\ufffdrq\u001c\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\u0012\ufffd\ufffd\ufffdz\ufffd\u02dd7q~\ufffd\ufffd\ufffdV\ufffd{\ufffd\ufffd\u06e6\ufffdH5\ufffd\u05f5/o\ufffdm\ufffd7e\ufffd\ufffdV\ufffdx\u0000\ufffd\ufffd\ufffd\ufffd\ufffd\u017d\ufffdN\ufffd\ufffd\u0354\ufffd\ufffdFw\ufffd\ufffdN\u0004Mg\u05f6^.\ufffd\ufffdN/\ufffdl\u0000,\ufffd\u0011,zp\u001a\ufffdC\ufffdK\ufffd_|\ufffd\ufffd~\u0019l\ufffd\u042a\ufffd\u000e\ufffd\u0013\ufffd\ufffd\u000e\ufffd\ufffd\u0723\ufffd?\ufffd\ufffd[\ufffd7q\ufffd_\ufffd\ufffd\ufffd}\ufffd\ufffda\ufffdV\ufffdQO\u0013\u001d[W\ufffd%v\ufffd\ufffdl\ufffd\ufffd\ufffd)\ufffd\ufffdQ\ufffd\ufffd\ufffd\ufffd\u001c\ufffd\ufffd\ufffd\ufffdO\ufffd\u001bm\ufffd\u001b?No\ufffd\u04e7-\ufffd\ufffd/\ufffd\ufffd\ufffd\ufffdvZy\u06c0\ufffd\ufffdq\ufffdm}\ufffdKg\ufffdul\ufffd\ufffd\ufffd \ufffd8\ufffd\ufffd,|\ufffd\ufffd\u079aC|\f\u0465\ufffd\u0015/\\\ufffdn&^\u0004\u000b\ufffdnj}\ufffd\u0019\ufffd\ufffd\ufffd\u05ceet:\ufffd\ufffd\ufffdi\ufffd5\ufffd\ufffd\u00023\\\ufffd\ufffd\ufffd;cD\ufffd\u02b3\ufffdr\ufffd\ufffdC\ufffd\ufffdh\u05f9\ufffdw\ufffd\u000f\u0000\ufffd&n\ufffdv+\ufffd\b\ufffd\u001e9[k\u0661\ufffdG\ufffd6\ufffdH4\ufffd\ufffdm\ufffdCa\ufffd\ufffdw\ufffd\fe\ufffd\u001d'\u01da\ufffd}\u04c6dM}zu\ufffd\ufffd\ufffdI\ufffd \ufffdqo?jX\ufffdO\u0017\f\ufffd\ufffdc|8!\u0017\u0012#\ufffd\ufffdA\ufffd\ufffdwP\ufffd\u0011\ufffdC\ufffd\ufffd\ufffdV\ufffd\b\ufffd\ufffd\ufffd^w\u059c\ufffd9>\ufffd\ufffd\u000f\ufffd\ufffd\ufffd\ufffdO\ufffd\ufffd\ufffdD~\ufffd\u00bd\u001e\ufffdS`\u0010b\ufffdjQ(E\ufffdT\ufffd\ufffd+\ufffd\ufffd\ufffdF\ufffdSU\ufffd\ufffd7Z\ufffdy\ufffd\f\u0007\u0014\u03a9\ufffdl\ufffdQ\u0015\ufffdv9\ufffd\ufffd\ufffdT\ufffd\ufffdMm\ufffd\ufffd&\"q\ufffd\\\ufffd:\u0014\ufffdJ\u001e\ufffd\"\ufffd\ufffdfB\u0013\ufffd\ufffd\ufffdE\ufffd\ufffd\ufffdJ\ufffd\u001c?\ufffdK \u001e\u0018\ufffdy\ufffdj&\ufffd\ufffdDj\u0004\ufffd-r\ufffd\u0317\ufffdP\ufffdOh\u0003\ufffd\ufffd*\u0019t\ufffd\ufffd\ufffd)\ufffd7\ufffd\ufffdd\ufffdHQU\f\u001a\ufffd\n\ufffd\u0018u\u0695C\f\ufffd\ufffdo&\u001dM\ufffd,5U\ufffdX%\ufffd\"4\ufffdrF\ufffd\ufffd%\ufffdG\ufffdj%\ufffd\ufffd\ufffdXAr*x\ufffd\ufffdf\ufffdD\u0746\u0016\ufffd\ufffd\ufffd\ufffd\u0405\ufffd\ufffd\ufffd\ufffdX\u0011](Q\t*\ufffd\u0014\ufffdH\ufffd4\ufffd\ufffd\ufffdc\ufffdS\ufffd\u0013\ufffd+F\ufffda\ufffd\ufffd\ufffdd\ufffd\ufffdL\u01ab)4\ufffd\u58b2{d\ufffdR\ufffd-\ufffd\u0007\ufffdy\ufffdd\u07d7\ufffd\ufffd?\ufffdG\ufffd\ufffd\ufffdJ\u0002\u000b\ufffd\ufffd\u0107n\u0015\ufffdSX\ufffd\u06a9\ufffd\ufffd\ufffd\u001a\ufffdA\ufffd\ufffdpY\ufffd\u0012\\D\ufffd\u001b%Nz}\u001b3\ufffdG1\ufffd\ufffd\ufffd\u001e\u000b\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\u0014\ufffdTD9\ufffd\ufffd\ufffd/!c3L\u0018\ufffd\u00040Q\ufffd\u0018-0\ufffdi4\ufffdaZd\ufffdL)\u03b34b\u0002\u000b\ufffd,\ufffdX\ufffd,b\f\ufffd\b\n\u0016\ufffd3\u0016\ufffd\fg\ufffd\ft\ufffd\f\ufffd4\u000f8\u0017(#\u0004g\u0004\u0010\u0007\ufffd.\ufffd\ufffd\u0005f\ufffdbV\ufffd(K\ufffdH\u0001f9\ufffd\"\ufffdQ\ufffdV\u00005X\te\u0017q\ufffd9M\u0445\u000bS\u0004\ufffd'\ufffds\ufffd{\ufffd\"<\ufffdaM \ufffdcN\ufffd<|}\ufffd^\ufffd\ufffd4\u0004\"\ufffd\ufffdL\ufffd\ufffd\ufffdR\ufffd\ufffd\ufffdZ0\u00004\ufffd\u001e\ufffd\ufffdm\ufffd0\u01b07,z%8\ufffdc\ufffd$\ufffd\u001b\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\b\u0000\u0000",
   "datamd5" : "6dc4c9adbc34df80c55502051ac9a183",
   "datammh3" : 1013394113,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "vsnl.net.in"
   ],
   "fingerprint" : {
      "md5" : "156399cbf54a7e84216d4b6f4a8b10ae",
      "sha1" : "3c75af478c6addc5d522bda2410c29bd83bd8553",
      "sha256" : "f26c6050a12ce0520297c43868d190407c41a98494794d253624362d57acf6cb"
   },
   "forward" : "14.143.245.11",
   "geolocus" : {
      "asn" : "AS4755",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "tatacommunications.com",
         "vsnl.net.in"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "TATACOMM-IN",
      "organization" : "Tata Communications Limited",
      "subnet" : "14.140.0.0/14"
   },
   "host" : [
      14
   ],
