80.241.221.21
As of: Dec 07, 2023 1:07pm UTC |
Latest
{
"ip": "80.241.221.21",
"services": [
{
"_decoded": "ftp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 08:57. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
"banner_hashes": [
"sha256:b62031ff326b7dcc18df3d6e966a221a89a48e1aac646dfc94732dac3d48d7aa"
],
"banner_hex": "3232302d2d2d2d2d2d2d2d2d2d2057656c636f6d6520746f20507572652d46545064205b707269767365705d205b544c535d202d2d2d2d2d2d2d2d2d2d0d0a3232302d596f75206172652075736572206e756d6265722031206f6620353020616c6c6f7765642e0d0a3232302d4c6f63616c2074696d65206973206e6f772030383a35372e2053657276657220706f72743a2032312e0d0a3232302d54686973206973206120707269766174652073797374656d202d204e6f20616e6f6e796d6f7573206c6f67696e0d0a3232302d4950763620636f6e6e656374696f6e732061726520616c736f2077656c636f6d65206f6e2074686973207365727665722e0d0a32323020596f752077696c6c20626520646973636f6e6e6563746564206166746572203135206d696e75746573206f6620696e61637469766974792e0d0a",
"certificate": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "FTPes",
"ftp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"auth_tls_response": "DISPLAY_UTF8"
},
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 08:57. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
"auth_tls_response": "234 AUTH TLS OK.\r\n",
"status_code": 220,
"status_meaning": "Service ready for new user.",
"implicit_tls": false
},
"labels": [
"file-sharing"
],
"observed_at": "2023-12-06T07:57:57.421190964Z",
"perspective_id": "PERSPECTIVE_ORANGE",
"port": 21,
"service_name": "FTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:pureftpd:pure\\-ftpd:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "PureFTPd",
"product": "Pure-FTPd",
"other": {
"family": "Pure-FTPd"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"product": "pureftpd",
"other": {
"config": "[privsep] [TLS"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.145.57",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"chain_fps_sha_256": [
"821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129"
],
"leaf_data": {
"names": [
"host.algaserver.com"
],
"subject_dn": "CN=host.algaserver.com",
"issuer_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "a5a9a593525a52cc04ca7735bfbfa67c62120d7f2c6360b759a5d03a092572c9",
"fingerprint": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"host.algaserver.com"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rXnHy4H3hOIij7PVsZwqJpyuKayiJUeKFIwVGFcoZrkSO4yLpRMUMABoxp1gZAY0fyMQk5RH3y9mLIq6tllEkezek7m2p8xrlIZ9Ff7X03kcNmXOqmda95jxpOkCI/aGtCh2VYzpCwE5ln3aWt/LvBrxjjQTNXRD8MyOwimMClxuS7oDwIIea6THw31BJhZpnf02t5rB0Ie4AKWJmvBssg9SbjM4hNjGdE0O/zTpRpTqiVE9+KrEGM4+ajqvgUK9IQp+nrMhQ60nFGtSMN6HojtZazzIGH0MfJmJ3TiwLghfwvw/8dmty+GJd5y9JoCNfytgY9Cos5WLtloORORlqw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "ce820ab91afb3cc49d3b7b36183e60be89375b84073f032356199bc6aa8c9497"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"subject_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority"
},
{
"fingerprint": "38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129",
"subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "0debd3853f330c574b05e0b6d882dc27"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "smtp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220-host.algaserver.com ESMTP Exim 4.96.2 #2 Wed, 06 Dec 2023 20:28:58 +0100 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
"banner_hashes": [
"sha256:5b7261b7ac7daf043a0c0fa44673757161a2341120d3306562418fad32144f11"
],
"banner_hex": "3232302d686f73742e616c67617365727665722e636f6d2045534d5450204578696d20342e39362e32202332205765642c2030362044656320323032332032303a32383a3538202b30313030200d0a3232302d576520646f206e6f7420617574686f72697a652074686520757365206f6620746869732073797374656d20746f207472616e73706f727420756e736f6c6963697465642c200d0a32323020616e642f6f722062756c6b20652d6d61696c2e0d0a",
"certificate": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "SMTP-STARTTLS",
"labels": [
"email"
],
"observed_at": "2023-12-06T19:28:58.244335951Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 25,
"service_name": "SMTP",
"smtp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"ehlo": "DISPLAY_UTF8",
"start_tls": "DISPLAY_UTF8"
},
"banner": "220-host.algaserver.com ESMTP Exim 4.96.2 #2 Wed, 06 Dec 2023 20:28:58 +0100 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
"ehlo": "250-host.algaserver.com Hello scanner-05.ch1.censys-scanner.com [162.142.125.214]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n",
"start_tls": "220 TLS go ahead\r\n"
},
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.96.2:*:*:*:*:*:*:*",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4.96.2",
"other": {
"family": "exim"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.214",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"chain_fps_sha_256": [
"821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129"
],
"leaf_data": {
"names": [
"host.algaserver.com"
],
"subject_dn": "CN=host.algaserver.com",
"issuer_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "a5a9a593525a52cc04ca7735bfbfa67c62120d7f2c6360b759a5d03a092572c9",
"fingerprint": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"host.algaserver.com"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rXnHy4H3hOIij7PVsZwqJpyuKayiJUeKFIwVGFcoZrkSO4yLpRMUMABoxp1gZAY0fyMQk5RH3y9mLIq6tllEkezek7m2p8xrlIZ9Ff7X03kcNmXOqmda95jxpOkCI/aGtCh2VYzpCwE5ln3aWt/LvBrxjjQTNXRD8MyOwimMClxuS7oDwIIea6THw31BJhZpnf02t5rB0Ie4AKWJmvBssg9SbjM4hNjGdE0O/zTpRpTqiVE9+KrEGM4+ajqvgUK9IQp+nrMhQ60nFGtSMN6HojtZazzIGH0MfJmJ3TiwLghfwvw/8dmty+GJd5y9JoCNfytgY9Cos5WLtloORORlqw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "ce820ab91afb3cc49d3b7b36183e60be89375b84073f032356199bc6aa8c9497"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"subject_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority"
},
{
"fingerprint": "38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129",
"subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "303951d4c50efb2e991652225a6f02b1"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Thursday, 07-Dec-2023 10:03:52 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\n",
"banner_hashes": [
"sha256:fa57b9002ed47bd7d4152360c5a7b486d5e7a3d37f4ef8a7212bcec5ebc65e5a"
],
"banner_hex": "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",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Connection": [
"close"
],
"_encoding": {
"Connection": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8"
},
"Transfer_Encoding": [
"chunked"
],
"Last_Modified": [
"Thursday, 07-Dec-2023 10:03:52 GMT"
],
"cf_edge_cache": [
"no-cache"
],
"Content_Type": [
"text/html"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Date": [
"<REDACTED>"
],
"Server": [
"imunify360-webshield/1.21"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>One moment, please...</title>",
"<meta charset=\"utf-8\">",
"<meta name=\"robots\" content=\"noindex, nofollow\">"
],
"body_size": 1296,
