{ "type": "Domain", "indicator": "date.day", "general": { "sections": [ "general", "geo", "url_list", "passive_dns", "malware", "whois", "http_scans" ], "whois": "http://whois.domaintools.com/date.day", "alexa": "http://www.alexa.com/siteinfo/date.day", "indicator": "date.day", "type": "domain", "type_title": "Domain", "validation": [], "base_indicator": { "id": 2918048968, "indicator": "date.day", "type": "domain", "title": "", "description": "", "content": "", "access_type": "public", "access_reason": "" }, "pulse_info": { "count": 9, "pulses": [ { "id": "69f4dfa6405cf7858f1b732a", "name": "2015: Malware Analysis Report", "description": "", "modified": "2026-05-01T17:15:18.968000", "created": "2026-05-01T17:15:18.968000", "tags": [], "references": [ "2015-01-08 - Getmypass Point of Sale Malware Update.pdf", "2015-01-13 - New Carberp variant heads down under.pdf", "2015-01-11 - The Mozart RAM Scraper.pdf", "2015-01-06 - Linux DDoS Trojan hiding itself with an embedded rootkit.pdf", "2015-01-09 - Chanitor Downloader Actively Installing Vawtrak.pdf", "2015-01-08 - Major malvertising campaign spreads Kovter Ad Fraud malware.pdf", "2015-01-15 - Weiterentwicklung anspruchsvoller Spyware- von Agent.BTZ zu ComRAT.pdf", "2015-01-20 - Analysis of Project Cobra.pdf", "2015-01-14 - Catching the \u201cInception Framework\u201d Phishing Attack.pdf", "2015-01-22 - New RATs Emerge from Leaked Njw0rm Source Code.pdf", "2015-01-26 - Storm Chasing- Hunting Hurricane Panda.pdf", "2015-01-21 - The DGA of Symmi.pdf", "2015-01-22 - Malvertising Leading To Flash Zero Day Via Angler Exploit Kit.pdf", "2015-02-04 - Pawn Storm Update- iOS Espionage App Found.pdf", "2015-01-22 - Scarab attackers took aim at select Russian targets since 2012.pdf", "2015-02-09 - Anthem Breach May Have Started in April 2014.pdf", "2015-02-15 - Carbanak.pdf", "2015-02-16 - Equation- The Death Star of Malware Galaxy.pdf", "2015-02-16 - How \u201comnipotent\u201d hackers tied to NSA hid for 14 years\u2014and were found at last.pdf", "2015-02-12 - Mobile Malware Gang Steals Millions from South Korean Users.pdf", "2015-02-17 - Ali Baba, the APT group from the Middle East.pdf", "2015-02-17 - Angry Android hacker hides Xbot malware in popular application icons .pdf", "2015-02-17 - BE2 extraordinary plugins, Siemens targeting, dev fails.pdf", "2015-02-18 - Babar- espionage software finally found and put under the microscope.pdf", "2015-02-18 - Babar- Suspected Nation State Spyware In The Spotlight.pdf", "2015-02-17 - The Desert Falcons targeted attacks.pdf", "2015-02-18 - Sexually Explicit Material Used as Lures in Recent Cyber Attacks.pdf", "2015-02-05 - Anatomy of a Brute Force Campaign- The Story of Hee Thai Limited.pdf", "2015-02-18 - Meet Babar, a New Malware Almost Certainly Created by France.pdf", "2015-02-25 - KINS Banking Trojan Source Code.pdf", "2015-02-19 - Arid Viper \u2013 Israel entities targeted by malware packaged with sex video.pdf", "2015-02-23 - Cyber Kung-Fu- The Great Firewall Art of DNS Poisoning.pdf", "2015-02-27 - ScanBox Framework.pdf", "2015-02-25 - Pony Sourcecode.pdf", "2015-02-20 - The DGAs of Necurs.pdf", "2015-03-03 - C99Shell not dead.pdf", "2015-03-03 - PwnPOS- Old Undetected PoS Malware Still Causing Havoc.pdf", "2015-03-04 - New crypto ransomware in town - CryptoFortress.pdf", "2015-03-04 - And you get a POS malware name...and you get a POS malware name....and you get a POS malware name.....pdf", "2015-03-06 - Animals in the APT Farm.pdf", "2015-03-07 - Slave, Banatrix and ransomware.pdf", "2015-02-27 - The Anthem Hack- All Roads Lead to China.pdf", "2015-03-05 - Casper Malware- After Babar and Bunny, Another Espionage Cartoon.pdf", "2015-03-09 - CryptoFortress mimics TorrentLocker but is a different ransomware.pdf", "2015-03-04 - Who\u2019s Really Spreading through the Bright Star-.pdf", "2015-03-10 - The DGA of Pykspa.pdf", "2015-03-11 - Malvertising Targeting European Transit Users.pdf", "2015-03-19 - Analyzing a Backdoor-Bot forthe MIPS Platform.pdf", "2015-03-11 - Inside the EquationDrug Espionage Platform.pdf", "2015-02-27 - VB2014 paper- The pluginer - Caphaw.pdf", "2015-03-19 - Rocket Kitten Showing Its Claws- Operation Woolen-GoldFish and the GHOLE campaign.pdf", "2015-03-30 - Fake Judicial Spam Leads to Backdoor with Fake Certificate Authority.pdf", "2015-03-19 - FindPOS- New POS Malware Family Discovered.pdf", "2015-03-31 - Volatile Cedar - Analysis of a Global Cyber Espionage Campaign.pdf", "2015-03-20 - Threat Spotlight- PoSeidon, A Deep Dive Into Point of Sale Malware.pdf", "2015-03-30 - New reconnaissance threat Trojan.Laziok targets the energy sector.pdf", "2015-03-31 - Sinkholing Volatile Cedar DGA Infrastructure.pdf", "2015-04-01 - NewPosThings Has New PoS Things.pdf", "2015-04-09 - Beebone Botnet Takedown- Trend Micro Solutions.pdf", "2015-03-28 - UACME.pdf", "2015-04-09 - Operation Buhtrap, the trap for Russian accountants.pdf", "2015-04-13 - Cyber Deterrence in Action- A story of one long HURRICANE PANDA campaign.pdf", "2015-04-15 - Elite cyber crime group strikes back after attack by rival APT gang.pdf", "2015-04-13 - Analyzing Gootkit's persistence mechanism (new ASEP inside!).pdf", "2015-04-14 - Unit 42 Identifies New DragonOK Backdoor Malware Deployed Against Japanese Targets.pdf", "2015-04-15 - Betabot retrospective.pdf", "2015-04-12 - SIMDA- A Botnet Takedown.pdf", "2015-04-15 - Knowledge Fragment- Bruteforcing Andromeda Configuration Buffers.pdf", "2015-04-13 - sqlconnt1.exe.pdf", "2015-04-18 - Operation RussianDoll- Adobe & Windows Zero-Day Exploits Likely Leveraged by Russia\u2019s APT28 in Highly-Targeted Attack.pdf", "2015-04-15 - New POS Malware Emerges - Punkey.pdf", "2015-04-15 - The Chronicles of the Hellsing APT- the Empire Strikes Back.pdf", "2015-04-21 - Bedep\u2019s DGA- Trading Foreign Exchange for Malware Domains.pdf", "2015-04-17 - Andromeda-Gamarue bot loves JSON too (new versions details).pdf", "2015-04-27 - Attacks against Israeli & Palestinian interests.pdf", "2015-05-04 - Threat Spotlight- Rombertik \u2013 Gazing Past the Smoke, Mirrors, and Trapdoors.pdf", "2015-04-15 - The Chronicles of the Hellsing APT_the Empire Strikes Back.pdf", "2015-05-10 - Third-Party Software Was Entry Point for Background-Check System Hack.pdf", "2015-04-29 - Unboxing Linux-Mumblehard- Muttering spam from your servers.pdf", "2015-05-15 - Carefirst Blue Cross Breach Hits 1.1M.pdf", "2015-05-14 - The Naikon APT.pdf", "2015-05-07 - Dissecting the \u201cKraken\u201d.pdf", "2015-05-18 - Cmstar Downloader- Lurid and Enfal\u2019s New Cousin.pdf", "2015-05-17 - Newest addition to a happy family- KBOT.pdf", "2015-05-22 - The DGA of Ranbyus.pdf", "2015-04-27 - Threat Spotlight- TeslaCrypt \u2013 Decrypt It Yourself.pdf", "2015-05-20 - Bedep Ad-Fraud Botnet Analysis \u2013 Exposing the Mechanics Behind 153.6M Defrauded Ad Impressions A Day.pdf", "2015-05-23 - NitlovePOS- Another New POS Malware.pdf", "2015-05-26 - Moose \u2013 the router worm with an appetite for social networks.pdf", "2015-05-18 - TT Malware Log.pdf", "2015-06-01 - Rhetoric Foreshadows Cyber Activity in the South China Sea.pdf", "2015-05-28 - Unusual Exploit Kit Targets Chinese Users (Part 1).pdf", "2015-06-03 - Thamar Reservoir \u2013 An Iranian cyber-attack campaign against targets in the Middle East.pdf", "2015-06-01 - \u201cTroldesh\u201d \u2013 New Ransomware from Russia.pdf", "2015-06-04 - KeyBase Keylogger Malware Family Exposed.pdf", "2015-06-12 - Unusual Exploit Kit Targets Chinese Users (Part 2).pdf", "2015-06-15 - Stegoloader- A Stealthy Information Stealer.pdf", "2015-06-15 - Catching Up on the OPM Breach.pdf", "2015-06-10 - The Mystery of Duqu 2.0- a sophisticated cyberespionage actor returns.pdf", "2015-06-16 - Operation Lotus Blossom- A New Nation-State Cyberthreat-.pdf", "2015-06-09 - New Data- Volatile Cedar Malware Campaign.pdf", "2015-05-29 -The MsnMM Campaigns - The Earliest Naikon APT Campaigns.pdf", "2015-06-22 - Games are over- Winnti is now targeting pharmaceutical companies.pdf", "2015-06-19 - Digital Attack on German Parliament- Investigative Report on the Hack of the Left Party Infrastructure in Bundestag.pdf", "2015-06-23 - Operation Clandestine Wolf \u2013 Adobe Flash Zero-Day in APT3 Phishing Campaign.pdf", "2015-06-18 - So Long, and Thanks for All the Domains.pdf", "2015-06-17 - The Spring Dragon APT.pdf", "2015-06-25 - Sundown EK Spreads LuminosityLink RAT- Light After Dark.pdf", "2015-06-24 - Stealthy Cyberespionage Campaign Attacks With Social Engineering.pdf", "2015-06-24 - UnFIN4ished Business.pdf", "2015-07-08 - Wild Neutron \u2013 Economic espionage threat actor returns with new tricks.pdf", "2015-07-02 - Win32-Lethic Botnet Analysis.pdf", "2015-07-10 - Sednit APT Group Meets Hacking Team.pdf", "2015-06-24 - Elusive HanJuan EK Drops New Tinba Version (updated).pdf", "2015-07-07 - Dyre Banking Trojan Exploits CVE-2015-0057.pdf", "2015-07-13 - Revisiting The Bunitu Trojan.pdf", "2015-07-14 - BernhardPOS.pdf", "2015-07-14 - TeslaCrypt 2.0 disguised as CryptoWall.pdf", "2015-07-08 - Butterfly- Profiting from high-level corporate attacks.pdf", "2015-07-05 - Spy Tech Company 'Hacking Team' Gets Hacked.pdf", "2015-07-08 - Animal Farm APT and the Shadow of French Intelligence.pdf", "2015-07-16 - Github Repo with source code of cd00r.c.pdf", "2015-07-19 - The Faulty Precursor of Pykspa's DGA.pdf", "2015-07-31 - OTX Pulse on PlugX.pdf", "2015-08 - Uncovering the Seven Pointed Dagger.pdf", "2015-07-27 - UPS- Observations on CVE-2015-3113, Prior Zero-Days and the Pirpi Payload.pdf", "2015-07-13 - \u201cForkmeiamfamous\u201d- Seaduke, latest weapon in the Duke armory.pdf", "2015-07-20 - Watering Hole Attack on Aerospace Firm Exploits CVE-2015-5122 to Install IsSpace Backdoor.pdf", "2015-07-22 - Duke APT group's latest tools- cloud services and Linux support.pdf", "2015-07-30 - Sakula Malware Family.pdf", "2015-08-10 - Darkhotel\u2019s attacks in 2015.pdf", "2015-08-05 - Newly discovered Chinese hacking group hacked 100+ websites to use as \u201cwatering holes\u201d.pdf", "2015-07-31 - OTX- FBI Flash 68 (PlugX).pdf", "2015-07-30 - Operation Potao Express- Analysis of a cyber?espionage toolkit.pdf", "2015-08-18 - Knowledge Fragment- Unwrapping Fobber.pdf", "2015-08-12 - Islamic State Hacking Division.pdf", "2015-08-19 - Antak WebShell.pdf", "2015-08-12 - Tinba Trojan Sets Its Sights on Romania.pdf", "2015-08-05 - Newly discovered Chinese hacking group hacked over 100 websites to use as \u201cwatering holes\u201d.pdf", "2015-08-18 - ransomware open-sources.pdf", "2015-08-26 - Sphinx, a new variant of Zeus available for sale in the underground.pdf", "2015-08-19 - Inside Neutrino botnet builder.pdf", "2015-08-05 - Threat Group 3390 Cyberespionage.pdf", "2015-08-24 - Sphinx- New Zeus Variant for Sale on the Black Market.pdf", "2015-08-05 - Who\u2019s Behind Your Proxy- Uncovering Bunitu\u2019s Secrets.pdf", "2015-08-20 - Retefe Banking Trojan Targets Sweden, Switzerland and Japan.pdf", "2015-09-09 - Pony Stealer Malware.pdf", "2015-09-16 - Operation Iron Tiger- Attackers Shift from East Asia to the United States.pdf", "2015-08-27 - London Calling- Two-Factor Authentication Phishing From Iran.pdf", "2015-09-11 - CSI MacMark- Janicab.pdf", "2015-09-12 - Stuxnet code.pdf", "2015-09-23 - Chinese Actors Use \u20183102\u2019 Malware in Attacks on US Government and EU Media.pdf", "2015-08-27 - New Spear Phishing Campaign Pretends to be EFF.pdf", "2015-09-08 - Carbanak gang is back and packing new guns.pdf", "2015-09-03 - Three Variants of Murofet's DGA.pdf", "2015-09-01 - Attackers Target Organizations in Japan; Transform Local Sites into C&C Servers for EMDIVI Backdoor.pdf", "2015-08-31 - Shifu- \u2018Masterful\u2019 New Banking Trojan Is Attacking 14 Japanese Banks.pdf", "2015-09-14 - The Shade Encryptor- a Double Threat.pdf", "2015-09-11 - SUCEFUL- Next Generation ATM Malware.pdf", "2015-09-09 - Satellite Turla- APT Command and Control in the Sky.pdf", "2015-09-17 - The Dukes- 7 Years Of Russian Cyber-Espionage.pdf", "2015-09-24 - Credit Card-Scraping Kasidet Builder Leads to Spike in Detections.pdf", "2015-09-24 - Kovter malware learns from Poweliks with persistent fileless registry update.pdf", "2015-09-18 - Operation Arid Viper Slithers Back into View.pdf", "2015-09-01 - Fancy Bear.pdf", "2015-09-25 - Notes on Linux-Xor.DDoS.pdf", "2015-09-23 - Ranbyus's DGA, Revisited.pdf", "2015-09-29 - Andromeda Bot Analysis part 1.pdf", "2015-10-06 - I am HDRoot! Part 1.pdf", "2015-10-06 - Ticked Off- Upatre Malware\u2019s Simple Anti-analysis Trick to Defeat Sandboxes.pdf", "2015-10-01 - Linux.Rekoobe.1.pdf", "2015-10-06 - MOKER- A NEW APT DISCOVERED WITHIN A SENSITIVE NETWORK.pdf", "2015-10-06 - Targeted Attack Exposes OWA Weakness.pdf", "2015-09-28 - Gaza cybergang, where\u2019s your IR team-.pdf", "2015-10-12 - Keybase Logger-Clipboard-CredsStealer campaign.pdf", "2015-10-07 - Hacker Group Creates Network of Fake LinkedIn Profiles.pdf", "2015-10-09 - Latest TeslaCrypt Ransomware Borrows Code From Carberp Trojan.pdf", "2015-10-09 - Beta Bot Analysis- Part 1.pdf", "2015-10-13 - I am HDRoot! Part 2.pdf", "2015-09-28 - Two New PoS Malware Affecting US SMBs.pdf", "2015-10-13 - Dridex (Bugat v5) Botnet Takeover Operation.pdf", "2015-10-19 - Github Repository for AllaKore.pdf", "2015-10-16 - Surveillance Malware Trends- Tracking Predator Pain and HawkEye.pdf", "2015-10-13 - New Adobe Flash Zero-Day Used in Pawn Storm Campaign Targeting Foreign Affairs Ministries.pdf", "2015-09-24 - Meet GreenDispenser- A New Breed of ATM Malware.pdf", "2015-10-17 - How to Write Simple but Sound Yara Rules \u2013 Part 2.pdf", "2015-10-13 - Prolific Cybercrime Gang Favors Legit Login Credentials.pdf", "2015-10-15 - Archivist.pdf", "2015-09-23 - Quaverse RAT- Remote-Access-as-a-Service.pdf", "2015-10-26 - Duuzer back door Trojan targets South Korea to take over computers.pdf", "2015-10-22 - Pawn Storm Targets MH17 Investigation Team.pdf", "2015-11-02 - Troj-Cryakl-B.pdf", "2015-09-29 - Andromeda Bot Analysis part 2.pdf", "2015-10-28 - Reversing the C2C HTTP Emmental communication.pdf", "2015-11-02 - Modular trojan for hidden access to a computer.pdf", "2015-11-03 - Reversing the SMS C&C protocol of Emmental (1st part - understanding the code).pdf", "2015-11-05 - Sphinx Moth- Expanding our knowledge of the \u201cWild Neutron\u201d - \u201cMorpho\u201d APT.pdf", "2015-09-28 - Hammertoss- What, Me Worry-.pdf", "2015-10-08 - Dyre Malware Campaigners Innovate with Distribution Techniques.pdf", "2015-11-04 - \u201cOffline\u201d Ransomware Encrypts Your Data without C&C Communication.pdf", "2015-11-10 - Bookworm Trojan- A Model of Modular Architecture.pdf", "2015-11-11 - Operation Buhtrap malware distributed via ammyy.com.pdf", "2015-11-02 - Shifu \u2013 the rise of a self-destructive banking trojan.pdf", "2015-11-04 - DroidJack isn\u2019t the only spying software out there- Avast discovers OmniRat.pdf", "2015-11-17 - New Memory Scraping Technique in Cherry Picker PoS Malware.pdf", "2015-11-11 - AbaddonPOS- A new point of sale threat linked to Vawtrak.pdf", "2015-12-01 - China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets.pdf", "2015-11-16 - Shining the Spotlight on Cherry Picker PoS Malware.pdf", "2015-12-03 - Colombians major target of email campaigns delivering Xtreme RAT.pdf", "2015-11-04 - A Technical Look At Dyreza.pdf", "2015-12-04 - Sofacy APT hits high profile targets with updated toolset.pdf", "2015-12-16 - Nemucod malware spreads ransomware Teslacrypt around the world.pdf", "2015-12-08 - VT Report for SmartEyes.pdf", "2015-12-09 - Inside Chimera Ransomware - the first 'doxingware' in wild.pdf", "2015-12-18 - Attack on French Diplomat Linked to Operation Lotus Blossom.pdf", "2015-12-17 - SlemBunk- An Evolving Android Trojan Family Targeting Users of Worldwide Banking Apps.pdf", "2015-12-26 - Backdoor- Win32-Hesetox.A- vSkimmer POS Malware Analysis _.pdf", "2015-11-20 - A king's ransom- an analysis of the CTB-locker ransomware.pdf", "2015-11-16 - Introducing LogPOS.pdf", "2015-12-22 - Kraken's two Domain Generation Algorithms.pdf", "2015-12-07 - Iran-based attackers use back door threats to spy on Middle Eastern targets.pdf", "2015-11-06 - OmniRAT Takes Over Android Devices Through Social Engineering Tricks.pdf", "2015-12-11 - LATENTBOT- Trace Me If You Can.pdf", "2015-11-30 - Inside Braviax-FakeRean- An analysis and history of a FakeAV family.pdf", "2015-12-01 - Operation Black Atlas Endangers In-Store Card Payments and SMBs Worldwide; Switches between BlackPOS and Other Tools.pdf", "2015-12-22 - BBSRAT Attacks Targeting Russian Organizations Linked to Roaming Tiger.pdf", "Agent.BTZ to ComRAT.pdf", "2015-11-25 - Detecting GlassRAT using Security Analytics and ECAT.pdf", "2015-12-08 - Packrat- Seven Years of a South American Threat Actor.pdf", "Afghan Government Compromise - Browser Beware.pdf", "Anthem hack all roads lead to China.pdf", "ANALYSIS ON APT TO BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "Animals in the APT Farm.pdf", "APT CVE-2015-5119.pdf", "APT 28 (1).pdf", "Attacks against Israeli & Palestinian interests.pdf", "APT group ups targets us gov.pdf", "Black Energy.pdf", "blog.pdf", "APT 28.pdf", "Babar.pdf", "Black Vine.pdf", "Behind the syria conflict.pdf", "Attacks on France TV5 Monde.pdf", "Casper Malware.pdf", "2015-12-31 - Overseas -Dark Inn- organization launched an APT attack on executives of domestic enterprises.pdf", "Demonstrating Hustle.pdf", "Cmstar Downloader.pdf", "Apt 28 (2).pdf", "Bookworm Trojan (1).pdf", "ANALYSIS ON APT-TO-BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "Duke cloud Linux.pdf", "Dukes.pdf", "Duqu 2.0 Yara rules.pdf", "Duqu 2.0 Win32K Exploit.pdf", "Dino.pdf", "Duke cloud Linux (1).pdf", "Goldfish Phishing.pdf", "Indicators of Compormise Hellsing.pdf", "Rocket Kitten.pdf", "Trojan Skelky.pdf", "Wild Neutron.pdf", "2015-04-09 - The Banking Trojan Emotet- Detailed Analysis.pdf", "2015-07-23 - An Analysis of the Qadars Banking Trojan.pdf", "Babar or Bunny.pdf", "BBSRAT Roaming Tiger.pdf", "Blue termite (1).pdf", "China Peace Palace.pdf", "Copy Kittens.pdf", "Emdivi.pdf" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 2, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "kikinumpav", "id": "385742", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 1032, "FileHash-SHA1": 544, "IPv4": 487, "FileHash-MD5": 1665, "URL": 673, "hostname": 959, "CVE": 45, "FileHash-SHA256": 411, "email": 11, "CIDR": 4, "BitcoinAddress": 2, "YARA": 7 }, "indicator_count": 5840, "is_author": false, "is_subscribing": null, "subscriber_count": 13, "modified_text": "29 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "6768cd2fdfe372564f3b3345", "name": "Jane Doe is Targeted by DragonForce.io", "description": "Apple has released details of a virus that can be traced to a server in the US, but which has not yet been identified or detected.. and the full list of details has been revealed.", "modified": "2025-02-21T00:58:00.403000", "created": "2024-12-23T02:38:39.269000", "tags": [ "summary", "engine version", "mb data", "start date", "movies", "pictures", "export", "ipv6s", "importcsv", "psobject", "filehashwl", "notin", "select", "date", "write" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 14, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 1, "follower_count": 0, "vote": 0, "author": { "username": "ilyailya", "id": "298851", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 18, "URL": 166, "hostname": 34, "FileHash-SHA256": 143, "FileHash-MD5": 20, "FileHash-SHA1": 20 }, "indicator_count": 401, "is_author": false, "is_subscribing": null, "subscriber_count": 32, "modified_text": "463 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "67b2748046b400a75722958a", "name": "OpsBedil: MacOS Software Post-Installation Exploitation, Apple Inc.", "description": "Threat actors affiliated with DragonForce Malaysia, Lazarus Group, etc. exploit unauthorized nodes during MacOS software installations to gain persistence, exfiltrate data, and escalate privileges. Techniques observed include T1003 (Credential Dumping) to harvest keychain data, T1020 (Automated Exfiltration) over T1071 (Application Layer Protocol), and T1027 (Obfuscation) to conceal payloads. Persistence is achieved via T1053 (Scheduled Tasks) and T1543 (System Process Creation). Lateral movement is supported by T1046 (Network Discovery) and T1055 (Process Injection). Valid credentials (T1078) and remote services (T1133) enable long-term access. Proxy use (T1090) and tunneling (T1572) evade detection. Attackers hijack resources (T1496) and may deploy T1498 (DoS). Monitoring for unsigned installations, abnormal processes, and unusual traffic can detect this activity. Validating software sources and restricting network egress is recommended.", "modified": "2025-02-21T00:57:29.372000", "created": "2025-02-16T23:28:00.763000", "tags": [ "downloads music", "desktop library", "movies public", "hostname", "cves", "emails", "convertt", "filehashesepo", "display", "bash", "term", "path", "shell", "date", "license", "dyldlibrarypath", "apache software", "foundation", "notice file", "apache license", "version", "unless", "as is", "basis", "usrsbinkadmin l", "heimdal", "btmm hash", "s gmtnever", "kerberos", "logger", "force", "mit emulation", "bad option", "certhash", "movies", "music", "bluetool mktemp", "getfileinfo", "ioaccelmemory", "iosdebug", "rez mountcd9660", "mountftp", "bpinstall", "importcsv", "re resmerger", "select", "define", "http", "filehash", "open", "Aishah Siti Lazim", "194 Green Street", "Aishah Lazim", "LGBTQ Hate Attack", "Anti-semitic", "DragonForce Malaysia", "dragonforce.io", "synthetic identity theft", "computer intrusion act", "illegal surveillance", "noncivilian citizens", "havana syndrome", "electromagnetic radiation" ], "references": [ "envvars", "kadmin.local", "Info.plist", "metadata.json", "/var/log/install.log", "/var/log/install.log", "/var/log/asl", "/System/Library/CoreServices/Software Update.app/Contents/Resources/softwareupdated", "/System/Library/PrivateFrameworks/MobileAccessoryUpdater.framework/Support/accessoryupdaterd", "" ], "public": 1, "adversary": "DragonForce Malaysia", "targeted_countries": [ "United States of America", "Israel", "Bahrain", "Japan" ], "malware_families": [], "attack_ids": [ { "id": "T1003", "name": "OS Credential Dumping", "display_name": "T1003 - OS Credential Dumping" }, { "id": "T1011", "name": "Exfiltration Over Other Network Medium", "display_name": "T1011 - Exfiltration Over Other Network Medium" }, { "id": "T1020", "name": "Automated Exfiltration", "display_name": "T1020 - Automated Exfiltration" }, { "id": "T1027", "name": "Obfuscated Files or Information", "display_name": "T1027 - Obfuscated Files or Information" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1053", "name": "Scheduled Task/Job", "display_name": "T1053 - Scheduled Task/Job" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1059", "name": "Command and Scripting Interpreter", "display_name": "T1059 - Command and Scripting Interpreter" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1078", "name": "Valid Accounts", "display_name": "T1078 - Valid Accounts" }, { "id": "T1090", "name": "Proxy", "display_name": "T1090 - Proxy" }, { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1133", "name": "External Remote Services", "display_name": "T1133 - External Remote Services" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" }, { "id": "T1185", "name": "Man in the Browser", "display_name": "T1185 - Man in the Browser" }, { "id": "T1190", "name": "Exploit Public-Facing Application", "display_name": "T1190 - Exploit Public-Facing Application" }, { "id": "T1205", "name": "Traffic Signaling", "display_name": "T1205 - Traffic Signaling" }, { "id": "T1489", "name": "Service Stop", "display_name": "T1489 - Service Stop" }, { "id": "T1496", "name": "Resource Hijacking", "display_name": "T1496 - Resource Hijacking" }, { "id": "T1498", "name": "Network Denial of Service", "display_name": "T1498 - Network Denial of Service" }, { "id": "T1505", "name": "Server Software Component", "display_name": "T1505 - Server Software Component" }, { "id": "T1543", "name": "Create or Modify System Process", "display_name": "T1543 - Create or Modify System Process" }, { "id": "T1571", "name": "Non-Standard Port", "display_name": "T1571 - Non-Standard Port" }, { "id": "T1572", "name": "Protocol Tunneling", "display_name": "T1572 - Protocol Tunneling" }, { "id": "T1574", "name": "Hijack Execution Flow", "display_name": "T1574 - Hijack Execution Flow" }, { "id": "T1584", "name": "Compromise Infrastructure", "display_name": "T1584 - Compromise Infrastructure" }, { "id": "T1587", "name": "Develop Capabilities", "display_name": "T1587 - Develop Capabilities" }, { "id": "T1588", "name": "Obtain Capabilities", "display_name": "T1588 - Obtain Capabilities" } ], "industries": [ "Government", "NGO", "Media", "Education" ], "TLP": "white", "cloned_from": null, "export_count": 10, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ilyailya", "id": "298851", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CVE": 3, "FileHash-MD5": 8, "FileHash-SHA1": 10, "FileHash-SHA256": 116, "URL": 93, "domain": 11, "hostname": 45 }, "indicator_count": 286, "is_author": false, "is_subscribing": null, "subscriber_count": 35, "modified_text": "463 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef70833fea14c3d358c05c", "name": "The Jane Doe Syndrome Files", "description": "", "modified": "2024-09-29T18:03:15.313000", "created": "2024-09-22T01:18:59.997000", "tags": [ "cloud files", "desktop public", "otxappsbroids", "select", "ipv4s", "cves", "http", "name", "reference", "emails", "date", "null", "write", "open" ], "references": [ "The Jane Syndrome - 22.txt", "The Jane Syndrome Files.txt" ], "public": 1, "adversary": "R00TK1T", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1027", "name": "Obfuscated Files or Information", "display_name": "T1027 - Obfuscated Files or Information" } ], "industries": [ "Semiconductor", "Technology" ], "TLP": "white", "cloned_from": null, "export_count": 16, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA256": 1, "domain": 2, "hostname": 6, "URL": 14 }, "indicator_count": 23, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "608 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef5494d8562293fa737ed4", "name": "The Jane Doe Syndrome Files: Thunderbolt WiFi-Based Virtual Bridges", "description": "", "modified": "2024-09-28T16:38:06.660000", "created": "2024-09-21T23:19:48.419000", "tags": [], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 17, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-MD5": 1, "FileHash-SHA1": 1, "FileHash-SHA256": 4, "domain": 2 }, "indicator_count": 8, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "609 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef33ee4a7c08f8865721b3", "name": "The Jane Doe Syndrome: NetBIOs Remote Access & Sonic Warfare", "description": "An array of malicious malware, scripts, and techniques that are copycats to Apple Scripts and undetectable by anti-virus software programs. The malicious scripts such as NetBIOS and DNS spoofing can provide remote access to hackers, enabling them to gain full control and administrative privileges over Apple Inc. MacBooks. These vulnerabilities allow perpetrators to exploit system weaknesses, leading to full remote unauthorized data access, theft of sensitive information, and manipulation of system settings.", "modified": "2024-09-28T16:38:05.097000", "created": "2024-09-21T21:00:30.148000", "tags": [ "Aishah Lazim", "Malaysia", "Russia", "China", "Al-Arqam", "GUANGZHOU FIVE SIX TECHNOLOGY CO" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [ "United States of America" ], "malware_families": [ { "id": "", "display_name": "", "target": null } ], "attack_ids": [ { "id": "T1459", "name": "Device Unlock Code Guessing or Brute Force", "display_name": "T1459 - Device Unlock Code Guessing or Brute Force" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 18, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA256": 4, "domain": 6, "hostname": 14, "URL": 52, "FileHash-MD5": 1, "FileHash-SHA1": 1 }, "indicator_count": 78, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "609 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "660ec2cd7185f30ee98e0406", "name": "TP-Link ER605 Firmware Image download", "description": "After downloading a new firmware image for my TPlink ER605 switch/vpn-router, and since TP-Link doesn't provide a checksum for it. I decided to hit it with binwalk out of curiosity since I've had multiple issues with it the past two years. Immediately binwalk had to /dev/null the /var directory and further it hit two ip's as exploit sources once uploaded to criminalip and otx so I decided to upload the entire squash-fs for posterity", "modified": "2024-05-04T06:04:15.503000", "created": "2024-04-04T15:10:05.285000", "tags": [ "binmount o", "syskerneldebug", "limit", "netmask", "broadcast", "network", "prefix", "argc", "start", "copyright", "etcpasswd", "failsafe", "login", "important", "binash", "sample", "attention", "maxfds1024", "etcfrr", "somename", "openwrt", "deviceproduct", "generic", "devicerevision", "dns server", "ipv6 prefix", "duid", "ipv6 address", "x5 x8", "xdxrn502j", "y1 y1s", "linkits7688d", "omega2p", "wrtnode2p", "s boot", "sample vpn", "olinux", "cnpeer name", "target", "change", "ldap", "text", "port", "priority", "a srv", "srv record", "ldap server", "dnssd", "ipsec", "yang xiaoqiang", "varlogwtmp", "unavailreturn", "distribid", "distribrelease", "barrier breaker", "distribrevision", "distribcodename", "distribtarget", "openwrt barrier", "breaker", "distribtaints", "overlay srcgz", "home", "etcbanner", "pathusrbin", "ps1u", "libmodules", "ulimit", "binmore", "usrbinvim", "kshversion", "etcmkshrc", "preinit", "pathbin", "ipv6", "protocol", "isis", "icmp", "cisco", "header", "skip", "path first", "internet", "iana", "devnull", "stop", "ipkginstroot", "allcommands", "term", "stop value", "sqlite", "dh exponent", "grep", "w processor", "begin", "fix bug129941", "xfrm", "ipsec tunnel", "bug97836", "cmdlistend", "bundle command", "cmdliststart", "list", "procname", "list procname", "zebra route", "frr support", "bgp support", "zebra support", "firewallrule", "firewallruleset", "httpport", "path wifidog", "redirectdomain", "clienttimeout", "public key", "info", "version", "node id", "menu", "wifidog", "status", "wifidog wifidog", "gnu gpl", "rt3x5x", "sbinswconfig", "power", "wifi", "ethernet", "wifi5g", "rssilow", "rssimedium", "rssihigh", "wan led", "devconsole cp", "conffiles", "file 99ensync", "abort", "ansert", "abort error", "atz say", "atcgmm", "atcgmr", "ok atcsq", "ok atcgmr", "ok atcgmi", "atgmm", "atgmr", "timeout", "abort busy", "carrier", "report connect", "ate1", "useapn", "dialnumber", "connect", "atcgmi", "ok atcgmm", "atgmi", "answer", "v1 e1", "d2 fclass0", "at ok", "abort no", "dialtone", "sierra wireless", "cdma", "sprint", "verizon", "dial tone", "certificate", "telnet 23", "http 80", "https 443", "ssh 22", "webtimeout", "010001", "admin", "airplay option", "afp option", "ftp option", "samba option", "scanners option", "ssh option", "lanv6", "brlan", "network1", "sigusr2", "passwordauth on", "port 22", "10000s", "12000s", "4000s", "6000s", "ikepro1", "modp1024", "ikepro2", "aes128", "ikeph1name", "ph2proposal1", "ph2proposal2", "ikeph2name", "combination", "ikev1", "google", "cloudflare", "cleanbrowsing", "quad9", "opendns", "quad91", "quad92", "ipaddresspurely", "fqdn", "peertopeer", "presharekey", "tplink", "wan1", "ipgroupany", "ipv6groupany", "roseville194", "openwrt