   "hostname" : [
      "14.143.245.11",
      "14.143.245.11.static-banglore.vsnl.net.in"
   ],
   "ip" : "14.143.245.11",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Sunnyvale",
      "commonname" : "103.42.74.26",
      "country" : "US",
      "organization" : "HTTPS Management Certificate for SonicWALL (self-signed)",
      "organizationalunit" : "HTTPS Management Certificate for SonicWALL (self-signed)"
   },
   "latitude" : "28.4597",
   "location" : "28.4597,77.0282",
   "longitude" : "77.0282",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TATA Communications formerly VSNL is Leading ISP",
   "os" : "SonicOS",
   "osvendor" : "SonicWall",
   "port" : 9443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "14.143.245.11.static-banglore.vsnl.net.in"
   ],
   "rtt" : 0.268419,
   "seen_date" : "2025-04-03",
   "serial" : "3d:91:18:49:d5:f0:33:56:03:b1:0b:8f:48:fa:9d:3e:97:5d:0e:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan::redirect::1",
   "srcip" : "15.204.37.18",
   "srcport" : 41921,
   "status" : 200,
   "subdomains" : [
      "static-banglore.vsnl.net.in",
      "245.11.static-banglore.vsnl.net.in",
      "11.static-banglore.vsnl.net.in",
      "143.245.11.static-banglore.vsnl.net.in"
   ],
   "subject" : {
      "city" : "Sunnyvale",
      "commonname" : "103.42.74.26",
      "country" : "US",
      "organization" : "HTTPS Management Certificate for SonicWALL (self-signed)",
      "organizationalunit" : "HTTPS Management Certificate for SonicWALL (self-signed)"
   },
   "subnet" : "14.143.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.in"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 45,
   "url" : "/sonicui/7/login/",
   "validity" : {
      "notafter" : "2038-01-19T03:14:07Z",
      "notbefore" : "1970-01-01T00:00:01Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

<nodata>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:17.000Z",
   "alternativeip" : [
      "101.236.69.56",
      "103.37.152.3",
      "202.90.108.5",
      "2405:1480:1000:3:0:0:0:3"
   ],
   "app" : {
      "length" : 8
   },
   "asn" : "AS9808",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "domain" : [
      "dianping.com",
      "kcdnvip.com",
      "ks-cdn.com",
      "meituan.net",
      "mykeeta.net",
      "zservey.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "0fb69a3e73c9f2da97b53083bde951d2",
      "sha1" : "55e8684c2175653a17e5d7165ea340f99f592e27",
      "sha256" : "f0aa9e78e07f9e312bcb3e9e8e517b2780c9cef9b2f987711e65837875849bc9"
   },
   "geolocus" : {
      "asn" : "AS9808",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile",
      "subnet" : "120.192.0.0/10"
   },
   "host" : [
      "cntv",
      "download",
      "v"
   ],
   "hostname" : [
      "cntv.kcdnvip.com",
      "dianping.com",
      "download.ks-cdn.com",
      "meituan.net",
      "mykeeta.net",
      "v.kcdnvip.com",
      "zservey.net"
   ],
   "ip" : "120.240.79.24",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile Communications Group Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "rtt" : 4.315731,
   "seen_date" : "2025-04-03",
   "serial" : "b4:00:3f:ed:17:85:8d:3f:2a:a7:6a:e4:de:a3:ab:2c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "srcip" : "139.99.35.35",
   "srcport" : 55637,
   "subdomains" : [
      "cntv.kcdnvip.com",
      "download.ks-cdn.com",
      "v.kcdnvip.com"
   ],
   "subject" : {
      "altname" : [
         "download.ks-cdn.com",
         "*.cntv.kcdnvip.com",
         "*.dianping.com",
         "*.download.ks-cdn.com",
         "*.meituan.net",
         "*.mykeeta.net",
         "*.v.kcdnvip.com",
         "*.zservey.net",
         "cntv.kcdnvip.com",
         "dianping.com",
         "meituan.net",
         "mykeeta.net",
         "v.kcdnvip.com",
         "zservey.net"
      ],
      "commonname" : "download.ks-cdn.com"
   },
   "subnet" : "120.240.64.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 44,
   "validity" : {
      "notafter" : "2025-12-20T23:59:59Z",
      "notbefore" : "2024-11-19T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