"body": "<!doctype html>\n<html>\n<head>\n<meta charset=\"utf-8\">\n<meta name=\"robots\" content=\"noindex, nofollow\">\n<title>One moment, please...</title>\n<style>\nbody {\n background: #F6F7F8;\n color: #303131;\n font-family: sans-serif;\n margin-top: 45vh;\n text-align: center;\n}\n</style>\n</head>\n<body>\n<h1>Please wait while your request is being verified...</h1>\n<form id=\"wsidchk-form\" style=\"display:none;\" action=\"/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f\" method=\"get\">\n<input type=\"hidden\" id=\"wsidchk\" name=\"wsidchk\"/>\n</form>\n<script>\n(function(){\n var west=+((+!+[])+(+!+[]+!![]+!![]+!![]+!![]+!![]+[])+(+!+[]+!![]+!![]+!![]+!![]+!![]+!![])+(+!+[]+!![]+!![]+!![]+!![]+!![]+!![]+[])+(+![])+(+!+[]+!![]+!![]+!![]+!![]+!![]+[])+(+![])+(+!+[]+[])),\n east=+((+!+[])+(+!+[]+[])+(+![])+(+!+[]+!![]+!![]+[])+(+!+[]+!![]+!![]+!![]+!![]+!![])+(+!+[]+[])+(+!+[]+!![]+!![]+!![])+(+![]+[])),\n x=function(){try{return !!window.addEventListener;}catch(e){return !!0;} },\n y=function(y,z){x() ? document.addEventListener(\"DOMContentLoaded\",y,z) : document.attachEvent(\"onreadystatechange\",y);};\n y(function(){\n document.getElementById('wsidchk').value = west + east;\n document.getElementById('wsidchk-form').submit();\n }, false);\n})();\n</script>\n</body>\n</html>",
"favicons": [
{
"size": 1414,
"name": "http://80.241.221.21/favicon.ico",
"md5_hash": "e0f4ce6ad4772fdcded89161076db462"
}
],
"body_hashes": [
"sha256:9a0e5f0f77246de9937fb15bb040a9e493de6f6c922b34528edb13e9f6d8d8f6",
"sha1:d59e786d6a4103a682fa4adc26505e562b305d1f"
],
"body_hash": "sha1:d59e786d6a4103a682fa4adc26505e562b305d1f",
"html_title": "One moment, please..."
},
"supports_http2": false
},
"observed_at": "2023-12-07T10:03:52.168118646Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 80,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.52",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "pop3",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "+OK Dovecot ready.\r\n",
"banner_hashes": [
"sha256:095c6dbf7d6290d9c885271a78f82e11a7df7c9a8733d4e13236b47608e527c4"
],
"banner_hex": "2b4f4b20446f7665636f742072656164792e0d0a",
"certificate": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "POP3S",
"labels": [
"email"
],
"observed_at": "2023-12-06T06:08:43.577661210Z",
"perspective_id": "PERSPECTIVE_TATA",
"pop3": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"start_tls": "DISPLAY_UTF8"
},
"banner": "+OK Dovecot ready.\r\n",
"start_tls": "+OK Begin TLS negotiation now.\r\n"
},
"port": 110,
"service_name": "POP3",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Dovecot",
"product": "Dovecot",
"other": {
"family": "Dovecot"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.49",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"chain_fps_sha_256": [
"821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129"
],
"leaf_data": {
"names": [
"host.algaserver.com"
],
"subject_dn": "CN=host.algaserver.com",
"issuer_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "a5a9a593525a52cc04ca7735bfbfa67c62120d7f2c6360b759a5d03a092572c9",
"fingerprint": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"host.algaserver.com"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rXnHy4H3hOIij7PVsZwqJpyuKayiJUeKFIwVGFcoZrkSO4yLpRMUMABoxp1gZAY0fyMQk5RH3y9mLIq6tllEkezek7m2p8xrlIZ9Ff7X03kcNmXOqmda95jxpOkCI/aGtCh2VYzpCwE5ln3aWt/LvBrxjjQTNXRD8MyOwimMClxuS7oDwIIea6THw31BJhZpnf02t5rB0Ie4AKWJmvBssg9SbjM4hNjGdE0O/zTpRpTqiVE9+KrEGM4+ajqvgUK9IQp+nrMhQ60nFGtSMN6HojtZazzIGH0MfJmJ3TiwLghfwvw/8dmty+GJd5y9JoCNfytgY9Cos5WLtloORORlqw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "ce820ab91afb3cc49d3b7b36183e60be89375b84073f032356199bc6aa8c9497"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"subject_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority"
},
{
"fingerprint": "38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129",
"subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "303951d4c50efb2e991652225a6f02b1"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Thu, 07-Dec-23 05:47:57 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Thursday, 07-Dec-2023 04:47:57 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:e63166ff38533246886a9dade7618286852d5b8a9813f80702cf511b0e9565f5"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Date": [
"<REDACTED>"
],
"_encoding": {
"Date": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8"
},
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Server": [
"imunify360-webshield/1.21"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Thu, 07-Dec-23 05:47:57 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"cf_edge_cache": [
"no-cache"
],
"Connection": [
"close"
],
"Last_Modified": [
"Thursday, 07-Dec-2023 04:47:57 GMT"
],
"Content_Type": [
"text/html"
],
"Transfer_Encoding": [
"chunked"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20383,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.94.138.49</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LcLaPwUAAAAAOLoPlKRFZnQW2QNKjKN2v1ReY2S\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.94.138.49 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:a0aae0416a9f10dde5406fd44b0e5b835806926615e350b7e887e06d8e0266e4",
"sha1:f6aa52bcb079cfb462b34199f88cbc9287fd65de"
],
"body_hash": "sha1:f6aa52bcb079cfb462b34199f88cbc9287fd65de",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-12-06T07:17:53.822948352Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-07T04:47:56.285772181Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 443,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.49",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "pop3",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "+OK Dovecot ready.\r\n",
"banner_hashes": [
"sha256:095c6dbf7d6290d9c885271a78f82e11a7df7c9a8733d4e13236b47608e527c4"
],
"banner_hex": "2b4f4b20446f7665636f742072656164792e0d0a",
"certificate": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"discovery_method": "PREDICTIVE_METHOD_18",
"extended_service_name": "POP3S",
"labels": [
"email"
],
"observed_at": "2023-12-07T02:12:28.373822313Z",
"perspective_id": "PERSPECTIVE_HE",
"pop3": {
"_encoding": {
"banner": "DISPLAY_UTF8"
},
"banner": "+OK Dovecot ready.\r\n"
},
"port": 995,
"service_name": "POP3",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Dovecot",
"product": "Dovecot",
"other": {
"family": "Dovecot"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.220",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"chain_fps_sha_256": [
"821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129"
],
"leaf_data": {
"names": [
"host.algaserver.com"
],
"subject_dn": "CN=host.algaserver.com",
"issuer_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "a5a9a593525a52cc04ca7735bfbfa67c62120d7f2c6360b759a5d03a092572c9",
"fingerprint": "37fcf700026da939e2ad7b634f16749d61a82e07994f2783c3e0392487c110cb",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"host.algaserver.com"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rXnHy4H3hOIij7PVsZwqJpyuKayiJUeKFIwVGFcoZrkSO4yLpRMUMABoxp1gZAY0fyMQk5RH3y9mLIq6tllEkezek7m2p8xrlIZ9Ff7X03kcNmXOqmda95jxpOkCI/aGtCh2VYzpCwE5ln3aWt/LvBrxjjQTNXRD8MyOwimMClxuS7oDwIIea6THw31BJhZpnf02t5rB0Ie4AKWJmvBssg9SbjM4hNjGdE0O/zTpRpTqiVE9+KrEGM4+ajqvgUK9IQp+nrMhQ60nFGtSMN6HojtZazzIGH0MfJmJ3TiwLghfwvw/8dmty+GJd5y9JoCNfytgY9Cos5WLtloORORlqw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "ce820ab91afb3cc49d3b7b36183e60be89375b84073f032356199bc6aa8c9497"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba",
"subject_dn": "C=US, ST=TX, L=Houston, O=cPanel\\, Inc., CN=cPanel\\, Inc. Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority"
},
{
"fingerprint": "38392f17ce7b682c198d29c6e71d2740964a2074c8d2558e6cff64c27823f129",
"subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority",
"issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "303951d4c50efb2e991652225a6f02b1"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:15:11 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 20:15:11 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:aebc2a33d51c8279c854f3f0d2a25636cbc27162c1bc6ff8d254a56a86768365"