system", "balance", "dhcpclient", "portal", "pppoeclient", "onlinedection", "auto", "flashkeep", "etcopenvpn", "etcconfig", "etcdropbear", "global", "natlanwan1", "accept option", "accept", "drop", "reject", "reject option", "ipv6 icmp", "sections", "wan2", "0000", "usb0", "password", "eth1", "wan1eth", "wan1poe", "wan2eth", "wan2poe", "wan3eth", "wan3poe", "wan4eth", "wan4poe", "4094409340920", "onlinecheck", "openvpn", "ip address", "openvpn server", "windows", "remember", "common name", "generate", "etcopenvpnccd", "thelonious", "silence", "push", "first", "advertisecfg", "ospfcfg", "dslite", "pppoeshare", "wan1v6", "wan2v6", "wan3v6", "wan4v6", "static", "dynamic", "radvdinterface", "advmanagedflag", "advsendadvert", "advrouteraddr", "advautonomous", "advonlink", "ssh config", "http list", "https list", "telnet list", "http", "telnet", "https", "tcpudp", "2121", "2222", "2323", "smtp", "2525", "5353", "pop3", "partitionuuid1", "16043212800", "devsda1", "partitionuuid2", "devsda2", "udp161 option", "er605", "vpn router", "maximum number", "http listen", "https listen", "server document", "rfc1918 ip", "dns rebinding", "tcp connection", "akroniteshare", "account", "4094", "switch0", "vlan1", "vlan4094", "vlan0", "vwan", "veth1", "1024", "gmt0800", "ledsys", "switchled1", "switchled2", "switchled3", "switchled4", "switchled5", "modem", "options", "devnull p", "name", "match", "pkix", "randfile", "cadefault", "ca certificate", "sha256", "t61string", "bmpstring", "utf8strings", "mask", "import", "easyrsa", "keydir", "openvpn package", "openssl", "pkcs11tool", "keyconfig", "easyrsakeys", "issue rm", "pkcs11", "scdftprof1m", "setapn", "setuser", "setpass", "setauth", "atcgdcont1", "qcpdpp1", "scact11m", "paul hardwick", "paul", "empty input", "command", "error", "atcops", "atcops10m", "atcops12m", "atim", "atcreg2m", "atcgreg2m", "atcgeqneg1m", "atcreg", "atcgreg", "atndisdup11", "atcgatt", "1 goto", "wwan error", "useauth", "useuser", "usepass", "qcpdpp3", "atcfun1m", "atcgdcont3", "scact13m", "scact03m", "wwan connection", "atcimim", "atcpin", "sim puk", "sim pin", "ready", "atcsqm", "atmode", "atband", "atcsnr", "atsysinfoexm", "atsyscfgex", "atsyscfg", "atsysinfom", "atltersrp", "atcnumm", "busy", "errorn", "atcops0m", "mccmnc", "atcops12", "atcmd", "atq0 v1", "e1 s00", "e1 z", "atcmgf1m", "atcmgf0m", "wwan mode", "mode", "atzpas", "atzrssim", "atzrssi", "atzsnt", "pincode", "sim readyn", "sim pin2", "pinn", "gstatus", "selrat", "car0", "atcnti0m", "atecio", "atrscp", "umtschan", "atcommandn", "atcommand", "atcmgs", "action", "delete", "wanmod", "acldeleterule", "acladdrule", "ipgrouplan", "i actiondelete", "hplog", "hotplog", "hotplog fi", "deleterule", "addrule", "natlan", "qosdeleterule", "interface", "devconsole uci", "devconsole", "wanhook", "onlinedelzone", "onlineaddzone", "shenzhen tplink", "create", "delayreboot", "vpn hook", "devconsole echo", "reboot delayed", "no vpn", "hook event", "return", "pppdconfigpath", "ifname", "grep q", "pppdtype", "pppdusername", "pppdpid", "ipremote", "iplocal", "tmpl2tp", "vpnfwmark", "vpnforwardtable", "t mangle", "chain", "m comment", "connmark", "mark", "device", "actionifup", "actionifdown", "exit", "routetableid", "cachetableid", "gateway", "yuan fengjia", "grep w", "not response", "check if", "interface init", "thus", "phddnsready", "phddns", "devconsole exit", "cmxddnsready", "cmxddns", "natready", "qosdeleteiface", "vnetlibdir", "procnumber", "w arpreq", "v grep", "procnumber le", "deviced", "ifnamefile", "zone", "ipv6addr", "ipv6addrlen", "delaycommit", "hotplugtypevnet", "zaction", "prerouting i", "dnat", "p tcp", "p udp", "q delete", "interface uci", "dhcpsconfigfile", "dhcpslibdir", "urlprefix", "device uci", "w nvl", "w nl", "vlan", "vlan fi", "usb auto", "scan", "devicename", "er605v2 usb", "no need", "omada gateway", "specialid", "usb modem", "1usb modem", "devconsole fi", "nat elif", "clean", "module", "napt", "snetmaskg", "snetworkg", "j masquerade", "masquerade", "hwnat", "x usrsbinxfwdm", "xfwdm f", "systemparams", "config", "l2tpname", "l2tpisserver", "l2tpmark", "l2tppppdpid", "l2tpaction", "l2tpremoteip", "q get", "6 route", "interface proto", "v6wan", "interface03", "t ifup", "skip interface", "devconsole res", "setup", "zonegetzonebyif", "imbprefix", "ipprefix", "usrsbinddns", "dyndns", "noip", "interface04", "interrface", "bridge", "m tcp", "j accept", "number", "shift", "ifup", "action ready", "lockfile", "ospfpipewrite", "ospfpiperead", "ospfpiperead fi", "lockfile fi", "zhu xianfeng", "params miss", "m multiport", "usbifs", "managedevschain", "zte tele2", "usbifname p", "modemlib", "firmware", "firmware bs1", "inicmacaddr", "please", "dts file", "tmpfileport", "checkports", "v6ports", "j v6plusoutput", "d zonewannat", "i zonewannat", "f v6plusoutput", "i v6plusoutput", "inputgrep", "input accept", "outputgrep", "output accept", "add filter", "forwardgrep", "forward accept", "confif2", "brif", "option", "option bindif", "rundir runfile", "confif1 confif2", "brif action", "addbr", "updbr", "delbr", "option zone", "ifpong", "where interface", "set interface", "update", "rundir", "runfile", "t backup", "p notice", "t fault", "ipt n", "ipt a", "ipt s", "prerouting grep", "tpsrhook", "tpsrposthook", "cut d", "ipt i", "prerouting", "tmpaccessctl", "varconffilepath", "conffilepath", "options fi", "tmpcrontabtmp", "binsh", "start80 start", "start99 start", "cmxddnxrule", "stop98", "e sbiniscal", "tmp insmod", "tmprsacheck", "pass", "ipt f", "ipt x", "start96 ipt", "ipt d", "prerouting j", "n1 ve", "etcdhcp6cctlkey", "duidll", "rfc3315", "x0ax00", "x00x03x00x06x", "using mac", "using user", "etcdhcp6sctlkey", "invalid proto", "usrsbindhcp6s c", "usrsbindhcp6s", "d tmproot", "filddpirunning", "usrlib", "dpimodule", "filepidpath", "start99", "nete", "vnl forward", "dpirestriction", "vardir", "pidvar", "confvar", "v grepawk", "etcdir", "confback", "cabundlepath", "bannerfile", "pidcount", "prog", "kill", "md5sum", "passwordauth", "configfile", "hostfile", "debugfile", "domain", "dfconfigfile", "dnsservers", "configfile fi", "xappend", "etccrontabsroot", "rulelibdir", "p varspoolcron", "s etccrontabs", "c etccrontabs", "start40 start", "usrsharextgeoip", "start20 stop91", "c etcgeoip", "s etcgeoipbe", "s etcgeoiple", "start71 stop71", "start97", "h webserverwww", "servicepidfile", "start95 start", "conffile", "lockfd", "prerouting p", "vnetconffile", "init process", "pidf", "rund", "detectdir", "backuplist", "gao jie", "start98 start", "p output", "start99 stop90", "input drop", "p forward", "etcconfigipstat", "usrsbinipstat", "sysclassleds", "brightness", "e sysclassleds", "usblteled", "usbstorageled", "check fan", "fannormalled", "fanerrorled", "devnull ps", "rf tmpl2tp", "i fi", "loadbalancepre", "usrsbinlldpd", "openwrt release", "sysclassnet", "groupadd", "p varrunlldp", "varrunlldp", "chen chen", "zhangzhongwei", "reorganize", "start46", "option ifname", "enable", "note", "varrun", "ndppdconffile", "usrsbinndppd p", "ndppdconffile d", "nginxbin s", "p varlognginx", "p varlibnginx", "procmeminfo", "memtotal", "nginxbin", "start68 start", "jophilipp wich", "gnu general", "public license", "see license", "start90 stop10", "extracommands", "openvpnsecrets", "phddnsinit", "prerouting m", "input m", "reject vnete", "vme dst", "j drop", "redirect", "start50 stop26", "bin rundvarrun", "vpnserverconfig", "default", "default mkdir", "start50 start", "radvdconfigfile", "radvdinterfaces", "langc", "afaf09", "base6interface", "getip6addr", "start22 start", "start97 start", "the author", "config sfe", "software is", "provided", "as is", "disclaims all", "warranties", "with regard", "direct", "runc", "runc configget", "libd", "logd", "rundvarrun pidf", "runc configload", "routenum", "rtnetlink", "existret", "routenum fi", "routestatefile", "e procnanduid", "procnanduid", "tmpspideviceid", "grep v", "rebootschedule", "tmptz", "sysparams", "fang zhao", "start21 tddpbin", "tddpbin", "libvnet", "uhttpdkey", "uhttpdcert", "uhttpdbin", "px5gbin", "uhttpdcert rm", "tmpuserconfig", "check", "tslibdirsettime", "start96 boot", "usrsbinupnpd", "urllibdir", "modemstorage", "p tmpmodem", "storagemodem", "usb modemusb", "start80 stop", "usrsbinusbmuxd", "vnet", "start70 debug", "tmppassword1", "f tmppassword", "f tmppassword1", "extrahelp", "print", "start91 start", "wanconfig", "vpnclientconfig", "start25 stop25", "zoneconfbuild", "wanmax", "zydas zd1211rw", "wlan usb", "variant", "option hso", "messagecontent", "option gi0643", "xyfi", "standardeject1", "configuration2", "netgear", "kobil midentity", "kobilmode1", "mobile action", "smart cable", "mediatek wimax", "usb card", "blackberry q10", "sony ericsson", "gw d301", "advinne amc", "configuration3", "c100", "c120", "c170", "c270", "c3xx", "needresponse1", "hummer dtm5731", "aircard", "alegro", "starcomms", "alcatel otx080c", "etcom e300", "haier evdo", "alcatel x602d", "archos g9", "alcatel otx220d", "alcatel ot", "prolink pcm100", "bsnl capitel", "explay slim", "telewell tw3g", "hspa", "fs01bu", "smartbro wm66e", "alcatel", "touch x020", "tu930", "ivio iv2010u", "vibe", "emobile d12lc", "mywave sw006", "emobile d21lc", "techfaith bsnl", "aiko", "qisda h21", "flying beetle", "qisdamode1", "wisue w340", "solomon s3gm660", "philips picopix", "option icon", "prolink phs100", "ph300", "hyundai mb810", "alink", "airplus mcd800", "onda mv815u", "onda mdc655", "onda mw833up", "mw835up", "onda mo835up", "onda mw836upk", "onda mw875up", "onda msa", "tim brasil", "onda tm201", "tim italy", "onda wm301", "cricket a600", "u210", "hp laserjet", "io data", "wmx2u wimax", "nexperia tm", "tdscdma", "samsung gtb1110", "samsung gtb3730", "samsung u209", "sunplus techn", "axesstel modems", "targetvendor", "anydata", "bless uc165", "celot k300", "techfaith venus", "celot ct680", "quirky option", "samsung sghz810", "prolink p2000", "vertex wireless", "various usb", "dlink dwm162u5", "dwm162 c1", "micromax mmx", "anydata ape540h", "tl131 tdlte", "siptune lm75", "linuxmodem", "qtronix evdo", "tianyi", "dlink dwm156", "hsupa", "rndis", "pantech lte", "huawei e173s", "huawei gp02", "e587 variant", "huawei e173", "moviestar", "huaweinewmode1", "huawei et302", "huawei et8282", "huawei et127", "huaweimode1", "huawei e353", "vodafone", "huawei kxxxx", "huawei k4203", "huawei e5377", "kddi", "huawei", "hwd12 lte", "huawei k3773", "vodafone k4305", "vodafone k5150", "vodafone k4201", "vodafone k4202", "vodafone k4606", "viettel", "huawei e173u2", "huawei k3770", "huawei e352", "huawei e3131", "huawei e3372", "huawei e3531", "huawei u7510", "u7517", "huawei e392u12", "e3131", "huawei e171", "huawei e3331", "huawei bm358", "huawei e169", "huawei e220", "e230", "e270", "huawei v725", "phone", "huawei ets1201", "huawei u8220", "tmobile pulse", "huawei u8110", "android sdk", "huawei ec168", "huawei e180", "huawei ec156", "huawei e372u8", "huawei k3765", "huawei k4505", "huawei r201", "huawei k3772", "huawei e1553", "huawei r215", "huawei w5101", "huawei u2800", "china telecom", "cdu680", "cnu680", "chu629s", "huawei generic", "linux", "cgu628", "cgu628a", "xs stick", "zte mu351", "zte ac581", "zte mf110", "zte mf112", "zte mf637", "orange france", "zte mf651", "ztet a356", "zte mf652", "zte mf190", "zte mf656a", "mf668a", "zte mf820", "zte a371b", "onda mt8205", "zte mf821d", "zte mf821dmf826", "zte mf90", "mobile hotspot", "telewell twlte", "vodafone k5006z", "mf821", "k5008z", "mf823", "vodafone k4607z", "zte k3770z", "zte mf691", "tmobile rocket", "zte mf192", "zte mf195", "zte mf668", "zte mf680", "zte mfxxx", "zte mf825a", "zte mf730", "zte mf591", "zte mf196", "zte mf190j", "zte mf710m", "zte mf60", "zte ax226", "zte ac682", "cricket a605", "zte generic", "uncomment", "intex", "tlaytech teu800", "strongrising", "china telcom", "air flexinet", "tata photon", "titan", "avm fritz", "stick n", "utstarcom um175", "alltel", "pantech", "pantech uml290", "option beemo", "p4200 lte", "hisense e910", "evdo phone", "sqn1210sqn1220", "sequansmode1", "motorola", "wlan", "tergusb3e", "joa telecom", "beceem bcsm250", "haier ce682", "evdo", "messagecontent2", "haier ce", "zoom", "intex speed", "bsnl teracom", "visiontek", "teracom lw272", "unknown", "quanta muq101", "message", "quanta", "yota router", "quantamode1", "speedup su8500u", "nokia cs10", "nokia cs11", "nokia cs19", "nokia cs15", "nokia cs12", "nokia cs17", "nokia cs18", "nokia cs7m01", "nokia cs21m02", "philips", "vodafone md950", "dragonfly", "kyocera w06k", "cdma modem", "hspa modem", "targetproduct", "toshiba g450", "lg vl600", "lg l02c", "lg sd711", "lg l08c", "ntt docomo", "lg hdm2100", "lg l05a", "lg luu2100ti", "t usbconnect", "turbo", "lg l07a", "lg ldu1900d", "lg luu2110ti", "lg ad600", "lg l03d", "huawei e630", "sagem f", "gctmode1", "sierra", "digicom", "pirelli", "experimental", "cisco am10", "valet connector", "novatel mc990d", "novatel mc996d", "novatel u760", "novatel mc760", "mifi", "novatel generic", "novatel mifi", "mc545 hspa", "u679 lte", "amoi h01", "amoi h02", "axesstel mu130", "dlink dwm157", "dlink dwm221", "messagecontent3", "dwp157 b1", "dlink dwm167", "dlink dwm158", "dlink dwr510", "mediatek mt6229", "olicard", "speedup su8000", "speedup su8000u", "changhong ch690", "dlink dwm163", "dwm168", "telenet", "w wu160", "viettel vt100", "tplink ma180", "tplink ma260", "exiss mobile", "e190 series", "cmotech", "xtcomment xtlog", "xtdscp xtlength", "xtecn xthl", "xtnat nfnatipv4", "querystring", "requestmethod", "contenttype", "contentlength", "scriptname", "requesturi", "documenturi", "documentroot", "serverprotocol", "requestscheme", "byelorussian", "a3 b8", "a4 ba", "a6 b3", "a7 bf", "ad b4", "ae a2", "b0 b0", "b3 a8", "yo b4", "apache", "weixin", "luci", "fastcgi", "sslv2 sslv3", "tlsv1", "high", "ssl1m", "e2809a", "e2809e", "e280a6", "e280a0", "e280a1", "e282ac", "e280b0", "e28098", "e28099", "e280a2", "c2a0", "c2b7", "a3 d191", "a4 d194", "a6 d196", "a7 d197", "ad d291", "private key", "vendor asnet", "attribute", "asnet attribute", "speedup", "asnet", "server secret", "microsoft", "values value", "mschapresponse", "mschaperror", "mschapcpw1", "mschapcpw2", "mschaplmencpw", "mschapntencpw", "plural", "value", "value authtype", "roaringpenguin", "cistronradiusd", "local", "translations", "valid", "example", "attribute value", "interfacemode", "wirelesshost", "wizard", "systemmode", "interfacemac", "wirelessmac", "timemngt", "service", "10000", "4096", "factory", "framedprotocol", "alive", "merit", "merit extension", "value sipmethod", "invite", "cancel", "obsolete", "move", "include", "vjtcpip", "shelluser", "unix", "radius", "radius server", "general", "radius client", "server name", "clientserver", "ascend", "jens glaser", "euraw", "euui", "comb", "frcir", "frdirectno", "frdirectyes", "type", "button", "pidfile", "seen", "usrbinlogsave", "rfkillstate1", "bseoe6fuwg", "amvzwg", "kwbqbm0", "qrbdj3nghvdjigc", "ihnzbm8m9yop5w", "okue6n36b9k", "tppdpfquww", "drw5visp", "ubkwb1whnw0a", "efcmq", "root ca", "traditional pem", "authority", "global root", "root", "ecc root", "bwme", "gts root", "sectigo public", "premium", "whether", "netlink message", "buffer size", "netlink", "pagesize", "firewall mark", "netlink route", "netlink xfrm", "ike xfrm", "attr", "engine id", "openssl plugin", "set openssl", "fips mode", "suite b", "file", "rngstrong class", "rngtrue class", "listen", "set source", "ipv4", "analyze", "treat", "socket", "disable charon", "configuration", "loglevel", "ikesa", "identifier", "ikesas", "ike daemon", "id payload", "childsa", "install", "path", "rsa private", "t timer", "active", "reset", "expire", "accesscontrol", "tmnglog", "rest", "reset event", "etcconfigfstab", "moving root", "hexdump e", "q batch", "eof exit", "thu oct", "fri oct", "in dnskey", "internet domain", "bind domain", "internic", "in ns", "by verisign", "by ripe", "by icann", "by wide", "huawei 0004", "huawei 0003", "huawei 0005", "huawei 0001", "zte 0001", "zte 0002", "zte 0003", "zte 0004", "huawei 0002", "versalink", "configname", "rulename", "zonenumber", "targetname", "require", "l accessctl", "lan2lan", "position", "aclkeys", "zonein", "ucir", "zonedict", "zonenoin", "acllog", "1acl", "come in", "oldifs", "configtype", "section", "fwlibdir", "fwacllibdir", "m udp", "sectionname", "zonesnil", "srcnetwork", "ctmarkshift", "ctmarkrelated", "ctmarknewbit", "ctmarkinvalid", "ctmarkdef", "ctmarknew", "name fi", "1acl j", "icmpall", "huang zhenwei", "adlibdir", "adinitialized", "noexport", "stretz", "configappend1", "configappend", "function", "output", "iface", "line", "setname", "m set", "input", "v incomplete", "v address", "tmparplist1", "procuptime", "routingmode", "routingmode1", "devnull uci", "timer", "rtfile", "rtret", "rtfile f", "rtflag", "n awk", "grep g", "h grep", "rtflag fi", "baifacefile", "bastatefile", "srcurid", "srinfaceid", "bastatedir", "baifacedir", "srdir", "srinfaceid grep", "retfile", "xujun", "invalid option", "invalid func", "usrsbinarpreq", "clicfgpath", "tmpaccessconfig", "cfgpath", "gettimerange", "getifall", "getif", "lanlan", "success", "failed", "result", "setlocalaccount", "getlanlist", "getipgroup", "accesslistnum", "servicetype", "ruleid", "getindex", "tonumber", "currenttime", "februarynum", "smallfebdaymax", "bigfebdaymax", "timezone", "date", "keyname", "interfaceerror", "assert", "tagtype", "setdesc", "submask", "para", "ipv4address", "ipv4netwknum", "insert", "copy", "ipsecfailstatus", "checkexist", "ipaddress", "optionname", "encmode1", "fail", "responder", "portid", "data", "mirrorport", "portend", "sourceport", "naterror", "natsuccess end", "natprompt", "prompt", "natdata", "selectedname", "portstart", "istart", "routingerror", "adddata", "index", "routingsuccess", "crud error", "ospfinterface", "ospf", "ospfretre", "ospfautotypemd5", "simple", "vlan type", "down", "wanport", "primary ip", "proto", "ipaddrbits", "ripv1", "duplex", "flowctrl", "activemedium", "linkup", "setsnmpv1v2", "snmpv3en", "username", "contact", "setsshserver", "equal", "time settings", "weekday1", "sectimenumhour", "timeslicepoint", "entryname", "calendar", "vlanfailstatus", "vconfig", "vlanform", "vlan id", "address", "optional", "time", "settings", "please enter", "comment", "telecom", "upgrade", "reboot", "refresh", "defense", "code", "tokyo", "armenia", "panama", "jakarta", "back", "next", "tips", "class", "flood", "flash", "speed", "download", "lockout", "belarus", "indonesia", "mexico", "paraguay", "philippines", "ukraine", "uruguay", "facebook", "middle", "bind", "tools", "period", "media", "ping", "death", "stream", "enterprise", "live", "maha", "mais", "adduser", "never", "format", "trace", "clock", "alma", "third", "multi", "little", "critical", "done", "false", "mainserver", "execution", "keepalive", "package", "uciconfigdir", "sbinuci", "configsection", "120m", "ippool", "config dnsmasq", "directoryd", "type1", "type28", "f2cut d", "xargs", "g nogroup", "ctlcmd c", "vardir cp", "switch", "fdlibdir", "fdinitialized", "j dosdefense", "j dosdrop", "t raw", "all fin", "forward", "j zone", "mssfix", "forward j", "input j", "output j", "accept accept", "drop drop", "need v6", "fwinitialized", "libnetwork", "i restarton", "t firewall", "snat", "dnated traffic", "sbinifconfig", "notrack", "notrack rule", "j return", "j connextmark", "a sfemark", "a hwnatmark", "a prerouting", "j extmark", "export", "fwicmp4types", "fwicmp6types", "fwruleofs", "fwzones4", "fwzones6", "stretz export", "fwaerror0", "m mac", "sadd", "sdel", "a flooddefense", "m conntrack", "new j", "extmark", "m extmark", "connextmark", "c tmp", "i prerouting", "d forwardauth", "s usr1", "xargs kill", "loadrule", "j freestrategy", "luo pei", "free", "pistacklist", "kernelvermajor", "part", "piran", "awk f", "o noatime", "n pihooksplice1", "networkifstatus", "addr", "ipv4 address", "ipv4 subnet", "servicesig", "exec", "servicewritepid", "args", "serviceusepid", "servicedebug", "servicequiet", "servicesigstop", "procdsetparam", "procdkill", "script", "complete", "procdcall", "procdwrapper", "procdubuscall", "saved", "strtype", "parentdir", "ramfsdirs", "file strlen", "strlen1", "strlen", "cfgsync", "prefixdevmtd", "d devmtd", "ne x", "configsections", "lock", "etcgroup", "tunnelname", "wanname", "tunnelname p", "greservicerule", "j ct", "j snat", "plutoverb", "plutoconnection", "exist anete", "include zone", "ripaddr", "effde", "effif", "imbprocfile", "tmpstateimb", "ifip", "imblibdir", "imbinitialized", "zones", "n members", "move handling", "i actionupdate", "me hash", "me zonelist", "ipgrplibdir", "me set", "processfailover", "autofailback", "failoverpids", "autopids", "onlinezones", "j connmark", "input p", "myecho", "usrsbintmngtd", "domainspecial", "dnsq", "oldaddr", "usage exit", "invalid command", "ipsecsection", "checking", "connectionname", "etcconfigipsec", "chen xing", "algorithm", "ipsecweblock", "remotenetwork", "j dnat", "c vpnpre", "chenxing", "targetchain", "nfqueue", "tmplogvnetclog", "vnetcexecinvnet", "wanpassthrough", "wantype", "lanpassthrough", "lantype", "ttadvrouteraddr", "wang wenjing", "ipv6grplibdir", "tmpipv6loggg", "aawk v", "xl2tp", "sname", "xname", "devnull fi", "32 fi", "ikeph1", "dut init", "plutopeer", "plutomarkout", "plutouniqueid", "devconsole kill", "l2tpcdistribute", "mtu1300", "loadglobal", "xl2tpd", "killxl2tpd", "search", "nettimeout", "configdir", "nettimeout3", "tlsreqcert", "allowg", "pptpconfigfile", "l2tpconfigfile", "usage", "rstart", "sessiontimeout", "ldapquery", "mediatek mt7621", "ramipsmodel", "snor", "zyxel keenetic", "ramipsboardname", "all0256n", "asl26555", "awm002 evb", "f5d8235", "nand", "omni", "mkdir", "luopei create", "o veth1", "mflibdir", "mfinitialized", "macgrplibdir", "backup", "blank", "pwr1", "pwr2", "tmpfanstate fi", "er8411", "tmpfanspeed", "modvpn", "natlogprint", "rewrite", "root chain", "modules chain", "modone", "moddmz", "rules", "build filter", "dnat j", "naptdevicechain", "naptdevicemark", "naptdevicecache", "modpt", "validptifaces", "j trigger", "port triggering", "return fi", "modvs", "loopback snat", "32 p", "natprint", "natfd", "wc l", "natready flock", "natlogfile", "natlogdir", "natlibdir", "nattmpdir", "natlogenable", "natlogfile fi", "natdebug", "natwritefile", "modnapt", "determine", "includeonly", "nowanlink", "missingaddress", "zone6rd", "hardversion", "iface6rd", "e usrsbinallifs", "usrsbinallifs", "sigusr1", "l sigusr1", "nodevice", "f sysclasstty", "noifname", "baddevice", "pinfailed", "logprotosetup", "loggetsignal", "getinfofailed", "logprotoinit", "control device", "no apn", "noapn", "devconsole eval", "usrsbindhcp6c", "authfailed", "invalidoptions", "l sigterm", "getmacaddrerror", "geteuiiderror", "nowanaddress", "logmoduleipv6", "logipv66to4up", "v zone", "jsongetvar", "usrsbinpppd", "etcpppfilter", "interval5", "usrsbinxl2tpd", "could", "lcp term", "stdout", "aftrname", "stdoutdevnull", "dnssnd", "stdout mtu65000", "rssi", "dhcppidfile", "x v6plusoutput", "6 tunnel", "legacy1", "invalidprefix", "promisc", "oifs", "xprefixlen", "todo", "preconfig", "xifname", "xipaddr", "netifdmaindir", "wdevnotifyinit", "wirelesssetup", "wirelesssetdata", "ccmp tkip", "ccmp", "tkip", "wiface setup", "device setup", "protoprefix6", "protokeep", "protonestedopen", "protodns", "protodnssearch", "protoipaddr", "protoip6addr", "protoroute", "protoroute6", "pppipparam", "dns1", "dns2", "lllocal", "llremote", "state", "logipv6dhcp6cup", "procnetifinet6", "size", "aftrname echo", "svar", "random", "dhcppidfilehgw", "d forward", "dhcpscript", "ifnamendiscmbit", "slaac", "lanphyportset", "lanportset", "lan2", "lan3", "lan4", "wanportset", "wanphyportset", "cpu phy", "s call", "onlinestatefile", "onlinedevfile", "onlinestatedir", "onlineblockfile", "omada", "onlinemodeid", "link backup", "dowmlogid", "ubusobject", "remoteip", "localdevnet", "vpnrulenum", "virtual", "openvpnfwmark", "reply m", "remtoeip", "devname", "actualip", "configfilename", "zonewanopenvpn", "vlocalip", "vpnrulenum fi", "vremoteip", "echo", "unknown option", "i nobindd", "i locald", "publicdnsserver", "usrsbinopenvpn", "tmpopenvpnpwd", "authretryd", "i proto", "chroot", "sectionname wan", "devconsole fw", "sectionname dev", "author", "secname", "interface flag0", "4 route", "tpprconnected", "t grep", "tmppolicyroute", "l2tp", "pptp", "configptah", "killpptpd", "echoinfo", "pppoxpptptype", "pppoxpath", "pppoxl2tptype", "v wan", "serverpath", "loadoneuser", "tmppppoxpptp", "beginloaduser", "endloaduser", "usertypematch1", "profile", "serveron", "serveron pns", "pppoxpppoetype", "loadonepppoe", "deladd", "isexist", "configmyconfig", "q tmppptp", "tmppptpserver", "i snoccp", "usepeerdns", "persist", "plugin", "zonex", "maxfail", "sigchild", "mgrfather", "mt7620", "board", "hexdump", "checksum", "jffs2 partition", "wnce2001", "signature", "asus rtn56u", "preinitn", "initramfs", "boothookadd", "failsafetrue", "press", "int trap", "usr1", "tmpdebuglevel", "failsafe grep", "q failsafe", "proccmdline", "please reboot", "procnetdev", "doing openwrt", "libsh", "qosready", "thismodule", "qosconfigdir", "qosuci", "qoslogprint", "qoslibdir", "qostmpdir", "qostmpdirready", "moduleuci", "styperule", "idxv4", "idxv6", "qosfile", "qosrulechain", "qoschain", "qosfileip4", "qosfileip6", "qosret", "if iface", "uci grep", "stypeiface", "qosmarkbitstart", "qosmarkbitlen2", "qosgmarkmask", "qosmarkmask", "qostcidfile", "tcidbase", "tcidspec", "qoswritefile", "qosinfoprint", "qoserror", "incqoscid", "tcidmax", "spec", "qospollingfile", "deal", "qosthreshold gt", "qosthreshold eq", "qosgrpmarkfile", "grpmarkbitbase", "grpmarkspec", "incqosgrpmark", "grpmarkbase", "insertrule", "qoswritelog", "iptprefix", "iptprefix nvl", "e 1d", "iptprefix l", "iptprefix n", "iptprefix a", "qosret 0", "qosstate", "qosconfiger", "wanall", "snameglobal", "ifacelist", "ruleoptlist", "stopflag", "stub", "qosmarkfile", "markspec", "markbitbase", "markbase", "incqosmark", "m mark", "o get", "zonelist", "wan3", "wan4", "linerate", "qosstatefile", "qosrulespec", "incqosstate", "lannetdev", "grplist", "tttt", "forward vn", "tc qdisc", "tc class", "r2qhtb", "filest", "qdiscl", "defaulthdl", "tc p", "this", "rmchain", "serverports", "rejectports", "m vlan", "routestatedir", "src6", "dst6", "exist", "servicelibdir", "ipset", "j reject", "m tpconnlimit", "restart", "t mirror", "egress", "maxportnum", "s state", "m mode", "p mirrorport", "m ingress", "maxportnum1", "s17p1statusreg", "led bling", "ar8337portsmax1", "portvlanmax", "memeber", "null", "p portsid", "o flush", "rxnormal", "rxall", "flush", "maxportnum5", "t pvlan", "portvidmem", "cpu port", "port vlan", "v vid", "s17phycontrol", "t para", "10mh", "100mf 1000mf", "check rsa", "flowlinken reg", "full", "half", "multicast", "mbps", "rate", "t control", "ingress", "i istate", "m imode", "mirror state", "10mh 10mf", "100mh 100mf", "1000mf", "f flowcontrol", "r irate", "rtl8367sled0reg", "rtl8367sled1reg", "sfp2", "maxportnum11", "sfp0", "sfp1", "uciconfigdir cd", "macflowa", "macflowon", "macflow0", "macflowoff", "wan port", "swconfig", "unicast", "write address", "vlanid", "tbopwrite", "tbtargetcvlan", "write command", "port4control", "port5control", "port3control", "port0control", "port1", "tmplanmac", "mac learning", "lan port", "port1control", "port2control", "mirror mode", "phycontrolreg", "txall", "mt7530", "tlwvr458l", "lanport", "lanend1", "maxportnum fi", "cpuport", "vlanidx", "cpuport1", "0x0de0", "msb bit01", "enable reg", "ifg reg", "phyresolvedreg", "tmpcfg", "realtek", "wvr458war458", "phy index", "copyight", "yuanfengjia", "ceate", "timeobjadd", "timeobjdelete", "etcprofile", "montbl", "tblstartmonth", "weekdaytbl", "yeardaytbl", "startweekday", "tblstartcount", "tblstartweekday", "d etcnixio", "invalid image", "argv", "sysupgrade", "devwatchdog", "ciubipart", "cikernpart", "remove volume", "n troot", "wc c", "n kernel", "n rootfsdata", "kernel", "ramrootlib64", "conftar", "ramroot", "binmount", "bindd", "proc", "modupnp", "ucitmppath", "ucitmpconfig", "ucitmpupuppath", "upnplanchain", "upnplock", "l urlfilter", "tmpcon", "original p", "m urlsetmatch", "url j", "m urldnsmatch", "a urlfilter", "websec", "zoneapireturn", "zonefilelock", "vneton", "logconsole", "vnetbootingy", "loadavvlan", "ipv6addr fi", "ipv6addrlen fi", "loadunload", "loadainterface", "cleanainterface", "vnetiflock", "vnetlock", "vifname", "ipv6prefixlen", "vipaddr", "vnetmask", "vipaddr6", "vprefixlen6", "t filter", "buildainterface", "cleanazone", "i forward", "a webfilter", "l webfilter", "a websec", "sec j", "j websec", "f websec", "ipt t", "tmpwebsecurity", "l websec", "fileexts", "allowip", "wireguardfwmark", "listenport", "ifname p", "method", "nvl inputrule", "nginxconf", "wifidogconf", "lan1", "liwei mkdir", "ruleknownip", "ruleknownmac", "ruleknownipmac", "ruleremind", "ruleremindmac", "ruleremindipmac", "ipsetlimit", "ipsetlimitip", "zonestart", "zonestop", "zonerestart", "get vpn", "get effect", "get normal", "normal", "groupvzones", "groupzones", "wanw", "zonevgname", "zonecreategroup", "configvpniface", "zonestateconfig", "vpn iface", "newmac", "newmac yes", "yes1", "current mac", "overwrite", "converthex", "new mac", "write", "eeprom", "hotplugtype", "path logname", "user export", "devpath", "ifdown", "ev wan", "s list", "brightness exit", "head", "tmplog", "tmplog fi", "devmtdblock", "reloading", "md5file", "md5file rm", "gmac", "updates", "overlay tar", "kill runramfs", "volatile", "snapshot", "verbose", "confrestore", "tarv", "confbackup", "confimage", "needimage1", "needimage", "meta", "drivers", "devices", "type case", "devices drivers", "libwifi", "devubi0 s", "n logrecovery", "n database", "usrbiniptables", "iptablesok", "testiptmac", "wddirwdctl", "scanning disk", "test", "kamikaze", "downloadser605", "build", "integer", "valuepair", "uint4", "namelength", "ipaddr", "radiusclientngh", "begindecls", "enddecls", "servermax", "prohibit", "void", "dpidatabaseram", "sigint", "dpiappdatabase", "dpitagdatabase", "gnu libtool", "please do", "linker", "directory", "free software", "foundation", "license", "without any", "warranty", "merchantability", "fitness", "ddnseventmodule", "ddnseventid", "guo dongxian", "april", "tp new", "ui status", "dns error", "dyndns state", "dynamic dns", "june", "common log", "service start", "service stop", "servicepath", "linevalue", "linevalue fi", "angus mackay", "offline", "noipretcodegood", "noipstaterunok0", "ddnsextver eq", "newlineifs", "r n1", "registeredip", "eric paul", "bishop", "leave", "written", "janary", "tp log", "myip", "column", "wildcardno", "mxnochg", "backmxnochg", "add yours", "here", "dpidbpath", "procdpiappstat", "procdpiappblock", "dbenv", "tostring", "tmpdpitmpstat", "tmpdpitmpblock", "plutopeerclient", "plutome", "plutomyclient", "plutopeerid", "tag p", "facprio", "plutomysourceip", "plutomyprotocol", "pluto", "authiplimit", "authiplimitip", "curauthnum", "auth num", "logmoduleportal", "authtypeweb", "authtyperadius", "authtypewifi", "loguserexpired", "authtypeonekey", "authtypeldap", "idlemintimesec", "authtypewechat", "useragent", "wportalradius", "cookie", "android", "varchar", "authressucc", "authsvrconn", "authresmacerr", "authlistconn", "select from", "label", "span", "strong", "zempty", "icons", "select", "striptags", "pcdata", "legend", "fieldset", "textarea", "replace entry", "steven barth", "apache license", "found", "sorry", "internal server", "footer", "indexer", "collectgarbage", "peak", "retval", "main", "vendor", "prodid", "cls02", "sub0e prot00", "modemtmp", "logallport", "searchtty", "alltty", "d dev", "busfile", "clsff", "clse0", "cls0a", "break", "vid pid", "unsuretty", "storage", "reinit usb", "modemliblogawk", "logmodeswitchs", "cls08", "atr03", "count", "driver", "usbport", "logunlockpin", "unlockpin", "puk code", "modem unlock", "loggetisp", "fileispjson", "findcountry", "location", "findisp", "usbmodemdebug1", "portfile", "usbport