HTTP/1.0 302 Found
Server: Web Server
Content-type: text/html;charset=UTF-8
X-Frame-Options: SAMEORIGIN
Location: https://<ip>:9443/sonicui/7/login/

<HTML>
<HEAD><TITLE>Page Redirecting</TITLE>
<META HTTP-EQUIV="Pragma" CONTENT="no-cache">
<META HTTP-EQUIV="Expires" CONTENT="-1">
</HEAD>
<BODY onLoad="location.href = 'https://<ip>:9443/sonicui/7/login/';">
This page is redirecting! Click <A HREF="https://<ip>:9443/sonicui/7/login/">here</A>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:15.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "3b16ff08d635c88dd0a2e58ac1083a1e",
         "bodymmh3" : 1302038046,
         "component" : [
            {
               "productvendor" : "SonicWall",
               "product" : "SonicWall"
            }
         ],
         "headermd5" : "efd21b0a7cbeda4a425f019cb05f7396",
         "headermmh3" : 976579932,
         "title" : "Page Redirecting"
      },
      "length" : 468
   },
   "asn" : "AS4755",
   "city" : "Gurugram",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Found\r\nServer: Web Server\r\nContent-type: text/html;charset=UTF-8\r\nX-Frame-Options: SAMEORIGIN\r\nLocation: https://<ip>:9443/sonicui/7/login/\r\n\r\n<HTML>\n<HEAD><TITLE>Page Redirecting</TITLE>\n<META HTTP-EQUIV=\"Pragma\" CONTENT=\"no-cache\">\n<META HTTP-EQUIV=\"Expires\" CONTENT=\"-1\">\n</HEAD>\n<BODY onLoad=\"location.href = 'https://<ip>:9443/sonicui/7/login/';\">\nThis page is redirecting! Click <A HREF=\"https://<ip>:9443/sonicui/7/login/\">here</A>\n</BODY>\n</HTML>\n",
   "datamd5" : "cfea78e065e39823c469de8712f215e4",
   "datammh3" : 2070584708,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "vsnl.net.in"
   ],
   "fingerprint" : {
      "md5" : "156399cbf54a7e84216d4b6f4a8b10ae",
      "sha1" : "3c75af478c6addc5d522bda2410c29bd83bd8553",
      "sha256" : "f26c6050a12ce0520297c43868d190407c41a98494794d253624362d57acf6cb"
   },
   "geolocus" : {
      "asn" : "AS4755",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "tatacommunications.com",
         "vsnl.net.in"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "TATACOMM-IN",
      "organization" : "Tata Communications Limited",
      "subnet" : "14.140.0.0/14"
   },
   "host" : [
      14
   ],
   "hostname" : [
      "14.143.245.11.static-banglore.vsnl.net.in"
   ],
   "ip" : "14.143.245.11",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Sunnyvale",
      "commonname" : "103.42.74.26",
      "country" : "US",
      "organization" : "HTTPS Management Certificate for SonicWALL (self-signed)",
      "organizationalunit" : "HTTPS Management Certificate for SonicWALL (self-signed)"
   },
   "latitude" : "28.4597",
   "location" : "28.4597,77.0282",
   "longitude" : "77.0282",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TATA Communications formerly VSNL is Leading ISP",
   "os" : "SonicOS",
   "osvendor" : "SonicWall",
   "port" : 9443,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Found",
   "reverse" : [
      "14.143.245.11.static-banglore.vsnl.net.in"
   ],
   "rtt" : 0.265427,
   "seen_date" : "2025-04-03",
   "serial" : "3d:91:18:49:d5:f0:33:56:03:b1:0b:8f:48:fa:9d:3e:97:5d:0e:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "sonicwall::mfa",
   "srcip" : "15.204.37.23",
   "srcport" : 43227,
   "status" : 302,
   "subdomains" : [
      "143.245.11.static-banglore.vsnl.net.in",
      "11.static-banglore.vsnl.net.in",
      "245.11.static-banglore.vsnl.net.in",
      "static-banglore.vsnl.net.in"
   ],
   "subject" : {
      "city" : "Sunnyvale",
      "commonname" : "103.42.74.26",
      "country" : "US",
      "organization" : "HTTPS Management Certificate for SonicWALL (self-signed)",
      "organizationalunit" : "HTTPS Management Certificate for SonicWALL (self-signed)"
   },
   "subnet" : "14.143.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.in"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 45,
   "url" : "/",
   "validity" : {
      "notafter" : "2038-01-19T03:14:07Z",
      "notbefore" : "1970-01-01T00:00:01Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