],
"banner_hex": "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",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:2082/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:15:11 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"_encoding": {
"Set_Cookie": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8"
},
"Last_Modified": [
"Wednesday, 06-Dec-2023 20:15:11 GMT"
],
"Transfer_Encoding": [
"chunked"
],
"Content_Type": [
"text/html"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Connection": [
"close"
],
"Server": [
"imunify360-webshield/1.21"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Date": [
"<REDACTED>"
],
"cf_edge_cache": [
"no-cache"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20385,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.34</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.34 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:2082/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:762fbd74b4184e721556643748c23032ce5e4283e60dbee54b0cb259311c7799",
"sha1:c7f61f257f1a189715da577b5b7b7083d75be487"
],
"body_hash": "sha1:c7f61f257f1a189715da577b5b7b7083d75be487",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T20:15:11.025181840Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 2082,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.34",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 12:33:44 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 11:33:44 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:1ba0fba302d1e23a4089307aabe0ffe107958d937a91e9603a6d65f9fef7873b"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:2083/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"_encoding": {
"Expires": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8"
},
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Content_Type": [
"text/html"
],
"Date": [
"<REDACTED>"
],
"Transfer_Encoding": [
"chunked"
],
"cf_edge_cache": [
"no-cache"
],
"Server": [
"imunify360-webshield/1.21"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 12:33:44 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 11:33:44 GMT"
],
"Connection": [
"close"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20385,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.53</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.53 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:2083/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:af247bc545a8696521433a0e2f509d660519ef72d0836f2b87e503a74bcfde28",
"sha1:1a51528070fb1e7f20c6553eadefc206c0bb22ad"
],
"body_hash": "sha1:1a51528070fb1e7f20c6553eadefc206c0bb22ad",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-11-29T23:27:40.828961938Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T11:33:44.632201170Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 2083,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.53",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:29:19 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 20:29:19 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:007e05d10ab96f81eea100d285720ed357723c7f4406e60d6517f4544b1a323c"
],
"banner_hex": "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",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:2086/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Last_Modified": [
"Wednesday, 06-Dec-2023 20:29:19 GMT"
],
"_encoding": {
"Last_Modified": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8"
},
"Transfer_Encoding": [
"chunked"
],
"Connection": [
"close"
],
"Date": [
"<REDACTED>"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"cf_edge_cache": [
"no-cache"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:29:19 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Content_Type": [
"text/html"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Server": [
"imunify360-webshield/1.21"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.186</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.186 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:2086/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:50974ad7e882f509185f6448271ef17765a2a25a3f14b980e2c96a0c9fcce0ae",
"sha1:6f9a1e9ca06415d7b96fcd630c23087b30c7a5ad"
],
"body_hash": "sha1:6f9a1e9ca06415d7b96fcd630c23087b30c7a5ad",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T20:29:18.946984101Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 2086,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.186",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:45:30 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 18:45:30 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:6f4c2f628a6c5211e685a9e9836e377bffac68e909ff6991c164f78d10a1246a"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:2087/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Connection": [
"close"
],
"_encoding": {
"Connection": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8"
},
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:45:30 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Content_Type": [
"text/html"
],
"Transfer_Encoding": [
"chunked"
],
"Date": [
"<REDACTED>"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 18:45:30 GMT"
],
"cf_edge_cache": [
"no-cache"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Server": [
"imunify360-webshield/1.21"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20383,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.94.145.56</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.94.145.56 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:2087/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:6ae718c23b0cb8582e8efbb8b3c54e9083c06ae96c32e23776dfc400cce1a6d1",
"sha1:30b03bab17b34a1c7e159a893b324d3958ac4f76"
],
"body_hash": "sha1:30b03bab17b34a1c7e159a893b324d3958ac4f76",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-12-06T19:02:02.287474757Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T18:45:30.379893738Z",
"perspective_id": "PERSPECTIVE_ORANGE",
"port": 2087,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.145.56",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:14:06 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 20:14:06 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:192fb7355dcf29fca529be83d8e7bc871748158ee1a252de73bb90b1762341ce"
],
"banner_hex": "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",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:2095/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Date": [
"<REDACTED>"
],
"_encoding": {
"Date": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8"
},
"Last_Modified": [
"Wednesday, 06-Dec-2023 20:14:06 GMT"
],
"Content_Type": [
"text/html"
],
"cf_edge_cache": [
"no-cache"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:14:06 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Server": [
"imunify360-webshield/1.21"
],
"Connection": [
"close"
],
"Transfer_Encoding": [
"chunked"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.191</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.191 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:2095/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:07710e2e2f44cf8ae9558e3ab872895522aa4dba31c3a8c8ac57ef7662a028ed",
"sha1:df672f89d4a82fb32aeb64243b6bed46ad1e2d6e"
],