fi", "cfgfilepath", "tmpcsfilepath", "ubiquiti", "atheros", "powerstation2", "ralink", "subsystem", "powerstation5", "sr4c", "frequency", "jsonprefix", "jsoncur", "jsongetvar cur", "jsonunset", "keys", "jsonvar", "dest", "jsonseq", "cidr static", "routes", "document", "150px 524px", "46px 524px", "195px 524px", "150px 556px", "46px 556px", "195px 556px", "219px 309px", "219px 333px", "90px 36px", "f4f4f4", "f2f2f2", "151px 151px", "f9b61e", "80px 224px", "eaeae8", "f3f3f5", "verdana", "54px 36px", "geneva", "326px 54px", "329px 58px", "532px 85px", "ebebeb", "21px 21px", "chrome", "7px 7px", "219px 111px", "dd4040", "252px 54px", "220px 5px", "access control", "inner", "app dist", "arp scan", "bwlist qq", "location group", "switch ddm", "dns cache", "backup restore", "gre overipsec", "interface mac", "interface mode", "ipgroup address", "ipgroup group", "ipgroup view", "ipsids", "systemroutetbl", "ipv6group group", "l2tp client", "l2tp server", "l2tp tunnel", "ldap profiles", "mac filtering", "nat dmz", "online check", "pptp tunnel", "reserved", "login auth", "class inbound", "status outbound", "session limit", "switchportvlan", "syetem mode", "systemstate cpu", "url filter", "auto backup", "usb storage", "usermngr backup", "server", "port setting", "port pvid", "relation table", "vlan setting", "vpn user", "vpn wireguard", "website filter", "url set", "wizard wan", "advanced", "rngpptr", "array", "biginteger", "birc", "rsa encryption", "arcfour", "pkcs", "xhlhxl", "bits", "explorer", "canvas", "awidth", "aheight", "canvasgradient", "param", "arcscaley", "canvaspattern", "htmlelement", "without", "html5 shiv", "jdalton", "jonneal", "mitgpl2", "freebsdlicense", "examples", "arial", "alignoffset", "xalign", "point", "formatter", "flot plugin", "iola", "ole laursen", "mit license", "x axis", "otherps", "flot", "series", "axis", "angle", "coord", "axismargin", "width", "delta", "infinity", "zero", "shutdown", "trigger", "ftrue", "ystartangle", "lnull", "bnull", "oparsefloat", "m100", "pm100", "ffalse", "sfalse", "jsonobject", "json", "string", "typenumber", "syntaxerror", "typeof e", "regexp", "typeof n", "typeof t", "typeof r", "pseudo", "ariel flesler", "parseint", "scroll", "html", "toff", "borderbwidth", "targ", "round", "0xff", "transformbuffer", "i4offset", "i4joffset", "0xffffffff7", "0xffffffff1", "invalid type", "mapping", "typecheckbox", "valuearray", "vold", "numflag", "percolumnnum", "unselectable", "items", "store", "callback", "field", "xtype", "typefile", "getcontainer", "title", "params", "parentuuid", "keyproperty", "node", "nodes", "uuid", "form", "increase", "decrease", "encrypt", "charlength", "flagup", "flaglow", "trim", "property", "height", "dataname", "widthvalue", "heightvalue", "contentflag", "boxvalue", "abcd", "jkmn", "regchar", "efghi", "argentina", "australia", "classobj", "oneclass", "minvalue", "maxrange", "minrange", "range", "maxvalue", "invalid range", "caps lock", "sepmark", "separator", "azaz09", "len1", "week", "dataweek", "msgcontaienr", "datatimestart", "datatimeend", "timearray", "0 dismissdelay", "editingindex", "editortype", "invalid editor", "dataindex", "dindex", "jndex", "daindex", "totalpage", "currentpage", "minnum", "maxnum", "gap1", "keywordtype", "columns", "temp", "maxkeys", "inhtml", "alert", "case", "currentindex", "item", "nextindex", "previndex", "invalid step", "widget", "fieldlabel", "posx", "container", "inlineblock", "combinekey", "statustemp", "instance", "callbackfail", "callbackerror", "keyarray", "debug", "jlen", "ajax", "nodeid", "controller", "d1dd", "true", "iframe", "09afaf", "mind", "typeof symbol", "window", "math", "object", "typeerror", "reflect", "generator", "epsilon", "reset yui3", "typehidden", "ecf4d3", "opera", "cache manifest", "cache", "128c", "qrcode", "2g2g2q2q0g", "modenumber1", "modealphanum2", "mode8bitbyte4", "helvetica neue", "helvetica", "heiti sc", "hiragino sans", "microsoft yahei", "gradienttype0", "typesearch", "typebutton", "typereset", "typesubmit", "typeradio", "cbit", "cbid", "click", "checkbox", "xhrpollstatus", "xhrpollstatuson", "xmlhttprequest", "activexobject", "close" ], "references": [ "hwnat", "ipcalc.sh", "login.sh", "cli_accountmgnt_cmd.tree", "cli_base_cmd.tree", "cli_cmd.tree", "cli_clock_cmd.tree", "cli_access_cmd.tree", "cli_extra_cmd.tree", "cli_http_cmd.tree", "cli_ipsec_cmd.tree", "cli_nat_cmd.tree", "cli_show_iface_cmd.tree", "cli_ssh_cmd.tree", "cli_routing_cmd.tree", "cli_show_interface_status_cmd.tree", "cli_snmp_cmd.tree", "cli_interface_cmd.tree", "cli_time_range_cmd.tree", "daemons.conf", "daemons", "cli_vlan_cmd.tree", "dhcp6sctlkey", "device_info", "dhcp6s.conf", "diag.sh", "frr.conf", "filesystems", "firewall.user", "hosts", "group", "inittab", "ipsec.conf", "dnsmasq.conf", "ipsec.secrets", "mtab", "logrotate.conf", "nsswitch.conf", "openwrt_release", "openwrt_version", "passwd", "pptpd.conf", "opkg.conf", "profile", "preinit", "protocols", "rc.common", "shells", "services", "shadow", "strongswan.conf", "rc.local", "sysctl.conf", "sysupgrade.conf", "support_bundle_commands.conf", "vtysh.conf", "sys_monitor.conf", "wifidog.conf", "verify_pub.key", "wifidog-msg.html", "usb-mode.json", "02_network", "01_leds", "65_nginx_sync.sh", "00_start_sync.sh", "99_end_sync.sh", "chat-get-qualcomm_2", "chat-get", "chat-get-anydata_2", "chat-get-qualcomm_1", "3g.chat", "chat-gsm-test", "chat-gsm-test-anydata", "chat-get-anydata_1", "chat-gsm-test-qualcomm", "chat-modem-test", "chat-modem-configure", "disconn-script", "evdo.chat", "cloud_service.cfg", "cloud_config.cfg", "2048_newroot.cer", "access_ctl", "administration", "accountmgnt", "arp_scan_range", "auto_backup", "arp_defense", "avahi-daemon", "controller.lock", "cli_server", "controller.conf", "countrygroup", "cmxddns", "custom_dhcp", "customddns", "dhcp6s", "ddns", "dhcp", "dhcp6c", "dhcp_logrotate", "dos_defense", "dpi", "dynddns", "ecs", "ecsIfName", "filter_global", "freePolicy", "dropbear", "flood_defense", "freeStrategy", "gre", "imb", "ifstat-mini", "improxy", "ipsec", "ippool", "ipsec_failover", "dnsproxySecurity", "ipsec_secrets", "ipstat", "iptv", "ipgroup", "l2tp-global", "ipv6group", "l2tp-client", "l2tp-server", "ldap", "led_set", "line_backup", "l2tp-server.reference", "lldpd", "load_balance", "logger", "luci", "locale", "mac_filter", "nat", "firewall", "macgroup", "modem", "mwan3", "omada-tool.conf", "noipddns", "nwadditional", "omada-tool.lock", "network", "online", "openvpn_user", "openvpn", "phddns", "policy_route", "ospf", "pptp-client", "portal_mgmt", "pptp-client-global", "pptp-global", "protocol", "pptp-server-global", "qos_ctl", "radvd", "qos", "reference", "rip", "remote_mngt", "sdnInfo", "pptp-server", "session_limits", "service", "sfe", "sharecfg", "snmpd", "static_route", "splitaccess", "switch", "system_mode", "tddp", "time_mngt", "system_params", "uhttpd", "upnp", "url_filter", "usermngr", "usbshare", "user-secrets", "ucitrack", "vlan", "vnetwork", "vpnlog", "webfilter", "system", "webfilter_global", "websort", "web_security", "wireguard_interface", "wireguard_peers", "wportal", "zone", "user-secrets.reference", "dropbear_rsa_host_key", "serial", "index.txt", "openssl.cnf", "vars", "openssl-1.0.0.cnf", "connect-directip.gcom", "command.gcom", "baseinfo.gcom", "cellinfo.gcom", "connect-ncm.gcom", "getcarrier.gcom", "directip.gcom", "getcardinfo.gcom", "connect-ppp.gcom", "directip-stop.gcom", "getimsi.gcom", "getimsi_b.gcom", "getpinstatus.gcom", "getstrength.gcom", "huaweiinfo.gcom", "getcnum.gcom", "modem-gsm-test-anydata.gcom", "getregistestate.gcom", "lock-prov.gcom", "modem-gsm-test-qualcomm.gcom", "ncm.json", "run-at.gcom", "reset.gcom", "modem-configure.gcom", "sendsms-at.gcom", "setapn.gcom", "setmode.gcom", "zteinfo.gcom", "setpin.gcom", "sierrainfo.gcom", "runcommand.gcom", "smschk.gcom", "11-led", "10-firewall.sh", "22-access_ctl.sh", "25-pppox.sh", "22-imb.sh", "21-nat.sh", "40-qos.sh", "70-policy_route.sh", "26-openvpn.sh", "70-switch.sh", "89-remote_mngt.sh", "95-online.sh", "96-customddns.sh", "96-cmxddns.sh", "96-dynddns.sh", "96-noipddns.sh", "96-phddns.sh", "97-line_backup.sh", "97-route.sh", "98-ipsec.sh", "98-iptv.sh", "99-wan_hook.sh", "97-load_balance.sh", "97-upnp.sh", "12-netbios-passthrough", "10-pppox-if-up-down.sh", "30-policy_route.sh", "22-access_ctl", "29-static_route", "20-firewall", "02-split_access", "80-balance.sh", "40-qos", "00-vpn_hook.sh", "97-mwan3.sh", "99-vpn_hook.sh", "00-vnet_client.sh", "00-ecsIfChange", "1-vnet_lanhook.sh", "1-vnet_lanv6hook.sh", "05-vnet-lanv6", "20-upnp", "18-dnsproxyvnet.sh", "22-imb", "00-vnet.sh", "22-qos-tplink", "50-improxy", "40-remote_mngt", "60-dhcpsvnet.sh", "65-wifidog.sh", "92-pppox-vpn.sh", "99-mdns.sh", "90-portal_mgmt", "02-usb-auto-scan", "10-motion", "01-usb-led", "15-usb_mode", "30-3g", "20-firewall.sh", "10-pppox-response-nat.sh", "10-metric.sh", "50-l2tp-up-down.sh", "50-qos_ctl", "1-lanhook.sh", "1-lanv6hook.sh", "00-netstate", "01-zone", "03-vlan", "05-lanv6", "04-ipv6", "02-vnet.sh", "06-wan_log", "10-sysctl", "18-ipgroup", "15-online.sh", "18-ipv6group", "22-dos_defense", "25-ddns", "26-freeStrategy", "50-l2tp-lowerif-up-down.sh", "65-iptv", "70-pptp-ifdown.sh", "72-wan_ip_alias", "85-ntp", "92-dynamic_route", "90-vpn", "91-gre.sh", "99-hotplug_done", "99-vnet.sh", "99-z3g4g-connect", "60-dnsmasq", "10-rt2x00-eeprom", "30-v6plus", "60-pptp-reload-rules.sh", "10-l2tp-pptp.sh", "50-access_ctl.sh", "18-dnsproxy.sh", "40-imb.sh", "60-dnsmasq.sh", "46-nat.sh", "60-mac_filter.sh", "99-load_balance.sh", "97-qos.sh", "99-nginx.sh", "00-configlink.sh", "10-mount", "10-policy_route.sh", "70-backup", "15-mwan3", "40-load_balance", "backup", "bootcount", "boot", "default_balance", "done", "dnsproxy", "dnsmasq", "dynamic_route", "drop_caches", "cron", "fstab", "geoip", "gre_init", "enablemodem", "ipv6", "led", "l2tp", "led_early", "loggerd", "monitor", "netbios_passthrough", "ndppd", "nginx", "pppox", "pptpd", "queueventd", "qos-tplink", "rsa_check", "smp", "spi_device_id", "sys_monitor", "sysntpd", "tddpd", "sysctl", "tmngtd", "umount", "time_setting", "usbmodem", "usbmuxd", "vnet", "wifidog", "wireguard", "zbalance_loop_reset", "xl2tpd", "zero_boot_done", "zombie_monitor", "zzomada_server", "zzzzzsys_info", "zzzcloud_proc", "telnet", "zzddns", "rt_tables", "location.json", "0ace:20ff", "0ace:2011", "0af0:7a01", "0af0:7a05", "0af0:4007", "0af0:6711", "0af0:6731", "0af0:6751", "0af0:6771", "0af0:6791", "0af0:6811", "0af0:6911", "0af0:6951", "0af0:6971", "0af0:7011", "0af0:7031", "0af0:7051", "0af0:7071", "0af0:7111", "0af0:7211", "0af0:7251", "0af0:7271", "0af0:7301", "0af0:7311", "0af0:7361", "0af0:7381", "0af0:7401", "0af0:7501", "0af0:7601", "0af0:7701", "0af0:7706", "0af0:7801", "0af0:7901", "0af0:8006", "0af0:8200", "0af0:8201", "0af0:8300", "0af0:8302", "0af0:8304", "0af0:8400", "0af0:8600", "0af0:8700", "0af0:8800", "0af0:8900", "0af0:9000", "0af0:9200", "0af0:c031", "0af0:c100", "0af0:d001", "0af0:d013", "0af0:d031", "0af0:d033", "0af0:d035", "0af0:d055", "0af0:d057", "0af0:d058", "0af0:d155", "0af0:d157", "0af0:d255", "0af0:d257", "0af0:d357", "0b3c:c700", "0b3c:f000", "0b3c:f00c", "0b3c:f017", "0bdb:190d", "0bdb:1910", "0cf3:20ff", "0d46:45a1", "0d46:45a5", "0df7:0800", "0e8d:0002:uPr=MT", "0e8d:0002:uPr=Product", "0e8d:7109", "0fca:8020", "0fce:d0cf", "0fce:d0df", "0fce:d0e1", "0fce:d103", "0fd1:1000", "1a8d:1000", "1a8d:2000", "1ab7:5700", "1b7d:0700", "1bbb:00ca", "1bbb:000f", "1bbb:011f", "1bbb:022c", "1bbb:f000", "1bbb:f017", "1bbb:f052", "1c9e:9d00", "1c9e:9e00", "1c9e:9e08", "1c9e:98ff", "1c9e:1001", "1c9e:6000", "1c9e:6061:uPr=Storage", "1c9e:9101", "1c9e:9200", "1c9e:9401", "1c9e:9800", "1c9e:f000", "1c9e:f000:uMa=USB_Modem", "1d09:1000", "1d09:1021", "1d09:1025", "1da5:f000", "1dbc:0669", "1dd6:1000", "1de1:1101", "1e0e:f000", "1e89:f000", "1edf:6003", "1ee8:0003", "1ee8:004a", "1ee8:004f", "1ee8:0009", "1ee8:0013", "1ee8:0018", "1ee8:0040", "1ee8:0045", "1ee8:0054", "1ee8:0060", "1ee8:0063", "1ee8:0068", "1f28:0021", "1fac:0032", "1fac:0130", "1fac:0150", "1fac:0151", "03f0:002a", "04bb:bccd", "04cc:225c", "04cc:226e", "04cc:226f", "04cc:2251", "04e8:680c", "04e8:689a", "04e8:f000:sMo=U209", "04fc:2140", "05c6:0010", "05c6:1000:sVe=GT", "05c6:1000:sVe=Option", "05c6:1000:uMa=AnyDATA", "05c6:1000:uMa=CELOT", "05c6:1000:uMa=Co.,Ltd", "05c6:1000:uMa=DGT", "05c6:1000:uMa=Option", "05c6:1000:uMa=SAMSUNG", "05c6:1000:uMa=SSE", "05c6:1000:uMa=StrongRising", "05c6:1000:uMa=Vertex", "05c6:2000", "05c6:2001", "05c6:6503", "05c6:9024", "05c6:f000", "05c7:1000", "07d1:a800", "07d1:a804", "10a9:606f", "10a9:6080", "12d1:1c0b", "12d1:1c1b", "12d1:1c24", "12d1:1d50", "12d1:1da1", "12d1:1f01", "12d1:1f1b", "12d1:1f1c", "12d1:1f1d", "12d1:1f1e", "12d1:1f02", "12d1:1f03", "12d1:1f07", "12d1:1f09", "12d1:1f11", "12d1:1f15", "12d1:1f16", "12d1:1f17", "12d1:1f18", "12d1:1f19", "12d1:14ad", "12d1:14b5", "12d1:14b7", "12d1:14ba", "12d1:14c1", "12d1:14c3", "12d1:14c4", "12d1:14c5", "12d1:14d1", "12d1:14fe", "12d1:15ca", "12d1:15cd", "12d1:15cf", "12d1:15e7", "12d1:101e", "12d1:151a", "12d1:155a", "12d1:155b", "12d1:156a", "12d1:157c", "12d1:157d", "12d1:380b", "12d1:1001", "12d1:1003", "12d1:1009", "12d1:1010", "12d1:1030", "12d1:1031", "12d1:1413", "12d1:1414", "12d1:1446", "12d1:1449", "12d1:1505", "12d1:1520", "12d1:1521", "12d1:1523", "12d1:1526", "12d1:1553", "12d1:1557", "12d1:1582", "12d1:1583", "12d1:1805", "15eb:7153", "16d8:6803", "16d8:6281", "16d8:700b", "12d1:#android", "12d1:#linux", "16d8:6804", "16d8:700a", "16d8:f000", "19d2:0003", "19d2:0026", "19d2:0040", "19d2:0053", "19d2:0083:uPr=WCDMA", "19d2:0101", "19d2:0103", "19d2:0110", "19d2:0115", "19d2:0120", "19d2:0146", "19d2:0149", "19d2:0150", "19d2:0154", "19d2:0166", "19d2:0169", "19d2:0266", "19d2:0304", "19d2:0318", "19d2:0325", "19d2:0388", "19d2:0413", "19d2:1001", "19d2:1007", "19d2:1009", "19d2:1013", "19d2:1017", "19d2:1030", "19d2:1038", "19d2:1171", "19d2:1175", "19d2:1179", "19d2:1201", "19d2:1207", "19d2:1210", "19d2:1216", "19d2:1219", "19d2:1224", "19d2:1225", "19d2:1227", "19d2:1232", "19d2:1233", "19d2:1237", "19d2:1238", "19d2:1420", "19d2:1511", "19d2:1514", "19d2:1517", "19d2:1520", "19d2:1523", "19d2:1528", "19d2:1536", "19d2:1542", "19d2:1588", "19d2:2000", "19d2:2004", "19d2:bccd", "19d2:ffde", "19d2:ffe6", "19d2:fff5", "19d2:fff6", "19d2:#linux", "20a6:f00e", "20b9:1682", "21f5:1000", "21f5:3010", "22de:6801", "22de:6803", "22f4:0021", "23a2:1010", "057c:62ff", "057c:84ff", "072f:100d", "106c:3b03", "106c:3b05", "106c:3b06", "106c:3b11", "106c:3b14", "109b:f009", "148e:a000", "148f:2578", "198a:0003", "198f:bccd", "201e:1023", "201e:2009", "230d:000b", "230d:000d", "230d:0001", "230d:0003", "230d:0007", "230d:0101", "230d:0103", "257a:a000", "257a:b000", "257a:c000", "257a:d000", "0408:1000", "0408:ea17", "0408:ea25", "0408:ea43", "0408:f000", "0408:f001", "0421:060c", "0421:061d", "0421:062c", "0421:0610", "0421:0618", "0421:0622", "0421:0627", "0421:0632", "0421:0637", "0471:1210:uMa=Philips", "0471:1210:uMa=Wisue", "0471:1237", "0482:024d", "0685:2000", "0922:1001", "0922:1003", "0930:0d46", "1004:61aa", "1004:61dd", "1004:61e7", "1004:61eb", "1004:607f", "1004:613a", "1004:613f", "1004:614e", "1004:1000", "1004:6156", "1004:6190", "1004:6327", "1033:0035", "1076:7f40", "1199:0fff", "1266:1000", "1307:1169", "1410:5010", "1410:5020", "1410:5023", "1410:5030", "1410:5031", "1410:5041", "1410:5055", "1410:5059", "1410:7001", "1614:0800", "1614:0802", "1726:f00e", "1782:0003", "2001:00a6", "2001:98ff", "2001:a80b", "2001:a401", "2001:a403", "2001:a405", "2001:a706", "2001:a707", "2001:a708", "2001:a805", "2020:0002", "2020:f00e", "2020:f00f", "2077:1000", "2077:f000", "2262:0001", "2357:0200", "2357:f000", "8888:6500", "ed09:1021", "20-usb-core", "25-nls-cp437", "05-liblogger", "20-fs-exportfs", "25-nls-cp864", "25-nls-cp775", "25-nls-cp866", "15-mii", "25-nls-cp932", "25-nls-cp852", "25-nls-cp1250", "25-nls-cp850", "25-nls-cp1251", "25-nls-iso8859-1", "25-nls-iso8859-2", "25-nls-cp862", "25-nls-iso8859-6", "25-nls-iso8859-8", "25-nls-iso8859-13", "25-nls-iso8859-15", "25-nls-koi8r", "25-nls-utf8", "29-fs-fscache", "30-atm", "30-fs-autofs4", "30-fs-btrfs", "30-fs-cifs", "30-fs-configfs", "30-fs-cramfs", "30-fs-ext4", "30-fs-hfs", "30-fs-hfsplus", "30-fs-isofs", "30-fs-jfs", "30-fs-minix", "30-fs-nfs-common", "30-fs-ntfs", "30-fs-reiserfs", "30-fs-udf", "30-fs-vfat", "30-fs-xfs", "30-gpio-button-hotplug", "30-ipsec", "30-tun", "30-veth", "31-iptunnel", "31-iptunnel4", "31-iptunnel6", "32-ip6-tunnel", "32-ipsec4", "32-ipsec6", "32-l2tp", "32-sit", "39-gre", "40-bonding", "40-fs-msdos", "40-fs-nfs", "40-fs-nfsd", "40-pppoa", "40-scsi-core", "40-usb2", "42-ip6tables", "42-usb2-pci", "49-ipt-ipset-tplink", "50-usb-ohci", "50-usb-uhci", "54-usb3", "65-scsi-generic", "80-fuse", "89-portal", "90-urlset", "90-xt_CTSTATEMARK", "90-xt_dosdrop", "90-xt_doslogonly", "90-xt_ipsecmark", "90-xt_multinetdev", "90-xt_qoslimit", "90-xt_tplimit", "90-xt_vlan", "91-authlimit", "91-xt_authlimit", "98-ipt_url_dns_match", "98-ipt_urlset_match", "98-ipt_web_dns_match", "98-ipt_webfilter_match", "98-ipt_websec_match", "98-load_balance", "99-balance_route", "99-ipt_tpconnlimit", "99-ipt_TRIGGER", "99-ipt_urlset_target", "99-xt_l2tp", "crypto-hw-eip93", "fs-exfat", "ipt-account", "ipt-compat-xtables", "ipt-conntrack", "ipt-conntrack-extra", "ipt-core", "ipt-extra", "ipt-filter", "ipt-geoip", "ipt-ipopt", "ipt-iprange", "ipt-ipsec", "ipt-ipv4options", "ipt-nat", "ipt-nat-extra", "ipt-nathelper", "ipt-nathelper-extra", "ipt-nfqueue", "ipt-tproxy", "lib-crc-ccitt", "lib-textsearch", "mmc", "mppe", "nf-conntrack-netlink", "nfnetlink", "nfnetlink-queue", "ppp", "pppoe", "pppol2tp", "pptp", "sdhci-mt7621", "usb-acm", "usb-net", "usb-net-asix", "usb-net-cdc-ether", "usb-net-cdc-mbim", "usb-net-cdc-ncm", "usb-net-huawei-cdc-ncm", "usb-net-ipheth", "usb-net-qmi-wwan", "usb-net-rndis", "usb-printer", "usb-serial", "usb-serial-option", "usb-serial-wwan", "usb-storage", "usb-storage-extras", "usb-wdm", "cleanTMP.sh", "fastcgi_params", "koi-win", "nginx.conf", "mime.types", "win-utf", "koi-utf", "ldap.conf", "crt.sed", "client.crt", "client.key", "dictionary.asnet", "servers", "dictionary.microsoft", "dictionary", "options.default", "options.l2tp", "filter", "chap-secrets", "options.pptp", "options.pptpd", "options.xl2tpd", "radius.conf", "dictionary.merit", "dictionary.sip", "issue", "dictionary.compat", "port-id-map", "radiusclient.conf", "dictionary.ascend", "failsafe", "power", "reset", "rfkill", "K10improxy", "K10openvpn", "K10portal_mgmt", "K25zone", "K50dropbear", "K71hwnat", "K90ipv6", "K91network", "K91geoip", "K99umount", "K98boot", "S00zombie_monitor", "K26pppox", "S01spi_device_id", "S01led_early", "S10boot", "S15loggerd", "S19vnet", "S10system", "S20network", "S21tddpd", "S20geoip", "S25sysctl", "S26time_setting", "S25zone", "S22rsa_check", "S42ipgroup", "S31tmngtd", "S40fstab", "S42ipv6group", "S45firewall", "S42macgroup", "S46iptv", "S42service", "S46nat", "S46netbios_passthrough", "S47access_ctl", "S47administration", "S47dos_defense", "S42ippool", "S47flood_defense", "S47imb", "S47mac_filter", "S50cron", "S50dropbear", "S50pppox", "S50qos-tplink", "S50queueventd", "S50radvd", "S50snmpd", "S50uhttpd", "S60dnsmasq", "S60monitor", "S60pptpd", "S60url_filter", "S60xl2tpd", "S65wifidog", "S68online", "S70freeStrategy", "S70usbshare", "S71hwnat", "S72sfe", "S80usbmuxd", "S80websort", "S83web_security", "S85webfilter", "S89remote_mngt", "S90ndppd", "S90openvpn", "S90portal_mgmt", "S91wireguard", "S92qos_ctl", "S95done", "S95ifstat-mini", "S95ipstat", "S95l2tp", "S95mwan3", "S96backup", "S96cmxddns", "S96default_balance", "S96load_balance", "S96policy_route", "S96static_route", "S96sysntpd", "S96upnp", "S97gre_init", "S97ipsec", "S97session_limits", "S98ipsec_failover", "S98led", "S99avahi-daemon", "S99bootcount", "S99dnsproxy", "S99dpi", "S99drop_caches", "S99dynamic_route", "S99enablemodem", "S99improxy", "S99ipv6", "S99led_set", "S99lldpd", "S99phddns", "S99smp", "S99switch", "S99sys_monitor", "S99system_params", "S99usbmodem", "S99zbalance_loop_reset", "S99zero_boot_done", "S99zzddns", "S99zzomada_server", "S99zzzcloud_proc", "S99zzzzzsys_info", "0a775a30.0", "0b1b94ef.0", "0bf05006.0", "0f5dc4f3.0", "0f6fa695.0", "1d3472b9.0", "1e08bfd1.0", "1e09d511.0", "2ae6433e.0", "2b349938.0", "002c0b4f.0", "3bde41ac.0", "3e44d2f7.0", "3e45d192.0", "3fb36b73.0", "4a6481c9.0", "4b718d9b.0", "4bfab552.0", "4f316efb.0", "5ad8a5d6.0", "5cd81ad7.0", "5d3033c5.0", "5e98733a.0", "5f15c80c.0", "5f618aec.0", "6b99d060.0", "6d41d539.0", "06dc52d5.0", "6fa5da56.0", "7aaf71c0.0", "7f3d5d1d.0", "8cb5ee0f.0", "8d86cdd1.0", "8d89cda1.0", "9b5697b0.0", "9c8dfbd4.0", "9d04f354.0", "14bc7599.0", "48bec511.0", "57bcb2da.0", "062cdee6.0", "064e0aa9.0", "68dd7389.0", "75d1b2ed.0", "76cb8f92.0", "76faf6c0.0", "93bc0acc.0", "106f3e4d.0", "244b5494.0", "349f2832.0", "406c9bb1.0", "626dceaf.0", "653b494a.0", "706f604c.0", "749e9e03.0", "773e07ad.0", "930ac5d2.0", "988a38cb.0", "1001acf7.0", "2923b3f9.0", "03179a64.0", "4042bcee.0", "4304c5e5.0", "5273a94c.0", "5443e9e3.0", "7719f463.0", "8160b96c.0", "9482e63a.0", "18856ac4.0", "32888f65.0", "40547a79.0", "607986c7.0", "1636090b.0", "02265526.0", "3513523f.0", "09789157.0", "40193066.0", "54657681.0", "a94d09e5.0", "a3418fda.0", "ACCVRAIZ1.crt", "AC_RAIZ_FNMT-RCM.crt", "AC_RAIZ_FNMT-RCM_SERVIDORES_SEGUROS.crt", "Actalis_Authentication_Root_CA.crt", "aee5f10d.0", "AffirmTrust_Commercial.crt", "AffirmTrust_Networking.crt", "AffirmTrust_Premium.crt", "AffirmTrust_Premium_ECC.crt", "Amazon_Root_CA_1.crt", "Amazon_Root_CA_2.crt", "Amazon_Root_CA_3.crt", "Amazon_Root_CA_4.crt", "ANF_Secure_Server_Root_CA.crt", "Atos_TrustedRoot_2011.crt", "Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt", "b0e59380.0", "b7a5b843.0", "b81b93f0.0", "b1159c4c.0", "b66938e9.0", "b433981b.0", "b727005e.0", "Baltimore_CyberTrust_Root.crt", "bf53fb88.0", "Buypass_Class_2_Root_CA.crt", "Buypass_Class_3_Root_CA.crt", "c01eb047.0", "c28a8a30.0", "ca6e4ad9.0", "ca-certificates.crt", "CA_Disig_Root_R2.crt", "cbf06781.0", "cc450945.0", "cd8c0d63.0", "cd58d51e.0", "ce5e74ef.0", "Certigna.crt", "Certigna_Root_CA.crt", "certSIGN_ROOT_CA.crt", "certSIGN_Root_CA_G2.crt", "Certum_EC-384_CA.crt", "Certum_Trusted_Network_CA.crt", "Certum_Trusted_Network_CA_2.crt", "Certum_Trusted_Root_CA.crt", "CFCA_EV_ROOT.crt", "Comodo_AAA_Services_root.crt", "COMODO_Certification_Authority.crt", "COMODO_ECC_Certification_Authority.crt", "COMODO_RSA_Certification_Authority.crt", "Cybertrust_Global_Root.crt", "d4dae3dd.0", "d7e8dc79.0", "d887a5bb.0", "d6325660.0", "dc4d6a89.0", "dd8e9d41.0", "de6d66f3.0", "DigiCert_Assured_ID_Root_CA.crt", "DigiCert_Assured_ID_Root_G2.crt", "DigiCert_Assured_ID_Root_G3.crt", "DigiCert_Global_Root_CA.crt", "DigiCert_Global_Root_G2.crt", "DigiCert_Global_Root_G3.crt", "DigiCert_High_Assurance_EV_Root_CA.crt", "DigiCert_Trusted_Root_G4.crt", "D-TRUST_Root_Class_3_CA_2_2009.crt", "D-TRUST_Root_Class_3_CA_2_EV_2009.crt", "e8de2f56.0", "e18bfb83.0", "e36a6752.0", "e73d606e.0", "e113c810.0", "e868b802.0", "e35234b1.0", "EC-ACC.crt", "ee64a828.0", "eed8c118.0", "ef954a4e.0", "emSign_ECC_Root_CA_-_C3.crt", "emSign_ECC_Root_CA_-_G3.crt", "emSign_Root_CA_-_C1.crt", "emSign_Root_CA_-_G1.crt", "Entrust.net_Premium_2048_Secure_Server_CA.crt", "Entrust_Root_Certification_Authority.crt", "Entrust_Root_Certification_Authority_-_EC1.crt", "Entrust_Root_Certification_Authority_-_G2.crt", "Entrust_Root_Certification_Authority_-_G4.crt", "ePKI_Root_Certification_Authority.crt", "e-Szigno_Root_CA_2017.crt", "E-Tugra_Certification_Authority.crt", "f0c70a8d.0", "f30dd6ad.0", "f39fc864.0", "f51bb24c.0", "f249de83.0", "f3377b1b.0", "f081611a.0", "f387163d.0", "fa5da96b.0", "fc5a8f99.0", "fe8a2cd8.0", "feffd413.0", "ff34af3f.0", "GDCA_TrustAUTH_R5_ROOT.crt", "GlobalSign_ECC_Root_CA_-_R4.crt", "GlobalSign_ECC_Root_CA_-_R5.crt", "GlobalSign_Root_CA.crt", "GlobalSign_Root_CA_-_R2.crt", "GlobalSign_Root_CA_-_R3.crt", "GlobalSign_Root_CA_-_R6.crt", "GlobalSign_Root_E46.crt", "GlobalSign_Root_R46.crt", "GLOBALTRUST_2020.crt", "Go_Daddy_Class_2_CA.crt", "Go_Daddy_Root_Certificate_Authority_-_G2.crt", "GTS_Root_R1.crt", "GTS_Root_R2.crt", "GTS_Root_R3.crt", "GTS_Root_R4.crt", "Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt", "Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt", "Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt", "Hongkong_Post_Root_CA_1.crt", "Hongkong_Post_Root_CA_3.crt", "IdenTrust_Commercial_Root_CA_1.crt", "IdenTrust_Public_Sector_Root_CA_1.crt", "ISRG_Root_X1.crt", "Izenpe.com.crt", "Microsec_e-Szigno_Root_CA_2009.crt", "Microsoft_ECC_Root_Certificate_Authority_2017.crt", "Microsoft_RSA_Root_Certificate_Authority_2017.crt", "NAVER_Global_Root_Certification_Authority.crt", "NetLock_Arany_=Class_Gold=_F?tan\u00fas\u00edtv\u00e1ny.crt", "Network_Solutions_Certificate_Authority.crt", "OISTE_WISeKey_Global_Root_GB_CA.crt", "OISTE_WISeKey_Global_Root_GC_CA.crt", "QuoVadis_Root_CA_1_G3.crt", "QuoVadis_Root_CA_2.crt", "QuoVadis_Root_CA_2_G3.crt", "QuoVadis_Root_CA_3.crt", "QuoVadis_Root_CA_3_G3.crt", "Secure_Global_CA.crt", "SecureSign_RootCA11.crt", "SecureTrust_CA.crt", "Security_Communication_Root_CA.crt", "Security_Communication_RootCA2.crt", "SSL.com_EV_Root_Certification_Authority_ECC.crt", "SSL.com_EV_Root_Certification_Authority_RSA_R2.crt", "SSL.com_Root_Certification_Authority_ECC.crt", "SSL.com_Root_Certification_Authority_RSA.crt", "Staat_der_Nederlanden_EV_Root_CA.crt", "Starfield_Class_2_CA.crt", "Starfield_Root_Certificate_Authority_-_G2.crt", "Starfield_Services_Root_Certificate_Authority_-_G2.crt", "SwissSign_Gold_CA_-_G2.crt", "SwissSign_Silver_CA_-_G2.crt", "SZAFIR_ROOT_CA2.crt", "TeliaSonera_Root_CA_v1.crt", "TrustCor_ECA-1.crt", "TrustCor_RootCert_CA-1.crt", "TrustCor_RootCert_CA-2.crt", "Trustwave_Global_Certification_Authority.crt", "Trustwave_Global_ECC_P256_Certification_Authority.crt", "Trustwave_Global_ECC_P384_Certification_Authority.crt", "T-TeleSec_GlobalRoot_Class_2.crt", "T-TeleSec_GlobalRoot_Class_3.crt", "TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt", "TWCA_Global_Root_CA.crt", "TWCA_Root_Certification_Authority.crt", "UCA_Extended_Validation_Root.crt", "UCA_Global_G2_Root.crt", "USERTrust_ECC_Certification_Authority.crt", "USERTrust_RSA_Certification_Authority.crt", "XRamp_Global_CA_Root.crt", "cert.pem", "dnskey.conf", "connmark.conf", "des.conf", "aes.conf", "kernel-netlink.conf", "constraints.conf", "md5.conf", "attr.conf", "nonce.conf", "gmp.conf", "openssl.conf", "fips-prf.conf", "pem.conf", "hmac.conf", "pgp.conf", "pkcs1.conf", "pkcs7.conf", "pkcs12.conf", "pubkey.conf", "random.conf", "rc2.conf", "resolve.conf", "revocation.conf", "sha1.conf", "sha2.conf", "socket-default.conf", "sshkey.conf", "stroke.conf", "updown.conf", "x509.conf", "xauth-generic.conf", "xcbc.conf", "pki.conf", "scepclient.conf", "starter.conf", "charon-logging.conf", "charon.conf", "priv-key.pem", "server-cert.pem", "access_control", "00_uhttpd_ubus", "10-fstab", "10_migrate-shadow", "11_migrate-sysctl", "09_fix-seama-header", "12_network-generate-ula", "root.key", "unbound.conf.back", "named.cache", "12d1_0004", "12d1_0003", "12d1_0005", "12d1_0001", "19d2_0001", "19d2_0002", "19d2_0003", "19d2_0004", "ffff_0001", "12d1_0002", "ffff_0002", "ffff_0003", "xl2tpd.conf", "xl2tp-secrets", "acl_timeobj.lua", "acl_timeobj_v6.lua", "acl_wanhook.lua", "access_func_v6.sh", "attach_timeobj.lua", "core.sh", "access_func.sh", "interface.sh", "acl_delete_rule.lua", "core_log.sh", "markdef.sh", "time.sh", "core_acl.sh", "config.sh", "core_global.sh", "arp.sh", "gettime.sh", "cmd.sh", "backup.sh", "ecmp.sh", "api.sh", "ecmp.lua", "dynanmic_arpreq.sh", "getVid.sh", "access_time_help.lua", "access_dir_help.lua", "accountmgnt.lua", "access_ip_help.lua", "access.lua", "clock.lua", "http.lua", "interface.lua", "dhcp.lua", "ipsec.lua", "monitor_port.lua", "nat.lua", "show_if_help.lua", "routing.lua", "cli_ospf.lua", "show_interface.lua", "rip.lua", "show_interface_status.lua", "snmp.lua", "ssh.lua", "time_range.lua", "vlan.lua", "lan.js", "uci.sh", "arping.sh", "get_option.lua", "dhcps.sh", "main.sh", "dnssecquery.sh", "core_forwarding.sh", "core_init.sh", "core_interface.sh", "core_redirect.sh", "core_rule.sh", "core_tpfirewall.sh", "uci_firewall.sh", "fw.sh", "tpcmd.sh", "freeStrategy_backup.sh", "add_delete_tuple.sh", "add_delete.sh", "getip.sh", "preinit.sh", "leds.sh", "network.sh", "service.sh", "switch_port.sh", "procd.sh", "userconfig.sh", "uci-defaults.sh", "system.sh", "functions.sh", "gre_common.sh", "gre-ipsec-up-down.sh", "delete_restart.sh", "core_ipgroup.sh", "ipsec_check_domain_wrap.sh", "ipsec_failover_process.sh", "ipsec_handle_iptables.sh", "ipsec_check_domain.sh", "ipsec_generate_domain.sh", "ipsec_execute_stroke.sh", "ipsec_monitor_tunnel.sh", "ipsec_vnet.sh", "pd_api.sh", "lanv6_server.sh", "pd_server.sh", "core_ipv6group.sh", "get-vpn-gw.sh", "ifup-l2tp.sh", "ifdown-l2tp.sh", "l2tp-get-tunnel-info.sh", "get-vpn-ip.sh", "l2tp-init.sh", "l2tp-ipsec-delete.lua", "l2tp-ipsec-setstatus.lua", "l2tp-doipsec.sh", "l2tp-ipsec-up-down.sh", "l2tp-functions.sh", "l2tp-reload.sh", "char_conv.sh", "api_VPN.sh", "ldap_check_result.sh", "ldap_query.sh", "pre_setting_config.sh", "net_share.sh", "ramips.sh", "lldp_get_wan_device.sh", "50-xt_flood", "50-arp_garp", "get_rps.sh", "get_temperature.sh", "set_fan.sh", "nat_alg.sh", "nat_config.sh", "nat_dmz.sh", "nat_common.sh", "nat_pt.sh", "nat_dmz_bypass.sh", "nat_vs.sh", "nat_core.sh", "nat_log.sh", "nat_one.sh", "nat_napt.sh", "6rd.sh", "dhcp.sh", "directip.sh", "3g.sh", "ncm.sh", "dhcp6c.sh", "6to4.sh", "ppp.sh", "l2tp.sh", "pppv6.sh", "dslite.sh", "qmi.sh", "v6plus.sh", "lanv6.sh", "passthrough.sh", "dhcp.script", "netifd-wireless.sh", "netifd-proto.sh", "if-do-timeobj.sh", "ppp-down", "ppp-up", "pppv6-share", "dslite-up.sh", "pppv6-up", "dhcp6c.script", "utils.sh", "v6plus-dial.sh", "ppp-dhcp6c.script", "switch.sh", "network_arch.sh", "online_api.sh", "online_reload.lua", "openvpn-client-disconnect.sh", "openvpn-client-routeup.sh", "openvpn-client-connect.sh", "openvpn-client-down.sh", "openvpn-server-up.sh", "openvpn-client-up.sh", "openvpn-common.sh", "openvpn-instance.sh", "openvpn-password.lua", "openvpn-server-down.sh", "pppox-default-variables.sh", "pppox-header.sh", "kill-pptpd-xl2tpd.sh", "pppox-reload-user.lua", "pppox-functions.sh", "pppox-reload-user.sh", "pppox-begin-reload-user.sh", "pppox-remote-management.sh", "pppox-load-user.lua", "pppox-pppoetimer.sh", "pppox-remote-management-get-ippool.lua", "pppox-wheader.sh", "pppox-killtunnel.sh", "ifup_down.sh", "add-service.sh", "enable_service.sh", "pptp-get-tuunel-info.sh", "delete-service.sh", "pptp-global-setting.sh", "pptp-client-add.sh", "pptp-ifdevice-info.sh", "pptp-client-update.sh", "pptp-option.sh", "pptp-startup.sh", "pptp-tunnel-action.sh", "test.sh", "pptp-client-delete.sh", "05_set_iface_mac_mediatek", "02_default_set_state", "07_set_preinit_iface_ramips", "40_run_failsafe_hook", "04_handle_checksumming", "50_indicate_regular_preinit", "10_indicate_failsafe", "70_initramfs_test", "03_preinit_do_ramips.sh", "80_mount_root", "98_10_mtk_failsafe_init", "30_failsafe_wait", "99_10_failsafe_login", "99_10_run_init", "10_indicate_preinit", "qos_config_sync.lua", "qos_nf.sh", "qos_api.sh", "qos_cid.sh", "qos_dpdk.sh", "qos_grpmark.sh", "find_index.lua", "qos_ifgroup.sh", "qos_core.sh", "qos_ipset.sh", "qos_mark.sh", "qos_polling.sh", "qos_public.sh", "qos_state.sh", "qos_tc.sh", "state_gen.lua", "zone-450", "qos_delete_rule.lua", "remote_mngt.sh", "route_api.sh", "core_service.sh", "session_limits.sh", "ar8327_switch_led", "ar8327_switch_portMirror", "ar8327_switch_init", "ar8327_switch_portStatistic", "ar8327_register", "ar8327_switch_portVlan", "ar8327_switch_portPara", "ar9533_register", "ar8327_switch_portState", "ar9533_switch_init", "ar8327_switch_portRateControl", "ar9533_switch_portMirror", "ar9533_switch_portPara", "ar9533_switch_portRateControl", "ar8327_switch_8021Qvlan", "ar9533_switch_portState", "ar9533_switch_portStatistic", "ar9533_switch_portVlan", "cn9130_register", "cn9130_switch_globalLed", "cn9130_switch_init", "cn9130_switch_portMirror", "cn9130_switch_portPara", "cn9130_switch_portRateControl", "cn9130_switch_portState", "cn9130_switch_portStatistic", "cn9130_switch_portVlan", "mt7621_register", "mt7621_switch_globalLed", "mt7621_switch_led", "mt7621_switch_portMirror", "mt7621_switch_portPara", "mt7621_switch_portRateControl", "mt7621_switch_portState", "mt7621_switch_portStatistic", "mt7621_switch_portVlan", "mt7628_register", "mt7628_switch_init", "mt7628_switch_led", "mt7628_switch_portMirror", "mt7628_switch_portPara", "mt7628_switch_portRateControl", "mt7628_switch_portState", "mt7628_switch_portStatistic", "mt7628_switch_portVlan", "rtl8367s_register", "rtl8367s_switch_globalLed", "rtl8367s_switch_init", "rtl8367s_switch_portMirror", "rtl8367s_switch_portPara", "rtl8367s_switch_portRateControl", "rtl8367s_switch_portState", "rtl8367s_switch_portStatistic", "rtl8367s_switch_portVlan", "switch_functions", "vlan_network", "sysparams_net.sh", "timeobj_cron_api.sh", "timeobj_api.sh", "boot_done", "led.sh", "set_time", "base-files-essential", "libopenldap", "base-files", "online_check", "mwan3-tplink", "openvpn-easy-rsa", "openvpn-mgmt", "portal-mgmt", "ppp-mod-radius", "snmpd-static", "https-dns-proxy", "luci-add-conffiles.sh", "platform.sh", "ubnt.sh", "nand.sh", "common.sh", "upnp_api.sh", "find_target.lua", "url_func.sh", "detach_timeobj.lua", "csv2db.sh", "vnet_zone_api.sh", "vnet_init.sh", "vnet.sh", "vnet_core.sh", "vnet_zone_init.sh", "webfilter_func.sh", "web_func.sh", "websec_timeobj.lua", "start_rule.sh", "wireguard-up.sh", "wireguard-down.sh", "auth_port_modify.sh", "core_wportal.sh", "zone_api.sh", "zone_core.sh", "zone_api_all.sh", "zone_conf.sh", "zone_init.sh", "zone_api_core.sh", "zone_init_all.sh", "note", "devstatus", "firstboot", "fixup-mac-address", "fw", "hotplug-call", "ifdown", "ifstart", "ifrestart", "ifstatus", "loadopenvpncert", "log_oops_recovery.sh", "luci-reload", "ifup", "reload_config", "restorefactory", "smp.sh", "snapshot", "sysupgrade", "wifi", "ubi_make_extra_volume.sh", "ipset.debug", "ipxd", "iptables.debug", "ipxr", "wifidog-init", "radiusclient-ng.h", "dpi.sh", "libradiusclient-ng.la", "libstdc++.so.6.0.21-gdb.py", "dynamic_dns_dyndns.sh", "dynamic_dns_log.sh", "customddns_set_url.sh", "url_escape.sed", "dynamic_dns_customddns.sh", "dynamic_dns_noip.sh", "dynamic_dns_updater.sh", "dynamic_dns_functions.sh", "dpi_log_database.lua", "dpi_log_database.sh", "dpi_tmngtd.sh", "_updown", "ngx_init.lua", "authlistCheck.lua", "ngx_wdas.lua", "ngx_sqlApi.lua", "cell_valueheader.htm", "cell_valuefooter.htm", "dvalue.htm", "compound.htm", "dynlist.htm", "browser.htm", "apply_xhr.htm", "firewall_zoneforwards.htm", "button.htm", "firewall_zonelist.htm", "delegator.htm", "footer.htm", "full_valuefooter.htm", "full_valueheader.htm", "fvalue.htm", "header.htm", "lvalue.htm", "map.htm", "mvalue.htm", "network_ifacelist.htm", "network_netinfo.htm", "network_netlist.htm", "nsection.htm", "nullsection.htm", "simpleform.htm", "tabcontainer.htm", "tabmenu.htm", "tblsection.htm", "tsection.htm", "tvalue.htm", "ucisection.htm", "upload.htm", "value.htm", "valuefooter.htm", "valueheader.htm", "error404.htm", "error500.htm", "indexer.htm", "sysauth.htm", "debug.lua", "mbimfind.lua", "log_awk", "modem_scan.sh", "check_switchmode.lua", "protofind.lua", "handle_card_process.sh", "search_tty.lua", "handle_card.sh", "unlock_pin.sh", "getisp.sh", "usbmodem_log.sh", "modemLedCtrl.sh", "portal_mgmt_monitor.lua", "portal_mgmt_monitor.sh", "rewrite.lua", "portal_status.sh", "hardware.txt", "jshn.sh", "default.script", "dbus-K5ae4EDHao", "osui.sock", "qipc_sharedmemory_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "qipc_systemsem_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "sddm-:0-BoTuTx", "sddm-auth-52b94a64-454a-4d7f-903e-32df6aac784a", "tmp.QMAjonKZB0", "xF43MOjWbQiz+vIQbjaGodBk4PpoECFzUYyznnj8Enc=", "about.svg", "about_hover.svg", "ie.css", "style.css", "widget.css", "access_control.html", "account_config.html", "account_mngt.html", "action_check.html", "alg.html", "appdist.html", "appdist_database.html", "appflow_statistics.html", "application_filter.html", "application_list.html", "arp_list.html", "arp_scan.html", "assign_restriction.html", "attack-defense.html", "balance_basic.html", "bridge.html", "bwlist_qq.html", "cmxddns.html", "controller_setting.html", "country_group.html", "custom_ddns.html", "ddm.html", "dhcp_client.html", "dhcp_lan_settings.html", "dhcp_lan_settings_standalone.html", "dhcp_server.html", "dhcp_static.html", "diagnostic.html", "dia_info.html", "dns_cache.html", "dns_doh.html", "dns_dot.html", "dnsproxy.html", "dnssec.html", "dyn3322ddns.html", "dynddns.html", "firmware_backuprestore.html", "firmware_factory.html", "firmware_managing.html", "firmware_reboot.html", "firmware_reseting.html", "firmware_upgrade.html", "gre_overipsec.html", "ifstat.html", "imb.html", "interface.html", "interface_mac.html", "interface_mode.html", "interface_wan.html", "interface_wan_standalone.html", "ipgroup_address.html", "ipgroup_group.html", "ipgroup_view.html", "ippool.html", "ips_blacklists.html", "ipsec_sa.html", "ipsec_tunnel.html", "ips_setting.html", "ips_signature_suppression.html", "ips_stats.html", "ip_stats.html", "ips_threat_management.html", "ips_whitelists.html", "iptv.html", "ipv6.html", "ipv6group_address.html", "ipv6group_group.html", "ipv6_lan.html", "isp_routing.html", "l2tp_client.html", "l2tp_global.html", "l2tp_server.html", "l2tp_tunnel.html", "ldap_profiles.html", "line_backup.html", "macFiltering.html", "mdns.html", "napt.html", "nat_dmz.html", "noipddns.html", "one_nat.html", "online.html", "openvpn_client.html", "openvpn_server.html", "openvpn_tunnel.html", "ospf.html", "phddns.html", "policy_routing.html", "port_trigger.html", "pptp_client.html", "pptp_global.html", "pptp_server.html", "pptp_tunnel.html", "preview_mobile_wifi.html", "preview_remind.html", "preview_wportal.html", "print_server.html", "qos.html", "qos_Band_ctrl.html", "qos_Class_role.html", "qos_Traffic.html", "qos_VoIP.html", "quick_setup.html", "reboot_schedule.html", "remote_mngt.html", "rip_routing.html", "rules.html", "service.html", "session_limits.html", "session_monitor.html", "sessmngr.html", "snmp.html", "ssl_vpn_auth.html", "ssl_vpn_auth_radius.html", "ssl_vpn_locked_user.html", "ssl_vpn_quicksetup.html", "ssl_vpn_server.html", "ssl_vpn_status.html", "ssl_vpn_tunnel.html", "ssl_vpn_tunnel_group.html", "ssl_vpn_user.html", "ssl_vpn_user_group.html", "static_routing.html", "switch_Parameter.html", "switch_portLimit.html", "switch_portMonitor.html", "switch_portStatistics.html", "switch_portStatus.html", "switch_portVlan.html", "sys_status.html", "system_log.html", "system_mode.html", "system_params.html", "system_routetbl.html", "system_state.html", "time_mngt.html", "time_setting.html", "upnp.html", "url_filtering.html", "usb_backup.html", "usb_firmware_upgrade.html", "usbModem.html", "usb_storage.html", "usermngr_backup.html", "usermngr_user.html", "virtual_server.html", "vlan_portSetting.html", "vlan_relationTbl.html", "vlan_vlanSetting.html", "vpn_general.html", "vpn_peers.html", "vpn_user.html", "vpn_wireguard.html", "web_filter.html", "web_group.html", "web_security.html", "wechat.html", "wechat_wifi.html", "wizard.html", "wportal.html", "wportal_free.html", "advanced.html", "basic.html", "encrypt.js", "excanvas.js", "html5.js", "jquery.flot.barnumbers.js", "jquery.flot.crosshair.js", "jquery.flot.fillbetween.js", "jquery.flot.js", "jquery.flot.pie.min.js", "jquery.json-2.4.min.js", "jquery.min.js", "jquery.scrollTo.min.js", "md5.js", "button.js", "buttongroup.js", "checkbox.js", "combobox.js", "fieldset.js", "file.js", "folderTree.js", "form.js", "number.js", "password.js", "portrange.js", "progressbar.js", "radio.js", "region.js", "slider.js", "status.js", "subnet.js", "switch.js", "textarea.js", "textbox.js", "time.js", "timepicker.js", "tip.js", "waitingbar.js", "editor.js", "grid.js", "paging.js", "chart.js", "foldertree.js", "keyword.js", "msg.js", "page.js", "panel.js", "wizard.js", "widget.js", "proxy.js", "store.js", "treestore.js", "controller.js", "su.full.min.js", "su.js", "account.2ca6a054.js", "chunk-vendors.0cdf10f0.js", "index.a415cbb4.js", "login.4f52b876.js", "chunk-common.72de4705.css", "account.html", "app.manifest", "cs_dis.html", "error.html", "index.html", "login.html", "mobile_wifi.html", "pcauth.js", "pc_wifi.html", "style-pcdemo.css", "style-simple-follow.css", "web_login.html", "cbi.js", "xhr.js" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1520", "name": "Domain Generation Algorithms", "display_name": "T1520 - Domain Generation Algorithms" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 38, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "Merkd1904", "id": "196517", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CIDR": 11, "hostname": 491, "FileHash-SHA256": 3479, "FileHash-MD5": 67, "domain": 312, "FileHash-SHA1": 61, "email": 20, "URL": 373 }, "indicator_count": 4814, "is_author": false, "is_subscribing": null, "subscriber_count": 72, "modified_text": "756 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "65708c8a9635f156e79238f1", "name": "intel gained from a spam text", "description": "", "modified": "2023-12-06T15:00:26.727000", "created": "2023-12-06T15:00:26.727000", "tags": [], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 2, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "StreamMiningEx", "id": "262917", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CVE": 1, "FileHash-SHA256": 823, "domain": 717, "URL": 2245, "hostname": 615, "email": 4, "FileHash-MD5": 5, "FileHash-SHA1": 1 }, "indicator_count": 4411, "is_author": false, "is_subscribing": null, "subscriber_count": 110, "modified_text": "906 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "6266f7e0e0264cba210a4e9e", "name": "intel gained from a spam text", "description": "var b[f]=g, if b(f) is not allowed to reach its maximum by the end of a set, then a.b(b) will be able to do so at the same time as a", "modified": "2022-05-25T00:04:03.622000", "created": "2022-04-25T19:34:56.772000", "tags": [ "array", "typeerror", "symbol", "null", "string", "iterator", "object", "error", "boolean", "function", "service", "date", "phonenumber", "facebook", "meta", "typeof e", "typeof u", "typeof window", "es modules", "use esm", "webkit", "component", "typeof", "typeof y", "typeof symbol", "suspense", "context", "forwardref", "unknown", "4096", "typeof n", "promise", "weakmap", "dataview", "typeof t", "webpackrequire", "modulenotfound", "e1342177279", "array int8array", "loanup", "insurance", "group", "health", "solutions", "policy", "site", "america", "company", "life", "plan", "direct", "media", "alliance", "click", "team", "never", "advantage", "general", "light", "february", "april", "june", "august", "footer", "protect", "banker", "explorer", "fast", "martin", "union", "carrier", "next", "colony", "energy", "empire", "gerber", "philadelphia", "hippo", "king", "agent", "mercury", "moss", "premium", "nextgen", "oscar", "phoenix", "loans", "pure", "ramsey", "ranger", "solar", "titan", "tristate", "viking", "easy", "push", "code", "stop", "carriers", "live", "lucky", "moral", "story", "back", "lfunction", "dfunction", "cfunction", "typeof self", "number", "copyright", "closure library", "xdfunction", "cdfunction", "ddfunction", "bded", "kefunction", "reduceright", "gj9pcw0f6jv", "regexp", "r420", "uint8array", "typeof d", "void" ], "references": [ "https://www.googletagmanager.com/gtag/js?id=G-J9PCW0F6JV", "https://www.googletagmanager.com/gtag/js?id=UA-185991747-1", "https://insurancerateusa.com/polyfill-036b4a134d8725752ba0.js", "xfe-URL-insurancerateusa.com-stix2-2.1-export.json", "https://insurancerateusa.com/app-74647f151b541f3098c2.js", "https://insurancerateusa.com/bfcc7b67-0b189ba6da3fc3ae8b88.js", "https://insurancerateusa.com/94297995-69529ad7536f090aa776.js", "https://insurancerateusa.com/3bea8d40-8926f4790c0b3689a361.js", "https://insurancerateusa.com/framework-19eddc0d879a49dfe606.js", "https://insurancerateusa.com/webpack-runtime-f014a3267add02a94afb.js", "https://connect.facebook.net/signals/config/3689470801106673?v=2.9.57&r=stable" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [ { "id": "ReduceRight", "display_name": "ReduceRight", "target": null } ], "attack_ids": [ { "id": "T1059", "name": "Command and Scripting Interpreter", "display_name": "T1059 - Command and Scripting Interpreter" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 10, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "adjadex1@gmail.com", "id": "187163", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "hostname": 615, "URL": 2246, "FileHash-SHA256": 823, "domain": 717, "CVE": 1, "email": 4, "FileHash-MD5": 5, "FileHash-SHA1": 1 }, "indicator_count": 4412, "is_author": false, "is_subscribing": null, "subscriber_count": 70, "modified_text": "1466 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 } ], "references": [ "", "jquery.min.js", "ffff_0003", "Demonstrating Hustle.pdf", "ospf", "ip_stats.html", "access_control", "smp", "2015-03-11 - Malvertising Targeting European Transit Users.pdf", "Security_Communication_Root_CA.crt", "99_10_run_init", "bwlist_qq.html", "2015-09-29 - Andromeda Bot Analysis part 2.pdf", "a94d09e5.0", "led_set", "location.json", "K25zone", "pkcs1.conf", "2001:98ff", "test.sh", "vlan.lua", "19d2:2000", "dpi.sh", "l2tp-ipsec-up-down.sh", "application_list.html", "1614:0802", "webfilter_global", "Buypass_Class_3_Root_CA.crt", "dynamic_route", "54-usb3", "slider.js", "2015-01-14 - Catching the \u201cInception Framework\u201d Phishing Attack.pdf", "Babar.pdf", "directip.gcom", "l2tp-doipsec.sh", "pptp-client-add.sh", "upnp.html", "S60xl2tpd", "1ee8:0009", "12d1:1f11", "1-vnet_lanhook.sh", "huaweiinfo.gcom", "Buypass_Class_2_Root_CA.crt", "remote_mngt.html", "upload.htm", "2015-06-24 - Stealthy Cyberespionage Campaign Attacks With Social Engineering.pdf", "S50uhttpd", "servers", "2015-01-22 - New RATs Emerge from Leaked Njw0rm Source Code.pdf", "SecureSign_RootCA11.crt", "ce5e74ef.0", "account_mngt.html", "18-dnsproxy.sh", "12d1:#linux", "e8de2f56.0", "19d2:1030", "csv2db.sh", "12d1:1583", "18-ipgroup", "48bec511.0", "openvpn-server-up.sh", "K99umount", "19d2:0040", "ssl_vpn_auth_radius.html", "ar8327_switch_8021Qvlan", "scepclient.conf", "application_filter.html", "sysupgrade.conf", "60-dhcpsvnet.sh", "2015-09-01 - Attackers Target Organizations in Japan; Transform Local Sites into C&C Servers for EMDIVI Backdoor.pdf", "ipt-compat-xtables", "2015-09-14 - The Shade Encryptor- a Double Threat.pdf", "1004:607f", "userconfig.sh", "3g.sh", "UCA_Global_G2_Root.crt", "10-fstab", "04bb:bccd", "debug.lua", "0af0:7381", "2015-10-16 - Surveillance Malware Trends- Tracking Predator Pain and HawkEye.pdf", "40-fs-nfsd", "01_leds", "dictionary.microsoft", "switch_port.sh", "fe8a2cd8.0", "230d:000b", "usb_storage.html", "controller.conf", "index.txt", "ipgroup", "cs_dis.html", "system_log.html", "21f5:1000", "Certum_Trusted_Network_CA.crt", "230d:0101", "5cd81ad7.0", "fieldset.js", "99-nginx.sh", "access_dir_help.lua", "dpi_log_database.lua", "buttongroup.js", "chat-gsm-test-anydata", "ipsec", "cron", "ifrestart", "zone_api_core.sh", "charon.conf", "wireguard_interface", "Entrust_Root_Certification_Authority_-_EC1.crt", "utils.sh", "0ace:2011", "remote_mngt.sh", "dhcp.lua", "directip-stop.gcom", "25-nls-cp1250", "dpi", "2015-07-02 - Win32-Lethic Botnet Analysis.pdf", "2020:f00f", "b0e59380.0", "html5.js", "15eb:7153", "jquery.flot.js", "S96default_balance", "https://insurancerateusa.com/bfcc7b67-0b189ba6da3fc3ae8b88.js", "cmd.sh", "1ee8:0054", "nsection.htm", "50-access_ctl.sh", "nullsection.htm", "0af0:7031", "2015-09-12 - Stuxnet code.pdf", "2015-10-13 - Dridex (Bugat v5) Botnet Takeover Operation.pdf", "S95ifstat-mini", "advanced.html", "4042bcee.0", "97-qos.sh", "ipt-nfqueue", "1d09:1000", "uhttpd", "2001:a401", "30-fs-reiserfs", "1c9e:9e00", "firmware_reboot.html", "Certum_Trusted_Root_CA.crt", "106c:3b03", "0af0:d157", "12d1_0001", "S70usbshare", "2015-09-03 - Three Variants of Murofet's DGA.pdf", "0471:1237", "0af0:d058", "dpi_log_database.sh", "switch_portStatistics.html", "0421:0627", "serial", "12d1:1f07", "interface_mac.html", "header.htm", "201e:2009", "2015-09-24 - Meet GreenDispenser- A New Breed of ATM Malware.pdf", "webfilter", "40193066.0", "smschk.gcom", "service", "nat_core.sh", "ssl_vpn_user.html", "2015-01-22 - Malvertising Leading To Flash Zero Day Via Angler Exploit Kit.pdf", "91-gre.sh", "wireguard_peers", "97-route.sh", "timeobj_api.sh", "nf-conntrack-netlink", "2015-10-01 - Linux.Rekoobe.1.pdf", "Certigna_Root_CA.crt", "2015-07-23 - An Analysis of the Qadars Banking Trojan.pdf", "1ee8:0013", "12d1:380b", "config.sh", "api.sh", "2015-01-22 - Scarab attackers took aim at select Russian targets since 2012.pdf", "qos_Traffic.html", "ar9533_register", "0af0:d257", "protofind.lua", "0af0:6771", "96-cmxddns.sh", "ipsec_check_domain_wrap.sh", "ipt-filter", "ipt-account", "2015-08-05 - Newly discovered Chinese hacking group hacked 100+ websites to use as \u201cwatering holes\u201d.pdf", "12d1:14c1", "GTS_Root_R2.crt", "98-ipt_web_dns_match", "system_routetbl.html", "usb-serial-option", "mt7621_switch_portState", "options.default", "1c9e:9d00", "textbox.js", "19d2:1238", "access_time_help.lua", "port-id-map", "2015-07-13 - \u201cForkmeiamfamous\u201d- Seaduke, latest weapon in the Duke armory.pdf", "ips_blacklists.html", "openvpn_server.html", "19d2:1225", "2015-03-04 - And you get a POS malware name...and you get a POS malware name....and you get a POS malware name.....pdf", "6to4.sh", "APT 28.pdf", "1199:0fff", "2015-10-06 - I am HDRoot! Part 1.pdf", "ipsec_monitor_tunnel.sh", "protocols", "add_delete_tuple.sh", "30-tun", "nfnetlink", "K91geoip", "ffff_0002", "16d8:6804", "2015-07-30 - Operation Potao Express- Analysis of a cyber?espionage toolkit.pdf", "vnet_zone_api.sh", "18-ipv6group", "openvpn-client-up.sh", "2015-04-15 - The Chronicles of the Hellsing APT_the Empire Strikes Back.pdf", "get-vpn-gw.sh", "DigiCert_High_Assurance_EV_Root_CA.crt", "client.key", "openssl-1.0.0.cnf", "2015-04-12 - SIMDA- A Botnet Takedown.pdf", "Cmstar Downloader.pdf", "0df7:0800", "EC-ACC.crt", "openvpn_client.html", "0af0:7251", "portal_mgmt_monitor.sh", "0fd1:1000", "12d1:14fe", "qos_ifgroup.sh", "metadata.json", "sfe", "gre-ipsec-up-down.sh", "handle_card.sh", "dvalue.htm", "2015-08-18 - Knowledge Fragment- Unwrapping Fobber.pdf", "2015-09-28 - Hammertoss- What, Me Worry-.pdf", "0af0:4007", "25-nls-iso8859-6", "qos.html", "time_range.lua", "12d1:1449", "Network_Solutions_Certificate_Authority.crt", "lldp_get_wan_device.sh", "Bookworm Trojan (1).pdf", "70_initramfs_test", "https://insurancerateusa.com/3bea8d40-8926f4790c0b3689a361.js", "error404.htm", "openvpn-client-connect.sh", "rip_routing.html", "getcardinfo.gcom", "find_index.lua", "The Jane Syndrome Files.txt", "load_balance", "pptp_server.html", "tip.js", "2015-02-25 - Pony Sourcecode.pdf", "2015-02-04 - Pawn Storm Update- iOS Espionage App Found.pdf", "openwrt_release", "S99dpi", "jquery.scrollTo.min.js", "account_config.html", "reference", "19d2:1175", "luci", "nat_log.sh", "verify_pub.key", "mt7621_switch_globalLed", "1410:5023", "2077:f000", "qmi.sh", "openvpn-password.lua", "10-firewall.sh", "2001:00a6", "envvars", "Microsoft_RSA_Root_Certificate_Authority_2017.crt", "core_wportal.sh", "certSIGN_Root_CA_G2.crt", "2015-08-26 - Sphinx, a new variant of Zeus available for sale in the underground.pdf", "1bbb:011f", "core_global.sh", "about_hover.svg", "22f4:0021", "charon-logging.conf", "xauth-generic.conf", "delete_restart.sh", "ef954a4e.0", "ipset.debug", "ipt-ipv4options", "2001:a805", "COMODO_RSA_Certification_Authority.crt", "map.htm", "1fac:0032", "05c6:1000:sVe=GT", "K91network", "1fac:0150", "IdenTrust_Commercial_Root_CA_1.crt", "0af0:d155", "b81b93f0.0", "preinit.sh", "1410:5010", "2015-10-13 - Prolific Cybercrime Gang Favors Legit Login Credentials.pdf", "service.sh", "openvpn-instance.sh", "https://www.googletagmanager.com/gtag/js?id=UA-185991747-1", "TrustCor_ECA-1.crt", "procd.sh", "tmp.QMAjonKZB0", "firstboot", "ifstat.html", "interface_wan_standalone.html", "06-wan_log", "controller_setting.html", "1e08bfd1.0", "Anthem hack all roads lead to China.pdf", "base-files-essential", "AffirmTrust_Networking.crt", "dynamic_dns_updater.sh", "nat_common.sh", "dnsproxy.html", "fw", "usb_backup.html", "2020:0002", "pppv6.sh", "626dceaf.0", "dns_dot.html", "cmxddns", "cli_cmd.tree", "static_routing.html", "f39fc864.0", "40-bonding", "89-remote_mngt.sh", "lanv6.sh", "dnsmasq", "netbios_passthrough", "1004:6156", "pptp_global.html", "2015-12-09 - Inside Chimera Ransomware - the first 'doxingware' in wild.pdf", "ar9533_switch_portPara", "modem-configure.gcom", "07d1:a804", "ar9533_switch_portVlan", "command.gcom", "preview_wportal.html", "19d2_0002", "2015-03-03 - C99Shell not dead.pdf", "rules.html", "ipv6.html", "locale", "error500.htm", "S50cron", "https://insurancerateusa.com/framework-19eddc0d879a49dfe606.js", "230d:0007", "core_ipv6group.sh", "96-phddns.sh", "ncm.json", "0471:1210:uMa=Philips", "lib-textsearch", "S96backup", "TeliaSonera_Root_CA_v1.crt", "12d1:1f02", "NAVER_Global_Root_Certification_Authority.crt", "qos_ipset.sh", "alg.html", "05c6:2000", "19d2:0149", "Certum_EC-384_CA.crt", "7f3d5d1d.0", "80-fuse", "DigiCert_Global_Root_G2.crt", "qipc_systemsem_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "05c7:1000", "2015-07-16 - Github Repo with source code of cd00r.c.pdf", "257a:c000", "1410:5055", "tvalue.htm", "0af0:8302", "d7e8dc79.0", "2015-04-13 - Cyber Deterrence in Action- A story of one long HURRICANE PANDA campaign.pdf", "openvpn-client-disconnect.sh", "0af0:6751", "Info.plist", "fastcgi_params", "freePolicy", "e35234b1.0", "dictionary.compat", "GlobalSign_ECC_Root_CA_-_R5.crt", "11-led", "cli_ssh_cmd.tree", "l2tp.sh", "19d2:1001", "40-qos.sh", "login.html", "cellinfo.gcom", "19d2:0115", "fa5da96b.0", "12d1:1f19", "TWCA_Root_Certification_Authority.crt", "dynamic_dns_customddns.sh", "70-pptp-ifdown.sh", "usb-serial-wwan", "web_func.sh", "tddpd", "1004:613f", "2015-12-18 - Attack on French Diplomat Linked to Operation Lotus Blossom.pdf", "subnet.js", "dictionary.merit", "reload_config", "90-xt_tplimit", "wireguard-down.sh", "QuoVadis_Root_CA_2.crt", "qos_public.sh", "0408:f001", "10-sysctl", "pptp-server-global", "1-lanhook.sh", "2015-03-04 - New crypto ransomware in town - CryptoFortress.pdf", "5273a94c.0", "12d1:155a", "2015-01-13 - New Carberp variant heads down under.pdf", "1410:7001", "0af0:d357", "7aaf71c0.0", "97-mwan3.sh", "file.js", "state_gen.lua", "bf53fb88.0", "0af0:d031", "201e:1023", "S99dnsproxy", "AffirmTrust_Commercial.crt", "mt7628_register", "10-rt2x00-eeprom", "ca6e4ad9.0", "core.sh", "1c9e:98ff", "2015-04-09 - The Banking Trojan Emotet- Detailed Analysis.pdf", "95-online.sh", "2015-01-15 - Weiterentwicklung anspruchsvoller Spyware- von Agent.BTZ zu ComRAT.pdf", "Duqu 2.0 Yara rules.pdf", "0421:0637", "0af0:d057", "2015-01-08 - Major malvertising campaign spreads Kovter Ad Fraud malware.pdf", "dynamic_dns_noip.sh", "qos_delete_rule.lua", "logrotate.conf", "Agent.BTZ to ComRAT.pdf", "sysparams_net.sh", "vpn_peers.html", "2015-09-11 - CSI MacMark- Janicab.pdf", "dictionary", "Trustwave_Global_Certification_Authority.crt", "show_if_help.lua", "99-ipt_tpconnlimit", "Cybertrust_Global_Root.crt", "0b3c:f00c", "1ee8:0045", "wireguard-up.sh", "authlistCheck.lua", "2015-08-19 - Antak WebShell.pdf", "qos_grpmark.sh", "2015-01-11 - The Mozart RAM Scraper.pdf", "04cc:226f", "http.lua", "mmc", "05c6:1000:uMa=Vertex", "988a38cb.0", "50-l2tp-lowerif-up-down.sh", "Animals in the APT Farm.pdf", "S97session_limits", "1edf:6003", "S46iptv", "e36a6752.0", "05-lanv6", "OISTE_WISeKey_Global_Root_GC_CA.crt", "19d2:0026", "password.js", "rtl8367s_register", "xl2tpd.conf", "portal_mgmt_monitor.lua", "pptp-client", "firmware_upgrade.html", "19d2:1038", "2015-02-15 - Carbanak.pdf", "pppox-header.sh", "preview_mobile_wifi.html", "url_func.sh", "full_valueheader.htm", "openssl.cnf", "50-usb-ohci", "textarea.js", "number.js", "qos_ctl", "encrypt.js", "switch.js", "cell_valuefooter.htm", "2015-12-17 - SlemBunk- An Evolving Android Trojan Family Targeting Users of Worldwide Banking Apps.pdf", "0421:062c", "system_params", "S99usbmodem", "18-dnsproxyvnet.sh", "10-policy_route.sh", "Certigna.crt", "0f6fa695.0", "2015-05-22 - The DGA of Ranbyus.pdf", "99-mdns.sh", "AC_RAIZ_FNMT-RCM_SERVIDORES_SEGUROS.crt", "2015-04-27 - Threat Spotlight- TeslaCrypt \u2013 Decrypt It Yourself.pdf", "combobox.js", "0af0:d033", "2015-11-03 - Reversing the SMS C&C protocol of Emmental (1st part - understanding the code).pdf", "257a:b000", "noipddns.html", "inittab", "1c9e:1001", "19d2:1588", "S95mwan3", "ifup-l2tp.sh", "zone_init_all.sh", "1004:6190", "usb_firmware_upgrade.html", "xfe-URL-insurancerateusa.com-stix2-2.1-export.json", "12d1:15cf", "1410:5059", "90-xt_dosdrop", "valueheader.htm", "0af0:6811", "cli_extra_cmd.tree", "switch_portStatus.html", "usb-net-rndis", "15-mwan3", "0af0:7601", "12d1:1505", "https://insurancerateusa.com/webpack-runtime-f014a3267add02a94afb.js", "S99dynamic_route", "chat-get-qualcomm_1", "mt7621_switch_portStatistic", "nat_pt.sh", "dhcp6s", "portal-mgmt", "print_server.html", "compound.htm", "04-ipv6", "access_func_v6.sh", "jquery.flot.barnumbers.js", "usb-net-cdc-ncm", "148f:2578", "70-backup", "54657681.0", "accountmgnt", "b66938e9.0", "cn9130_switch_globalLed", "widget.js", "ipt-nathelper-extra", "25-nls-cp775", "dhcp.script", "ipsec_sa.html", "S96static_route", "ips_setting.html", "S21tddpd", "ff34af3f.0", "dnskey.conf", "1-vnet_lanv6hook.sh", "12d1:1f16", "iptv.html", "daemons", "openvpn", "url_filtering.html", "nat_dmz.html", "e113c810.0", "usb-net-cdc-ether", "DigiCert_Assured_ID_Root_CA.crt", "07d1:a800", "50-xt_flood", "pd_server.sh", "8160b96c.0", "sysupgrade", "01-usb-led", "ngx_wdas.lua", "40-pppoa", "imb.html", "2015-03-31 - Sinkholing Volatile Cedar DGA Infrastructure.pdf", "2015-07-30 - Sakula Malware Family.pdf", "access_ctl", "win-utf", "S25sysctl", "https://www.googletagmanager.com/gtag/js?id=G-J9PCW0F6JV", "0d46:45a5", "ldap", "policy_routing.html", "76faf6c0.0", "1fac:0151", "pc_wifi.html", "0421:0632", "/var/log/install.log", "349f2832.0", "19d2:1017", "tsection.htm", "5443e9e3.0", "20a6:f00e", "waitingbar.js", "1e09d511.0", "ldap_profiles.html", "GTS_Root_R3.crt", "chat-get", "usbmodem", "1033:0035", "2015-03-19 - FindPOS- New POS Malware Family Discovered.pdf", "2ae6433e.0", "773e07ad.0", "0af0:8300", "0b1b94ef.0", "wireguard", "02265526.0", "ipv6", "S99zzddns", "md5.conf", "ifup", "Microsoft_ECC_Root_Certificate_Authority_2017.crt", "18856ac4.0", "b433981b.0", "2015-08-27 - London Calling- Two-Factor Authentication Phishing From Iran.pdf", "mt7628_switch_led", "19d2:fff5", "0bdb:190d", "usb-net-asix", "dhcp_static.html", "koi-utf", "rewrite.lua", "strongswan.conf", "S19vnet", "tddp", "dhcps.sh", "2015-02-18 - Sexually Explicit Material Used as Lures in Recent Cyber Attacks.pdf", "radvd", "99-ipt_urlset_target", "2015-02-09 - Anthem Breach May Have Started in April 2014.pdf", "Certum_Trusted_Network_CA_2.crt", "Duke cloud Linux (1).pdf", "nfnetlink-queue", "1ee8:0040", "SSL.com_EV_Root_Certification_Authority_ECC.crt", "00-configlink.sh", "ipsec_handle_iptables.sh", "network.sh", "50-qos_ctl", "treestore.js", "ramips.sh", "2015-03-31 - Volatile Cedar - Analysis of a Global Cyber Espionage Campaign.pdf", "usermngr_user.html", "cli_ospf.lua", "2015-11-02 - Troj-Cryakl-B.pdf", "257a:a000", "10-l2tp-pptp.sh", "19d2:1511", "core_redirect.sh", "resolve.conf", "40-remote_mngt", "directip.sh", "sierrainfo.gcom", "acl_timeobj.lua", "mt7628_switch_portMirror", "S99zzzcloud_proc", "1f28:0021", "19d2:0304", "Go_Daddy_Root_Certificate_Authority_-_G2.crt", "session_limits.sh", "S47dos_defense", "button.js", "line_backup.html", "passthrough.sh", "2077:1000", "19d2:1007", "19d2:1227", "rtl8367s_switch_portVlan", "ipsec.conf", "19d2:1528", "1001acf7.0", "12d1:1523", "S98ipsec_failover", "2015-01-06 - Linux DDoS Trojan hiding itself with an embedded rootkit.pdf", "online_check", "rsa_check", "zone_init.sh", "drop_caches", "ucisection.htm", "ffff_0001", "1782:0003", "pppox-begin-reload-user.sh", "12d1:1553", "interface_mode.html", "2015-10-26 - Duuzer back door Trojan targets South Korea to take over computers.pdf", "S91wireguard", "pre_setting_config.sh", "root.key", "S95ipstat", "cn9130_switch_init", "12d1_0002", "2015-11-10 - Bookworm Trojan- A Model of Modular Architecture.pdf", "f249de83.0", "5f15c80c.0", "netifd-wireless.sh", "99-balance_route", "UCA_Extended_Validation_Root.crt", "96-noipddns.sh", "2015-10-09 - Latest TeslaCrypt Ransomware Borrows Code From Carberp Trojan.pdf", "98_10_mtk_failsafe_init", "ssl_vpn_locked_user.html", "ipsec.secrets", "usb-net-ipheth", "2015-08-20 - Retefe Banking Trojan Targets Sweden, Switzerland and Japan.pdf", "1c9e:9e08", "109b:f009", "30-fs-isofs", "00-vnet.sh", "network_arch.sh", "12d1:157d", "99-load_balance.sh", "05-vnet-lanv6", "1ee8:0003", "TWCA_Global_Root_CA.crt", "rtl8367s_switch_portMirror", "APT CVE-2015-5119.pdf", "32-ipsec4", "dia_info.html", "freeStrategy", "cloud_config.cfg", "omada-tool.lock", "7719f463.0", "0930:0d46", "4bfab552.0", "flood_defense", "ipt-ipopt", "mvalue.htm", "usbmuxd", "30-3g", "03_preinit_do_ramips.sh", "9482e63a.0", "30-veth", "2b349938.0", "S89remote_mngt", "20-firewall", "S60url_filter", "ACCVRAIZ1.crt", "30-fs-cramfs", "pkcs7.conf", "12d1:15ca", "dhcp_logrotate", "access_ip_help.lua", "1410:5020", "vars", "TrustCor_RootCert_CA-2.crt", "30_failsafe_wait", "passwd", "12d1:1414", "S45firewall", "2015-11-04 - \u201cOffline\u201d Ransomware Encrypts Your Data without C&C Communication.pdf", "19d2:0325", "time_mngt.html", "1004:614e", "3513523f.0", "emSign_Root_CA_-_C1.crt", "pppox-reload-user.sh", "1410:5030", "S42ipv6group", "2015-03-04 - Who\u2019s Really Spreading through the Bright Star-.pdf", "arp_scan_range", "qos_cid.sh", "system_state.html", "19d2:0120", "16d8:6281", "30-fs-ntfs", "20-usb-core", "firmware_backuprestore.html", "99-hotplug_done", "05c6:0010", "ar8327_register", "2015-11-04 - A Technical Look At Dyreza.pdf", "pppox-killtunnel.sh", "dns_doh.html", "openvpn-server-down.sh", "qos_polling.sh", "gre_init", "2015-02-17 - Ali Baba, the APT group from the Middle East.pdf", "1bbb:022c", "2015-05-26 - Moose \u2013 the router worm with an appetite for social networks.pdf", "S15loggerd", "dnsproxySecurity", "ar9533_switch_portStatistic", "2015-02-17 - Angry Android hacker hides Xbot malware in popular application icons .pdf", "ipt-conntrack", "openvpn-client-routeup.sh", "2015-02-27 - The Anthem Hack- All Roads Lead to China.pdf", "cn9130_switch_portMirror", "2015-05-23 - NitlovePOS- Another New POS Malware.pdf", "12d1:1f1b", "19d2:0266", "session_limits.html", "2015-03-03 - PwnPOS- Old Undetected PoS Malware Still Causing Havoc.pdf", "30-v6plus", "pptp_tunnel.html", "10a9:606f", "1c9e:6000", "zone_api.sh", "https://insurancerateusa.com/app-74647f151b541f3098c2.js", "2015-01-08 - Getmypass Point of Sale Malware