HTTP/1.1 200 OK
Date: Thu, 03 Apr 2025 17:00:57 GMT
Server: xxxxxxxx-xxxxx
Last-Modified: Wed, 03 Nov 2021 22:39:43 GMT
ETag: "83-61830faf"
Accept-Ranges: bytes
Content-Length: 131
Connection: close
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'; object-src 'self'; script-src 'self' https   'unsafe-eval' 'unsafe-inline' blob:;
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

<html><script type="text/javascript">
if (window!=top) top.location=window.location;top.location="/remote/login";
</script></html>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:33:11.000Z",
   "alternativeip" : [
      "203.162.0.78"
   ],
   "app" : {
      "favicon" : {
         "image" : "AAABAAEAEBAQAAAAAAAoAQAAFgAAACgAAAAQAAAAIAAAAAEABAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAACAAAAAgIAAgAAAAIAAgACAgAAAgICAAMDAwAAAAP8AAP8AAAD//wD/AAAA/wD/AP//AAD///8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJmAmZmAmYAJmYCZmYCZmJmZgJmZgJmZAAAAAAAAAACZmYAAAACZmZmZgAAAAJmZmZmAAAAAmZkAAAAAAAAAAJmZgJmZgJmZCZmAmZmAmZgAmYCZmYCZgAAAAAAAAAAAAAAAAAAAAAD//wAA//8AAP//AADEEQAAhBAAAAQQAAD//wAAB/AAAAfwAAAH8AAA//8AAAQQAACEEAAAxBEAAP//AAD//wAA",
         "imagemd5" : "e462005902f81094ab3de44e4381de19",
         "imagemmh3" : 945408572,
         "length" : 318,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "84a18166fde3ee7e7c974b8d1e7e21b4",
         "bodymmh3" : -1454941180,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Wed, 03 Nov 2021 22:39:43 GMT"
            },
            {
               "value" : "83-61830faf",
               "name" : "ETag"
            }
         ],
         "headermd5" : "b0d96c370950756d4be0970cc498963a",
         "headermmh3" : -1314574676
      },
      "length" : 637
   },
   "asn" : "AS45899",
   "ca" : "false",
   "city" : "Hanoi",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 03 Apr 2025 17:00:57 GMT\r\nServer: xxxxxxxx-xxxxx\r\nLast-Modified: Wed, 03 Nov 2021 22:39:43 GMT\r\nETag: \"83-61830faf\"\r\nAccept-Ranges: bytes\r\nContent-Length: 131\r\nConnection: close\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'; object-src 'self'; script-src 'self' https   'unsafe-eval' 'unsafe-inline' blob:;\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n<html><script type=\"text/javascript\">\nif (window!=top) top.location=window.location;top.location=\"/remote/login\";\n</script></html>\n",
   "datamd5" : "ab5b4ae4312b710ef3e4975473f89d7e",
   "datammh3" : 1826643348,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor",
      "productversion" : "<enterprise field>: device.productversion"
   },
   "domain" : [
      "vnpt.vn"
   ],
   "fingerprint" : {
      "md5" : "b355ee3dc070bdb83f4748497a8f27fc",
      "sha1" : "b4930dafdf68d54641b96fb91e07855601b73e1a",
      "sha256" : "4c43aa6f08471827d01b703a1e1f29ebd775a58481cdc770f12d2b3a3d3a8f05"
   },
   "geolocus" : {
      "asn" : "AS45899",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "vnnic.vn",
         "vnpt.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VNPT-VN",
      "organization" : "VNPT",
      "subnet" : "14.160.0.0/11"
   },
   "host" : [
      "static"
   ],
   "hostname" : [
      "static.vnpt.vn"
   ],
   "ip" : "14.176.231.149",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Sunnyvale",
      "commonname" : "support",
      "country" : "US",
      "email" : "support@fortinet.com",
      "organization" : "Fortinet",
      "organizationalunit" : "Certificate Authority"
   },
   "latitude" : "21.0184",
   "location" : "21.0184,105.8461",
   "longitude" : "105.8461",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "VNPT Corp",
   "os" : "FortiOS",
   "osvendor" : "Fortinet",
   "port" : 9443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "static.vnpt.vn"
   ],
   "rtt" : 0.249643,
   "seen_date" : "2025-04-03",
   "serial" : "0d:57:24",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "srcip" : "195.184.76.151",
   "srcport" : 40511,
   "status" : 200,
   "subject" : {
      "city" : "Sunnyvale",
      "commonname" : "FGT50E5618009852",
      "country" : "US",
      "email" : "support@fortinet.com",
      "organization" : "Fortinet",
      "organizationalunit" : "FortiGate"
   },
   "subnet" : "14.176.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "vn"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 50,
   "url" : "/",
   "validity" : {
      "notafter" : "2038-01-19T03:14:07Z",
      "notbefore" : "2018-04-03T01:55:43Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
ETag: 50sdsQdHfffcny3pns17pppgn99GrrQH
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15552000
Date: Thu, 03 Apr 2025 23:32:53 GMT
Connection: close
Transfer-Encoding: chunked

<!DOCTYPE html><html lang="en"><head>
    <meta charset="utf-8">
    <title>FortiGate</title>
    <base href="/">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="apple-itunes-app" content="app-id=1157004084, app-argument={{::host_addr}}">
    <link rel="apple-touch-icon" sizes="180x180" href="favicon/apple-touch-icon.png">
    <link rel="shortcut icon" type="image/x-icon" href="favicon/favicon.ico">
    <link rel="icon" type="image/png" sizes="32x32" href="favicon/favicon-32x32.png">
    <link rel="icon" type="image/png" sizes="16x16" href="favicon/favicon-16x16.png">
    <link rel="manifest" href="favicon/site.webmanifest">
    <link rel="mask-icon" href="favicon/safari-pinned-tab.svg" color="#d43527">
    <link rel="shortcut icon" href="favicon/favicon.ico">
    <meta name="msapplication-TileColor" content="#d43527">
    <meta name="msapplication-config" content="favicon/browserconfig.xml">

    <script>
      function login_redirect(error) {
        'use strict';
        var url = window.location.pathname + window.location.search + window.location.hash;
        if (error) {
          console.warn(`Redirecting to login page: ${error}`);
        } else {
          console.warn('Redirecting to login page');
        }
        window.location.href = '/logout?redir=' + encodeURIComponent(url);
      }

      window.__fosLoginRedirect__ = login_redirect;

      fetch('/api/v2/monitor/web-ui/extend-session').then(response => {
        if (!response.ok && response.status === 401) {
          login_redirect();
        }
      });
    </script>
  <style>@charset "UTF-8";body{font-family:Lato,Helvetica,Arial,sans-serif;font-weight:var(--nu-theme-dimension-normal-font-weight)}body{background-color:rgb(var(--nu-theme-override-text-background, var(--nu-theme-color-background-level0)));color:rgb(var(--nu-theme-on-color-background));font-size:15px!important}*{scrollbar-width:auto;scrollbar-color:rgb(var(--nu-theme-color-background-level5)) rgba(0,0,0,0)}*::-webkit-scrollbar{background-color:#0000;width:15px}*::-webkit-scrollbar-thumb{min-height:30px;border:3px solid rgba(0,0,0,0);background-clip:padding-box;border-radius:7px;background-color:rgb(var(--nu-theme-color-background-level5))}*::-webkit-scrollbar-button{width:0;height:0;display:none}*::-webkit-scrollbar-corner{background-color:#0000}@font-face{font-family:Lato;font-style:normal;font-weight:300;src:local("\263a\fe0e"),url(lato-light.woff2) format("woff2"),url(lato-light.woff) format("woff")}@font-face{font-family:Lato;font-style:normal;font-weight:400;src:local("\263a\fe0e"),url(lato-regular.woff2) format("woff2"),url(lato-regular.woff) format("woff")}@font-face{font-family:Lato;font-style:normal;font-weight:700;src:local("\263a\fe0e"),url(lato-bold.woff2) format("woff2"),url(lato-bold.woff) format("woff")}body{margin:0}</style><link rel="stylesheet" href="/static/styles.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="/static/styles.css"></noscript></head>
  <body>
    <fos-root></fos-root>
  <script src="/static/runtime.js" type="module"></script><script src="/static/polyfills.js" type="module"></script><script src="/static/main.js" type="module"></script>

</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:32:59.000Z",
   "app" : {
      "favicon" : {
         "url" : "/favicon/apple-touch-icon.png"
      },
      "http" : {
         "bodymd5" : "153fbd9416e16ae3a8cf4cc3d8ab0b4e",
         "bodymmh3" : -367397369,
         "header" : [