"body_hash": "sha1:df672f89d4a82fb32aeb64243b6bed46ad1e2d6e",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T20:14:05.971959126Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 2095,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.191",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 23:41:57 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 22:41:57 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:bd6670d248de5555921edbb4d9c0aa0a76c5bf09e63d7415b06d371c022b81c1"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:2096/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Connection": [
"close"
],
"_encoding": {
"Connection": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8"
},
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Content_Type": [
"text/html"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 22:41:57 GMT"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 23:41:57 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Transfer_Encoding": [
"chunked"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"cf_edge_cache": [
"no-cache"
],
"Server": [
"imunify360-webshield/1.21"
],
"Date": [
"<REDACTED>"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20383,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.94.145.55</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.94.145.55 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:2096/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:32ad61b90139bd45cb4b2b43f31b34a43864c1af0d3c68e4d702bcd48272de93",
"sha1:1b03495014068c5320486062b2df8f9b587883f7"
],
"body_hash": "sha1:1b03495014068c5320486062b2df8f9b587883f7",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-12-06T18:58:49.946223875Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T22:41:57.747134646Z",
"perspective_id": "PERSPECTIVE_ORANGE",
"port": 2096,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.145.55",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:23:31 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 20:23:31 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:7a51106f2a56eff260d3ba39e06c02b3918de9ba820042dae76125f217158d25"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:52223/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Content_Type": [
"text/html"
],
"_encoding": {
"Content_Type": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8"
},
"Server": [
"imunify360-webshield/1.21"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Date": [
"<REDACTED>"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 21:23:31 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Connection": [
"close"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 20:23:31 GMT"
],
"Transfer_Encoding": [
"chunked"
],
"cf_edge_cache": [
"no-cache"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.188</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.188 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:52223/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:c2456b73f651143acbd002763650d41a01ce75376f0733a9b1e38460a47654a7",
"sha1:e92b9241fc7cc4f834c423417a899cabda478abb"
],
"body_hash": "sha1:e92b9241fc7cc4f834c423417a899cabda478abb",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-11-24T18:33:30.151078Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T20:23:31.396710518Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 52223,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.188",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 20:28:16 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 19:28:16 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:69ff57344a7640fa087be9729456fb349fe4054b48ea87a5a8d5f2de8f60b669"
],
"banner_hex": "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",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:52224/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"cf_edge_cache": [
"no-cache"
],
"_encoding": {
"cf_edge_cache": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8"
},
"Date": [
"<REDACTED>"
],
"Transfer_Encoding": [
"chunked"
],
"Connection": [
"close"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Server": [
"imunify360-webshield/1.21"
],
"Content_Type": [
"text/html"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 20:28:16 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 19:28:16 GMT"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.183</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.183 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:52224/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:329052f362699669193cedd307a70ee0df022e0139aa5ba057c40d5cd523d726",
"sha1:0670d3b10256aa27c2b7d6c2f872e534fd8bb664"
],
"body_hash": "sha1:0670d3b10256aa27c2b7d6c2f872e534fd8bb664",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T19:28:16.127950189Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 52224,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.183",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:31:27 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 18:31:27 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:bfb283f2572bcfa1da46ff74c10450a8973873647662e529f2f333cabb33ca8d"
],
"banner_hex": "485454502f312e3120323030204f4b0d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a20636c6f73650d0a5365742d436f6f6b69653a20636c2d6279706173732d63616368653d7965733b20457870697265733d5765642c2030362d4465632d32332031393a33313a323720474d543b20446f6d61696e3d38302e3234312e3232312e32313b20506174683d2f3b20487474704f6e6c793b2053616d65536974653d4c61780d0a5365727665723a20696d756e6966793336302d776562736869656c642f312e32310d0a4c6173742d4d6f6469666965643a205765646e65736461792c2030362d4465632d323032332031383a33313a323720474d540d0a43616368652d436f6e74726f6c3a20707269766174652c206e6f2d73746f72652c206e6f2d63616368652c206d7573742d726576616c69646174652c2070726f78792d726576616c69646174652c206d61782d6167653d302c20732d6d61786167653d300d0a63662d656467652d63616368653a206e6f2d63616368650d0a457870697265733a205468752c203031204a616e20313937302030303a30303a303120474d540d0a",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:52227/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Content_Type": [
"text/html"
],
"_encoding": {
"Content_Type": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8"
},
"Date": [
"<REDACTED>"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:31:27 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 18:31:27 GMT"
],
"cf_edge_cache": [
"no-cache"
],
"Server": [
"imunify360-webshield/1.21"
],
"Transfer_Encoding": [
"chunked"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Connection": [
"close"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20385,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.52</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.52 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:52227/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:a11b16a5579bbd0032a316f8d37d7b51ded2cda761ba9309ac7e0e4f55201a21",
"sha1:d9a687be8aa154b0c1d6cf6115e68538887fcc99"
],
"body_hash": "sha1:d9a687be8aa154b0c1d6cf6115e68538887fcc99",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-11-24T17:31:16.246915742Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T18:31:27.009259336Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 52227,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.52",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:48:25 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 17:48:25 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:a710dd9e4b77f583b6afbdfb228277e551789a48fa4427e6f040afeff690f6d0"