Update.pdf", "vpnlog", "05c6:1000:uMa=Co.,Ltd", "65-scsi-generic", "openvpn-easy-rsa", "getisp.sh", "md5.js", "2015-04-21 - Bedep\u2019s DGA- Trading Foreign Exchange for Malware Domains.pdf", "064e0aa9.0", "ssl_vpn_quicksetup.html", "0f5dc4f3.0", "telnet", "2015-11-17 - New Memory Scraping Technique in Cherry Picker PoS Malware.pdf", "reset", "wifidog.conf", "6d41d539.0", "12d1:157c", "cn9130_switch_portRateControl", "2001:a80b", "ifup_down.sh", "dos_defense", "60-dnsmasq", "31-iptunnel", "usb-acm", "xcbc.conf", "setmode.gcom", "19d2:1201", "12-netbios-passthrough", "add-service.sh", "12_network-generate-ula", "hwnat", "2015-08-31 - Shifu- \u2018Masterful\u2019 New Banking Trojan Is Attacking 14 Japanese Banks.pdf", "12d1:1d50", "usbmodem_log.sh", "auto_backup", "0af0:8800", "log_awk", "v6plus.sh", "line_backup", "support_bundle_commands.conf", "l2tp-get-tunnel-info.sh", "19d2:0053", "19d2_0004", "25-nls-cp437", "pptp-option.sh", "0cf3:20ff", "url_escape.sed", "pppox-functions.sh", "2015-06-10 - The Mystery of Duqu 2.0- a sophisticated cyberespionage actor returns.pdf", "BBSRAT Roaming Tiger.pdf", "spi_device_id", "l2tp-server.reference", "Babar or Bunny.pdf", "2015-02-27 - VB2014 paper- The pluginer - Caphaw.pdf", "2048_newroot.cer", "S99zzomada_server", "sdnInfo", "x509.conf", "vtysh.conf", "chat-get-qualcomm_2", "32-l2tp", "crt.sed", "cli_http_cmd.tree", "proxy.js", "2015-12-01 - China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets.pdf", "32-ip6-tunnel", "snapshot", "ssh.lua", "switch", "rtl8367s_switch_portPara", "default_balance", "arp.sh", "2015-03-19 - Analyzing a Backdoor-Bot forthe MIPS Platform.pdf", "0af0:7706", "pubkey.conf", "19d2:ffde", "boot_done", "https://insurancerateusa.com/polyfill-036b4a134d8725752ba0.js", "checkbox.js", "19d2:1216", "T-TeleSec_GlobalRoot_Class_2.crt", "22-dos_defense", "05c6:1000:uMa=AnyDATA", "b727005e.0", "ipsec.lua", "USERTrust_RSA_Certification_Authority.crt", "2015-01-26 - Storm Chasing- Hunting Hurricane Panda.pdf", "nand.sh", "12d1:1030", "05c6:1000:uMa=CELOT", "hmac.conf", "S50queueventd", "firewall_zoneforwards.htm", "index.a415cbb4.js", "92-pppox-vpn.sh", "named.cache", "get_rps.sh", "sha1.conf", "delegator.htm", "sysntpd", "wifidog", "l2tp-server", "chat-gsm-test", "00-ecsIfChange", "0af0:7271", "pptp-startup.sh", "S42service", "10-metric.sh", "mt7628_switch_portRateControl", "2015-11-16 - Introducing LogPOS.pdf", "des.conf", "32-sit", "ipcalc.sh", "getVid.sh", "Izenpe.com.crt", "05c6:6503", "50-arp_garp", "19d2:0110", "19d2_0001", "0af0:d001", "6b99d060.0", "1dbc:0669", "protocol", "ANF_Secure_Server_Root_CA.crt", "25-nls-cp862", "Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt", "cli_nat_cmd.tree", "services", "cc450945.0", "web_filter.html", "sys_status.html", "tpcmd.sh", "19d2:1219", "cd58d51e.0", "19d2:bccd", "12d1:1f15", "ppp-dhcp6c.script", "19d2:0388", "2015-10-28 - Reversing the C2C HTTP Emmental communication.pdf", "lvalue.htm", "S50radvd", "2015-03-10 - The DGA of Pykspa.pdf", "12d1:1413", "25-nls-cp850", "TrustCor_RootCert_CA-1.crt", "3e45d192.0", "6fa5da56.0", "device_info", "power", "2015-04-09 - Beebone Botnet Takedown- Trend Micro Solutions.pdf", "30-fs-autofs4", "2015-04-13 - Analyzing Gootkit's persistence mechanism (new ASEP inside!).pdf", "19d2:0003", "90-xt_qoslimit", "usb-storage-extras", "osui.sock", "2015-09-25 - Notes on Linux-Xor.DDoS.pdf", "uci-defaults.sh", "form.js", "ddns", "ar8327_switch_portVlan", "2015-04-13 - sqlconnt1.exe.pdf", "0af0:d013", "mbimfind.lua", "0af0:8600", "imb", "30-fs-btrfs", "IdenTrust_Public_Sector_Root_CA_1.crt", "90-xt_vlan", "S99led_set", "32-ipsec6", "10-mount", "fvalue.htm", "mime.types", "preinit", "S99sys_monitor", "2001:a706", "30-atm", "2015-07-08 - Wild Neutron \u2013 Economic espionage threat actor returns with new tricks.pdf", "9d04f354.0", "v6plus-dial.sh", "22de:6801", "openvpn-client-down.sh", "vlan_relationTbl.html", "nat_config.sh", "pptp_client.html", "style-simple-follow.css", "setapn.gcom", "0af0:6791", "S99smp", "XRamp_Global_CA_Root.crt", "2015-10-13 - New Adobe Flash Zero-Day Used in Pawn Storm Campaign Targeting Foreign Affairs Ministries.pdf", "25-nls-cp864", "40_run_failsafe_hook", "1dd6:1000", "socket-default.conf", "qos_config_sync.lua", "ssl_vpn_tunnel_group.html", "connect-directip.gcom", "ppp", "getimsi_b.gcom", "1bbb:000f", "99-vpn_hook.sh", "appdist.html", "account.html", "2015-05-07 - Dissecting the \u201cKraken\u201d.pdf", "80_mount_root", "04fc:2140", "done", "ar8327_switch_led", "Copy Kittens.pdf", "Microsec_e-Szigno_Root_CA_2009.crt", "19d2:1013", "sysauth.htm", "GlobalSign_Root_E46.crt", "Blue termite (1).pdf", "40-load_balance", "S40fstab", "search_tty.lua", "cli_base_cmd.tree", "button.htm", "jshn.sh", "rtl8367s_switch_init", "if-do-timeobj.sh", "ipv6group_address.html", "widget.css", "msg.js", "dynamic_dns_log.sh", "COMODO_ECC_Certification_Authority.crt", "2001:a707", "30-fs-minix", "unlock_pin.sh", "vpn_user.html", "S99enablemodem", "ecmp.lua", "radius.conf", "radiusclient.conf", "2015-10-06 - Targeted Attack Exposes OWA Weakness.pdf", "2015-03-19 - Rocket Kitten Showing Its Claws- Operation Woolen-GoldFish and the GHOLE campaign.pdf", "02-split_access", "2015-09-17 - The Dukes- 7 Years Of Russian Cyber-Espionage.pdf", "12d1:156a", "19d2:1009", "19d2:1224", "rtl8367s_switch_portRateControl", "16d8:700a", "full_valuefooter.htm", "19d2:fff6", "K10portal_mgmt", "49-ipt-ipset-tplink", "dyn3322ddns.html", "2015-04-27 - Attacks against Israeli & Palestinian interests.pdf", "pptp-global-setting.sh", "20-upnp", "4a6481c9.0", "APT 28 (1).pdf", "ipxr", "2015-07-05 - Spy Tech Company 'Hacking Team' Gets Hacked.pdf", "style.css", "05c6:1000:uMa=DGT", "S20network", "0b3c:f000", "core_tpfirewall.sh", "/System/Library/PrivateFrameworks/MobileAccessoryUpdater.framework/Support/accessoryupdaterd", "balance_basic.html", "libradiusclient-ng.la", "timeobj_cron_api.sh", "e73d606e.0", "ubi_make_extra_volume.sh", "USERTrust_ECC_Certification_Authority.crt", "30-fs-ext4", "2015-09-23 - Chinese Actors Use \u20183102\u2019 Malware in Attacks on US Government and EU Media.pdf", "rc2.conf", "vnet_core.sh", "nat.lua", "ipt-geoip", "mwan3-tplink", "chunk-vendors.0cdf10f0.js", "apply_xhr.htm", "sharecfg", "2357:f000", "04cc:2251", "pptp-server", "connmark.conf", "grid.js", "get_option.lua", "19d2:0166", "sendsms-at.gcom", "19d2:0103", "restorefactory", "2015-02-18 - Babar- espionage software finally found and put under the microscope.pdf", "2015-12-04 - Sofacy APT hits high profile targets with updated toolset.pdf", "30-fs-hfsplus", "dd8e9d41.0", "cli_time_range_cmd.tree", "mt7628_switch_portPara", "65_nginx_sync.sh", "jquery.json-2.4.min.js", "port_trigger.html", "leds.sh", "2015-02-19 - Arid Viper \u2013 Israel entities targeted by malware packaged with sex video.pdf", "d4dae3dd.0", "disconn-script", "usb-net-cdc-mbim", "rc.common", "04e8:680c", "1004:61e7", "Starfield_Root_Certificate_Authority_-_G2.crt", "2015-10-08 - Dyre Malware Campaigners Innovate with Distribution Techniques.pdf", "2015-02-18 - Meet Babar, a New Malware Almost Certainly Created by France.pdf", "30-fs-hfs", "75d1b2ed.0", "xF43MOjWbQiz+vIQbjaGodBk4PpoECFzUYyznnj8Enc=", "dictionary.ascend", "interface.lua", "ipgroup_address.html", "zzomada_server", "dhcp6c.sh", "attr.conf", "pppox-remote-management-get-ippool.lua", "access.lua", "libstdc++.so.6.0.21-gdb.py", "ipt-tproxy", "29-fs-fscache", "0af0:8400", "cbf06781.0", "platform.sh", "setpin.gcom", "ecmp.sh", "radio.js", "2015-03-30 - Fake Judicial Spam Leads to Backdoor with Fake Certificate Authority.pdf", "sessmngr.html", "20b9:1682", "browser.htm", "50-l2tp-up-down.sh", "0af0:7a05", "vlan_vlanSetting.html", "nginx.conf", "ifdown-l2tp.sh", "12d1:1f01", "e-Szigno_Root_CA_2017.crt", "nat_alg.sh", "2015-05-10 - Third-Party Software Was Entry Point for Background-Check System Hack.pdf", "usb-mode.json", "22-access_ctl.sh", "12d1:1031", "note", "ar9533_switch_portRateControl", "90-portal_mgmt", "remote_mngt", "ar8327_switch_portState", "0b3c:c700", "reset.gcom", "12d1:14ad", "1bbb:00ca", "access_func.sh", "04_handle_checksumming", "emSign_ECC_Root_CA_-_G3.crt", "qos_dpdk.sh", "0a775a30.0", "Trustwave_Global_ECC_P256_Certification_Authority.crt", "GlobalSign_Root_CA_-_R3.crt", "12d1_0003", "D-TRUST_Root_Class_3_CA_2_EV_2009.crt", "mt7621_switch_led", "c01eb047.0", "19d2_0003", "markdef.sh", "12d1:1f1c", "acl_wanhook.lua", "12d1:101e", "dhcp_server.html", "25-nls-iso8859-8", "97-line_backup.sh", "19d2:0169", "E-Tugra_Certification_Authority.crt", "mt7621_switch_portPara", "login.4f52b876.js", "getstrength.gcom", "ePKI_Root_Certification_Authority.crt", "GlobalSign_ECC_Root_CA_-_R4.crt", "0af0:8304", "online_reload.lua", "106c:3b06", "jquery.flot.pie.min.js", "panel.js", "ANALYSIS ON APT TO BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "l2tp-client", "25-ddns", "default.script", "customddns_set_url.sh", "1004:1000", "10-pppox-response-nat.sh", "2015-02-12 - Mobile Malware Gang Steals Millions from South Korean Users.pdf", "Secure_Global_CA.crt", "show_interface.lua", "0421:061d", "97-upnp.sh", "21f5:3010", "2015-08 - Uncovering the Seven Pointed Dagger.pdf", "2015-04-09 - Operation Buhtrap, the trap for Russian accountants.pdf", "09789157.0", "1004:61aa", "2015-02-17 - BE2 extraordinary plugins, Siemens targeting, dev fails.pdf", "functions.sh", "cn9130_switch_portStatistic", "12d1:1f03", "25-nls-cp932", "12d1:1010", "2015-09-24 - Kovter malware learns from Poweliks with persistent fileless registry update.pdf", "cli_show_interface_status_cmd.tree", "S46nat", "1004:61eb", "19d2:1520", "excanvas.js", "2015-06-01 - Rhetoric Foreshadows Cyber Activity in the South China Sea.pdf", "GLOBALTRUST_2020.crt", "mt7621_switch_portMirror", "2015-10-06 - Ticked Off- Upatre Malware\u2019s Simple Anti-analysis Trick to Defeat Sandboxes.pdf", "folderTree.js", "about.svg", "S90portal_mgmt", "acl_timeobj_v6.lua", "switch_functions", "S97gre_init", "S80usbmuxd", "Security_Communication_RootCA2.crt", "e868b802.0", "ie.css", "12d1:15e7", "19d2:0413", "0af0:c031", "lock-prov.gcom", "S99improxy", "DigiCert_Trusted_Root_G4.crt", "access_control.html", "2015-12-26 - Backdoor- Win32-Hesetox.A- vSkimmer POS Malware Analysis _.pdf", "ddm.html", "S99drop_caches", "19d2:1210", "S50qos-tplink", "2015-07-08 - Butterfly- Profiting from high-level corporate attacks.pdf", "1a8d:2000", "pptp-tunnel-action.sh", "arp_list.html", "dictionary.sip", "filesystems", "gre_overipsec.html", "80-balance.sh", "ipsec_execute_stroke.sh", "2015-04-29 - Unboxing Linux-Mumblehard- Muttering spam from your servers.pdf", "Black Energy.pdf", "login.sh", "vnetwork", "19d2:1232", "2015-05-28 - Unusual Exploit Kit Targets Chinese Users (Part 1).pdf", "ngx_init.lua", "057c:62ff", "pptp-global", "2015-07-19 - The Faulty Precursor of Pykspa's DGA.pdf", "1004:613a", "2015-12-08 - Packrat- Seven Years of a South American Threat Actor.pdf", "ecsIfName", "89-portal", "19d2:ffe6", "interface.html", "static_route", "19d2:1237", "lanv6_server.sh", "0af0:8201", "30-fs-configfs", "Trojan Skelky.pdf", "emSign_Root_CA_-_G1.crt", "ldap_query.sh", "fixup-mac-address", "0e8d:0002:uPr=MT", "enable_service.sh", "65-wifidog.sh", "luci-reload", "9c8dfbd4.0", "mt7628_switch_portStatistic", "30-gpio-button-hotplug", "ncm.sh", "106f3e4d.0", "zone-450", "error.html", "0af0:d035", "05c6:2001", "S42ippool", "DigiCert_Assured_ID_Root_G2.crt", "session_limits", "uci.sh", "page.js", "de6d66f3.0", "230d:0103", "70-switch.sh", "failsafe", "S99switch", "DigiCert_Global_Root_CA.crt", "0af0:8700", "options.pptpd", "ubnt.sh", "led_early", "ipt-nat-extra", "ipt-ipsec", "5d3033c5.0", "get_temperature.sh", "ecs", "16d8:f000", "S85webfilter", "aee5f10d.0", "usbModem.html", "1726:f00e", "02-usb-auto-scan", "40-scsi-core", "1266:1000", "1c9e:9200", "2015-08-05 - Newly discovered Chinese hacking group hacked over 100 websites to use as \u201cwatering holes\u201d.pdf", "DigiCert_Assured_ID_Root_G3.crt", "bridge.html", "25-nls-iso8859-15", "zbalance_loop_reset", "2015-01-20 - Analysis of Project Cobra.pdf", "ipstat", "https://connect.facebook.net/signals/config/3689470801106673?v=2.9.57&r=stable", "2015-02-16 - How \u201comnipotent\u201d hackers tied to NSA hid for 14 years\u2014and were found at last.pdf", "12d1:14b7", "90-xt_multinetdev", "S46netbios_passthrough", "19d2:0083:uPr=WCDMA", "02-vnet.sh", "openvpn-common.sh", "2020:f00e", "chat-get-anydata_2", "vlan", "S47mac_filter", "ifstatus", "shells", "ipsec_failover_process.sh", "10-pppox-if-up-down.sh", "virtual_server.html", "ppp-up", "30-fs-xfs", "l2tp-reload.sh", "30-policy_route.sh", "0408:ea25", "2015-06-03 - Thamar Reservoir \u2013 An Iranian cyber-attack campaign against targets in the Middle East.pdf", "snmpd", "19d2:0318", "30-fs-vfat", "31-iptunnel6", "time_setting", "openvpn_user", "qipc_sharedmemory_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "pem.conf", "mobile_wifi.html", "S96sysntpd", "15-usb_mode", "nat_one.sh", "nonce.conf", "time.js", "2015-06-01 - \u201cTroldesh\u201d \u2013 New Ransomware from Russia.pdf", "0af0:d255", "00-vpn_hook.sh", "19d2:1514", "0421:0610", "lan.js", "25-pppox.sh", "Starfield_Services_Root_Certificate_Authority_-_G2.crt", "qos_state.sh", "99-z3g4g-connect", "930ac5d2.0", "Apt 28 (2).pdf", "106c:3b05", "fw.sh", "dropbear", "dc4d6a89.0", "switch.sh", "2015-09-28 - Two New PoS Malware Affecting US SMBs.pdf", "service.html", "xl2tpd", "0fca:8020", "106c:3b11", "2015-06-23 - Operation Clandestine Wolf \u2013 Adobe Flash Zero-Day in APT3 Phishing Campaign.pdf", "Amazon_Root_CA_2.crt", "Comodo_AAA_Services_root.crt", "S97ipsec", "mt7621_register", "ipt-conntrack-extra", "2015-03-06 - Animals in the APT Farm.pdf", "04cc:226e", "online.html", "sdhci-mt7621", "20-fs-exportfs", "4f316efb.0", "60-mac_filter.sh", "230d:000d", "Entrust_Root_Certification_Authority_-_G4.crt", "pppv6-share", "f387163d.0", "policy_route", "1ab7:5700", "0e8d:7109", "25-nls-iso8859-13", "emSign_ECC_Root_CA_-_C3.crt", "rtl8367s_switch_portState", "monitor_port.lua", "dnssecquery.sh", "one_nat.html", "app.manifest", "05c6:1000:uMa=Option", "12d1:1526", "1636090b.0", "20-firewall.sh", "feffd413.0", "12d1:1009", "2015-12-03 - Colombians major target of email campaigns delivering Xtreme RAT.pdf", "2015-02-05 - Anatomy of a Brute Force Campaign- The Story of Hee Thai Limited.pdf", "SwissSign_Silver_CA_-_G2.crt", "diagnostic.html", "cli_snmp_cmd.tree", "50_indicate_regular_preinit", "pppox-reload-user.lua", "39-gre", "ips_stats.html", "eed8c118.0", "Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt", "switch_portLimit.html", "getcnum.gcom", "ar9533_switch_portMirror", "0af0:7051", "customddns", "12d1:1520", "start_rule.sh", "https://insurancerateusa.com/94297995-69529ad7536f090aa776.js", "lldpd", "sysctl", "b7a5b843.0", "accountmgnt.lua", "1410:5031", "2015-09-23 - Ranbyus's DGA, Revisited.pdf", "l2tp_client.html", "snmp.html", "hotplug-call", "ucitrack", "dynddns.html", "luci-add-conffiles.sh", "607986c7.0", "K98boot", "Indicators of Compormise Hellsing.pdf", "2001:a403", "S99avahi-daemon", "0408:1000", "dhcp.sh", "22de:6803", "kernel-netlink.conf", "00_uhttpd_ubus", "dbus-K5ae4EDHao", "GlobalSign_Root_R46.crt", "0af0:7361", "198f:bccd", "switch_portVlan.html", "3e44d2f7.0", "GlobalSign_Root_CA_-_R2.crt", "60-pptp-reload-rules.sh", "2015-07-07 - Dyre Banking Trojan Exploits CVE-2015-0057.pdf", "2262:0001", "99-wan_hook.sh", "stroke.conf", "0af0:7801", "92-dynamic_route", "0af0:7701", "19d2:1233", "pppoe", "foldertree.js", "09_fix-seama-header", "S25zone", "S47administration", "system_mode", "core_log.sh", "time.sh", "76cb8f92.0", "AC_RAIZ_FNMT-RCM.crt", "10_migrate-shadow", "19d2:1420", "1ee8:0063", "Atos_TrustedRoot_2011.crt", "98-load_balance", "dnsproxy", "rip.lua", "system.sh", "portal_mgmt", "account.2ca6a054.js", "Emdivi.pdf", "05_set_iface_mac_mediatek", "preview_remind.html", "region.js", "hosts", "2015-06-15 - Catching Up on the OPM Breach.pdf", "0af0:7301", "99_end_sync.sh", "72-wan_ip_alias", "S99lldpd", "ippool.html", "runcommand.gcom", "01-zone", "paging.js", "modem_scan.sh", "opkg.conf", "22-access_ctl", "15-online.sh", "web_group.html", "0922:1003", "mt7621_switch_portVlan", "iptv", "S71hwnat", "Black Vine.pdf", "0421:0618", "random.conf", "2015-02-18 - Babar- Suspected Nation State Spyware In The Spotlight.pdf", "l2tp-global", "2015-07-13 - Revisiting The Bunitu Trojan.pdf", "98-ipt_url_dns_match", "libopenldap", "40547a79.0", "12d1:1f17", "3g.chat", "98-ipsec.sh", "simpleform.htm", "f30dd6ad.0", "qos_Band_ctrl.html", "2015-06-25 - Sundown EK Spreads LuminosityLink RAT- Light After Dark.pdf", "core_service.sh", "diag.sh", "T-TeleSec_GlobalRoot_Class_3.crt", "xl2tp-secrets", "wifidog-init", "auth_port_modify.sh", "S98led", "2015-06-17 - The Spring Dragon APT.pdf", "wportal", "dhcp_lan_settings.html", "2015-09-16 - Operation Iron Tiger- Attackers Shift from East Asia to the United States.pdf", "usb-net-huawei-cdc-ncm", "12d1:1557", "country_group.html", "vnet", "cleanTMP.sh", "40-usb2", "switch_portMonitor.html", "modem-gsm-test-qualcomm.gcom", "2015-12-31 - Overseas -Dark Inn- organization launched an APT attack on executives of domestic enterprises.pdf", "snmpd-static", "5e98733a.0", "1ee8:0018", "nat_dmz.sh", "42-ip6tables", "0fce:d0df", "60-dnsmasq.sh", "S47flood_defense", "S01spi_device_id", "12d1_0004", "30-fs-jfs", "splitaccess", "Staat_der_Nederlanden_EV_Root_CA.crt", "072f:100d", "ISRG_Root_X1.crt", "ssl_vpn_tunnel.html", "50-usb-uhci", "loadopenvpncert", "dynamic_dns_functions.sh", "653b494a.0", "QuoVadis_Root_CA_1_G3.crt", "l2tp-init.sh", "show_interface_status.lua", "0af0:6711", "timepicker.js", "1ee8:004f", "2015-10-19 - Github Repository for AllaKore.pdf", "Casper Malware.pdf", "Attacks against Israeli & Palestinian interests.pdf", "constraints.conf", "nat", "26-openvpn.sh", "22-imb.sh", "cn9130_switch_portState", "96-customddns.sh", "96-dynddns.sh", "99-vnet.sh", "2015-02-16 - Equation- The Death Star of Malware Galaxy.pdf", "S96load_balance", "a3418fda.0", "rt_tables", "062cdee6.0", "getip.sh", "2015-06-16 - Operation Lotus Blossom- A New Nation-State Cyberthreat-.pdf", "dropbear_rsa_host_key", "Duke cloud Linux.pdf", "interface_wan.html", "K10improxy", "2015-11-02 - Shifu \u2013 the rise of a self-destructive banking trojan.pdf", "22-imb", "wifi", "sddm-:0-BoTuTx", "macgroup", "modem", "0bdb:1910", "11_migrate-sysctl", "pppol2tp", "Starfield_Class_2_CA.crt", "sysctl.conf", "controller.lock", "certSIGN_ROOT_CA.crt", "dhcp_client.html", "usbshare", "shadow", "nginx", "2015-03-20 - Threat Spotlight- PoSeidon, A Deep Dive Into Point of Sale Malware.pdf", "2015-12-22 - Kraken's two Domain Generation Algorithms.pdf", "2015-07-27 - UPS- Observations on CVE-2015-3113, Prior Zero-Days and the Pirpi Payload.pdf", "websort", "tabcontainer.htm", "2015-09-09 - Satellite Turla- APT Command and Control in the Sky.pdf", "delete-service.sh", "qos-tplink", "zone", "online", "0af0:7211", "connect-ncm.gcom", "COMODO_Certification_Authority.crt", "0af0:7071", "mppe", "0af0:c100", "98-iptv.sh", "l2tp-ipsec-setstatus.lua", "057c:84ff", "14bc7599.0", "evdo.chat", "options.xl2tpd", "S31tmngtd", "l2tp_tunnel.html", "32888f65.0", "148e:a000", "05c6:f000", "mt7628_switch_portState", "status.js", "logger", "S50dropbear", "S50snmpd", "loggerd", "S80websort", "Go_Daddy_Class_2_CA.crt", "2015-09-29 - Andromeda Bot Analysis part 1.pdf", "f51bb24c.0", "K71hwnat", "ifdown", "bootcount", "ar8327_switch_portMirror", "system_mode.html", "starter.conf", "dhcp6c", "2015-05-14 - The Naikon APT.pdf", "ipv6group", "cn9130_switch_portVlan", "reboot_schedule.html", "12d1:14ba", "2015-10-13 - I am HDRoot! Part 2.pdf", "40-fs-nfs", "ips_signature_suppression.html", "0af0:8900", "Amazon_Root_CA_3.crt", "19d2:1207", "00-netstate", "98-ipt_websec_match", "S95l2tp", "2015-10-12 - Keybase Logger-Clipboard-CredsStealer campaign.pdf", "40-fs-msdos", "portal_status.sh", "90-vpn", "api_VPN.sh", "mt7628_switch_portVlan", "ippool", "0482:024d", "0ace:20ff", "40-qos", "ssl_vpn_user_group.html", "S90ndppd", "cli_routing_cmd.tree", "3bde41ac.0", "Duqu 2.0 Win32K Exploit.pdf", "rip", "S47access_ctl", "06dc52d5.0", "log_oops_recovery.sh", "pptp-client-delete.sh", "2015-03-05 - Casper Malware- After Babar and Bunny, Another Espionage Cartoon.pdf", "filter", "S01led_early", "0421:0622", "CFCA_EV_ROOT.crt", "1c9e:f000:uMa=USB_Modem", "wportal.html", "2015-09-18 - Operation Arid Viper Slithers Back into View.pdf", "2015-07-08 - Animal Farm APT and the Shadow of French Intelligence.pdf", "1004:6327", "4b718d9b.0", "ppp.sh", "2015-06-12 - Unusual Exploit Kit Targets Chinese Users (Part 2).pdf", "mtab", "0af0:8200", "vnet_zone_init.sh", "Afghan Government Compromise - Browser Beware.pdf", "enablemodem", "ifstart", "0bf05006.0", "QuoVadis_Root_CA_2_G3.crt", "hardware.txt", "2015-10-09 - Beta Bot Analysis- Part 1.pdf", "2015-12-22 - BBSRAT Attacks Targeting Russian Organizations Linked to Roaming Tiger.pdf", "sha2.conf", "S99zbalance_loop_reset", "0408:ea17", "issue", "url_filter", "2015-06-15 - Stegoloader- A Stealthy Information Stealer.pdf", "2357:0200", "network_netlist.htm", "Entrust_Root_Certification_Authority.crt", "2015-11-04 - DroidJack isn\u2019t the only spying software out there- Avast discovers OmniRat.pdf", "core_init.sh", "2015-04-17 - Andromeda-Gamarue bot loves JSON too (new versions details).pdf", "firewall_zonelist.htm", "ar9533_switch_init", "l2tp", "isp_routing.html", "30-fs-udf", "12d1:1001", "2015-06-24 - Elusive HanJuan EK Drops New Tinba Version (updated).pdf", "napt.html", "2015-09-24 - Credit Card-Scraping Kasidet Builder Leads to Spike in Detections.pdf", "cli_access_cmd.tree", "S10system", "S95done", "unbound.conf.back", "2015-08-05 - Threat Group 3390 Cyberespionage.pdf", "2015-02-20 - The DGAs of Necurs.pdf", "sys_monitor", "2015-12-11 - LATENTBOT- Trace Me If You Can.pdf", "ipsec_vnet.sh", "cloud_service.cfg", "S96cmxddns", "pptp-client-update.sh", "mt7628_switch_init", "core_interface.sh", "8d89cda1.0", "2015-09-01 - Fancy Bear.pdf", "230d:0001", "Hongkong_Post_Root_CA_3.crt", "check_switchmode.lua", "portrange.js", "1c9e:9101", "pppox", "25-nls-cp1251", "25-nls-cp866", "12d1:1c24", "S92qos_ctl", "arping.sh", "2015-07-31 - OTX Pulse on PlugX.pdf", "arp_scan.html", "cli_accountmgnt_cmd.tree", "1d3472b9.0", "30-fs-nfs-common", "D-TRUST_Root_Class_3_CA_2_2009.crt", "30-fs-cifs", "avahi-daemon", "user-secrets.reference", "2015-07-14 - TeslaCrypt 2.0 disguised as CryptoWall.pdf", "openvpn_tunnel.html", "ipsec_tunnel.html", "12d1:1c1b", "2015-02-17 - The Desert Falcons targeted attacks.pdf", "ppp-mod-radius", "2015-08-05 - Who\u2019s Behind Your Proxy- Uncovering Bunitu\u2019s Secrets.pdf", "2923b3f9.0", "l2tp-ipsec-delete.lua", "Rocket Kitten.pdf", "0922:1001", "mt7621_switch_portRateControl", "2015-01-09 - Chanitor Downloader Actively Installing Vawtrak.pdf", "char_conv.sh", "12d1:1521", "attach_timeobj.lua", "ed09:1021", "ppp-down", "ssl_vpn_auth.html", "xhr.js", "0af0:6911", "vlan_portSetting.html", "chunk-common.72de4705.css", "12d1:151a", "25-nls-cp852", "smp.sh", "90-xt_CTSTATEMARK", "2015-05-20 - Bedep Ad-Fraud Botnet Analysis \u2013 Exposing the Mechanics Behind 153.6M Defrauded Ad Impressions A Day.pdf", "23a2:1010", "chap-secrets", "2015-04-15 - New POS Malware Emerges - Punkey.pdf", "2015-12-07 - Iran-based attackers use back door threats to spy on Middle Eastern targets.pdf", "mwan3", "controller.js", "19d2:1523", "tabmenu.htm", "l2tp_server.html", "2015-07-10 - Sednit APT Group Meets Hacking Team.pdf", "30-ipsec", "zzzcloud_proc", "iptables.debug", "AffirmTrust_Premium_ECC.crt", "options.pptp", "Wild Neutron.pdf", "pcauth.js", "8888:6500", "2015-02-23 - Cyber Kung-Fu- The Great Firewall Art of DNS Poisoning.pdf", "3fb36b73.0", "Amazon_Root_CA_4.crt", "gettime.sh", "90-xt_doslogonly", "ssl_vpn_server.html", "openwrt_version", "dhcp6sctlkey", "cli_show_iface_cmd.tree", "25-nls-iso8859-1", "cell_valueheader.htm", "https-dns-proxy", "19d2:2004", "firewall", "boot", "backup", "led.sh", "2015-10-22 - Pawn Storm Targets MH17 Investigation Team.pdf", "0af0:9000", "25-nls-koi8r", "rtl8367s_switch_portStatistic", "0af0:6951", "12d1:#android", "Actalis_Authentication_Root_CA.crt", "2001:a405", "98-ipt_webfilter_match", "Amazon_Root_CA_1.crt", "10_indicate_preinit", "S83web_security", "pppv6-up", "network_ifacelist.htm", "net_share.sh", "upnp_api.sh", "online_api.sh", "nwadditional", "0af0:7311", "koi-win", "29-static_route", "S50pppox", "umount", "Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt", "chat-gsm-test-qualcomm", "getpinstatus.gcom", "crypto-hw-eip93", "indexer.htm", "ipt-nathelper", "ipsec_failover", "rfkill", "257a:d000", "filter_global", "Goldfish Phishing.pdf", "Behind the syria conflict.pdf", "2015-06-19 - Digital Attack on German Parliament- Investigative Report on the Hack of the Left Party Infrastructure in Bundestag.pdf", "cli_server", "2015-11-02 - Modular trojan for hidden access to a computer.pdf", "K90ipv6", "ipt-iprange", "002c0b4f.0", "add_delete.sh", "usb-wdm", "updown.conf", "230d:0003", "0af0:d055", "usermngr", "usb-printer", "ee64a828.0", "daemons.conf", "26-freeStrategy", "fips-prf.conf", "cli_interface_cmd.tree", "0af0:7011", "2015-04-15 - The Chronicles of the Hellsing APT- the Empire Strikes Back.pdf", "65-iptv", "6rd.sh", "/System/Library/CoreServices/Software Update.app/Contents/Resources/softwareupdated", "run-at.gcom", "pppox-wheader.sh", "session_monitor.html", "S20geoip", "0fce:d103", "geoip", "administration", "clock.lua", "Baltimore_CyberTrust_Root.crt", "sys_monitor.conf", "valuefooter.htm", "S99ipv6", "0af0:7401", "2015-05-04 - Threat Spotlight- Rombertik \u2013 Gazing Past the Smoke, Mirrors, and Trapdoors.pdf", "2015-12-16 - Nemucod malware spreads ransomware Teslacrypt around the world.pdf", "1ee8:0068", "93bc0acc.0", "05c6:1000:uMa=SAMSUNG", "QuoVadis_Root_CA_3_G3.crt", "ipv6_lan.html", "network_netinfo.htm", "12d1:155b", "19d2:0146", "dynlist.htm", "upnp", "98-ipt_urlset_match", "priv-key.pem", "57bcb2da.0", "21-nat.sh", "19d2:0101", "05c6:9024", "nsswitch.conf", "cli_ipsec_cmd.tree", "2015-05-18 - Cmstar Downloader- Lurid and Enfal\u2019s New Cousin.pdf", "core_forwarding.sh", "1c9e:9401", "03f0:002a", "S70freeStrategy", "S26time_setting", "1c9e:6061:uPr=Storage", "10-motion", "S68online", "core_rule.sh", "firmware_factory.html", "/var/log/asl", "9b5697b0.0", "ar8327_switch_init", "webfilter_func.sh", "1076:7f40", "ar9533_switch_portState", "sddm-auth-52b94a64-454a-4d7f-903e-32df6aac784a", "Dukes.pdf", "f0c70a8d.0", "dslite.sh", "main.sh", "pd_api.sh", "1e89:f000", "fc5a8f99.0", "S60monitor", "2015-09-28 - Gaza cybergang, where\u2019s your IR team-.pdf", "12d1:1582", "1d09:1021", "19d2:0150", "usb-net-qmi-wwan", "406c9bb1.0", "ospf.html", "S42macgroup", "42-usb2-pci", "0e8d:0002:uPr=Product", "99_10_failsafe_login", "2015-08-10 - Darkhotel\u2019s attacks in 2015.pdf", "2015-05-15 - Carefirst Blue Cross Breach Hits 1.1M.pdf", "03179a64.0", "0471:1210:uMa=Wisue", "2015-03-11 - Inside the EquationDrug Espionage Platform.pdf", "f081611a.0", "04e8:f000:sMo=U209", "0421:060c", "8cb5ee0f.0", "ngx_sqlApi.lua", "d6325660.0", "25-nls-iso8859-2", "vnet.sh", "12d1:1003", "fs-exfat", "queueventd", "05-liblogger", "244b5494.0", "websec_timeobj.lua", "ipsec_check_domain.sh", "core_acl.sh", "web_security", "31-iptunnel4", "qos_api.sh", "modem-gsm-test-anydata.gcom", "85-ntp", "lib-crc-ccitt", "basic.html", "system_params.html", "usermngr_backup.html", "12d1:1805", "mac_filter", "qos_Class_role.html", "store.js", "zone_core.sh", "70-policy_route.sh", "ipsec_generate_domain.sh", "S22rsa_check", "uci_firewall.sh", "19d2:0154", "e18bfb83.0", "Trustwave_Global_ECC_P384_Certification_Authority.crt", "usb-net", "05c6:1000:uMa=SSE", "12d1:14d1", "progressbar.js", "SSL.com_Root_Certification_Authority_ECC.crt", "vlan_network", "arp_defense", "91-xt_authlimit", "cli_clock_cmd.tree", "cli_vlan_cmd.tree", "1ee8:0060", "12d1:15cd", "macFiltering.html", "2015-03-30 - New reconnaissance threat Trojan.Laziok targets the energy sector.pdf", "0408:ea43", "APT group ups targets us gov.pdf", "2015-05-17 - Newest addition to a happy family- KBOT.pdf", "2015-02-27 - ScanBox Framework.pdf", "China Peace Palace.pdf", "2015-11-11 - Operation Buhtrap malware distributed via ammyy.com.pdf", "cd8c0d63.0", "AffirmTrust_Premium.crt", "pptpd", "pgp.conf", "16d8:700b", "1de1:1101", "1c9e:f000", "route_api.sh", "sshkey.conf", "00_start_sync.sh", "attack-defense.html", "system", "network", "GDCA_TrustAUTH_R5_ROOT.crt", "ipt-core", "rc.local", "2015-11-06 - OmniRAT Takes Over Android Devices Through Social Engineering Tricks.pdf", "ldap_check_result.sh", "Dino.pdf", "rtl8367s_switch_globalLed", "50-improxy", "02_network", "22-qos-tplink", "zone_api_all.sh", "0af0:7901", "2015-10-06 - MOKER- A NEW APT DISCOVERED WITHIN A SENSITIVE NETWORK.pdf", "dhcp_lan_settings_standalone.html", "S99bootcount", "S99system_params", "countrygroup", "0408:f000", "zone_conf.sh", "2015-11-30 - Inside Braviax-FakeRean- An analysis and history of a FakeAV family.pdf", "usb-storage", "46-nat.sh", "2015-03-09 - CryptoFortress mimics TorrentLocker but is a different ransomware.pdf", "5f618aec.0", "12d1:14c3", "2015-01-21 - The DGA of Symmi.pdf", "S10boot", "2015-03-07 - Slave, Banatrix and ransomware.pdf", "K26pppox", "assign_restriction.html", "dhcp6c.script", "options.l2tp", "ipgroup_view.html", "99-xt_l2tp", "2015-08-24 - Sphinx- New Zeus Variant for Sale on the Black Market.pdf", "zzzzzsys_info", "K50dropbear", "GlobalSign_Root_CA.crt", "jquery.flot.fillbetween.js", "l2tp_global.html", "TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt", "2015-11-20 - A king's ransom- an analysis of the CTB-locker ransomware.pdf", "2015-08-12 - Tinba Trojan Sets Its Sights on Romania.pdf", "0685:2000", "tmngtd", "2015-08-18 - ransomware open-sources.pdf", "97-load_balance.sh", "ipv6group_group.html", "S42ipgroup", "2015-08-19 - Inside Neutrino botnet builder.pdf", "wportal_free.html", "pkcs12.conf", "1307:1169", "2015-12-08 - VT Report for SmartEyes.pdf", "SwissSign_Gold_CA_-_G2.crt", "2015-10-07 - Hacker Group Creates Network of Fake LinkedIn Profiles.pdf", "cmxddns.html", "10a9:6080", "1b7d:0700", "dslite-up.sh", "ipgroup_group.html", "set_time", "2015-07-22 - Duke APT group's latest tools- cloud services and Linux support.pdf", "c28a8a30.0", "pki.conf", "4304c5e5.0", "Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt", "1ee8:004a", "2015-04-15 - Betabot retrospective.pdf", "cbi.js", "ANALYSIS ON APT-TO-BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "acl_delete_rule.lua", "12d1:1f18", "omada-tool.conf", "handle_card_process.sh", "1410:5041", "0d46:45a1", "ips_threat_management.html", "19d2:1542", "ca-certificates.crt", "web_login.html", "connect-ppp.gcom", "2015-10-17 - How to Write Simple but Sound Yara Rules \u2013 Part 2.pdf", "1004:61dd", "detach_timeobj.lua", "12d1:1446", "dnssec.html", "group", "snmp.lua", "2015-11-11 - AbaddonPOS- A new point of sale threat linked to Vawtrak.pdf", "12d1:14c5", "radiusclient-ng.h", "gmp.conf", "pppox-load-user.lua", "2015-12-01 - Operation Black Atlas Endangers In-Store Card Payments and SMBs Worldwide; Switches between BlackPOS and Other Tools.pdf", "zombie_monitor", "90-xt_ipsecmark", "S65wifidog", "qos_mark.sh", "switch_Parameter.html", "19d2:1179", "editor.js", "d887a5bb.0", "19d2:1171", "dns_cache.html", "time_setting.html", "GlobalSign_Root_CA_-_R6.crt", "qos_tc.sh", "CA_Disig_Root_R2.crt", "12d1:14c4", "zteinfo.gcom", "05c6:1000:uMa=StrongRising", "footer.htm", "modemLedCtrl.sh", "user-secrets", "03-vlan", "12d1:1f09", "kadmin.local", "1e0e:f000", "profile", "2015-11-05 - Sphinx Moth- Expanding our knowledge of the \u201cWild Neutron\u201d - \u201cMorpho\u201d