            {
               "name" : "ETag",
               "value" : "50sdsQdHfffcny3pns17pppgn99GrrQH"
            }
         ],
         "headermd5" : "a7296490c68aa523c5333b83e3a58401",
         "headermmh3" : 1008791891
      },
      "length" : 1594
   },
   "asn" : "AS36937",
   "ca" : "false",
   "city" : "Johannesburg",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-Encoding: gzip\r\nContent-Type: text/html\r\nETag: 50sdsQdHfffcny3pns17pppgn99GrrQH\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nX-XSS-Protection: 1; mode=block\r\nStrict-Transport-Security: max-age=15552000\r\nDate: Thu, 03 Apr 2025 23:32:53 GMT\r\nConnection: close\r\nTransfer-Encoding: chunked\r\n\r\n<!DOCTYPE html><html lang=\"en\"><head>\n    <meta charset=\"utf-8\">\n    <title>FortiGate</title>\n    <base href=\"/\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n    <meta name=\"apple-itunes-app\" content=\"app-id=1157004084, app-argument={{::host_addr}}\">\n    <link rel=\"apple-touch-icon\" sizes=\"180x180\" href=\"favicon/apple-touch-icon.png\">\n    <link rel=\"shortcut icon\" type=\"image/x-icon\" href=\"favicon/favicon.ico\">\n    <link rel=\"icon\" type=\"image/png\" sizes=\"32x32\" href=\"favicon/favicon-32x32.png\">\n    <link rel=\"icon\" type=\"image/png\" sizes=\"16x16\" href=\"favicon/favicon-16x16.png\">\n    <link rel=\"manifest\" href=\"favicon/site.webmanifest\">\n    <link rel=\"mask-icon\" href=\"favicon/safari-pinned-tab.svg\" color=\"#d43527\">\n    <link rel=\"shortcut icon\" href=\"favicon/favicon.ico\">\n    <meta name=\"msapplication-TileColor\" content=\"#d43527\">\n    <meta name=\"msapplication-config\" content=\"favicon/browserconfig.xml\">\n\n    <script>\n      function login_redirect(error) {\n        'use strict';\n        var url = window.location.pathname + window.location.search + window.location.hash;\n        if (error) {\n          console.warn(`Redirecting to login page: ${error}`);\n        } else {\n          console.warn('Redirecting to login page');\n        }\n        window.location.href = '/logout?redir=' + encodeURIComponent(url);\n      }\n\n      window.__fosLoginRedirect__ = login_redirect;\n\n      fetch('/api/v2/monitor/web-ui/extend-session').then(response => {\n        if (!response.ok && response.status === 401) {\n          login_redirect();\n        }\n      });\n    </script>\n  <style>@charset \"UTF-8\";body{font-family:Lato,Helvetica,Arial,sans-serif;font-weight:var(--nu-theme-dimension-normal-font-weight)}body{background-color:rgb(var(--nu-theme-override-text-background, var(--nu-theme-color-background-level0)));color:rgb(var(--nu-theme-on-color-background));font-size:15px!important}*{scrollbar-width:auto;scrollbar-color:rgb(var(--nu-theme-color-background-level5)) rgba(0,0,0,0)}*::-webkit-scrollbar{background-color:#0000;width:15px}*::-webkit-scrollbar-thumb{min-height:30px;border:3px solid rgba(0,0,0,0);background-clip:padding-box;border-radius:7px;background-color:rgb(var(--nu-theme-color-background-level5))}*::-webkit-scrollbar-button{width:0;height:0;display:none}*::-webkit-scrollbar-corner{background-color:#0000}@font-face{font-family:Lato;font-style:normal;font-weight:300;src:local(\"\\263a\\fe0e\"),url(lato-light.woff2) format(\"woff2\"),url(lato-light.woff) format(\"woff\")}@font-face{font-family:Lato;font-style:normal;font-weight:400;src:local(\"\\263a\\fe0e\"),url(lato-regular.woff2) format(\"woff2\"),url(lato-regular.woff) format(\"woff\")}@font-face{font-family:Lato;font-style:normal;font-weight:700;src:local(\"\\263a\\fe0e\"),url(lato-bold.woff2) format(\"woff2\"),url(lato-bold.woff) format(\"woff\")}body{margin:0}</style><link rel=\"stylesheet\" href=\"/static/styles.css\" media=\"print\" onload=\"this.media='all'\"><noscript><link rel=\"stylesheet\" href=\"/static/styles.css\"></noscript></head>\n  <body>\n    <fos-root></fos-root>\n  <script src=\"/static/runtime.js\" type=\"module\"></script><script src=\"/static/polyfills.js\" type=\"module\"></script><script src=\"/static/main.js\" type=\"module\"></script>\n\n</body></html>",