],
"banner_hex": "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",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:52228/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Server": [
"imunify360-webshield/1.21"
],
"_encoding": {
"Server": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8"
},
"Content_Type": [
"text/html"
],
"Date": [
"<REDACTED>"
],
"Transfer_Encoding": [
"chunked"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 17:48:25 GMT"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:48:25 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Connection": [
"close"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"cf_edge_cache": [
"no-cache"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 162.142.125.220</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 162.142.125.220 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:52228/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:cd9c1dad096b779e61649597b1609377521ede33df3daa6de169af3d481c8da2",
"sha1:65a8bf6aef203bbe58408f667f9aa42c8f8bfde5"
],
"body_hash": "sha1:65a8bf6aef203bbe58408f667f9aa42c8f8bfde5",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T17:48:24.994702723Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 52228,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.220",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:48:55 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 17:48:55 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:0bbd995c16f160a2ba3185460da18a927df674062b5cb275a967d57916abf572"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:52229/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Content_Type": [
"text/html"
],
"_encoding": {
"Content_Type": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8"
},
"Transfer_Encoding": [
"chunked"
],
"cf_edge_cache": [
"no-cache"
],
"Connection": [
"close"
],
"Server": [
"imunify360-webshield/1.21"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 17:48:55 GMT"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Date": [
"<REDACTED>"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:48:55 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20385,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.52</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.52 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:52229/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:a11b16a5579bbd0032a316f8d37d7b51ded2cda761ba9309ac7e0e4f55201a21",
"sha1:d9a687be8aa154b0c1d6cf6115e68538887fcc99"
],
"body_hash": "sha1:d9a687be8aa154b0c1d6cf6115e68538887fcc99",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-11-24T17:18:18.449483873Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T17:48:54.745790097Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 52229,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.52",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:35:27 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 18:35:27 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:bf9b8aabc551873643a4be1e54605be35cb61776e63cdc3d4f25c714c55d6990"
],
"banner_hex": "485454502f312e3120323030204f4b0d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a20636c6f73650d0a5365742d436f6f6b69653a20636c2d6279706173732d63616368653d7965733b20457870697265733d5765642c2030362d4465632d32332031393a33353a323720474d543b20446f6d61696e3d38302e3234312e3232312e32313b20506174683d2f3b20487474704f6e6c793b2053616d65536974653d4c61780d0a5365727665723a20696d756e6966793336302d776562736869656c642f312e32310d0a4c6173742d4d6f6469666965643a205765646e65736461792c2030362d4465632d323032332031383a33353a323720474d540d0a43616368652d436f6e74726f6c3a20707269766174652c206e6f2d73746f72652c206e6f2d63616368652c206d7573742d726576616c69646174652c2070726f78792d726576616c69646174652c206d61782d6167653d302c20732d6d61786167653d300d0a63662d656467652d63616368653a206e6f2d63616368650d0a457870697265733a205468752c203031204a616e20313937302030303a30303a303120474d540d0a",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:52230/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:35:27 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"_encoding": {
"Set_Cookie": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8"
},
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Connection": [
"close"
],
"Date": [
"<REDACTED>"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 18:35:27 GMT"
],
"Content_Type": [
"text/html"
],
"Server": [
"imunify360-webshield/1.21"
],
"Transfer_Encoding": [
"chunked"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"cf_edge_cache": [
"no-cache"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20383,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.94.138.51</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.94.138.51 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:52230/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:22c05a83648a209850c00e2aa68ce47dbb17caac27a3de4849801fb248cf9448",
"sha1:a3e137d3aa784d44f317a88bdfd14e1ea9e3ff9d"
],
"body_hash": "sha1:a3e137d3aa784d44f317a88bdfd14e1ea9e3ff9d",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T18:35:27.069169191Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 52230,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.51",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:15:00 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 18:15:00 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:ddba3b54072473fbb3f3df64f1be2adfd90d2cf1c8858eb19a8ba53f1ee6ed41"
],
"banner_hex": "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",
"certificate": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://80.241.221.21:52231/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Transfer_Encoding": [
"chunked"
],
"_encoding": {
"Transfer_Encoding": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8"
},
"Server": [
"imunify360-webshield/1.21"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Last_Modified": [
"Wednesday, 06-Dec-2023 18:15:00 GMT"
],
"Content_Type": [
"text/html"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 19:15:00 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Connection": [
"close"
],
"cf_edge_cache": [
"no-cache"
],
"Date": [
"<REDACTED>"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 167.248.133.189</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 167.248.133.189 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "https://80.241.221.21:52231/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:3f019c69e85a09390f298e3d1b399034eeb79de612f4dc608bcb4e4c5fae0591",
"sha1:4396a4a3a30f1ef3f95df9c3413a6d79380b611d"
],
"body_hash": "sha1:4396a4a3a30f1ef3f95df9c3413a6d79380b611d",
"html_title": "Captcha"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "21d19d00021d21d00042d43d00000091f9827a8676a9d9f27d421962a09b5d",
"cipher_and_version_fingerprint": "21d19d00021d21d00042d43d000000",
"tls_extensions_sha256": "91f9827a8676a9d9f27d421962a09b5d",
"observed_at": "2023-11-24T19:11:00.490470321Z"
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T18:15:00.664967659Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 52231,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.248.133.189",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"chain_fps_sha_256": [
"4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2"
],
"leaf_data": {
"names": [
"cpanel.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.ch",