APT.pdf", "S96upnp", "SSL.com_Root_Certification_Authority_RSA.crt", "qos_nf.sh", "S99zero_boot_done", "openvpn-mgmt", "1614:0800", "198a:0003", "S96policy_route", "Hongkong_Post_Root_CA_1.crt", "2015-07-20 - Watering Hole Attack on Aerospace Firm Exploits CVE-2015-5122 to Install IsSpace Backdoor.pdf", "cert.pem", "_updown", "1a8d:1000", "2015-06-09 - New Data- Volatile Cedar Malware Campaign.pdf", "1c9e:9800", "1fac:0130", "qos", "ipt-nat", "04e8:689a", "12d1:1f1e", "0af0:7111", "Attacks on France TV5 Monde.pdf", "gre", "f3377b1b.0", "2015-08-27 - New Spear Phishing Campaign Pretends to be EFF.pdf", "ipt-extra", "2015-06-24 - UnFIN4ished Business.pdf", "frr.conf", "1-lanv6hook.sh", "wifidog-msg.html", "0af0:6971", "SecureTrust_CA.crt", "qos_core.sh", "base-files", "12d1_0005", "12d1:14b5", "common.sh", "ifstat-mini", "blog.pdf", "19d2:1536", "25-nls-utf8", "su.js", "kill-pptpd-xl2tpd.sh", "ssl_vpn_status.html", "706f604c.0", "0af0:9200", "749e9e03.0", "interface.sh", "chat-get-anydata_1", "ldap.conf", "zzddns", "getcarrier.gcom", "2015-10-15 - Archivist.pdf", "devstatus", "04cc:225c", "2001:a708", "value.htm", "2015-03-28 - UACME.pdf", "get-vpn-ip.sh", "noipddns", "S60pptpd", "wechat_wifi.html", "cn9130_register", "chat-modem-configure", "2015-09-08 - Carbanak gang is back and packing new guns.pdf", "chat-modem-test", "vpn_general.html", "dynamic_dns_dyndns.sh", "index.html", "SZAFIR_ROOT_CA2.crt", "2015-09-11 - SUCEFUL- Next Generation ATM Malware.pdf", "openssl.conf", "client.crt", "02_default_set_state", "getregistestate.gcom", "68dd7389.0", "ipsec_secrets", "nat_napt.sh", "fstab", "nat_vs.sh", "05c6:1000:sVe=Option", "S90openvpn", "dynanmic_arpreq.sh", "S47imb", "SSL.com_EV_Root_Certification_Authority_RSA_R2.crt", "server-cert.pem", "custom_dhcp", "getimsi.gcom", "91-authlimit", "1bbb:f000", "l2tp-functions.sh", "2015-09-09 - Pony Stealer Malware.pdf", "S99phddns", "ar8327_switch_portPara", "custom_ddns.html", "appdist_database.html", "cn9130_switch_portPara", "style-pcdemo.css", "19d2:1517", "firmware_managing.html", "pptp-ifdevice-info.sh", "chart.js", "1bbb:f052", "dpi_tmngtd.sh", "vpn_wireguard.html", "2015-04-15 - Elite cyber crime group strikes back after attack by rival APT gang.pdf", "0af0:6731", "GTS_Root_R1.crt", "nat_dmz_bypass.sh", "2015-06-04 - KeyBase Keylogger Malware Family Exposed.pdf", "improxy", "vnet_init.sh", "2015-06-22 - Games are over- Winnti is now targeting pharmaceutical companies.pdf", "0b3c:f017", "set_fan.sh", "action_check.html", "12d1:1f1d", "2015-11-16 - Shining the Spotlight on Cherry Picker PoS Malware.pdf", "phddns", "qos_VoIP.html", "web_security.html", "dictionary.asnet", "jquery.flot.crosshair.js", "routing.lua", "usb-serial", "time_mngt", "2015-04-14 - Unit 42 Identifies New DragonOK Backdoor Malware Deployed Against Japanese Targets.pdf", "monitor", "firewall.user", "led", "quick_setup.html", "revocation.conf", "NetLock_Arany_=Class_Gold=_F?tan\u00fas\u00edtv\u00e1ny.crt", "netifd-proto.sh", "2015-09-23 - Quaverse RAT- Remote-Access-as-a-Service.pdf", "K10openvpn", "ar8327_switch_portRateControl", "firmware_reseting.html", "wechat.html", "1d09:1025", "99-ipt_TRIGGER", "ipxd", "tblsection.htm", "12d1:1c0b", "ar8327_switch_portStatistic", "ndppd", "keyword.js", "pptpd.conf", "S00zombie_monitor", "DigiCert_Global_Root_G3.crt", "appflow_statistics.html", "2015-04-01 - NewPosThings Has New PoS Things.pdf", "dhcp6s.conf", "baseinfo.gcom", "1da5:f000", "S72sfe", "15-mii", "0af0:8006", "gre_common.sh", "dnsmasq.conf", "QuoVadis_Root_CA_3.crt", "wizard.js", "2015-05-29 -The MsnMM Campaigns - The Earliest Naikon APT Campaigns.pdf", "2015-04-15 - Knowledge Fragment- Bruteforcing Andromeda Configuration Buffers.pdf", "2015-11-25 - Detecting GlassRAT using Security Analytics and ECAT.pdf", "backup.sh", "10_indicate_failsafe", "0fce:d0e1", "pppox-default-variables.sh", "pptp-get-tuunel-info.sh", "0af0:7501", "07_set_preinit_iface_ramips", "pptp", "aes.conf", "2015-06-18 - So Long, and Thanks for All the Domains.pdf", "dhcp", "pppox-remote-management.sh", "2015-05-18 - TT Malware Log.pdf", "19d2:#linux", "wizard.html", "8d86cdd1.0", "zero_boot_done", "00-vnet_client.sh", "2015-08-12 - Islamic State Hacking Division.pdf", "S60dnsmasq", "40-imb.sh", "Entrust.net_Premium_2048_Secure_Server_CA.crt", "106c:3b14", "1bbb:f017", "dynddns", "5ad8a5d6.0", "Entrust_Root_Certification_Authority_-_G2.crt", "GTS_Root_R4.crt", "core_ipgroup.sh", "0fce:d0cf", "ips_whitelists.html", "mdns.html", "2015-07-31 - OTX- FBI Flash 68 (PlugX).pdf", "pptp-client-global", "b1159c4c.0", "find_target.lua", "The Jane Syndrome - 22.txt", "OISTE_WISeKey_Global_Root_GB_CA.crt", "freeStrategy_backup.sh", "S99zzzzzsys_info", "2015-07-14 - BernhardPOS.pdf", "90-urlset", "phddns.html", "su.full.min.js", "2015-04-18 - Operation RussianDoll- Adobe & Windows Zero-Day Exploits Likely Leveraged by Russia\u2019s APT28 in Highly-Targeted Attack.pdf", "12d1:1da1", "16d8:6803", "2015-02-25 - KINS Banking Trojan Source Code.pdf", "pppox-pppoetimer.sh", "0af0:7a01" ], "related": { "alienvault": { "adversary": [], "malware_families": [], "industries": [] }, "other": { "adversary": [ "R00TK1T", "DragonForce Malaysia" ], "malware_families": [ "", "Reduceright" ], "industries": [ "Education", "Semiconductor", "Media", "Technology", "Ngo", "Government" ] } } }, "false_positive": [] }, "geo": {}, "geo_ipapicom": {}, "pulse_count": 9, "pulses": [ { "id": "69f4dfa6405cf7858f1b732a", "name": "2015: Malware Analysis Report", "description": "", "modified": "2026-05-01T17:15:18.968000", "created": "2026-05-01T17:15:18.968000", "tags": [], "references": [ "2015-01-08 - Getmypass Point of Sale Malware Update.pdf", "2015-01-13 - New Carberp variant heads down under.pdf", "2015-01-11 - The Mozart RAM Scraper.pdf", "2015-01-06 - Linux DDoS Trojan hiding itself with an embedded rootkit.pdf", "2015-01-09 - Chanitor Downloader Actively Installing Vawtrak.pdf", "2015-01-08 - Major malvertising campaign spreads Kovter Ad Fraud malware.pdf", "2015-01-15 - Weiterentwicklung anspruchsvoller Spyware- von Agent.BTZ zu ComRAT.pdf", "2015-01-20 - Analysis of Project Cobra.pdf", "2015-01-14 - Catching the \u201cInception Framework\u201d Phishing Attack.pdf", "2015-01-22 - New RATs Emerge from Leaked Njw0rm Source Code.pdf", "2015-01-26 - Storm Chasing- Hunting Hurricane Panda.pdf", "2015-01-21 - The DGA of Symmi.pdf", "2015-01-22 - Malvertising Leading To Flash Zero Day Via Angler Exploit Kit.pdf", "2015-02-04 - Pawn Storm Update- iOS Espionage App Found.pdf", "2015-01-22 - Scarab attackers took aim at select Russian targets since 2012.pdf", "2015-02-09 - Anthem Breach May Have Started in April 2014.pdf", "2015-02-15 - Carbanak.pdf", "2015-02-16 - Equation- The Death Star of Malware Galaxy.pdf", "2015-02-16 - How \u201comnipotent\u201d hackers tied to NSA hid for 14 years\u2014and were found at last.pdf", "2015-02-12 - Mobile Malware Gang Steals Millions from South Korean Users.pdf", "2015-02-17 - Ali Baba, the APT group from the Middle East.pdf", "2015-02-17 - Angry Android hacker hides Xbot malware in popular application icons .pdf", "2015-02-17 - BE2 extraordinary plugins, Siemens targeting, dev fails.pdf", "2015-02-18 - Babar- espionage software finally found and put under the microscope.pdf", "2015-02-18 - Babar- Suspected Nation State Spyware In The Spotlight.pdf", "2015-02-17 - The Desert Falcons targeted attacks.pdf", "2015-02-18 - Sexually Explicit Material Used as Lures in Recent Cyber Attacks.pdf", "2015-02-05 - Anatomy of a Brute Force Campaign- The Story of Hee Thai Limited.pdf", "2015-02-18 - Meet Babar, a New Malware Almost Certainly Created by France.pdf", "2015-02-25 - KINS Banking Trojan Source Code.pdf", "2015-02-19 - Arid Viper \u2013 Israel entities targeted by malware packaged with sex video.pdf", "2015-02-23 - Cyber Kung-Fu- The Great Firewall Art of DNS Poisoning.pdf", "2015-02-27 - ScanBox Framework.pdf", "2015-02-25 - Pony Sourcecode.pdf", "2015-02-20 - The DGAs of Necurs.pdf", "2015-03-03 - C99Shell not dead.pdf", "2015-03-03 - PwnPOS- Old Undetected PoS Malware Still Causing Havoc.pdf", "2015-03-04 - New crypto ransomware in town - CryptoFortress.pdf", "2015-03-04 - And you get a POS malware name...and you get a POS malware name....and you get a POS malware name.....pdf", "2015-03-06 - Animals in the APT Farm.pdf", "2015-03-07 - Slave, Banatrix and ransomware.pdf", "2015-02-27 - The Anthem Hack- All Roads Lead to China.pdf", "2015-03-05 - Casper Malware- After Babar and Bunny, Another Espionage Cartoon.pdf", "2015-03-09 - CryptoFortress mimics TorrentLocker but is a different ransomware.pdf", "2015-03-04 - Who\u2019s Really Spreading through the Bright Star-.pdf", "2015-03-10 - The DGA of Pykspa.pdf", "2015-03-11 - Malvertising Targeting European Transit Users.pdf", "2015-03-19 - Analyzing a Backdoor-Bot forthe MIPS Platform.pdf", "2015-03-11 - Inside the EquationDrug Espionage Platform.pdf", "2015-02-27 - VB2014 paper- The pluginer - Caphaw.pdf", "2015-03-19 - Rocket Kitten Showing Its Claws- Operation Woolen-GoldFish and the GHOLE campaign.pdf", "2015-03-30 - Fake Judicial Spam Leads to Backdoor with Fake Certificate Authority.pdf", "2015-03-19 - FindPOS- New POS Malware Family Discovered.pdf", "2015-03-31 - Volatile Cedar - Analysis of a Global Cyber Espionage Campaign.pdf", "2015-03-20 - Threat Spotlight- PoSeidon, A Deep Dive Into Point of Sale Malware.pdf", "2015-03-30 - New reconnaissance threat Trojan.Laziok targets the energy sector.pdf", "2015-03-31 - Sinkholing Volatile Cedar DGA Infrastructure.pdf", "2015-04-01 - NewPosThings Has New PoS Things.pdf", "2015-04-09 - Beebone Botnet Takedown- Trend Micro Solutions.pdf", "2015-03-28 - UACME.pdf", "2015-04-09 - Operation Buhtrap, the trap for Russian accountants.pdf", "2015-04-13 - Cyber Deterrence in Action- A story of one long HURRICANE PANDA campaign.pdf", "2015-04-15 - Elite cyber crime group strikes back after attack by rival APT gang.pdf", "2015-04-13 - Analyzing Gootkit's persistence mechanism (new ASEP inside!).pdf", "2015-04-14 - Unit 42 Identifies New DragonOK Backdoor Malware Deployed Against Japanese Targets.pdf", "2015-04-15 - Betabot retrospective.pdf", "2015-04-12 - SIMDA- A Botnet Takedown.pdf", "2015-04-15 - Knowledge Fragment- Bruteforcing Andromeda Configuration Buffers.pdf", "2015-04-13 - sqlconnt1.exe.pdf", "2015-04-18 - Operation RussianDoll- Adobe & Windows Zero-Day Exploits Likely Leveraged by Russia\u2019s APT28 in Highly-Targeted Attack.pdf", "2015-04-15 - New POS Malware Emerges - Punkey.pdf", "2015-04-15 - The Chronicles of the Hellsing APT- the Empire Strikes Back.pdf", "2015-04-21 - Bedep\u2019s DGA- Trading Foreign Exchange for Malware Domains.pdf", "2015-04-17 - Andromeda-Gamarue bot loves JSON too (new versions details).pdf", "2015-04-27 - Attacks against Israeli & Palestinian interests.pdf", "2015-05-04 - Threat Spotlight- Rombertik \u2013 Gazing Past the Smoke, Mirrors, and Trapdoors.pdf", "2015-04-15 - The Chronicles of the Hellsing APT_the Empire Strikes Back.pdf", "2015-05-10 - Third-Party Software Was Entry Point for Background-Check System Hack.pdf", "2015-04-29 - Unboxing Linux-Mumblehard- Muttering spam from your servers.pdf", "2015-05-15 - Carefirst Blue Cross Breach Hits 1.1M.pdf", "2015-05-14 - The Naikon APT.pdf", "2015-05-07 - Dissecting the \u201cKraken\u201d.pdf", "2015-05-18 - Cmstar Downloader- Lurid and Enfal\u2019s New Cousin.pdf", "2015-05-17 - Newest addition to a happy family- KBOT.pdf", "2015-05-22 - The DGA of Ranbyus.pdf", "2015-04-27 - Threat Spotlight- TeslaCrypt \u2013 Decrypt It Yourself.pdf", "2015-05-20 - Bedep Ad-Fraud Botnet Analysis \u2013 Exposing the Mechanics Behind 153.6M Defrauded Ad Impressions A Day.pdf", "2015-05-23 - NitlovePOS- Another New POS Malware.pdf", "2015-05-26 - Moose \u2013 the router worm with an appetite for social networks.pdf", "2015-05-18 - TT Malware Log.pdf", "2015-06-01 - Rhetoric Foreshadows Cyber Activity in the South China Sea.pdf", "2015-05-28 - Unusual Exploit Kit Targets Chinese Users (Part 1).pdf", "2015-06-03 - Thamar Reservoir \u2013 An Iranian cyber-attack campaign against targets in the Middle East.pdf", "2015-06-01 - \u201cTroldesh\u201d \u2013 New Ransomware from Russia.pdf", "2015-06-04 - KeyBase Keylogger Malware Family Exposed.pdf", "2015-06-12 - Unusual Exploit Kit Targets Chinese Users (Part 2).pdf", "2015-06-15 - Stegoloader- A Stealthy Information Stealer.pdf", "2015-06-15 - Catching Up on the OPM Breach.pdf", "2015-06-10 - The Mystery of Duqu 2.0- a sophisticated cyberespionage actor returns.pdf", "2015-06-16 - Operation Lotus Blossom- A New Nation-State Cyberthreat-.pdf", "2015-06-09 - New Data- Volatile Cedar Malware Campaign.pdf", "2015-05-29 -The MsnMM Campaigns - The Earliest Naikon APT Campaigns.pdf", "2015-06-22 - Games are over- Winnti is now targeting pharmaceutical companies.pdf", "2015-06-19 - Digital Attack on German Parliament- Investigative Report on the Hack of the Left Party Infrastructure in Bundestag.pdf", "2015-06-23 - Operation Clandestine Wolf \u2013 Adobe Flash Zero-Day in APT3 Phishing Campaign.pdf", "2015-06-18 - So Long, and Thanks for All the Domains.pdf", "2015-06-17 - The Spring Dragon APT.pdf", "2015-06-25 - Sundown EK Spreads LuminosityLink RAT- Light After Dark.pdf", "2015-06-24 - Stealthy Cyberespionage Campaign Attacks With Social Engineering.pdf", "2015-06-24 - UnFIN4ished Business.pdf", "2015-07-08 - Wild Neutron \u2013 Economic espionage threat actor returns with new tricks.pdf", "2015-07-02 - Win32-Lethic Botnet Analysis.pdf", "2015-07-10 - Sednit APT Group Meets Hacking Team.pdf", "2015-06-24 - Elusive HanJuan EK Drops New Tinba Version (updated).pdf", "2015-07-07 - Dyre Banking Trojan Exploits CVE-2015-0057.pdf", "2015-07-13 - Revisiting The Bunitu Trojan.pdf", "2015-07-14 - BernhardPOS.pdf", "2015-07-14 - TeslaCrypt 2.0 disguised as CryptoWall.pdf", "2015-07-08 - Butterfly- Profiting from high-level corporate attacks.pdf", "2015-07-05 - Spy Tech Company 'Hacking Team' Gets Hacked.pdf", "2015-07-08 - Animal Farm APT and the Shadow of French Intelligence.pdf", "2015-07-16 - Github Repo with source code of cd00r.c.pdf", "2015-07-19 - The Faulty Precursor of Pykspa's DGA.pdf", "2015-07-31 - OTX Pulse on PlugX.pdf", "2015-08 - Uncovering the Seven Pointed Dagger.pdf", "2015-07-27 - UPS- Observations on CVE-2015-3113, Prior Zero-Days and the Pirpi Payload.pdf", "2015-07-13 - \u201cForkmeiamfamous\u201d- Seaduke, latest weapon in the Duke armory.pdf", "2015-07-20 - Watering Hole Attack on Aerospace Firm Exploits CVE-2015-5122 to Install IsSpace Backdoor.pdf", "2015-07-22 - Duke APT group's latest tools- cloud services and Linux support.pdf", "2015-07-30 - Sakula Malware Family.pdf", "2015-08-10 - Darkhotel\u2019s attacks in 2015.pdf", "2015-08-05 - Newly discovered Chinese hacking group hacked 100+ websites to use as \u201cwatering holes\u201d.pdf", "2015-07-31 - OTX- FBI Flash 68 (PlugX).pdf", "2015-07-30 - Operation Potao Express- Analysis of a cyber?espionage toolkit.pdf", "2015-08-18 - Knowledge Fragment- Unwrapping Fobber.pdf", "2015-08-12 - Islamic State Hacking Division.pdf", "2015-08-19 - Antak WebShell.pdf", "2015-08-12 - Tinba Trojan Sets Its Sights on Romania.pdf", "2015-08-05 - Newly discovered Chinese hacking group hacked over 100 websites to use as \u201cwatering holes\u201d.pdf", "2015-08-18 - ransomware open-sources.pdf", "2015-08-26 - Sphinx, a new variant of Zeus available for sale in the underground.pdf", "2015-08-19 - Inside Neutrino botnet builder.pdf", "2015-08-05 - Threat Group 3390 Cyberespionage.pdf", "2015-08-24 - Sphinx- New Zeus Variant for Sale on the Black Market.pdf", "2015-08-05 - Who\u2019s Behind Your Proxy- Uncovering Bunitu\u2019s Secrets.pdf", "2015-08-20 - Retefe Banking Trojan Targets Sweden, Switzerland and Japan.pdf", "2015-09-09 - Pony Stealer Malware.pdf", "2015-09-16 - Operation Iron Tiger- Attackers Shift from East Asia to the United States.pdf", "2015-08-27 - London Calling- Two-Factor Authentication Phishing From Iran.pdf", "2015-09-11 - CSI MacMark- Janicab.pdf", "2015-09-12 - Stuxnet code.pdf", "2015-09-23 - Chinese Actors Use \u20183102\u2019 Malware in Attacks on US Government and EU Media.pdf", "2015-08-27 - New Spear Phishing Campaign Pretends to be EFF.pdf", "2015-09-08 - Carbanak gang is back and packing new guns.pdf", "2015-09-03 - Three Variants of Murofet's DGA.pdf", "2015-09-01 - Attackers Target Organizations in Japan; Transform Local Sites into C&C Servers for EMDIVI Backdoor.pdf", "2015-08-31 - Shifu- \u2018Masterful\u2019 New Banking Trojan Is Attacking 14 Japanese Banks.pdf", "2015-09-14 - The Shade Encryptor- a Double Threat.pdf", "2015-09-11 - SUCEFUL- Next Generation ATM Malware.pdf", "2015-09-09 - Satellite Turla- APT Command and Control in the Sky.pdf", "2015-09-17 - The Dukes- 7 Years Of Russian Cyber-Espionage.pdf", "2015-09-24 - Credit Card-Scraping Kasidet Builder Leads to Spike in Detections.pdf", "2015-09-24 - Kovter malware learns from Poweliks with persistent fileless registry update.pdf", "2015-09-18 - Operation Arid Viper Slithers Back into View.pdf", "2015-09-01 - Fancy Bear.pdf", "2015-09-25 - Notes on Linux-Xor.DDoS.pdf", "2015-09-23 - Ranbyus's DGA, Revisited.pdf", "2015-09-29 - Andromeda Bot Analysis part 1.pdf", "2015-10-06 - I am HDRoot! Part 1.pdf", "2015-10-06 - Ticked Off- Upatre Malware\u2019s Simple Anti-analysis Trick to Defeat Sandboxes.pdf", "2015-10-01 - Linux.Rekoobe.1.pdf", "2015-10-06 - MOKER- A NEW APT DISCOVERED WITHIN A SENSITIVE NETWORK.pdf", "2015-10-06 - Targeted Attack Exposes OWA Weakness.pdf", "2015-09-28 - Gaza cybergang, where\u2019s your IR team-.pdf", "2015-10-12 - Keybase Logger-Clipboard-CredsStealer campaign.pdf", "2015-10-07 - Hacker Group Creates Network of Fake LinkedIn Profiles.pdf", "2015-10-09 - Latest TeslaCrypt Ransomware Borrows Code From Carberp Trojan.pdf", "2015-10-09 - Beta Bot Analysis- Part 1.pdf", "2015-10-13 - I am HDRoot! Part 2.pdf", "2015-09-28 - Two New PoS Malware Affecting US SMBs.pdf", "2015-10-13 - Dridex (Bugat v5) Botnet Takeover Operation.pdf", "2015-10-19 - Github Repository for AllaKore.pdf", "2015-10-16 - Surveillance Malware Trends- Tracking Predator Pain and HawkEye.pdf", "2015-10-13 - New Adobe Flash Zero-Day Used in Pawn Storm Campaign Targeting Foreign Affairs Ministries.pdf", "2015-09-24 - Meet GreenDispenser- A New Breed of ATM Malware.pdf", "2015-10-17 - How to Write Simple but Sound Yara Rules \u2013 Part 2.pdf", "2015-10-13 - Prolific Cybercrime Gang Favors Legit Login Credentials.pdf", "2015-10-15 - Archivist.pdf", "2015-09-23 - Quaverse RAT- Remote-Access-as-a-Service.pdf", "2015-10-26 - Duuzer back door Trojan targets South Korea to take over computers.pdf", "2015-10-22 - Pawn Storm Targets MH17 Investigation Team.pdf", "2015-11-02 - Troj-Cryakl-B.pdf", "2015-09-29 - Andromeda Bot Analysis part 2.pdf", "2015-10-28 - Reversing the C2C HTTP Emmental communication.pdf", "2015-11-02 - Modular trojan for hidden access to a computer.pdf", "2015-11-03 - Reversing the SMS C&C protocol of Emmental (1st part - understanding the code).pdf", "2015-11-05 - Sphinx Moth- Expanding our knowledge of the \u201cWild Neutron\u201d - \u201cMorpho\u201d APT.pdf", "2015-09-28 - Hammertoss- What, Me Worry-.pdf", "2015-10-08 - Dyre Malware Campaigners Innovate with Distribution Techniques.pdf", "2015-11-04 - \u201cOffline\u201d Ransomware Encrypts Your Data without C&C Communication.pdf", "2015-11-10 - Bookworm Trojan- A Model of Modular Architecture.pdf", "2015-11-11 - Operation Buhtrap malware distributed via ammyy.com.pdf", "2015-11-02 - Shifu \u2013 the rise of a self-destructive banking trojan.pdf", "2015-11-04 - DroidJack isn\u2019t the only spying software out there- Avast discovers OmniRat.pdf", "2015-11-17 - New Memory Scraping Technique in Cherry Picker PoS Malware.pdf", "2015-11-11 - AbaddonPOS- A new point of sale threat linked to Vawtrak.pdf", "2015-12-01 - China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets.pdf", "2015-11-16 - Shining the Spotlight on Cherry Picker PoS Malware.pdf", "2015-12-03 - Colombians major target of email campaigns delivering Xtreme RAT.pdf", "2015-11-04 - A Technical Look At Dyreza.pdf", "2015-12-04 - Sofacy APT hits high profile targets with updated toolset.pdf", "2015-12-16 - Nemucod malware spreads ransomware Teslacrypt around the world.pdf", "2015-12-08 - VT Report for SmartEyes.pdf", "2015-12-09 - Inside Chimera Ransomware - the first 'doxingware' in wild.pdf", "2015-12-18 - Attack on French Diplomat Linked to Operation Lotus Blossom.pdf", "2015-12-17 - SlemBunk- An Evolving Android Trojan Family Targeting Users of Worldwide Banking Apps.pdf", "2015-12-26 - Backdoor- Win32-Hesetox.A- vSkimmer POS Malware Analysis _.pdf", "2015-11-20 - A king's ransom- an analysis of the CTB-locker ransomware.pdf", "2015-11-16 - Introducing LogPOS.pdf", "2015-12-22 - Kraken's two Domain Generation Algorithms.pdf", "2015-12-07 - Iran-based attackers use back door threats to spy on Middle Eastern targets.pdf", "2015-11-06 - OmniRAT Takes Over Android Devices Through Social Engineering Tricks.pdf", "2015-12-11 - LATENTBOT- Trace Me If You Can.pdf", "2015-11-30 - Inside Braviax-FakeRean- An analysis and history of a FakeAV family.pdf", "2015-12-01 - Operation Black Atlas Endangers In-Store Card Payments and SMBs Worldwide; Switches between BlackPOS and Other Tools.pdf", "2015-12-22 - BBSRAT Attacks Targeting Russian Organizations Linked to Roaming Tiger.pdf", "Agent.BTZ to ComRAT.pdf", "2015-11-25 - Detecting GlassRAT using Security Analytics and ECAT.pdf", "2015-12-08 - Packrat- Seven Years of a South American Threat Actor.pdf", "Afghan Government Compromise - Browser Beware.pdf", "Anthem hack all roads lead to China.pdf", "ANALYSIS ON APT TO BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "Animals in the APT Farm.pdf", "APT CVE-2015-5119.pdf", "APT 28 (1).pdf", "Attacks against Israeli & Palestinian interests.pdf", "APT group ups targets us gov.pdf", "Black Energy.pdf", "blog.pdf", "APT 28.pdf", "Babar.pdf", "Black Vine.pdf", "Behind the syria conflict.pdf", "Attacks on France TV5 Monde.pdf", "Casper Malware.pdf", "2015-12-31 - Overseas -Dark Inn- organization launched an APT attack on executives of domestic enterprises.pdf", "Demonstrating Hustle.pdf", "Cmstar Downloader.pdf", "Apt 28 (2).pdf", "Bookworm Trojan (1).pdf", "ANALYSIS ON APT-TO-BE ATTACK THAT FOCUSING ON CHINAS GOVERNMENT AGENCY.pdf", "Duke cloud Linux.pdf", "Dukes.pdf", "Duqu 2.0 Yara rules.pdf", "Duqu 2.0 Win32K Exploit.pdf", "Dino.pdf", "Duke cloud Linux (1).pdf", "Goldfish Phishing.pdf", "Indicators of Compormise Hellsing.pdf", "Rocket Kitten.pdf", "Trojan Skelky.pdf", "Wild Neutron.pdf", "2015-04-09 - The Banking Trojan Emotet- Detailed Analysis.pdf", "2015-07-23 - An Analysis of the Qadars Banking Trojan.pdf", "Babar or Bunny.pdf", "BBSRAT Roaming Tiger.pdf", "Blue termite (1).pdf", "China Peace Palace.pdf", "Copy Kittens.pdf", "Emdivi.pdf" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 2, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "kikinumpav", "id": "385742", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 1032, "FileHash-SHA1": 544, "IPv4": 487, "FileHash-MD5": 1665, "URL": 673, "hostname": 959, "CVE": 45, "FileHash-SHA256": 411, "email": 11, "CIDR": 4, "BitcoinAddress": 2, "YARA": 7 }, "indicator_count": 5840, "is_author": false, "is_subscribing": null, "subscriber_count": 13, "modified_text": "29 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "6768cd2fdfe372564f3b3345", "name": "Jane Doe is Targeted by DragonForce.io", "description": "Apple has released details of a virus that can be traced to a server in the US, but which has not yet been identified or detected.. and the full list of details has been revealed.", "modified": "2025-02-21T00:58:00.403000", "created": "2024-12-23T02:38:39.269000", "tags": [ "summary", "engine version", "mb data", "start date", "movies", "pictures", "export", "ipv6s", "importcsv", "psobject", "filehashwl", "notin", "select", "date", "write" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 14, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 1, "follower_count": 0, "vote": 0, "author": { "username": "ilyailya", "id": "298851", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 18, "URL": 166, "hostname": 34, "FileHash-SHA256": 143, "FileHash-MD5": 20, "FileHash-SHA1": 20 }, "indicator_count": 401, "is_author": false, "is_subscribing": null, "subscriber_count": 32, "modified_text": "463 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "67b2748046b400a75722958a", "name": "OpsBedil: MacOS Software Post-Installation Exploitation, Apple Inc.", "description": "Threat actors affiliated with DragonForce Malaysia, Lazarus Group, etc. exploit unauthorized nodes during MacOS software installations to gain persistence, exfiltrate data, and escalate privileges. Techniques observed include T1003 (Credential Dumping) to harvest keychain data, T1020 (Automated Exfiltration) over T1071 (Application Layer Protocol), and T1027 (Obfuscation) to conceal payloads. Persistence is achieved via T1053 (Scheduled Tasks) and T1543 (System Process Creation). Lateral movement is supported by T1046 (Network Discovery) and T1055 (Process Injection). Valid credentials (T1078) and remote services (T1133) enable long-term access. Proxy use (T1090) and tunneling (T1572) evade detection. Attackers hijack resources (T1496) and may deploy T1498 (DoS). Monitoring for unsigned installations, abnormal processes, and unusual traffic can detect this activity. Validating software sources and restricting network egress is recommended.", "modified": "2025-02-21T00:57:29.372000", "created": "2025-02-16T23:28:00.763000", "tags": [ "downloads music", "desktop library", "movies public", "hostname", "cves", "emails", "convertt", "filehashesepo", "display", "bash", "term", "path", "shell", "date", "license", "dyldlibrarypath", "apache software", "foundation", "notice file", "apache license", "version", "unless", "as is", "basis", "usrsbinkadmin l", "heimdal", "btmm hash", "s gmtnever", "kerberos", "logger", "force", "mit emulation", "bad option", "certhash", "movies", "music", "bluetool mktemp", "getfileinfo", "ioaccelmemory", "iosdebug", "rez mountcd9660", "mountftp", "bpinstall", "importcsv", "re resmerger", "select", "define", "http", "filehash", "open", "Aishah Siti Lazim", "194 Green Street", "Aishah Lazim", "LGBTQ Hate Attack", "Anti-semitic", "DragonForce Malaysia", "dragonforce.io", "synthetic identity theft", "computer intrusion act", "illegal surveillance", "noncivilian citizens", "havana syndrome", "electromagnetic radiation" ], "references": [ "envvars", "kadmin.local", "Info.plist", "metadata.json", "/var/log/install.log", "/var/log/install.log", "/var/log/asl", "/System/Library/CoreServices/Software Update.app/Contents/Resources/softwareupdated", "/System/Library/PrivateFrameworks/MobileAccessoryUpdater.framework/Support/accessoryupdaterd", "" ], "public": 1, "adversary": "DragonForce Malaysia", "targeted_countries": [ "United States of America", "Israel", "Bahrain", "Japan" ], "malware_families": [], "attack_ids": [ { "id": "T1003", "name": "OS Credential Dumping", "display_name": "T1003 - OS Credential Dumping" }, { "id": "T1011", "name": "Exfiltration Over Other Network Medium", "display_name": "T1011 - Exfiltration Over Other Network Medium" }, { "id": "T1020", "name": "Automated Exfiltration", "display_name": "T1020 - Automated Exfiltration" }, { "id": "T1027", "name": "Obfuscated Files or Information", "display_name": "T1027 - Obfuscated Files or Information" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1053", "name": "Scheduled Task/Job", "display_name": "T1053 - Scheduled Task/Job" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1059", "name": "Command and Scripting Interpreter", "display_name": "T1059 - Command and Scripting Interpreter" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1078", "name": "Valid Accounts", "display_name": "T1078 - Valid Accounts" }, { "id": "T1090", "name": "Proxy", "display_name": "T1090 - Proxy" }, { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1133", "name": "External Remote Services", "display_name": "T1133 - External Remote Services" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" }, { "id": "T1185", "name": "Man in the Browser", "display_name": "T1185 - Man in the Browser" }, { "id": "T1190", "name": "Exploit Public-Facing Application", "display_name": "T1190 - Exploit Public-Facing Application" }, { "id": "T1205", "name": "Traffic Signaling", "display_name": "T1205 - Traffic Signaling" }, { "id": "T1489", "name": "Service Stop", "display_name": "T1489 - Service Stop" }, { "id": "T1496", "name": "Resource Hijacking", "display_name": "T1496 - Resource Hijacking" }, { "id": "T1498", "name": "Network Denial of Service", "display_name": "T1498 - Network Denial of Service" }, { "id": "T1505", "name": "Server Software Component", "display_name": "T1505 - Server Software Component" }, { "id": "T1543", "name": "Create or Modify System Process", "display_name": "T1543 - Create or Modify System Process" }, { "id": "T1571", "name": "Non-Standard Port", "display_name": "T1571 - Non-Standard Port" }, { "id": "T1572", "name": "Protocol Tunneling", "display_name": "T1572 - Protocol Tunneling" }, { "id": "T1574", "name": "Hijack Execution Flow", "display_name": "T1574 - Hijack Execution Flow" }, { "id": "T1584", "name": "Compromise Infrastructure", "display_name": "T1584 - Compromise Infrastructure" }, { "id": "T1587", "name": "Develop Capabilities", "display_name": "T1587 - Develop Capabilities" }, { "id": "T1588", "name": "Obtain Capabilities", "display_name": "T1588 - Obtain Capabilities" } ], "industries": [ "Government", "NGO", "Media", "Education" ], "TLP": "white", "cloned_from": null, "export_count": 10, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ilyailya", "id": "298851", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CVE": 3, "FileHash-MD5": 8, "FileHash-SHA1": 10, "FileHash-SHA256": 116, "URL": 93, "domain": 11, "hostname": 45 }, "indicator_count": 286, "is_author": false, "is_subscribing": null, "subscriber_count": 35, "modified_text": "463 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef70833fea14c3d358c05c", "name": "The Jane Doe Syndrome Files", "description": "", "modified": "2024-09-29T18:03:15.313000", "created": "2024-09-22T01:18:59.997000", "tags": [ "cloud files", "desktop public", "otxappsbroids", "select", "ipv4s", "cves", "http", "name", "reference", "emails", "date", "null", "write", "open" ], "references": [ "The Jane Syndrome - 22.txt", "The Jane Syndrome Files.txt" ], "public": 1, "adversary": "R00TK1T", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1027", "name": "Obfuscated Files or Information", "display_name": "T1027 - Obfuscated Files or Information" } ], "industries": [ "Semiconductor", "Technology" ], "TLP": "white", "cloned_from": null, "export_count": 16, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA256": 1, "domain": 2, "hostname": 6, "URL": 14 }, "indicator_count": 23, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "608 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef5494d8562293fa737ed4", "name": "The Jane Doe Syndrome Files: Thunderbolt WiFi-Based Virtual Bridges", "description": "", "modified": "2024-09-28T16:38:06.660000", "created": "2024-09-21T23:19:48.419000", "tags": [], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 17, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-MD5": 1, "FileHash-SHA1": 1, "FileHash-SHA256": 4, "domain": 2 }, "indicator_count": 8, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "609 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "66ef33ee4a7c08f8865721b3", "name": "The Jane Doe Syndrome: NetBIOs