   "datamd5" : "fc511887c085468ddf422cca59f4b49c",
   "datammh3" : 1341698492,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "7fc30391d4d0f8d56565d1a3ae8708bd",
      "sha1" : "32512e64c382b3480e3ef78c6f6a57553c925333",
      "sha256" : "905c8e108667fa657dbf8e2c2c0f5fe4bb29567e697327de5ea1e86199a3190d"
   },
   "forward" : "41.160.101.59",
   "geolocus" : {
      "asn" : "AS36937",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "Neotel_GAU",
      "organization" : "Liquid Telecommunications Operations Limited",
      "subnet" : "41.160.0.0/14"
   },
   "hostname" : [
      "41.160.101.59"
   ],
   "ip" : "41.160.101.59",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "FortiGate",
      "organization" : "Fortinet Ltd."
   },
   "latitude" : "-26.2309",
   "location" : "-26.2309,28.0583",
   "longitude" : "28.0583",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Neotel",
   "os" : "FortiOS",
   "osvendor" : "Fortinet",
   "port" : 9443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "rtt" : 1.515709,
   "seen_date" : "2025-04-03",
   "serial" : "20:f3:2f:b2:6f:d9:54:2a",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan::redirect::1",
   "srcip" : "91.196.152.162",
   "srcport" : 60571,
   "status" : 200,
   "subject" : {
      "commonname" : "FortiGate",
      "organization" : "Fortinet Ltd."
   },
   "subnet" : "41.160.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 47,
   "url" : "/",
   "validity" : {
      "notafter" : "2026-08-26T10:29:10Z",
      "notbefore" : "2024-05-23T10:29:10Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

<nodata>

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:32:57.000Z",
   "alternativeip" : [
      "192.124.249.9"
   ],
   "app" : {
      "length" : 8
   },
   "asn" : "AS16509",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "domain" : [
      "amazonaws.com",
      "homewav.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "52191027e74b23242a62de55b834ff11",
      "sha1" : "987cae8086d4f731efae359947320090341c2750",
      "sha256" : "84b842a5c917c893006809a6bf9c22701da0643180b897946d60f5b38d9a5b68"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "3.128.0.0/9"
   },
   "host" : [
      "ec2-3-129-181-33"
   ],
   "hostname" : [
      "ec2-3-129-181-33.us-east-2.compute.amazonaws.com",
      "homewav.com"
   ],
   "ip" : "3.129.181.33",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Amazon RSA 2048 M02",
      "country" : "US",
      "organization" : "Amazon"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ec2-3-129-181-33.us-east-2.compute.amazonaws.com"
   ],
   "rtt" : 5.248065,
   "seen_date" : "2025-04-03",
   "serial" : "04:d2:a0:57:13:25:83:20:fa:1f:0f:6f:e7:74:b9:bd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "srcip" : "15.235.189.150",
   "srcport" : 36367,
   "subdomains" : [
      "candidate-facilities.homewav.com",
      "compute.amazonaws.com",
      "us-east-2.compute.amazonaws.com"
   ],
   "subject" : {
      "altname" : [
         "homewav.com",
         "*.homewav.com",
         "*.candidate-facilities.homewav.com"
      ],
      "commonname" : "homewav.com"
   },
   "subnet" : "3.128.0.0/10",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 237,
   "validity" : {
      "notafter" : "2026-02-04T23:59:59Z",
      "notbefore" : "2025-01-06T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 18729
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 25 Mar 2025 00:26:21 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Csrf-Token:
Date: Thu, 03 Apr 2025 23:32:35 GMT
Connection: close

<!doctype html><html lang="en" ng-app="portainer" ng-strict-di data-edition="CE"><head><meta charset="utf-8"/><title>Portainer</title><meta name="description" content=""/><meta name="author" content="Portainer.io"/><meta http-equiv="cache-control" content="no-cache"/><meta http-equiv="expires" content="0"/><meta http-equiv="pragma" content="no-cache"/><meta name="robots" content="noindex"/><base id="base"/><!--[if lt IE 9]>
      <script src="//html5shim.googlecode.com/svn/trunk/html5.js"></script>