"tuttishop.ch",
"webdisk.tuttishop.ch",
"webmail.tuttishop.ch",
"www.tuttishop.ch"
],
"subject_dn": "CN=tuttishop.ch",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "053af612cea8dbb9446dafb19e859048e370bce3db284b75a264611b62bf74b9",
"fingerprint": "f4d09df0c7a17ee8fc1067ccfd4acaa7de1d0081c4220f857b764b829fcfb23f",
"issuer": {
"common_name": [
"Thawte TLS RSA CA G1"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"tuttishop.ch"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "r0VMojr0u+V51xDjuEy4B48lQE0iMTl8yhD+rfbzuYUpSozR/9sqf3leFX5mcEJRZF/R35szKFbYfCgzqu+afjHnzeZNvmtMjcuUeTpJRJbF9UWXu1KW1M8GRqNDyaU10HomVu8T10uo5uha6Jw/58s3UP/8cD9IkarnIf7htuCvcEWnRkNusWvSmw2dmXUU5+mhnWJWlCE+eUWKXn4f4QhdLeqSHa9vIbzUv5R1+Wl0wGMvnDJ+iu+iAaIAtf//HAZb+1fp7P2pyUbbp8RZYXFw0E5A3f8lGoup5n06lqYkMJR/hmNvz5r2VgFtuKbB4bRX+ee6Z4pZult1cpVhRQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "454a39fee987be744f45ebf27857c45787d7fc9c74c5b19dd04fb794fd7764a4"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "4bcc5e234fe81ede4eaf883aa19c31335b0b26e85e066b9945e4cb6153eb20c2",
"subject_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1",
"issuer_dn": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nSet-Cookie: cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:58:03 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax\r\nServer: imunify360-webshield/1.21\r\nLast-Modified: Wednesday, 06-Dec-2023 17:58:03 GMT\r\nCache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0\r\ncf-edge-cache: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\n",
"banner_hashes": [
"sha256:8248d989bfeb341964b5f3ef55e0eaa86fac344d8696b119dc2cef2e2660e015"
],
"banner_hex": "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",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://80.241.221.21:52232/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Last_Modified": [
"Wednesday, 06-Dec-2023 17:58:03 GMT"
],
"_encoding": {
"Last_Modified": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Cache_Control": "DISPLAY_UTF8",
"Set_Cookie": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Expires": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"cf_edge_cache": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8"
},
"Content_Type": [
"text/html"
],
"Transfer_Encoding": [
"chunked"
],
"Cache_Control": [
"private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0"
],
"Set_Cookie": [
"cl-bypass-cache=yes; Expires=Wed, 06-Dec-23 18:58:03 GMT; Domain=80.241.221.21; Path=/; HttpOnly; SameSite=Lax"
],
"Server": [
"imunify360-webshield/1.21"
],
"Expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"Connection": [
"close"
],
"cf_edge_cache": [
"no-cache"
],
"Date": [
"<REDACTED>"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Captcha</title>",
"<title>Loader</title>",
"<meta charset=\"UTF-8\">"
],
"body_size": 20387,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n <meta charset=\"UTF-8\">\n <title>Captcha</title>\n <link rel=\"stylesheet\"\n href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css\"\n integrity=\"sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7\"\n crossorigin=\"anonymous\">\n <link href=\"data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQEAYAAABPYyMiAAAABmJLR0T///////8JWPfcAAAACXBIWXMAAABIAAAASABGyWs+AAAAF0lEQVRIx2NgGAWjYBSMglEwCkbBSAcACBAAAeaR9cIAAAAASUVORK5CYII=\"\n rel=\"icon\" type=\"image/x-icon\"/>\n <link href=\"https://fonts.googleapis.com/css?family=Noto+Sans\"\n rel=\"stylesheet\">\n <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js\"></script>\n <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>\n\n <script src=\"https://www.google.com/recaptcha/api.js?hl=en\"\n async defer>\n </script>\n\n\n <style>\n html, body {\n height: 100%;\n }\n\n .wraper {\n padding-bottom: 56px;\n position: relative;\n min-height: 100%;\n }\n .invisible_mode .wraper {\n display: none;\n }\n\n .header {\n height: 63px;\n background-color: white;\n }\n\n .middle {\n height: 186px;\n background-color: rgba(55, 171, 99, 0.75);\n }\n\n .bottom {\n background-color: #f2f2f2;\n position: absolute;\n bottom: 0px;\n top: 249px;\n width: 100%;\n }\n\n .captcha_absolute {\n margin-top: -153px;\n }\n\n .captcha_div {\n width: 485px;\n margin: 0 auto;\n box-shadow: 0 5px 8px 0 rgba(0, 0, 0, 0.18), 0 0 8px 0 rgba(0, 0, 0, 0.12);\n background-color: white;\n padding: 47px 48px 18px 48px;\n position: relative;\n }\n\n .cap_head {\n border-bottom: 1px solid #d8d8d8;\n padding-bottom: 17px;\n margin: 0 10px 20px 10px;\n }\n\n .logo_shield {\n display: inline-block;\n }\n\n .logo_shield img {\n width: 54px;\n height: 72px;\n }\n\n .cap_side {\n width: 295px;\n }\n\n h4#text {\n font-size: 20px;\n line-height: 1.38;\n color: #000000;\n font-weight: bold;\n font-family: Noto Sans, sans-serif;\n margin: 6px 0 0 0;\n }\n\n .cap_text {\n font-family: Noto Sans, sans-serif;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n line-height: 1.65;\n color: #000000;\n }\n\n p.cap_note {\n font-size: 20px;\n margin: 0;\n }\n\n .captcha_passed h4#text, .captcha_passed p.cap_note { font-size: 18px }\n\n .cap_mess {\n font-size: 13px;\n }\n\n .powered_span {\n position: absolute;\n bottom: 15px;\n width: 100%;\n text-align: center;\n height: 18px;\n opacity: 0.45;\n font-family: Noto Sans;\n font-size: 13px;\n font-weight: normal;\n font-style: normal;\n font-stretch: normal;\n color: #1d1d1d;\n }\n\n /* A few hacks for re-captcha */\n\n .invisible_mode .re-captcha-wrapper { /* shift reCAPTCHA below our text */\n top: 350px !important;\n }\n .invisible_mode .re-captcha-wrapper > div:first-child { /* hide reCAPTCHA mask */\n display: none !important;\n }\n .visible_mode #re-captcha { /* align to center */\n width: 305px;\n margin: 0 auto;\n }\n\n /* Imunify360 preloader */\n\n .big_loader {\n position: absolute;\n left: 0;\n right: 0;\n top: 50%;\n width: 90px;\n height: 90px;\n margin: -45px auto 0 auto;\n opacity: 0.55;\n }\n .visible_mode .big_loader {\n display: none;\n }\n\n .rot {\n -webkit-animation: spin 2s ease-in-out infinite;\n animation: spin 2s ease-in-out infinite\n }\n\n @keyframes spin {\n 0% {\n -webkit-transform: rotate(0deg);\n -moz-transform: rotate(0deg);\n -ms-transform: rotate(0deg);\n -o-transform: rotate(0deg);\n transform: rotate(0deg);\n }\n 100% {\n -webkit-transform: rotate(360deg);\n -moz-transform: rotate(360deg);\n -ms-transform: rotate(360deg);\n -o-transform: rotate(360deg);\n transform: rotate(360deg);\n }\n }\n </style>\n\n<!--\nThis whole tempalte goes to inside <head></head> tags\nModify this file to add javascript or css files for your page from customize/static folder\nJinja2 (which is index.html template engine) is not allowed to use here.\n\nPlease, restart captcha server after your changes.\nservice imunify360-captcha restart\nservice imunify360-captchaserver-nginx restart\n\nExample:\n<script src=\"https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js\"></script>\nAdd your custom css from customize/static/ folder\n<link type=\"text/css\" rel=\"stylesheet\" href=\"static/my.css\">\n-->\n</head>\n<body class=\"invisible_mode\">\n<div class=\"wraper\">\n\n<!--\nYou can add your css, javascript, images and other static files in /customize/static/ folder\nAnd add css, javascript into the end of `head` section of this template\nPlease, restart webshield after your changes\nsystemctl restart imunify360-webshield\n-->\n<div class=\"header\">\n <!-- Header of the index page -->\n</div>\n\n<div class=\"middle\">\n <!