Remote Access & Sonic Warfare", "description": "An array of malicious malware, scripts, and techniques that are copycats to Apple Scripts and undetectable by anti-virus software programs. The malicious scripts such as NetBIOS and DNS spoofing can provide remote access to hackers, enabling them to gain full control and administrative privileges over Apple Inc. MacBooks. These vulnerabilities allow perpetrators to exploit system weaknesses, leading to full remote unauthorized data access, theft of sensitive information, and manipulation of system settings.", "modified": "2024-09-28T16:38:05.097000", "created": "2024-09-21T21:00:30.148000", "tags": [ "Aishah Lazim", "Malaysia", "Russia", "China", "Al-Arqam", "GUANGZHOU FIVE SIX TECHNOLOGY CO" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [ "United States of America" ], "malware_families": [ { "id": "", "display_name": "", "target": null } ], "attack_ids": [ { "id": "T1459", "name": "Device Unlock Code Guessing or Brute Force", "display_name": "T1459 - Device Unlock Code Guessing or Brute Force" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 18, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "ravescoutllc.", "id": "288912", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA256": 4, "domain": 6, "hostname": 14, "URL": 52, "FileHash-MD5": 1, "FileHash-SHA1": 1 }, "indicator_count": 78, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "609 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "660ec2cd7185f30ee98e0406", "name": "TP-Link ER605 Firmware Image download", "description": "After downloading a new firmware image for my TPlink ER605 switch/vpn-router, and since TP-Link doesn't provide a checksum for it. I decided to hit it with binwalk out of curiosity since I've had multiple issues with it the past two years. Immediately binwalk had to /dev/null the /var directory and further it hit two ip's as exploit sources once uploaded to criminalip and otx so I decided to upload the entire squash-fs for posterity", "modified": "2024-05-04T06:04:15.503000", "created": "2024-04-04T15:10:05.285000", "tags": [ "binmount o", "syskerneldebug", "limit", "netmask", "broadcast", "network", "prefix", "argc", "start", "copyright", "etcpasswd", "failsafe", "login", "important", "binash", "sample", "attention", "maxfds1024", "etcfrr", "somename", "openwrt", "deviceproduct", "generic", "devicerevision", "dns server", "ipv6 prefix", "duid", "ipv6 address", "x5 x8", "xdxrn502j", "y1 y1s", "linkits7688d", "omega2p", "wrtnode2p", "s boot", "sample vpn", "olinux", "cnpeer name", "target", "change", "ldap", "text", "port", "priority", "a srv", "srv record", "ldap server", "dnssd", "ipsec", "yang xiaoqiang", "varlogwtmp", "unavailreturn", "distribid", "distribrelease", "barrier breaker", "distribrevision", "distribcodename", "distribtarget", "openwrt barrier", "breaker", "distribtaints", "overlay srcgz", "home", "etcbanner", "pathusrbin", "ps1u", "libmodules", "ulimit", "binmore", "usrbinvim", "kshversion", "etcmkshrc", "preinit", "pathbin", "ipv6", "protocol", "isis", "icmp", "cisco", "header", "skip", "path first", "internet", "iana", "devnull", "stop", "ipkginstroot", "allcommands", "term", "stop value", "sqlite", "dh exponent", "grep", "w processor", "begin", "fix bug129941", "xfrm", "ipsec tunnel", "bug97836", "cmdlistend", "bundle command", "cmdliststart", "list", "procname", "list procname", "zebra route", "frr support", "bgp support", "zebra support", "firewallrule", "firewallruleset", "httpport", "path wifidog", "redirectdomain", "clienttimeout", "public key", "info", "version", "node id", "menu", "wifidog", "status", "wifidog wifidog", "gnu gpl", "rt3x5x", "sbinswconfig", "power", "wifi", "ethernet", "wifi5g", "rssilow", "rssimedium", "rssihigh", "wan led", "devconsole cp", "conffiles", "file 99ensync", "abort", "ansert", "abort error", "atz say", "atcgmm", "atcgmr", "ok atcsq", "ok atcgmr", "ok atcgmi", "atgmm", "atgmr", "timeout", "abort busy", "carrier", "report connect", "ate1", "useapn", "dialnumber", "connect", "atcgmi", "ok atcgmm", "atgmi", "answer", "v1 e1", "d2 fclass0", "at ok", "abort no", "dialtone", "sierra wireless", "cdma", "sprint", "verizon", "dial tone", "certificate", "telnet 23", "http 80", "https 443", "ssh 22", "webtimeout", "010001", "admin", "airplay option", "afp option", "ftp option", "samba option", "scanners option", "ssh option", "lanv6", "brlan", "network1", "sigusr2", "passwordauth on", "port 22", "10000s", "12000s", "4000s", "6000s", "ikepro1", "modp1024", "ikepro2", "aes128", "ikeph1name", "ph2proposal1", "ph2proposal2", "ikeph2name", "combination", "ikev1", "google", "cloudflare", "cleanbrowsing", "quad9", "opendns", "quad91", "quad92", "ipaddresspurely", "fqdn", "peertopeer", "presharekey", "tplink", "wan1", "ipgroupany", "ipv6groupany", "roseville194", "openwrt system", "balance", "dhcpclient", "portal", "pppoeclient", "onlinedection", "auto", "flashkeep", "etcopenvpn", "etcconfig", "etcdropbear", "global", "natlanwan1", "accept option", "accept", "drop", "reject", "reject option", "ipv6 icmp", "sections", "wan2", "0000", "usb0", "password", "eth1", "wan1eth", "wan1poe", "wan2eth", "wan2poe", "wan3eth", "wan3poe", "wan4eth", "wan4poe", "4094409340920", "onlinecheck", "openvpn", "ip address", "openvpn server", "windows", "remember", "common name", "generate", "etcopenvpnccd", "thelonious", "silence", "push", "first", "advertisecfg", "ospfcfg", "dslite", "pppoeshare", "wan1v6", "wan2v6", "wan3v6", "wan4v6", "static", "dynamic", "radvdinterface", "advmanagedflag", "advsendadvert", "advrouteraddr", "advautonomous", "advonlink", "ssh config", "http list", "https list", "telnet list", "http", "telnet", "https", "tcpudp", "2121", "2222", "2323", "smtp", "2525", "5353", "pop3", "partitionuuid1", "16043212800", "devsda1", "partitionuuid2", "devsda2", "udp161 option", "er605", "vpn router", "maximum number", "http listen", "https listen", "server document", "rfc1918 ip", "dns rebinding", "tcp connection", "akroniteshare", "account", "4094", "switch0", "vlan1", "vlan4094", "vlan0", "vwan", "veth1", "1024", "gmt0800", "ledsys", "switchled1", "switchled2", "switchled3", "switchled4", "switchled5", "modem", "options", "devnull p", "name", "match", "pkix", "randfile", "cadefault", "ca certificate", "sha256", "t61string", "bmpstring", "utf8strings", "mask", "import", "easyrsa", "keydir", "openvpn package", "openssl", "pkcs11tool", "keyconfig", "easyrsakeys", "issue rm", "pkcs11", "scdftprof1m", "setapn", "setuser", "setpass", "setauth", "atcgdcont1", "qcpdpp1", "scact11m", "paul hardwick", "paul", "empty input", "command", "error", "atcops", "atcops10m", "atcops12m", "atim", "atcreg2m", "atcgreg2m", "atcgeqneg1m", "atcreg", "atcgreg", "atndisdup11", "atcgatt", "1 goto", "wwan error", "useauth", "useuser", "usepass", "qcpdpp3", "atcfun1m", "atcgdcont3", "scact13m", "scact03m", "wwan connection", "atcimim", "atcpin", "sim puk", "sim pin", "ready", "atcsqm", "atmode", "atband", "atcsnr", "atsysinfoexm", "atsyscfgex", "atsyscfg", "atsysinfom", "atltersrp", "atcnumm", "busy", "errorn", "atcops0m", "mccmnc", "atcops12", "atcmd", "atq0 v1", "e1 s00", "e1 z", "atcmgf1m", "atcmgf0m", "wwan mode", "mode", "atzpas", "atzrssim", "atzrssi", "atzsnt", "pincode", "sim readyn", "sim pin2", "pinn", "gstatus", "selrat", "car0", "atcnti0m", "atecio", "atrscp", "umtschan", "atcommandn", "atcommand", "atcmgs", "action", "delete", "wanmod", "acldeleterule", "acladdrule", "ipgrouplan", "i actiondelete", "hplog", "hotplog", "hotplog fi", "deleterule", "addrule", "natlan", "qosdeleterule", "interface", "devconsole uci", "devconsole", "wanhook", "onlinedelzone", "onlineaddzone", "shenzhen tplink", "create", "delayreboot", "vpn hook", "devconsole echo", "reboot delayed", "no vpn", "hook event", "return", "pppdconfigpath", "ifname", "grep q", "pppdtype", "pppdusername", "pppdpid", "ipremote", "iplocal", "tmpl2tp", "vpnfwmark", "vpnforwardtable", "t mangle", "chain", "m comment", "connmark", "mark", "device", "actionifup", "actionifdown", "exit", "routetableid", "cachetableid", "gateway", "yuan fengjia", "grep w", "not response", "check if", "interface init", "thus", "phddnsready", "phddns", "devconsole exit", "cmxddnsready", "cmxddns", "natready", "qosdeleteiface", "vnetlibdir", "procnumber", "w arpreq", "v grep", "procnumber le", "deviced", "ifnamefile", "zone", "ipv6addr", "ipv6addrlen", "delaycommit", "hotplugtypevnet", "zaction", "prerouting i", "dnat", "p tcp", "p udp", "q delete", "interface uci", "dhcpsconfigfile", "dhcpslibdir", "urlprefix", "device uci", "w nvl", "w nl", "vlan", "vlan fi", "usb auto", "scan", "devicename", "er605v2 usb", "no need", "omada gateway", "specialid", "usb modem", "1usb modem", "devconsole fi", "nat elif", "clean", "module", "napt", "snetmaskg", "snetworkg", "j masquerade", "masquerade", "hwnat", "x usrsbinxfwdm", "xfwdm f", "systemparams", "config", "l2tpname", "l2tpisserver", "l2tpmark", "l2tppppdpid", "l2tpaction", "l2tpremoteip", "q get", "6 route", "interface proto", "v6wan", "interface03", "t ifup", "skip interface", "devconsole res", "setup", "zonegetzonebyif", "imbprefix", "ipprefix", "usrsbinddns", "dyndns", "noip", "interface04", "interrface", "bridge", "m tcp", "j accept", "number", "shift", "ifup", "action ready", "lockfile", "ospfpipewrite", "ospfpiperead", "ospfpiperead fi", "lockfile fi", "zhu xianfeng", "params miss", "m multiport", "usbifs", "managedevschain", "zte tele2", "usbifname p", "modemlib", "firmware", "firmware bs1", "inicmacaddr", "please", "dts file", "tmpfileport", "checkports", "v6ports", "j v6plusoutput", "d zonewannat", "i zonewannat", "f v6plusoutput", "i v6plusoutput", "inputgrep", "input accept", "outputgrep", "output accept", "add filter", "forwardgrep", "forward accept", "confif2", "brif", "option", "option bindif", "rundir runfile", "confif1 confif2", "brif action", "addbr", "updbr", "delbr", "option zone", "ifpong", "where interface", "set interface", "update", "rundir", "runfile", "t backup", "p notice", "t fault", "ipt n", "ipt a", "ipt s", "prerouting grep", "tpsrhook", "tpsrposthook", "cut d", "ipt i", "prerouting", "tmpaccessctl", "varconffilepath", "conffilepath", "options fi", "tmpcrontabtmp", "binsh", "start80 start", "start99 start", "cmxddnxrule", "stop98", "e sbiniscal", "tmp insmod", "tmprsacheck", "pass", "ipt f", "ipt x", "start96 ipt", "ipt d", "prerouting j", "n1 ve", "etcdhcp6cctlkey", "duidll", "rfc3315", "x0ax00", "x00x03x00x06x", "using mac", "using user", "etcdhcp6sctlkey", "invalid proto", "usrsbindhcp6s c", "usrsbindhcp6s", "d tmproot", "filddpirunning", "usrlib", "dpimodule", "filepidpath", "start99", "nete", "vnl forward", "dpirestriction", "vardir", "pidvar", "confvar", "v grepawk", "etcdir", "confback", "cabundlepath", "bannerfile", "pidcount", "prog", "kill", "md5sum", "passwordauth", "configfile", "hostfile", "debugfile", "domain", "dfconfigfile", "dnsservers", "configfile fi", "xappend", "etccrontabsroot", "rulelibdir", "p varspoolcron", "s etccrontabs", "c etccrontabs", "start40 start", "usrsharextgeoip", "start20 stop91", "c etcgeoip", "s etcgeoipbe", "s etcgeoiple", "start71 stop71", "start97", "h webserverwww", "servicepidfile", "start95 start", "conffile", "lockfd", "prerouting p", "vnetconffile", "init process", "pidf", "rund", "detectdir", "backuplist", "gao jie", "start98 start", "p output", "start99 stop90", "input drop", "p forward", "etcconfigipstat", "usrsbinipstat", "sysclassleds", "brightness", "e sysclassleds", "usblteled", "usbstorageled", "check fan", "fannormalled", "fanerrorled", "devnull ps", "rf tmpl2tp", "i fi", "loadbalancepre", "usrsbinlldpd", "openwrt release", "sysclassnet", "groupadd", "p varrunlldp", "varrunlldp", "chen chen", "zhangzhongwei", "reorganize", "start46", "option ifname", "enable", "note", "varrun", "ndppdconffile", "usrsbinndppd p", "ndppdconffile d", "nginxbin s", "p varlognginx", "p varlibnginx", "procmeminfo", "memtotal", "nginxbin", "start68 start", "jophilipp wich", "gnu general", "public license", "see license", "start90 stop10", "extracommands", "openvpnsecrets", "phddnsinit", "prerouting m", "input m", "reject vnete", "vme dst", "j drop", "redirect", "start50 stop26", "bin rundvarrun", "vpnserverconfig", "default", "default mkdir", "start50 start", "radvdconfigfile", "radvdinterfaces", "langc", "afaf09", "base6interface", "getip6addr", "start22 start", "start97 start", "the author", "config sfe", "software is", "provided", "as is", "disclaims all", "warranties", "with regard", "direct", "runc", "runc configget", "libd", "logd", "rundvarrun pidf", "runc configload", "routenum", "rtnetlink", "existret", "routenum fi", "routestatefile", "e procnanduid", "procnanduid", "tmpspideviceid", "grep v", "rebootschedule", "tmptz", "sysparams", "fang zhao", "start21 tddpbin", "tddpbin", "libvnet", "uhttpdkey", "uhttpdcert", "uhttpdbin", "px5gbin", "uhttpdcert rm", "tmpuserconfig", "check", "tslibdirsettime", "start96 boot", "usrsbinupnpd", "urllibdir", "modemstorage", "p tmpmodem", "storagemodem", "usb modemusb", "start80 stop", "usrsbinusbmuxd", "vnet", "start70 debug", "tmppassword1", "f tmppassword", "f tmppassword1", "extrahelp", "print", "start91 start", "wanconfig", "vpnclientconfig", "start25 stop25", "zoneconfbuild", "wanmax", "zydas zd1211rw", "wlan usb", "variant", "option hso", "messagecontent", "option gi0643", "xyfi", "standardeject1", "configuration2", "netgear", "kobil midentity", "kobilmode1", "mobile action", "smart cable", "mediatek wimax", "usb card", "blackberry q10", "sony ericsson", "gw d301", "advinne amc", "configuration3", "c100", "c120", "c170", "c270", "c3xx", "needresponse1", "hummer dtm5731", "aircard", "alegro", "starcomms", "alcatel otx080c", "etcom e300", "haier evdo", "alcatel x602d", "archos g9", "alcatel otx220d", "alcatel ot", "prolink pcm100", "bsnl capitel", "explay slim", "telewell tw3g", "hspa", "fs01bu", "smartbro wm66e", "alcatel", "touch x020", "tu930", "ivio iv2010u", "vibe", "emobile d12lc", "mywave sw006", "emobile d21lc", "techfaith bsnl", "aiko", "qisda h21", "flying beetle", "qisdamode1", "wisue w340", "solomon s3gm660", "philips picopix", "option icon", "prolink phs100", "ph300", "hyundai mb810", "alink", "airplus mcd800", "onda mv815u", "onda mdc655", "onda mw833up", "mw835up", "onda mo835up", "onda mw836upk", "onda mw875up", "onda msa", "tim brasil", "onda tm201", "tim italy", "onda wm301", "cricket a600", "u210", "hp laserjet", "io data", "wmx2u wimax", "nexperia tm", "tdscdma", "samsung gtb1110", "samsung gtb3730", "samsung u209", "sunplus techn", "axesstel modems", "targetvendor", "anydata", "bless uc165", "celot k300", "techfaith venus", "celot ct680", "quirky option", "samsung sghz810", "prolink p2000", "vertex wireless", "various usb", "dlink dwm162u5", "dwm162 c1", "micromax mmx", "anydata ape540h", "tl131 tdlte", "siptune lm75", "linuxmodem", "qtronix evdo", "tianyi", "dlink dwm156", "hsupa", "rndis", "pantech lte", "huawei e173s", "huawei gp02", "e587 variant", "huawei e173", "moviestar", "huaweinewmode1", "huawei et302", "huawei et8282", "huawei et127", "huaweimode1", "huawei e353", "vodafone", "huawei kxxxx", "huawei k4203", "huawei e5377", "kddi", "huawei", "hwd12 lte", "huawei k3773", "vodafone k4305", "vodafone k5150", "vodafone k4201", "vodafone k4202", "vodafone k4606", "viettel", "huawei e173u2", "huawei k3770", "huawei e352", "huawei e3131", "huawei e3372", "huawei e3531", "huawei u7510", "u7517", "huawei e392u12", "e3131", "huawei e171", "huawei e3331", "huawei bm358", "huawei e169", "huawei e220", "e230", "e270", "huawei v725", "phone", "huawei ets1201", "huawei u8220", "tmobile pulse", "huawei u8110", "android sdk", "huawei ec168", "huawei e180", "huawei ec156", "huawei e372u8", "huawei k3765", "huawei k4505", "huawei r201", "huawei k3772", "huawei e1553", "huawei r215", "huawei w5101", "huawei u2800", "china telecom", "cdu680", "cnu680", "chu629s", "huawei generic", "linux", "cgu628", "cgu628a", "xs stick", "zte mu351", "zte ac581", "zte mf110", "zte mf112", "zte mf637", "orange france", "zte mf651", "ztet a356", "zte mf652", "zte mf190", "zte mf656a", "mf668a", "zte mf820", "zte a371b", "onda mt8205", "zte mf821d", "zte mf821dmf826", "zte mf90", "mobile hotspot", "telewell twlte", "vodafone k5006z", "mf821", "k5008z", "mf823", "vodafone k4607z", "zte k3770z", "zte mf691", "tmobile rocket", "zte mf192", "zte mf195", "zte mf668", "zte mf680", "zte mfxxx", "zte mf825a", "zte mf730", "zte mf591", "zte mf196", "zte mf190j", "zte mf710m", "zte mf60", "zte ax226", "zte ac682", "cricket a605", "zte generic", "uncomment", "intex", "tlaytech teu800", "strongrising", "china telcom", "air flexinet", "tata photon", "titan", "avm fritz", "stick n", "utstarcom um175", "alltel", "pantech", "pantech uml290", "option beemo", "p4200 lte", "hisense e910", "evdo phone", "sqn1210sqn1220", "sequansmode1", "motorola", "wlan", "tergusb3e", "joa telecom", "beceem bcsm250", "haier ce682", "evdo", "messagecontent2", "haier ce", "zoom", "intex speed", "bsnl teracom", "visiontek", "teracom lw272", "unknown", "quanta muq101", "message", "quanta", "yota router", "quantamode1", "speedup su8500u", "nokia cs10", "nokia cs11", "nokia cs19", "nokia cs15", "nokia cs12", "nokia cs17", "nokia cs18", "nokia cs7m01", "nokia cs21m02", "philips", "vodafone md950", "dragonfly", "kyocera w06k", "cdma modem", "hspa modem", "targetproduct", "toshiba g450", "lg vl600", "lg l02c", "lg sd711", "lg l08c", "ntt docomo", "lg hdm2100", "lg l05a", "lg luu2100ti", "t usbconnect", "turbo", "lg l07a", "lg ldu1900d", "lg luu2110ti", "lg ad600", "lg l03d", "huawei e630", "sagem f", "gctmode1", "sierra", "digicom", "pirelli", "experimental", "cisco am10", "valet connector", "novatel mc990d", "novatel mc996d", "novatel u760", "novatel mc760", "mifi", "novatel generic", "novatel mifi", "mc545 hspa", "u679 lte", "amoi h01", "amoi h02", "axesstel mu130", "dlink dwm157", "dlink dwm221", "messagecontent3", "dwp157 b1", "dlink dwm167", "dlink dwm158", "dlink dwr510", "mediatek mt6229", "olicard", "speedup su8000", "speedup su8000u", "changhong ch690", "dlink dwm163", "dwm168", "telenet", "w wu160", "viettel vt100", "tplink ma180", "tplink ma260", "exiss mobile", "e190 series", "cmotech", "xtcomment xtlog", "xtdscp xtlength", "xtecn xthl", "xtnat nfnatipv4", "querystring", "requestmethod", "contenttype", "contentlength", "scriptname", "requesturi", "documenturi", "documentroot", "serverprotocol", "requestscheme", "byelorussian", "a3 b8", "a4 ba", "a6 b3", "a7 bf", "ad b4", "ae a2", "b0 b0", "b3 a8", "yo b4", "apache", "weixin", "luci", "fastcgi", "sslv2 sslv3", "tlsv1", "high", "ssl1m", "e2809a", "e2809e", "e280a6", "e280a0", "e280a1", "e282ac", "e280b0", "e28098", "e28099", "e280a2", "c2a0", "c2b7", "a3 d191", "a4 d194", "a6 d196", "a7 d197", "ad d291", "private key", "vendor asnet", "attribute", "asnet attribute", "speedup", "asnet", "server secret", "microsoft", "values value", "mschapresponse", "mschaperror", "mschapcpw1", "mschapcpw2", "mschaplmencpw", "mschapntencpw", "plural", "value", "value authtype", "roaringpenguin", "cistronradiusd", "local", "translations", "valid", "example", "attribute value", "interfacemode", "wirelesshost", "wizard", "systemmode", "interfacemac", "wirelessmac", "timemngt", "service", "10000", "4096", "factory", "framedprotocol", "alive", "merit", "merit extension", "value sipmethod", "invite", "cancel", "obsolete", "move", "include", "vjtcpip", "shelluser", "unix", "radius", "radius server", "general", "radius client", "server name", "clientserver", "ascend", "jens glaser", "euraw", "euui", "comb", "frcir", "frdirectno", "frdirectyes", "type", "button", "pidfile", "seen", "usrbinlogsave", "rfkillstate1", "bseoe6fuwg", "amvzwg", "kwbqbm0", "qrbdj3nghvdjigc", "ihnzbm8m9yop5w", "okue6n36b9k", "tppdpfquww", "drw5visp", "ubkwb1whnw0a", "efcmq", "root ca", "traditional pem", "authority", "global root", "root", "ecc root", "bwme", "gts root", "sectigo public", "premium", "whether", "netlink message", "buffer size", "netlink", "pagesize", "firewall mark", "netlink route", "netlink xfrm", "ike xfrm", "attr", "engine id", "openssl plugin", "set openssl", "fips mode", "suite b", "file", "rngstrong class", "rngtrue class", "listen", "set source", "ipv4", "analyze", "treat", "socket", "disable charon", "configuration", "loglevel", "ikesa", "identifier", "ikesas", "ike daemon", "id payload", "childsa", "install", "path", "rsa private", "t timer", "active", "reset", "expire", "accesscontrol", "tmnglog", "rest", "reset event", "etcconfigfstab", "moving root", "hexdump e", "q batch", "eof exit", "thu oct", "fri oct", "in dnskey", "internet domain", "bind domain", "internic", "in ns", "by verisign", "by ripe", "by icann", "by wide", "huawei 0004", "huawei 0003", "huawei 0005", "huawei 0001", "zte 0001", "zte 0002", "zte 0003", "zte 0004", "huawei 0002", "versalink", "configname", "rulename", "zonenumber", "targetname", "require", "l accessctl", "lan2lan", "position", "aclkeys", "zonein", "ucir", "zonedict", "zonenoin", "acllog", "1acl", "come in", "oldifs", "configtype", "section", "fwlibdir", "fwacllibdir", "m udp", "sectionname", "zonesnil", "srcnetwork", "ctmarkshift", "ctmarkrelated", "ctmarknewbit", "ctmarkinvalid", "ctmarkdef", "ctmarknew", "name fi", "1acl j", "icmpall", "huang zhenwei", "adlibdir", "adinitialized", "noexport", "stretz", "configappend1", "configappend", "function", "output", "iface", "line", "setname", "m set", "input", "v incomplete", "v address", "tmparplist1", "procuptime", "routingmode", "routingmode1", "devnull uci", "timer", "rtfile", "rtret", "rtfile f", "rtflag", "n awk", "grep g", "h grep", "rtflag fi", "baifacefile", "bastatefile", "srcurid", "srinfaceid", "bastatedir", "baifacedir", "srdir", "srinfaceid grep", "retfile", "xujun", "invalid option", "invalid func", "usrsbinarpreq", "clicfgpath", "tmpaccessconfig", "cfgpath", "gettimerange", "getifall", "getif", "lanlan", "success", "failed", "result", "setlocalaccount", "getlanlist", "getipgroup", "accesslistnum", "servicetype", "ruleid", "getindex", "tonumber", "currenttime", "februarynum", "smallfebdaymax", "bigfebdaymax", "timezone", "date", "keyname", "interfaceerror", "assert", "tagtype", "setdesc", "submask", "para", "ipv4address", "ipv4netwknum", "insert", "copy", "ipsecfailstatus", "checkexist", "ipaddress", "optionname", "encmode1", "fail", "responder", "portid", "data", "mirrorport", "portend", "sourceport", "naterror", "natsuccess end", "natprompt", "prompt", "natdata", "selectedname", "portstart", "istart", "routingerror", "adddata", "index", "routingsuccess", "crud error", "ospfinterface", "ospf", "ospfretre", "ospfautotypemd5", "simple", "vlan type", "down", "wanport", "primary ip", "proto", "ipaddrbits", "ripv1", "duplex", "flowctrl", "activemedium", "linkup", "setsnmpv1v2", "snmpv3en", "username", "contact", "setsshserver", "equal", "time settings", "weekday1", "sectimenumhour", "timeslicepoint", "entryname", "calendar", "vlanfailstatus", "vconfig", "vlanform", "vlan id", "address", "optional", "time", "settings", "please enter", "comment", "telecom", "upgrade", "reboot", "refresh", "defense", "code", "tokyo", "armenia", "panama", "jakarta", "back", "next", "tips", "class", "flood", "flash", "speed", "download", "lockout", "belarus", "indonesia", "mexico", "paraguay", "philippines", "ukraine", "uruguay", "facebook", "middle", "bind", "tools", "period", "media", "ping", "death", "stream", "enterprise", "live", "maha", "mais", "adduser", "never", "format", "trace", "clock", "alma", "third", "multi", "little", "critical", "done", "false", "mainserver", "execution", "keepalive", "package", "uciconfigdir", "sbinuci", "configsection", "120m", "ippool", "config dnsmasq", "directoryd", "type1", "type28", "f2cut d", "xargs", "g nogroup", "ctlcmd c", "vardir cp", "switch", "fdlibdir", "fdinitialized", "j dosdefense", "j dosdrop", "t raw", "all fin", "forward", "j zone", "mssfix", "forward j", "input j", "output j", "accept accept", "drop drop", "need v6", "fwinitialized", "libnetwork", "i restarton", "t firewall", "snat", "dnated traffic", "sbinifconfig", "notrack", "notrack rule", "j return", "j connextmark", "a sfemark", "a hwnatmark", "a prerouting", "j extmark", "export", "fwicmp4types", "fwicmp6types", "fwruleofs", "fwzones4", "fwzones6", "stretz export", "fwaerror0", "m mac", "sadd", "sdel", "a flooddefense", "m conntrack", "new j", "extmark", "m extmark", "connextmark", "c tmp", "i prerouting", "d forwardauth", "s usr1", "xargs kill", "loadrule", "j freestrategy", "luo pei", "free", "pistacklist", "kernelvermajor", "part", "piran", "awk f", "o noatime", "n pihooksplice1", "networkifstatus", "addr", "ipv4 address", "ipv4 subnet", "servicesig", "exec", "servicewritepid", "args", "serviceusepid", "servicedebug", "servicequiet", "servicesigstop", "procdsetparam", "procdkill", "script", "complete", "procdcall", "procdwrapper", "procdubuscall", "saved", "strtype", "parentdir", "ramfsdirs", "file strlen", "strlen1", "strlen", "cfgsync", "prefixdevmtd", "d devmtd", "ne x", "configsections", "lock", "etcgroup", "tunnelname", "wanname", "tunnelname p", "greservicerule", "j ct", "j snat", "plutoverb", "plutoconnection", "exist anete", "include zone", "ripaddr", "effde", "effif", "imbprocfile", "tmpstateimb", "ifip", "imblibdir", "imbinitialized", "zones", "n members", "move handling", "i actionupdate", "me hash", "me zonelist", "ipgrplibdir", "me set", "processfailover", "autofailback", "failoverpids", "autopids", "onlinezones", "j connmark", "input p", "myecho", "usrsbintmngtd", "domainspecial", "dnsq", "oldaddr", "usage exit", "invalid command", "ipsecsection", "checking", "connectionname", "etcconfigipsec", "chen xing", "algorithm", "ipsecweblock", "remotenetwork", "j dnat", "c vpnpre", "chenxing", "targetchain", "nfqueue", "tmplogvnetclog", "vnetcexecinvnet", "wanpassthrough", "wantype", "lanpassthrough", "lantype", "ttadvrouteraddr", "wang wenjing", "ipv6grplibdir", "tmpipv6loggg", "aawk v", "xl2tp", "sname", "xname", "devnull fi", "32 fi", "ikeph1", "dut init", "plutopeer", "plutomarkout", "plutouniqueid", "devconsole kill", "l2tpcdistribute", "mtu1300", "loadglobal", "xl2tpd", "killxl2tpd", "search", "nettimeout", "configdir", "nettimeout3", "tlsreqcert", "allowg", "pptpconfigfile", "l2tpconfigfile", "usage", "rstart", "sessiontimeout", "ldapquery", "mediatek mt7621", "ramipsmodel", "snor", "zyxel keenetic", "ramipsboardname", "all0256n", "asl26555", "awm002 evb", "f5d8235", "nand", "omni", "mkdir", "luopei create", "o veth1", "mflibdir", "mfinitialized", "macgrplibdir", "backup", "blank", "pwr1", "pwr2", "tmpfanstate fi", "er8411", "tmpfanspeed", "modvpn", "natlogprint", "rewrite", "root chain", "modules chain", "modone", "moddmz", "rules", "build filter", "dnat j", "naptdevicechain", "naptdevicemark", "naptdevicecache", "modpt", "validptifaces", "j trigger", "port triggering", "return fi", "modvs", "loopback snat", "32 p", "natprint", "natfd", "wc l", "natready flock", "natlogfile", "natlogdir", "natlibdir", "nattmpdir", "natlogenable", "natlogfile fi", "natdebug", "natwritefile", "modnapt", "determine", "includeonly", "nowanlink", "missingaddress", "zone6rd", "hardversion", "iface6rd", "e usrsbinallifs", "usrsbinallifs", "sigusr1", "l sigusr1", "nodevice", "f sysclasstty", "noifname", "baddevice", "pinfailed", "logprotosetup", "loggetsignal", "getinfofailed", "logprotoinit", "control device", "no apn", "noapn", "devconsole eval", "usrsbindhcp6c", "authfailed", "invalidoptions", "l sigterm", "getmacaddrerror", "geteuiiderror", "nowanaddress", "logmoduleipv6", "logipv66to4up", "v zone", "jsongetvar", "usrsbinpppd", "etcpppfilter", "interval5", "usrsbinxl2tpd", "could", "lcp term", "stdout", "aftrname", "stdoutdevnull", "dnssnd", "stdout mtu65000", "rssi", "dhcppidfile", "x v6plusoutput", "6 tunnel", "legacy1", "invalidprefix", "promisc", "oifs", "xprefixlen", "todo", "preconfig", "xifname", "xipaddr", "netifdmaindir", "wdevnotifyinit", "wirelesssetup", "wirelesssetdata", "ccmp tkip", "ccmp", "tkip", "wiface setup", "device setup", "protoprefix6", "protokeep", "protonestedopen", "protodns", "protodnssearch", "protoipaddr", "protoip6addr", "protoroute", "protoroute6", "pppipparam", "dns1", "dns2", "lllocal", "llremote", "state", "logipv6dhcp6cup", "procnetifinet6", "size", "aftrname echo", "svar", "random", "dhcppidfilehgw", "d forward", "dhcpscript", "ifnamendiscmbit", "slaac", "lanphyportset", "lanportset", "lan2", "lan3", "lan4", "wanportset", "wanphyportset", "cpu phy", "s call", "onlinestatefile", "onlinedevfile", "onlinestatedir", "onlineblockfile", "omada", "onlinemodeid", "link backup", "dowmlogid", "ubusobject", "remoteip", "localdevnet", "vpnrulenum", "virtual", "openvpnfwmark", "reply m", "remtoeip", "devname", "actualip", "configfilename", "zonewanopenvpn", "vlocalip", "vpnrulenum fi", "vremoteip", "echo", "unknown option", "i nobindd", "i locald", "publicdnsserver", "usrsbinopenvpn", "tmpopenvpnpwd", "authretryd", "i proto", "chroot", "sectionname wan", "devconsole fw", "sectionname dev", "author", "secname", "interface flag0", "4 route", "tpprconnected", "t grep", "tmppolicyroute", "l2tp", "pptp", "configptah", "killpptpd", "echoinfo", "pppoxpptptype", "pppoxpath", "pppoxl2tptype", "v wan", "serverpath", "loadoneuser", "tmppppoxpptp", "beginloaduser", "endloaduser", "usertypematch1", "profile", "serveron", "serveron pns", "pppoxpppoetype", "loadonepppoe", "deladd", "isexist", "configmyconfig", "q tmppptp", "tmppptpserver", "i snoccp", "usepeerdns", "persist", "plugin", "zonex", "maxfail", "sigchild", "mgrfather", "mt7620", "board", "hexdump", "checksum", "jffs2 partition", "wnce2001", "signature", "asus rtn56u", "preinitn", "initramfs", "boothookadd", "failsafetrue", "press", "int trap", "usr1", "tmpdebuglevel", "failsafe grep", "q failsafe", "proccmdline", "please reboot", "procnetdev", "doing openwrt", "libsh", "qosready", "thismodule", "qosconfigdir", "qosuci", "qoslogprint", "qoslibdir", "qostmpdir", "qostmpdirready", "moduleuci", "styperule", "idxv4", "idxv6", "qosfile", "qosrulechain", "qoschain", "qosfileip4", "qosfileip6", "qosret", "if iface", "uci grep", "stypeiface", "qosmarkbitstart", "qosmarkbitlen2", "qosgmarkmask", "qosmarkmask", "qostcidfile", "tcidbase", "tcidspec", "qoswritefile", "qosinfoprint", "qoserror", "incqoscid", "tcidmax", "spec", "qospollingfile", "deal", "qosthreshold gt", "qosthreshold eq", "qosgrpmarkfile", "grpmarkbitbase", "grpmarkspec", "incqosgrpmark", "grpmarkbase", "insertrule", "qoswritelog", "iptprefix", "iptprefix nvl", "e 1d", "iptprefix l", "iptprefix n", "iptprefix a", "qosret 0", "qosstate", "qosconfiger", "wanall", "snameglobal", "ifacelist", "ruleoptlist", "stopflag", "stub", "qosmarkfile", "markspec", "markbitbase", "markbase", "incqosmark", "m mark", "o get", "zonelist", "wan3", "wan4", "linerate", "qosstatefile", "qosrulespec", "incqosstate", "lannetdev", "grplist", "tttt", "forward vn", "tc qdisc", "tc class", "r2qhtb", "filest", "qdiscl", "defaulthdl", "tc p", "this", "rmchain", "serverports", "rejectports", "m vlan", "routestatedir", "src6", "dst6", "exist", "servicelibdir", "ipset", "j reject", "m tpconnlimit", "restart", "t mirror", "egress", "maxportnum", "s state", "m mode", "p mirrorport", "m ingress", "maxportnum1", "s17p1statusreg", "led bling", "ar8337portsmax1", "portvlanmax", "memeber", "null", "p portsid", "o flush", "rxnormal", "rxall", "flush", "maxportnum5", "t pvlan", "portvidmem", "cpu port", "port vlan", "v vid", "s17phycontrol", "t para", "10mh", "100mf 1000mf", "check rsa", "flowlinken reg", "full", "half", "multicast", "mbps", "rate", "t control", "ingress", "i istate", "m imode", "mirror state", "10mh 10mf", "100mh 100mf", "1000mf", "f flowcontrol", "r irate", "rtl8367sled0reg", "rtl8367sled1reg", "sfp2", "maxportnum11", "sfp0", "sfp1", "uciconfigdir