    <![endif]--><link rel="apple-touch-icon" sizes="180x180" href="63a301f0574f1a696ce6.png"/><link rel="icon" type="image/png" sizes="32x32" href="2dcfc527d067d4ae3424.png"/><link rel="icon" type="image/png" sizes="16x16" href="112a479c093f4729251d.png"/><link rel="mask-icon" href="data:image/svg+xml;base64,PHN2ZyB2ZXJzaW9uPSIxIiB4bWxucz0iaHR0cDovL3

{
   "@category" : "datascan",
   "@timestamp" : "2025-04-03T23:32:50.000Z",
   "alternativeip" : [
      "104.21.63.140",
      "172.67.146.18",
      "2606:4700:3036:0:0:0:6815:3f8c",
      "2606:4700:3036:0:0:0:ac43:9212"
   ],
   "app" : {
      "favicon" : {
         "url" : "/63a301f0574f1a696ce6.png"
      },
      "http" : {
         "bodymd5" : "cef4e0b474b8abc10ec15716486525d6",
         "bodymmh3" : -1376262489,
         "description" : "Portainer.io",
         "header" : [
            {
               "value" : "Tue, 25 Mar 2025 00:26:21 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "fa97b91ebb2bcf86cd92eb0219ea2548",
         "headermmh3" : 626568449,
         "title" : "Portainer"
      },
      "length" : 1186
   },
   "asn" : "AS213850",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nCache-Control: no-cache, no-store, must-revalidate\r\nContent-Length: 18729\r\nContent-Type: text/html; charset=utf-8\r\nLast-Modified: Tue, 25 Mar 2025 00:26:21 GMT\r\nVary: Accept-Encoding\r\nX-Content-Type-Options: nosniff\r\nX-Csrf-Token: \r\nDate: Thu, 03 Apr 2025 23:32:35 GMT\r\nConnection: close\r\n\r\n<!doctype html><html lang=\"en\" ng-app=\"portainer\" ng-strict-di data-edition=\"CE\"><head><meta charset=\"utf-8\"/><title>Portainer</title><meta name=\"description\" content=\"\"/><meta name=\"author\" content=\"Portainer.io\"/><meta http-equiv=\"cache-control\" content=\"no-cache\"/><meta http-equiv=\"expires\" content=\"0\"/><meta http-equiv=\"pragma\" content=\"no-cache\"/><meta name=\"robots\" content=\"noindex\"/><base id=\"base\"/><!--[if lt IE 9]>\n      <script src=\"//html5shim.googlecode.com/svn/trunk/html5.js\"></script>\n    <![endif]--><link rel=\"apple-touch-icon\" sizes=\"180x180\" href=\"63a301f0574f1a696ce6.png\"/><link rel=\"icon\" type=\"image/png\" sizes=\"32x32\" href=\"2dcfc527d067d4ae3424.png\"/><link rel=\"icon\" type=\"image/png\" sizes=\"16x16\" href=\"112a479c093f4729251d.png\"/><link rel=\"mask-icon\" href=\"data:image/svg+xml;base64,PHN2ZyB2ZXJzaW9uPSIxIiB4bWxucz0iaHR0cDovL3",
   "datamd5" : "f3c9c901b72976a7432f1e878d6c8fca",
   "datammh3" : -925557004,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "exception-host.com"
   ],
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "69251154dab269fab8c7cff5f3b5dca4",
      "sha1" : "3b154538a9acd1c20ef3c580f957965caba9d3b8",
      "sha256" : "9f86754190c8bef351dec1408f788930ad1913805ef6aa8b8108a160fc3bcf2c"
   },
   "geolocus" : {
      "asn" : "AS213850",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "exception-host.com",
         "ghostnet.de"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "Exception-Host",
      "organization" : "Dominik Lau trading as Exception-Host",
      "subnet" : "5.231.31.0/24"
   },
   "hostname" : [
      "exception-host.com"
   ],
   "ip" : "5.231.31.68",
   "ipv6" : "false",
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "51.2993",
   "location" : "51.2993,9.4910",
   "longitude" : "9.4910",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Justin Harth",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "OK",
   "reverse" : [
      "exception-host.com"
   ],
   "rtt" : 4.943924,
   "seen_date" : "2025-04-03",
   "serial" : "9d:e2:e5:50:69:9a:52:6e:a7:5c:97:59:cb:59:83:48",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA256"
   },
   "source" : "datascan",
   "srcip" : "139.99.35.38",
   "srcport" : 50047,
   "status" : 200,
   "subnet" : "5.231.31.0/24",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "ttl" : 40,
   "url" : "/",
   "validity" : {
      "notafter" : "2030-04-01T06:28:12Z",
      "notbefore" : "2025-04-01T06:28:12Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}