-- Body of the index page -->\n</div>\n\n<div class=\"bottom\">\n <!-- Footer of the index page -->\n <span class=\"powered_span\">Powered by Imunify360</span>\n</div>\n\n <div class=\"captcha_absolute\">\n <div class=\"captcha_div\">\n <style>\n .dropdown {\n position: absolute;\n top: 10px;\n right: 0;\n }\n\n .dropdown .dropdown-toggle {\n background-color: #fff;\n border: none;\n outline: none;\n color: #858585;\n font-size: 13px;\n height: 32px;\n line-height: 1;\n transition: all 0.4s;\n font-family: 'Noto Sans', sans-serif;\n margin-right: 22px;\n }\n\n .dropdown .dropdown-toggle:hover {\n background-color: #e7e7e7;\n }\n\n .dropdown .dropdown-menu-content {\n background-color: #ffffff;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n border-width: 0px;\n border-radius: 0;\n padding: 11px 0 0;\n overflow-y: scroll;\n max-height: 365px;\n margin: 0;\n }\n\n .dropdown .glyphicon {\n margin-left: 6px;\n top: 2px;\n transition: 0.3s all;\n }\n\n .dropdown li {\n height: 35px;\n text-align: left;\n padding-left: 24px;\n font-size: 13px;\n color: #4d4d4e;\n line-height: 2.85;\n font-family: 'Noto Sans', sans-serif;\n }\n .dropdown li:last-child {\n margin-bottom: 14px;\n }\n\n .dropdown li.active {\n font-weight: bold;\n }\n\n .dropdown li:focus, .dropdown li:hover {\n color: #4d4d4e;\n background-color: rgba(56, 171, 99, 0.11);\n }\n\n .dropdown .dropdown-menu-content > li:hover {\n cursor: pointer;\n }\n\n .dropdown .dropdown-menu-container {\n max-height: 365px;\n overflow: hidden;\n width: 164px;\n padding: 0;\n border: 0;\n border-radius: 0;\n box-shadow: 0 2px 14px 0 rgba(0, 0, 0, 0.24);\n z-index: 5000000000;\n }\n\n .dropdown.open .glyphicon {\n transform: rotate(180deg);\n }\n</style>\n\n\n<div class=\"dropdown\">\n <button type=\"button\" class=\"dropdown-toggle\" data-toggle=\"dropdown\"\n aria-haspopup=\"true\" aria-expanded=\"false\">\n <span class=\"dropdown-title\">English</span>\n <span class=\"glyphicon glyphicon-menu-down\" aria-hidden=\"true\"></span>\n </button>\n <div class=\"dropdown-menu dropdown-menu-container\">\n <ul class=\"dropdown-menu-content\"></ul>\n </div>\n</div>\n\n<script>\n (function () {\n var items = {\n English: 'en',\n Dutch: 'nl',\n Ukrainian: 'uk',\n Arabic: 'ar',\n Italian: 'it',\n Chinese: 'zh',\n Polish: 'pl',\n Danish: 'da',\n Hungarian: 'hu',\n Russian: 'ru',\n French: 'fr',\n Spanish: 'es',\n Romanian: 'ro',\n Greek: 'el',\n Swedish: 'sv',\n Turkish: 'tr',\n Indonesian: 'id',\n Portuguese: 'pt',\n Hebrew: 'he',\n German: 'de',\n Malay: 'ms',\n Norwegian: 'no',\n Farsi: 'fa',\n };\n var currentLocale = $('html').attr('lang');\n\n var currentLocaleName = Object.keys(items).find(function (key) {\n return items[key] === currentLocale;\n });\n\n $('.dropdown-title').text(currentLocaleName);\n\n $('.dropdown-menu-content')\n .append(Object.keys(items).sort().map(function (item) {\n return $('<li>').text(item);\n }))\n .on(\"click\", function (e) {\n var nextLocaleName = e.target.innerText;\n if (nextLocaleName === currentLocaleName) {\n e.stopPropagation();\n } else {\n document.cookie = 'locale=' + items[nextLocaleName] + ';path=/';\n location.reload(true);\n }\n\n });\n\n $([].find.call($('.dropdown-menu li'), function (item) {\n return item.innerText === currentLocaleName;\n })).addClass('active');\n\n function insertParam(key, value) {\n key = encodeURIComponent(key);\n value = encodeURIComponent(value);\n\n var kvp = document.location.search.substr(1).split('&');\n if (kvp == '') {\n document.location.search = '?' + key + '=' + value;\n }\n else {\n\n var i = kvp.length;\n var x;\n while (i--) {\n x = kvp[i].split('=');\n\n if (x[0] === key) {\n x[1] = value;\n kvp[i] = x.join('=');\n break;\n }\n }\n\n if (i < 0) {\n kvp[kvp.length] = [key, value].join('=');\n }\n\n //this will reload the page, it's likely better to store this until finished\n document.location.search = kvp.join('&');\n }\n }\n })();\n</script>\n\n <div class=\"cap_head clearfix\">\n <div class=\"logo_shield\">\n <img src=\"/a9bc224bd710f56d27affffddc764239b58c3faa0/shield.png\">\n </div>\n <div class=\"cap_side pull-right\">\n <h4 id=\"text\">80.241.221.21</h4>\n <p class=\"cap_note cap_text count_down\">\n is protected by Imunify360\n </p>\n </div>\n </div>\n\n <p class=\"cap_mess cap_text text-center\">\n We have noticed an unusual activity from your <b>IP 162.142.125.222</b> and blocked access to this website.\n </p>\n\n <p class=\"cap_mess cap_text text-center\">\n <b>Please confirm that you are not a robot</b>\n </p>\n\n </div>\n </div>\n</div>\n\n<form class=\"form-group form-captcha\">\n <div id=\"re-captcha\"\n class=\"g-recaptcha\"\n data-sitekey=\"6LfsZ_wUAAAAAHoeRpleA1IY4j62iofQtA_0jJhB\"\n data-size=\"invisible\"\n data-callback=\"check\"\n ></div>\n</form>\n\n<!-- imunify360 preloader -->\n<div class=\"big_loader\">\n <svg class=\"rot\" width=\"90px\" height=\"90px\" viewBox=\"0 0 47 47\"\n version=\"1.1\"\n xmlns=\"http://www.w3.org/2000/svg\"\n xmlns:xlink=\"http://www.w3.org/1999/xlink\">\n <title>Loader</title>\n <defs>\n <polygon id=\"path-1\"\n points=\"0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146\"></polygon>\n </defs>\n <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill=\"none\"\n fill-rule=\"evenodd\">\n <g id=\"Logo\" transform=\"translate(-5.000000, -2.000000)\">\n <g id=\"Group-2\" transform=\"translate(5.000000, 2.000000)\">\n <path d=\"M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z\"\n id=\"Fill-1\" fill=\"#467C45\"></path>\n <path d=\"M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585\"\n id=\"Fill-3\" fill=\"#467C45\"></path>\n <path d=\"M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049\"\n id=\"Fill-5\" fill=\"#467C45\"></path>\n <g id=\"Group-9\"\n transform=\"translate(0.000000, 11.919659)\">\n <mask id=\"mask-2\" fill=\"white\">\n <use xlink:href=\"#path-1\"></use>\n </mask>\n <g id=\"Clip-8\"></g>\n <path d=\"M8.34869024,0.375484146 C9.93064146,3.33419146 11.2781659,6.43963049 12.7426171,9.45622805 C13.7387878,11.5362646 14.793422,13.5876427 15.7013244,15.7255695 C10.4579585,13.9091915 5.21401951,12.03435 -0.000114634146,10.0718134 C2.05069024,9.1341061 4.21842195,8.4898622 6.29845854,7.61119146 C6.97193415,5.17980122 7.67521463,2.77706951 8.34869024,0.375484146\"\n id=\"Fill-7\" fill=\"#467C45\"\n mask=\"url(#mask-2)\"></path>\n </g>\n <path d=\"M29.1793195,18.0496049 C33.5600634,19.4670561 37.9081366,21.0776659 42.2888805,22.5593122 C43.6742341,23.0745927 45.1558805,23.4609098 46.5085634,24.1372512 C44.2216122,25.039422 41.9025634,25.9100683 39.6477098,26.8110927 C38.8103073,29.4195927 38.2302585,32.1261049 37.3607585,34.7346049 C35.5890878,31.4497634 34.0432463,28.0353854 32.3684415,24.6852024 C31.3052098,22.4945439 30.1456854,20.3044585 29.1793195,18.0496049\"\n id=\"Fill-10\" fill=\"#467C45\"></path>\n <path d=\"M28.9972232,29.3489207 C29.5789915,27.69475 30.0684793,26.0113476 30.7419549,24.3887012 C31.538089,25.7660305 32.1811866,27.2356402 32.9154183,28.6444939 C34.7220524,32.4709817 36.68115,36.205189 38.4568329,40.0316768 C36.2827963,39.1449817 34.1402841,38.1654329 31.9364427,37.2460671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207\"\n id=\"Fill-12\" fill=\"#467C45\"></path>\n <path d=\"M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.8328756,31.5337329 C16.5304732,33.9685622 11.3214976,36.6498549 5.95776585,38.99355 C6.82096098,36.8355622 7.89966829,34.7698549 8.7319122,32.581489 C7.68358293,30.1764646 6.11194878,28.01905 4.97133902,25.64555\"\n id=\"Fill-14\" fill=\"#467C45\"></path>\n <path d=\"M15.4549183,35.8770488 C19.4671134,33.9317073 23.4483573,31.8952317 27.4915037,30.0433171 C26.4110768,33.6542927 25.0222841,37.203939 23.8186256,40.8143415 C23.1090402,42.7275854 22.5530646,44.7033049 21.7511988,46.5855976 C20.7630524,44.4866463 20.0534671,42.2650366 19.1277963,40.1351341 C16.6276256,39.2094634 14.0042232,38.684439 11.4736744,37.9748537 C12.6773329,37.0801341 14.1584061,36.586061 15.4549183,35.8770488\"\n id=\"Fill-16\" fill=\"#467C45\"></path>\n </g>\n </g>\n </g>\n </svg>\n</div>\n\n<script>\n $(document).ready(function () {\n var visibleByDefault = false;\n var captchaIsPassed = false;\n var captchaIsVisible = visibleByDefault;\n var reCaptchaWrapper;\n\n function do_reload() {\n location.reload(true);\n }\n\n window.check = function (value) {\n $.ajax({\n type: 'POST',\n url: '/captchacheck',\n data: {\n 'captcha_value': value\n }\n }).done(function (data) {\n if (data['success']) {\n captchaIsPassed = true;\n $(\"#text\").next(\"p\").text(\"\");\n $(\"#text\").text(\n \"IP 162.142.125.222 has been unblocked\"\n );\n setTimeout(do_reload, 1000);\n } else {\n grecaptcha.reset();\n }\n }).fail(function () {\n grecaptcha.reset();\n });\n };\n\n function updateUI() {\n // change the size of our block to fit the captcha block\n var blockWithText = $('.captcha_div');\n var captchaBlock = reCaptchaWrapper.find('> div:last-child');\n var currentPadding;\n (function update () {\n var space = captchaBlock.offset().top + captchaBlock.height() - blockWithText.height() - 100;\n var padding = captchaIsPassed ? '' : space + 'px';\n if (currentPadding !== padding) {\n blockWithText.css({'padding-bottom': padding});\n }\n setTimeout(update, 500);\n })();\n }\n\n function makeVisible() {\n $('.big_loader').hide(); // hide our preloader\n $('.wraper').show(); // show our text and stuff\n // add class to reCAPTCHA wrapper so our css would apply to it\n reCaptchaWrapper.addClass('re-captcha-wrapper');\n captchaIsVisible = true;\n }\n\n function executeCaptcha() {\n try {\n grecaptcha.execute();\n } catch (e) {\n setTimeout(executeCaptcha, 2000); // retry\n }\n }\n\n if (!visibleByDefault) {\n /**\n * Detecting captcha when css is changed to visible.\n * Invisible reCaptcha has no API calls when captcha will be visible,\n * (captcha is shown to user).\n * When captcha changed css \"visibility\" to the \"visible\", we should:\n * 1. hide the loader and captcha mask\n * 2. display some additional text\n * 3. display a dropdown so user can switch to a different language\n */\n (function checkVisibility () {\n reCaptchaWrapper = reCaptchaWrapper && reCaptchaWrapper.length\n ? reCaptchaWrapper\n : $('body > div:has(> div > iframe[src^=\"https://www.google.com/recaptcha\"])');\n if (reCaptchaWrapper.css('visibility') === 'visible') {\n makeVisible(reCaptchaWrapper);\n updateUI(reCaptchaWrapper);\n } else {\n setTimeout(checkVisibility, 100);\n }\n })();\n\n // start captcha challenge after loads all scripts\n setTimeout(executeCaptcha, 2000);\n }\n\n });\n\n</script>\n\n</body>\n</html>",
"favicons": [
{
"size": 119,
"name": "data:image/x-icon;base64,iVBORw0KGgoAAAANSUhEUgA...AeaR9cIAAAAASUVORK5CYII=",
"md5_hash": "09558cd66c669271cd2823ec7f44d451"
},
{
"size": 1,
"name": "http://80.241.221.21:52232/favicon.ico",
"md5_hash": "68b329da9893e34099c7d8ad5cb9c940"
}
],
"body_hashes": [
"sha256:497568e7ccffa880195cd329f1fc6534ceca8c4cf207f1f7e5a838d3b9c3210a",
"sha1:f48b9816a13cc22a782145f2fd57c14acc33cdf5"
],
"body_hash": "sha1:f48b9816a13cc22a782145f2fd57c14acc33cdf5",
"html_title": "Captcha"
},
"supports_http2": false
},
"labels": [
"bootstrap",
"jquery"
],
"observed_at": "2023-12-06T17:58:03.695350343Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 52232,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:imunify_security:imunify360:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Imunify Security",
"product": "Imunify360",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.222",
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Germany",
"country_code": "DE",
"city": "Munich",
"postal_code": "80331",
"timezone": "Europe/Berlin",
"province": "Bavaria",
"coordinates": {
"latitude": 48.13743,
"longitude": 11.57549
}
},
"location_updated_at": "2023-12-03T17:52:52.585814Z",
"autonomous_system": {
"asn": 51167,
"description": "CONTABO",
"bgp_prefix": "80.241.220.0/23",
"name": "CONTABO",
"country_code": "DE"
},
"autonomous_system_updated_at": "2023-12-02T09:07:16.634156Z",
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
"dns": {
"names": [
"tuttishop.ch",
"www.stoore.tuttishop.ch",
"cpcontacts.tuttishop.ch",
"tuttishop.it.tuttishop.ch",
"ftp.tuttishop.ch",
"mail.tuttishop.it",
"cpanel.tuttishop.ch",
"www.tuttishop.it.tuttishop.ch",
"webdisk.tuttishop.ch",
"cpcontacts.tuttishop.it",
"www.tuttishop.it",
"mail.tuttishop.ch",
"cpcalendars.tuttishop.ch",
"cpcalendars.tuttishop.it",
"www.tuttishop.ch",
"cdn.tuttishop.ch",
"stoore.tuttishop.ch",
"21.221.241.80.tuttishop.ch",
"webdisk.tuttishop.it",
"webmail.tuttishop.it",
"cpanel.tuttishop.it",
"webmail.tuttishop.ch",
"tuttishop.it"
],
"records": {
"www.tuttishop.it.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-11-28T13:09:28.051005500Z"
},
"www.tuttishop.ch": {
"record_type": "CNAME",
"resolved_at": "2023-12-06T13:02:23.522459209Z"
},
"webdisk.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-12-03T19:38:01.319167930Z"
},
"cpcontacts.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-11-17T19:10:19.869908742Z"
},
"cpcalendars.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-11-27T13:06:09.137244358Z"
},
"mail.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-01T13:06:17.108526272Z"
},
"webmail.tuttishop.ch": {
"record_type": "CNAME",
"resolved_at": "2023-11-27T13:06:10.999999123Z"
},
"mail.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-11-27T20:03:55.517419089Z"
},
"tuttishop.it.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-11-27T13:06:09.750900220Z"
},
"cpanel.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-12-01T19:21:57.519697334Z"
},
"webmail.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-11-24T19:17:03.828806854Z"
},
"tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-11-16T13:05:51.496221237Z"
},
"cpcontacts.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-03T13:09:56.345079071Z"
},
"cpcalendars.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-11-24T19:17:01.270273052Z"
},
"tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-11-06T18:06:57.876421900Z"
},
"www.tuttishop.it": {
"record_type": "A",
"resolved_at": "2023-12-01T19:21:58.219931613Z"
},
"stoore.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-01T13:06:17.441826082Z"
},
"www.stoore.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-11-24T13:07:32.904199547Z"
},
"cpanel.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-02T13:04:38.508609066Z"
},
"21.221.241.80.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-04T13:03:28.690137221Z"
},
"ftp.tuttishop.ch": {
"record_type": "CNAME",
"resolved_at": "2023-11-27T13:06:09.369989449Z"
},
"cdn.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-07T13:07:30.991159381Z"
},
"webdisk.tuttishop.ch": {
"record_type": "A",
"resolved_at": "2023-12-06T13:02:23.191757417Z"
}
},
"reverse_dns": {
"names": [
"21.221.241.80.tuttishop.ch"
],
"resolved_at": "2023-12-02T18:43:33.535992275Z"
}
},
"last_updated_at": "2023-12-07T13:07:31.450Z",
"labels": [
"bootstrap",
"email",
"file-sharing",
"jquery"
]
}