cd", "macflowa", "macflowon", "macflow0", "macflowoff", "wan port", "swconfig", "unicast", "write address", "vlanid", "tbopwrite", "tbtargetcvlan", "write command", "port4control", "port5control", "port3control", "port0control", "port1", "tmplanmac", "mac learning", "lan port", "port1control", "port2control", "mirror mode", "phycontrolreg", "txall", "mt7530", "tlwvr458l", "lanport", "lanend1", "maxportnum fi", "cpuport", "vlanidx", "cpuport1", "0x0de0", "msb bit01", "enable reg", "ifg reg", "phyresolvedreg", "tmpcfg", "realtek", "wvr458war458", "phy index", "copyight", "yuanfengjia", "ceate", "timeobjadd", "timeobjdelete", "etcprofile", "montbl", "tblstartmonth", "weekdaytbl", "yeardaytbl", "startweekday", "tblstartcount", "tblstartweekday", "d etcnixio", "invalid image", "argv", "sysupgrade", "devwatchdog", "ciubipart", "cikernpart", "remove volume", "n troot", "wc c", "n kernel", "n rootfsdata", "kernel", "ramrootlib64", "conftar", "ramroot", "binmount", "bindd", "proc", "modupnp", "ucitmppath", "ucitmpconfig", "ucitmpupuppath", "upnplanchain", "upnplock", "l urlfilter", "tmpcon", "original p", "m urlsetmatch", "url j", "m urldnsmatch", "a urlfilter", "websec", "zoneapireturn", "zonefilelock", "vneton", "logconsole", "vnetbootingy", "loadavvlan", "ipv6addr fi", "ipv6addrlen fi", "loadunload", "loadainterface", "cleanainterface", "vnetiflock", "vnetlock", "vifname", "ipv6prefixlen", "vipaddr", "vnetmask", "vipaddr6", "vprefixlen6", "t filter", "buildainterface", "cleanazone", "i forward", "a webfilter", "l webfilter", "a websec", "sec j", "j websec", "f websec", "ipt t", "tmpwebsecurity", "l websec", "fileexts", "allowip", "wireguardfwmark", "listenport", "ifname p", "method", "nvl inputrule", "nginxconf", "wifidogconf", "lan1", "liwei mkdir", "ruleknownip", "ruleknownmac", "ruleknownipmac", "ruleremind", "ruleremindmac", "ruleremindipmac", "ipsetlimit", "ipsetlimitip", "zonestart", "zonestop", "zonerestart", "get vpn", "get effect", "get normal", "normal", "groupvzones", "groupzones", "wanw", "zonevgname", "zonecreategroup", "configvpniface", "zonestateconfig", "vpn iface", "newmac", "newmac yes", "yes1", "current mac", "overwrite", "converthex", "new mac", "write", "eeprom", "hotplugtype", "path logname", "user export", "devpath", "ifdown", "ev wan", "s list", "brightness exit", "head", "tmplog", "tmplog fi", "devmtdblock", "reloading", "md5file", "md5file rm", "gmac", "updates", "overlay tar", "kill runramfs", "volatile", "snapshot", "verbose", "confrestore", "tarv", "confbackup", "confimage", "needimage1", "needimage", "meta", "drivers", "devices", "type case", "devices drivers", "libwifi", "devubi0 s", "n logrecovery", "n database", "usrbiniptables", "iptablesok", "testiptmac", "wddirwdctl", "scanning disk", "test", "kamikaze", "downloadser605", "build", "integer", "valuepair", "uint4", "namelength", "ipaddr", "radiusclientngh", "begindecls", "enddecls", "servermax", "prohibit", "void", "dpidatabaseram", "sigint", "dpiappdatabase", "dpitagdatabase", "gnu libtool", "please do", "linker", "directory", "free software", "foundation", "license", "without any", "warranty", "merchantability", "fitness", "ddnseventmodule", "ddnseventid", "guo dongxian", "april", "tp new", "ui status", "dns error", "dyndns state", "dynamic dns", "june", "common log", "service start", "service stop", "servicepath", "linevalue", "linevalue fi", "angus mackay", "offline", "noipretcodegood", "noipstaterunok0", "ddnsextver eq", "newlineifs", "r n1", "registeredip", "eric paul", "bishop", "leave", "written", "janary", "tp log", "myip", "column", "wildcardno", "mxnochg", "backmxnochg", "add yours", "here", "dpidbpath", "procdpiappstat", "procdpiappblock", "dbenv", "tostring", "tmpdpitmpstat", "tmpdpitmpblock", "plutopeerclient", "plutome", "plutomyclient", "plutopeerid", "tag p", "facprio", "plutomysourceip", "plutomyprotocol", "pluto", "authiplimit", "authiplimitip", "curauthnum", "auth num", "logmoduleportal", "authtypeweb", "authtyperadius", "authtypewifi", "loguserexpired", "authtypeonekey", "authtypeldap", "idlemintimesec", "authtypewechat", "useragent", "wportalradius", "cookie", "android", "varchar", "authressucc", "authsvrconn", "authresmacerr", "authlistconn", "select from", "label", "span", "strong", "zempty", "icons", "select", "striptags", "pcdata", "legend", "fieldset", "textarea", "replace entry", "steven barth", "apache license", "found", "sorry", "internal server", "footer", "indexer", "collectgarbage", "peak", "retval", "main", "vendor", "prodid", "cls02", "sub0e prot00", "modemtmp", "logallport", "searchtty", "alltty", "d dev", "busfile", "clsff", "clse0", "cls0a", "break", "vid pid", "unsuretty", "storage", "reinit usb", "modemliblogawk", "logmodeswitchs", "cls08", "atr03", "count", "driver", "usbport", "logunlockpin", "unlockpin", "puk code", "modem unlock", "loggetisp", "fileispjson", "findcountry", "location", "findisp", "usbmodemdebug1", "portfile", "usbport fi", "cfgfilepath", "tmpcsfilepath", "ubiquiti", "atheros", "powerstation2", "ralink", "subsystem", "powerstation5", "sr4c", "frequency", "jsonprefix", "jsoncur", "jsongetvar cur", "jsonunset", "keys", "jsonvar", "dest", "jsonseq", "cidr static", "routes", "document", "150px 524px", "46px 524px", "195px 524px", "150px 556px", "46px 556px", "195px 556px", "219px 309px", "219px 333px", "90px 36px", "f4f4f4", "f2f2f2", "151px 151px", "f9b61e", "80px 224px", "eaeae8", "f3f3f5", "verdana", "54px 36px", "geneva", "326px 54px", "329px 58px", "532px 85px", "ebebeb", "21px 21px", "chrome", "7px 7px", "219px 111px", "dd4040", "252px 54px", "220px 5px", "access control", "inner", "app dist", "arp scan", "bwlist qq", "location group", "switch ddm", "dns cache", "backup restore", "gre overipsec", "interface mac", "interface mode", "ipgroup address", "ipgroup group", "ipgroup view", "ipsids", "systemroutetbl", "ipv6group group", "l2tp client", "l2tp server", "l2tp tunnel", "ldap profiles", "mac filtering", "nat dmz", "online check", "pptp tunnel", "reserved", "login auth", "class inbound", "status outbound", "session limit", "switchportvlan", "syetem mode", "systemstate cpu", "url filter", "auto backup", "usb storage", "usermngr backup", "server", "port setting", "port pvid", "relation table", "vlan setting", "vpn user", "vpn wireguard", "website filter", "url set", "wizard wan", "advanced", "rngpptr", "array", "biginteger", "birc", "rsa encryption", "arcfour", "pkcs", "xhlhxl", "bits", "explorer", "canvas", "awidth", "aheight", "canvasgradient", "param", "arcscaley", "canvaspattern", "htmlelement", "without", "html5 shiv", "jdalton", "jonneal", "mitgpl2", "freebsdlicense", "examples", "arial", "alignoffset", "xalign", "point", "formatter", "flot plugin", "iola", "ole laursen", "mit license", "x axis", "otherps", "flot", "series", "axis", "angle", "coord", "axismargin", "width", "delta", "infinity", "zero", "shutdown", "trigger", "ftrue", "ystartangle", "lnull", "bnull", "oparsefloat", "m100", "pm100", "ffalse", "sfalse", "jsonobject", "json", "string", "typenumber", "syntaxerror", "typeof e", "regexp", "typeof n", "typeof t", "typeof r", "pseudo", "ariel flesler", "parseint", "scroll", "html", "toff", "borderbwidth", "targ", "round", "0xff", "transformbuffer", "i4offset", "i4joffset", "0xffffffff7", "0xffffffff1", "invalid type", "mapping", "typecheckbox", "valuearray", "vold", "numflag", "percolumnnum", "unselectable", "items", "store", "callback", "field", "xtype", "typefile", "getcontainer", "title", "params", "parentuuid", "keyproperty", "node", "nodes", "uuid", "form", "increase", "decrease", "encrypt", "charlength", "flagup", "flaglow", "trim", "property", "height", "dataname", "widthvalue", "heightvalue", "contentflag", "boxvalue", "abcd", "jkmn", "regchar", "efghi", "argentina", "australia", "classobj", "oneclass", "minvalue", "maxrange", "minrange", "range", "maxvalue", "invalid range", "caps lock", "sepmark", "separator", "azaz09", "len1", "week", "dataweek", "msgcontaienr", "datatimestart", "datatimeend", "timearray", "0 dismissdelay", "editingindex", "editortype", "invalid editor", "dataindex", "dindex", "jndex", "daindex", "totalpage", "currentpage", "minnum", "maxnum", "gap1", "keywordtype", "columns", "temp", "maxkeys", "inhtml", "alert", "case", "currentindex", "item", "nextindex", "previndex", "invalid step", "widget", "fieldlabel", "posx", "container", "inlineblock", "combinekey", "statustemp", "instance", "callbackfail", "callbackerror", "keyarray", "debug", "jlen", "ajax", "nodeid", "controller", "d1dd", "true", "iframe", "09afaf", "mind", "typeof symbol", "window", "math", "object", "typeerror", "reflect", "generator", "epsilon", "reset yui3", "typehidden", "ecf4d3", "opera", "cache manifest", "cache", "128c", "qrcode", "2g2g2q2q0g", "modenumber1", "modealphanum2", "mode8bitbyte4", "helvetica neue", "helvetica", "heiti sc", "hiragino sans", "microsoft yahei", "gradienttype0", "typesearch", "typebutton", "typereset", "typesubmit", "typeradio", "cbit", "cbid", "click", "checkbox", "xhrpollstatus", "xhrpollstatuson", "xmlhttprequest", "activexobject", "close" ], "references": [ "hwnat", "ipcalc.sh", "login.sh", "cli_accountmgnt_cmd.tree", "cli_base_cmd.tree", "cli_cmd.tree", "cli_clock_cmd.tree", "cli_access_cmd.tree", "cli_extra_cmd.tree", "cli_http_cmd.tree", "cli_ipsec_cmd.tree", "cli_nat_cmd.tree", "cli_show_iface_cmd.tree", "cli_ssh_cmd.tree", "cli_routing_cmd.tree", "cli_show_interface_status_cmd.tree", "cli_snmp_cmd.tree", "cli_interface_cmd.tree", "cli_time_range_cmd.tree", "daemons.conf", "daemons", "cli_vlan_cmd.tree", "dhcp6sctlkey", "device_info", "dhcp6s.conf", "diag.sh", "frr.conf", "filesystems", "firewall.user", "hosts", "group", "inittab", "ipsec.conf", "dnsmasq.conf", "ipsec.secrets", "mtab", "logrotate.conf", "nsswitch.conf", "openwrt_release", "openwrt_version", "passwd", "pptpd.conf", "opkg.conf", "profile", "preinit", "protocols", "rc.common", "shells", "services", "shadow", "strongswan.conf", "rc.local", "sysctl.conf", "sysupgrade.conf", "support_bundle_commands.conf", "vtysh.conf", "sys_monitor.conf", "wifidog.conf", "verify_pub.key", "wifidog-msg.html", "usb-mode.json", "02_network", "01_leds", "65_nginx_sync.sh", "00_start_sync.sh", "99_end_sync.sh", "chat-get-qualcomm_2", "chat-get", "chat-get-anydata_2", "chat-get-qualcomm_1", "3g.chat", "chat-gsm-test", "chat-gsm-test-anydata", "chat-get-anydata_1", "chat-gsm-test-qualcomm", "chat-modem-test", "chat-modem-configure", "disconn-script", "evdo.chat", "cloud_service.cfg", "cloud_config.cfg", "2048_newroot.cer", "access_ctl", "administration", "accountmgnt", "arp_scan_range", "auto_backup", "arp_defense", "avahi-daemon", "controller.lock", "cli_server", "controller.conf", "countrygroup", "cmxddns", "custom_dhcp", "customddns", "dhcp6s", "ddns", "dhcp", "dhcp6c", "dhcp_logrotate", "dos_defense", "dpi", "dynddns", "ecs", "ecsIfName", "filter_global", "freePolicy", "dropbear", "flood_defense", "freeStrategy", "gre", "imb", "ifstat-mini", "improxy", "ipsec", "ippool", "ipsec_failover", "dnsproxySecurity", "ipsec_secrets", "ipstat", "iptv", "ipgroup", "l2tp-global", "ipv6group", "l2tp-client", "l2tp-server", "ldap", "led_set", "line_backup", "l2tp-server.reference", "lldpd", "load_balance", "logger", "luci", "locale", "mac_filter", "nat", "firewall", "macgroup", "modem", "mwan3", "omada-tool.conf", "noipddns", "nwadditional", "omada-tool.lock", "network", "online", "openvpn_user", "openvpn", "phddns", "policy_route", "ospf", "pptp-client", "portal_mgmt", "pptp-client-global", "pptp-global", "protocol", "pptp-server-global", "qos_ctl", "radvd", "qos", "reference", "rip", "remote_mngt", "sdnInfo", "pptp-server", "session_limits", "service", "sfe", "sharecfg", "snmpd", "static_route", "splitaccess", "switch", "system_mode", "tddp", "time_mngt", "system_params", "uhttpd", "upnp", "url_filter", "usermngr", "usbshare", "user-secrets", "ucitrack", "vlan", "vnetwork", "vpnlog", "webfilter", "system", "webfilter_global", "websort", "web_security", "wireguard_interface", "wireguard_peers", "wportal", "zone", "user-secrets.reference", "dropbear_rsa_host_key", "serial", "index.txt", "openssl.cnf", "vars", "openssl-1.0.0.cnf", "connect-directip.gcom", "command.gcom", "baseinfo.gcom", "cellinfo.gcom", "connect-ncm.gcom", "getcarrier.gcom", "directip.gcom", "getcardinfo.gcom", "connect-ppp.gcom", "directip-stop.gcom", "getimsi.gcom", "getimsi_b.gcom", "getpinstatus.gcom", "getstrength.gcom", "huaweiinfo.gcom", "getcnum.gcom", "modem-gsm-test-anydata.gcom", "getregistestate.gcom", "lock-prov.gcom", "modem-gsm-test-qualcomm.gcom", "ncm.json", "run-at.gcom", "reset.gcom", "modem-configure.gcom", "sendsms-at.gcom", "setapn.gcom", "setmode.gcom", "zteinfo.gcom", "setpin.gcom", "sierrainfo.gcom", "runcommand.gcom", "smschk.gcom", "11-led", "10-firewall.sh", "22-access_ctl.sh", "25-pppox.sh", "22-imb.sh", "21-nat.sh", "40-qos.sh", "70-policy_route.sh", "26-openvpn.sh", "70-switch.sh", "89-remote_mngt.sh", "95-online.sh", "96-customddns.sh", "96-cmxddns.sh", "96-dynddns.sh", "96-noipddns.sh", "96-phddns.sh", "97-line_backup.sh", "97-route.sh", "98-ipsec.sh", "98-iptv.sh", "99-wan_hook.sh", "97-load_balance.sh", "97-upnp.sh", "12-netbios-passthrough", "10-pppox-if-up-down.sh", "30-policy_route.sh", "22-access_ctl", "29-static_route", "20-firewall", "02-split_access", "80-balance.sh", "40-qos", "00-vpn_hook.sh", "97-mwan3.sh", "99-vpn_hook.sh", "00-vnet_client.sh", "00-ecsIfChange", "1-vnet_lanhook.sh", "1-vnet_lanv6hook.sh", "05-vnet-lanv6", "20-upnp", "18-dnsproxyvnet.sh", "22-imb", "00-vnet.sh", "22-qos-tplink", "50-improxy", "40-remote_mngt", "60-dhcpsvnet.sh", "65-wifidog.sh", "92-pppox-vpn.sh", "99-mdns.sh", "90-portal_mgmt", "02-usb-auto-scan", "10-motion", "01-usb-led", "15-usb_mode", "30-3g", "20-firewall.sh", "10-pppox-response-nat.sh", "10-metric.sh", "50-l2tp-up-down.sh", "50-qos_ctl", "1-lanhook.sh", "1-lanv6hook.sh", "00-netstate", "01-zone", "03-vlan", "05-lanv6", "04-ipv6", "02-vnet.sh", "06-wan_log", "10-sysctl", "18-ipgroup", "15-online.sh", "18-ipv6group", "22-dos_defense", "25-ddns", "26-freeStrategy", "50-l2tp-lowerif-up-down.sh", "65-iptv", "70-pptp-ifdown.sh", "72-wan_ip_alias", "85-ntp", "92-dynamic_route", "90-vpn", "91-gre.sh", "99-hotplug_done", "99-vnet.sh", "99-z3g4g-connect", "60-dnsmasq", "10-rt2x00-eeprom", "30-v6plus", "60-pptp-reload-rules.sh", "10-l2tp-pptp.sh", "50-access_ctl.sh", "18-dnsproxy.sh", "40-imb.sh", "60-dnsmasq.sh", "46-nat.sh", "60-mac_filter.sh", "99-load_balance.sh", "97-qos.sh", "99-nginx.sh", "00-configlink.sh", "10-mount", "10-policy_route.sh", "70-backup", "15-mwan3", "40-load_balance", "backup", "bootcount", "boot", "default_balance", "done", "dnsproxy", "dnsmasq", "dynamic_route", "drop_caches", "cron", "fstab", "geoip", "gre_init", "enablemodem", "ipv6", "led", "l2tp", "led_early", "loggerd", "monitor", "netbios_passthrough", "ndppd", "nginx", "pppox", "pptpd", "queueventd", "qos-tplink", "rsa_check", "smp", "spi_device_id", "sys_monitor", "sysntpd", "tddpd", "sysctl", "tmngtd", "umount", "time_setting", "usbmodem", "usbmuxd", "vnet", "wifidog", "wireguard", "zbalance_loop_reset", "xl2tpd", "zero_boot_done", "zombie_monitor", "zzomada_server", "zzzzzsys_info", "zzzcloud_proc", "telnet", "zzddns", "rt_tables", "location.json", "0ace:20ff", "0ace:2011", "0af0:7a01", "0af0:7a05", "0af0:4007", "0af0:6711", "0af0:6731", "0af0:6751", "0af0:6771", "0af0:6791", "0af0:6811", "0af0:6911", "0af0:6951", "0af0:6971", "0af0:7011", "0af0:7031", "0af0:7051", "0af0:7071", "0af0:7111", "0af0:7211", "0af0:7251", "0af0:7271", "0af0:7301", "0af0:7311", "0af0:7361", "0af0:7381", "0af0:7401", "0af0:7501", "0af0:7601", "0af0:7701", "0af0:7706", "0af0:7801", "0af0:7901", "0af0:8006", "0af0:8200", "0af0:8201", "0af0:8300", "0af0:8302", "0af0:8304", "0af0:8400", "0af0:8600", "0af0:8700", "0af0:8800", "0af0:8900", "0af0:9000", "0af0:9200", "0af0:c031", "0af0:c100", "0af0:d001", "0af0:d013", "0af0:d031", "0af0:d033", "0af0:d035", "0af0:d055", "0af0:d057", "0af0:d058", "0af0:d155", "0af0:d157", "0af0:d255", "0af0:d257", "0af0:d357", "0b3c:c700", "0b3c:f000", "0b3c:f00c", "0b3c:f017", "0bdb:190d", "0bdb:1910", "0cf3:20ff", "0d46:45a1", "0d46:45a5", "0df7:0800", "0e8d:0002:uPr=MT", "0e8d:0002:uPr=Product", "0e8d:7109", "0fca:8020", "0fce:d0cf", "0fce:d0df", "0fce:d0e1", "0fce:d103", "0fd1:1000", "1a8d:1000", "1a8d:2000", "1ab7:5700", "1b7d:0700", "1bbb:00ca", "1bbb:000f", "1bbb:011f", "1bbb:022c", "1bbb:f000", "1bbb:f017", "1bbb:f052", "1c9e:9d00", "1c9e:9e00", "1c9e:9e08", "1c9e:98ff", "1c9e:1001", "1c9e:6000", "1c9e:6061:uPr=Storage", "1c9e:9101", "1c9e:9200", "1c9e:9401", "1c9e:9800", "1c9e:f000", "1c9e:f000:uMa=USB_Modem", "1d09:1000", "1d09:1021", "1d09:1025", "1da5:f000", "1dbc:0669", "1dd6:1000", "1de1:1101", "1e0e:f000", "1e89:f000", "1edf:6003", "1ee8:0003", "1ee8:004a", "1ee8:004f", "1ee8:0009", "1ee8:0013", "1ee8:0018", "1ee8:0040", "1ee8:0045", "1ee8:0054", "1ee8:0060", "1ee8:0063", "1ee8:0068", "1f28:0021", "1fac:0032", "1fac:0130", "1fac:0150", "1fac:0151", "03f0:002a", "04bb:bccd", "04cc:225c", "04cc:226e", "04cc:226f", "04cc:2251", "04e8:680c", "04e8:689a", "04e8:f000:sMo=U209", "04fc:2140", "05c6:0010", "05c6:1000:sVe=GT", "05c6:1000:sVe=Option", "05c6:1000:uMa=AnyDATA", "05c6:1000:uMa=CELOT", "05c6:1000:uMa=Co.,Ltd", "05c6:1000:uMa=DGT", "05c6:1000:uMa=Option", "05c6:1000:uMa=SAMSUNG", "05c6:1000:uMa=SSE", "05c6:1000:uMa=StrongRising", "05c6:1000:uMa=Vertex", "05c6:2000", "05c6:2001", "05c6:6503", "05c6:9024", "05c6:f000", "05c7:1000", "07d1:a800", "07d1:a804", "10a9:606f", "10a9:6080", "12d1:1c0b", "12d1:1c1b", "12d1:1c24", "12d1:1d50", "12d1:1da1", "12d1:1f01", "12d1:1f1b", "12d1:1f1c", "12d1:1f1d", "12d1:1f1e", "12d1:1f02", "12d1:1f03", "12d1:1f07", "12d1:1f09", "12d1:1f11", "12d1:1f15", "12d1:1f16", "12d1:1f17", "12d1:1f18", "12d1:1f19", "12d1:14ad", "12d1:14b5", "12d1:14b7", "12d1:14ba", "12d1:14c1", "12d1:14c3", "12d1:14c4", "12d1:14c5", "12d1:14d1", "12d1:14fe", "12d1:15ca", "12d1:15cd", "12d1:15cf", "12d1:15e7", "12d1:101e", "12d1:151a", "12d1:155a", "12d1:155b", "12d1:156a", "12d1:157c", "12d1:157d", "12d1:380b", "12d1:1001", "12d1:1003", "12d1:1009", "12d1:1010", "12d1:1030", "12d1:1031", "12d1:1413", "12d1:1414", "12d1:1446", "12d1:1449", "12d1:1505", "12d1:1520", "12d1:1521", "12d1:1523", "12d1:1526", "12d1:1553", "12d1:1557", "12d1:1582", "12d1:1583", "12d1:1805", "15eb:7153", "16d8:6803", "16d8:6281", "16d8:700b", "12d1:#android", "12d1:#linux", "16d8:6804", "16d8:700a", "16d8:f000", "19d2:0003", "19d2:0026", "19d2:0040", "19d2:0053", "19d2:0083:uPr=WCDMA", "19d2:0101", "19d2:0103", "19d2:0110", "19d2:0115", "19d2:0120", "19d2:0146", "19d2:0149", "19d2:0150", "19d2:0154", "19d2:0166", "19d2:0169", "19d2:0266", "19d2:0304", "19d2:0318", "19d2:0325", "19d2:0388", "19d2:0413", "19d2:1001", "19d2:1007", "19d2:1009", "19d2:1013", "19d2:1017", "19d2:1030", "19d2:1038", "19d2:1171", "19d2:1175", "19d2:1179", "19d2:1201", "19d2:1207", "19d2:1210", "19d2:1216", "19d2:1219", "19d2:1224", "19d2:1225", "19d2:1227", "19d2:1232", "19d2:1233", "19d2:1237", "19d2:1238", "19d2:1420", "19d2:1511", "19d2:1514", "19d2:1517", "19d2:1520", "19d2:1523", "19d2:1528", "19d2:1536", "19d2:1542", "19d2:1588", "19d2:2000", "19d2:2004", "19d2:bccd", "19d2:ffde", "19d2:ffe6", "19d2:fff5", "19d2:fff6", "19d2:#linux", "20a6:f00e", "20b9:1682", "21f5:1000", "21f5:3010", "22de:6801", "22de:6803", "22f4:0021", "23a2:1010", "057c:62ff", "057c:84ff", "072f:100d", "106c:3b03", "106c:3b05", "106c:3b06", "106c:3b11", "106c:3b14", "109b:f009", "148e:a000", "148f:2578", "198a:0003", "198f:bccd", "201e:1023", "201e:2009", "230d:000b", "230d:000d", "230d:0001", "230d:0003", "230d:0007", "230d:0101", "230d:0103", "257a:a000", "257a:b000", "257a:c000", "257a:d000", "0408:1000", "0408:ea17", "0408:ea25", "0408:ea43", "0408:f000", "0408:f001", "0421:060c", "0421:061d", "0421:062c", "0421:0610", "0421:0618", "0421:0622", "0421:0627", "0421:0632", "0421:0637", "0471:1210:uMa=Philips", "0471:1210:uMa=Wisue", "0471:1237", "0482:024d", "0685:2000", "0922:1001", "0922:1003", "0930:0d46", "1004:61aa", "1004:61dd", "1004:61e7", "1004:61eb", "1004:607f", "1004:613a", "1004:613f", "1004:614e", "1004:1000", "1004:6156", "1004:6190", "1004:6327", "1033:0035", "1076:7f40", "1199:0fff", "1266:1000", "1307:1169", "1410:5010", "1410:5020", "1410:5023", "1410:5030", "1410:5031", "1410:5041", "1410:5055", "1410:5059", "1410:7001", "1614:0800", "1614:0802", "1726:f00e", "1782:0003", "2001:00a6", "2001:98ff", "2001:a80b", "2001:a401", "2001:a403", "2001:a405", "2001:a706", "2001:a707", "2001:a708", "2001:a805", "2020:0002", "2020:f00e", "2020:f00f", "2077:1000", "2077:f000", "2262:0001", "2357:0200", "2357:f000", "8888:6500", "ed09:1021", "20-usb-core", "25-nls-cp437", "05-liblogger", "20-fs-exportfs", "25-nls-cp864", "25-nls-cp775", "25-nls-cp866", "15-mii", "25-nls-cp932", "25-nls-cp852", "25-nls-cp1250", "25-nls-cp850", "25-nls-cp1251", "25-nls-iso8859-1", "25-nls-iso8859-2", "25-nls-cp862", "25-nls-iso8859-6", "25-nls-iso8859-8", "25-nls-iso8859-13", "25-nls-iso8859-15", "25-nls-koi8r", "25-nls-utf8", "29-fs-fscache", "30-atm", "30-fs-autofs4", "30-fs-btrfs", "30-fs-cifs", "30-fs-configfs", "30-fs-cramfs", "30-fs-ext4", "30-fs-hfs", "30-fs-hfsplus", "30-fs-isofs", "30-fs-jfs", "30-fs-minix", "30-fs-nfs-common", "30-fs-ntfs", "30-fs-reiserfs", "30-fs-udf", "30-fs-vfat", "30-fs-xfs", "30-gpio-button-hotplug", "30-ipsec", "30-tun", "30-veth", "31-iptunnel", "31-iptunnel4", "31-iptunnel6", "32-ip6-tunnel", "32-ipsec4", "32-ipsec6", "32-l2tp", "32-sit", "39-gre", "40-bonding", "40-fs-msdos", "40-fs-nfs", "40-fs-nfsd", "40-pppoa", "40-scsi-core", "40-usb2", "42-ip6tables", "42-usb2-pci", "49-ipt-ipset-tplink", "50-usb-ohci", "50-usb-uhci", "54-usb3", "65-scsi-generic", "80-fuse", "89-portal", "90-urlset", "90-xt_CTSTATEMARK", "90-xt_dosdrop", "90-xt_doslogonly", "90-xt_ipsecmark", "90-xt_multinetdev", "90-xt_qoslimit", "90-xt_tplimit", "90-xt_vlan", "91-authlimit", "91-xt_authlimit", "98-ipt_url_dns_match", "98-ipt_urlset_match", "98-ipt_web_dns_match", "98-ipt_webfilter_match", "98-ipt_websec_match", "98-load_balance", "99-balance_route", "99-ipt_tpconnlimit", "99-ipt_TRIGGER", "99-ipt_urlset_target", "99-xt_l2tp", "crypto-hw-eip93", "fs-exfat", "ipt-account", "ipt-compat-xtables", "ipt-conntrack", "ipt-conntrack-extra", "ipt-core", "ipt-extra", "ipt-filter", "ipt-geoip", "ipt-ipopt", "ipt-iprange", "ipt-ipsec", "ipt-ipv4options", "ipt-nat", "ipt-nat-extra", "ipt-nathelper", "ipt-nathelper-extra", "ipt-nfqueue", "ipt-tproxy", "lib-crc-ccitt", "lib-textsearch", "mmc", "mppe", "nf-conntrack-netlink", "nfnetlink", "nfnetlink-queue", "ppp", "pppoe", "pppol2tp", "pptp", "sdhci-mt7621", "usb-acm", "usb-net", "usb-net-asix", "usb-net-cdc-ether", "usb-net-cdc-mbim", "usb-net-cdc-ncm", "usb-net-huawei-cdc-ncm", "usb-net-ipheth", "usb-net-qmi-wwan", "usb-net-rndis", "usb-printer", "usb-serial", "usb-serial-option", "usb-serial-wwan", "usb-storage", "usb-storage-extras", "usb-wdm", "cleanTMP.sh", "fastcgi_params", "koi-win", "nginx.conf", "mime.types", "win-utf", "koi-utf", "ldap.conf", "crt.sed", "client.crt", "client.key", "dictionary.asnet", "servers", "dictionary.microsoft", "dictionary", "options.default", "options.l2tp", "filter", "chap-secrets", "options.pptp", "options.pptpd", "options.xl2tpd", "radius.conf", "dictionary.merit", "dictionary.sip", "issue", "dictionary.compat", "port-id-map", "radiusclient.conf", "dictionary.ascend", "failsafe", "power", "reset", "rfkill", "K10improxy", "K10openvpn", "K10portal_mgmt", "K25zone", "K50dropbear", "K71hwnat", "K90ipv6", "K91network", "K91geoip", "K99umount", "K98boot", "S00zombie_monitor", "K26pppox", "S01spi_device_id", "S01led_early", "S10boot", "S15loggerd", "S19vnet", "S10system", "S20network", "S21tddpd", "S20geoip", "S25sysctl", "S26time_setting", "S25zone", "S22rsa_check", "S42ipgroup", "S31tmngtd", "S40fstab", "S42ipv6group", "S45firewall", "S42macgroup", "S46iptv", "S42service", "S46nat", "S46netbios_passthrough", "S47access_ctl", "S47administration", "S47dos_defense", "S42ippool", "S47flood_defense", "S47imb", "S47mac_filter", "S50cron", "S50dropbear", "S50pppox", "S50qos-tplink", "S50queueventd", "S50radvd", "S50snmpd", "S50uhttpd", "S60dnsmasq", "S60monitor", "S60pptpd", "S60url_filter", "S60xl2tpd", "S65wifidog", "S68online", "S70freeStrategy", "S70usbshare", "S71hwnat", "S72sfe", "S80usbmuxd", "S80websort", "S83web_security", "S85webfilter", "S89remote_mngt", "S90ndppd", "S90openvpn", "S90portal_mgmt", "S91wireguard", "S92qos_ctl", "S95done", "S95ifstat-mini", "S95ipstat", "S95l2tp", "S95mwan3", "S96backup", "S96cmxddns", "S96default_balance", "S96load_balance", "S96policy_route", "S96static_route", "S96sysntpd", "S96upnp", "S97gre_init", "S97ipsec", "S97session_limits", "S98ipsec_failover", "S98led", "S99avahi-daemon", "S99bootcount", "S99dnsproxy", "S99dpi", "S99drop_caches", "S99dynamic_route", "S99enablemodem", "S99improxy", "S99ipv6", "S99led_set", "S99lldpd", "S99phddns", "S99smp", "S99switch", "S99sys_monitor", "S99system_params", "S99usbmodem", "S99zbalance_loop_reset", "S99zero_boot_done", "S99zzddns", "S99zzomada_server", "S99zzzcloud_proc", "S99zzzzzsys_info", "0a775a30.0", "0b1b94ef.0", "0bf05006.0", "0f5dc4f3.0", "0f6fa695.0", "1d3472b9.0", "1e08bfd1.0", "1e09d511.0", "2ae6433e.0", "2b349938.0", "002c0b4f.0", "3bde41ac.0", "3e44d2f7.0", "3e45d192.0", "3fb36b73.0", "4a6481c9.0", "4b718d9b.0", "4bfab552.0", "4f316efb.0", "5ad8a5d6.0", "5cd81ad7.0", "5d3033c5.0", "5e98733a.0", "5f15c80c.0", "5f618aec.0", "6b99d060.0", "6d41d539.0", "06dc52d5.0", "6fa5da56.0", "7aaf71c0.0", "7f3d5d1d.0", "8cb5ee0f.0", "8d86cdd1.0", "8d89cda1.0", "9b5697b0.0", "9c8dfbd4.0", "9d04f354.0", "14bc7599.0", "48bec511.0", "57bcb2da.0", "062cdee6.0", "064e0aa9.0", "68dd7389.0", "75d1b2ed.0", "76cb8f92.0", "76faf6c0.0", "93bc0acc.0", "106f3e4d.0", "244b5494.0", "349f2832.0", "406c9bb1.0", "626dceaf.0", "653b494a.0", "706f604c.0", "749e9e03.0", "773e07ad.0", "930ac5d2.0", "988a38cb.0", "1001acf7.0", "2923b3f9.0", "03179a64.0", "4042bcee.0", "4304c5e5.0", "5273a94c.0", "5443e9e3.0", "7719f463.0", "8160b96c.0", "9482e63a.0", "18856ac4.0", "32888f65.0", "40547a79.0", "607986c7.0", "1636090b.0", "02265526.0", "3513523f.0", "09789157.0", "40193066.0", "54657681.0", "a94d09e5.0", "a3418fda.0", "ACCVRAIZ1.crt", "AC_RAIZ_FNMT-RCM.crt", "AC_RAIZ_FNMT-RCM_SERVIDORES_SEGUROS.crt", "Actalis_Authentication_Root_CA.crt", "aee5f10d.0", "AffirmTrust_Commercial.crt", "AffirmTrust_Networking.crt", "AffirmTrust_Premium.crt", "AffirmTrust_Premium_ECC.crt", "Amazon_Root_CA_1.crt", "Amazon_Root_CA_2.crt", "Amazon_Root_CA_3.crt", "Amazon_Root_CA_4.crt", "ANF_Secure_Server_Root_CA.crt", "Atos_TrustedRoot_2011.crt", "Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt", "b0e59380.0", "b7a5b843.0", "b81b93f0.0", "b1159c4c.0", "b66938e9.0", "b433981b.0", "b727005e.0", "Baltimore_CyberTrust_Root.crt", "bf53fb88.0", "Buypass_Class_2_Root_CA.crt", "Buypass_Class_3_Root_CA.crt", "c01eb047.0", "c28a8a30.0", "ca6e4ad9.0", "ca-certificates.crt", "CA_Disig_Root_R2.crt", "cbf06781.0", "cc450945.0", "cd8c0d63.0", "cd58d51e.0", "ce5e74ef.0", "Certigna.crt", "Certigna_Root_CA.crt", "certSIGN_ROOT_CA.crt", "certSIGN_Root_CA_G2.crt", "Certum_EC-384_CA.crt", "Certum_Trusted_Network_CA.crt", "Certum_Trusted_Network_CA_2.crt", "Certum_Trusted_Root_CA.crt", "CFCA_EV_ROOT.crt", "Comodo_AAA_Services_root.crt", "COMODO_Certification_Authority.crt", "COMODO_ECC_Certification_Authority.crt", "COMODO_RSA_Certification_Authority.crt", "Cybertrust_Global_Root.crt", "d4dae3dd.0", "d7e8dc79.0", "d887a5bb.0", "d6325660.0", "dc4d6a89.0", "dd8e9d41.0", "de6d66f3.0", "DigiCert_Assured_ID_Root_CA.crt", "DigiCert_Assured_ID_Root_G2.crt", "DigiCert_Assured_ID_Root_G3.crt", "DigiCert_Global_Root_CA.crt", "DigiCert_Global_Root_G2.crt", "DigiCert_Global_Root_G3.crt", "DigiCert_High_Assurance_EV_Root_CA.crt", "DigiCert_Trusted_Root_G4.crt", "D-TRUST_Root_Class_3_CA_2_2009.crt", "D-TRUST_Root_Class_3_CA_2_EV_2009.crt", "e8de2f56.0", "e18bfb83.0", "e36a6752.0", "e73d606e.0", "e113c810.0", "e868b802.0", "e35234b1.0", "EC-ACC.crt", "ee64a828.0", "eed8c118.0", "ef954a4e.0", "emSign_ECC_Root_CA_-_C3.crt", "emSign_ECC_Root_CA_-_G3.crt", "emSign_Root_CA_-_C1.crt", "emSign_Root_CA_-_G1.crt", "Entrust.net_Premium_2048_Secure_Server_CA.crt", "Entrust_Root_Certification_Authority.crt", "Entrust_Root_Certification_Authority_-_EC1.crt", "Entrust_Root_Certification_Authority_-_G2.crt", "Entrust_Root_Certification_Authority_-_G4.crt", "ePKI_Root_Certification_Authority.crt", "e-Szigno_Root_CA_2017.crt", "E-Tugra_Certification_Authority.crt", "f0c70a8d.0", "f30dd6ad.0", "f39fc864.0", "f51bb24c.0", "f249de83.0", "f3377b1b.0", "f081611a.0", "f387163d.0", "fa5da96b.0", "fc5a8f99.0", "fe8a2cd8.0", "feffd413.0", "ff34af3f.0", "GDCA_TrustAUTH_R5_ROOT.crt", "GlobalSign_ECC_Root_CA_-_R4.crt", "GlobalSign_ECC_Root_CA_-_R5.crt", "GlobalSign_Root_CA.crt", "GlobalSign_Root_CA_-_R2.crt", "GlobalSign_Root_CA_-_R3.crt", "GlobalSign_Root_CA_-_R6.crt", "GlobalSign_Root_E46.crt", "GlobalSign_Root_R46.crt", "GLOBALTRUST_2020.crt", "Go_Daddy_Class_2_CA.crt", "Go_Daddy_Root_Certificate_Authority_-_G2.crt", "GTS_Root_R1.crt", "GTS_Root_R2.crt", "GTS_Root_R3.crt", "GTS_Root_R4.crt", "Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt", "Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt", "Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt", "Hongkong_Post_Root_CA_1.crt", "Hongkong_Post_Root_CA_3.crt", "IdenTrust_Commercial_Root_CA_1.crt", "IdenTrust_Public_Sector_Root_CA_1.crt", "ISRG_Root_X1.crt", "Izenpe.com.crt", "Microsec_e-Szigno_Root_CA_2009.crt", "Microsoft_ECC_Root_Certificate_Authority_2017.crt", "Microsoft_RSA_Root_Certificate_Authority_2017.crt", "NAVER_Global_Root_Certification_Authority.crt", "NetLock_Arany_=Class_Gold=_F?tan\u00fas\u00edtv\u00e1ny.crt", "Network_Solutions_Certificate_Authority.crt", "OISTE_WISeKey_Global_Root_GB_CA.crt", "OISTE_WISeKey_Global_Root_GC_CA.crt", "QuoVadis_Root_CA_1_G3.crt", "QuoVadis_Root_CA_2.crt", "QuoVadis_Root_CA_2_G3.crt", "QuoVadis_Root_CA_3.crt", "QuoVadis_Root_CA_3_G3.crt", "Secure_Global_CA.crt", "SecureSign_RootCA11.crt", "SecureTrust_CA.crt", "Security_Communication_Root_CA.crt", "Security_Communication_RootCA2.crt", "SSL.com_EV_Root_Certification_Authority_ECC.crt", "SSL.com_EV_Root_Certification_Authority_RSA_R2.crt", "SSL.com_Root_Certification_Authority_ECC.crt", "SSL.com_Root_Certification_Authority_RSA.crt", "Staat_der_Nederlanden_EV_Root_CA.crt", "Starfield_Class_2_CA.crt", "Starfield_Root_Certificate_Authority_-_G2.crt", "Starfield_Services_Root_Certificate_Authority_-_G2.crt", "SwissSign_Gold_CA_-_G2.crt", "SwissSign_Silver_CA_-_G2.crt", "SZAFIR_ROOT_CA2.crt", "TeliaSonera_Root_CA_v1.crt", "TrustCor_ECA-1.crt", "TrustCor_RootCert_CA-1.crt", "TrustCor_RootCert_CA-2.crt", "Trustwave_Global_Certification_Authority.crt", "Trustwave_Global_ECC_P256_Certification_Authority.crt", "Trustwave_Global_ECC_P384_Certification_Authority.crt", "T-TeleSec_GlobalRoot_Class_2.crt", "T-TeleSec_GlobalRoot_Class_3.crt", "TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt", "TWCA_Global_Root_CA.crt", "TWCA_Root_Certification_Authority.crt", "UCA_Extended_Validation_Root.crt", "UCA_Global_G2_Root.crt", "USERTrust_ECC_Certification_Authority.crt", "USERTrust_RSA_Certification_Authority.crt", "XRamp_Global_CA_Root.crt", "cert.pem", "dnskey.conf", "connmark.conf", "des.conf", "aes.conf", "kernel-netlink.conf", "constraints.conf", "md5.conf", "attr.conf", "nonce.conf", "gmp.conf", "openssl.conf", "fips-prf.conf", "pem.conf", "hmac.conf", "pgp.conf", "pkcs1.conf", "pkcs7.conf", "pkcs12.conf", "pubkey.conf", "random.conf", "rc2.conf", "resolve.conf", "revocation.conf", "sha1.conf", "sha2.conf", "socket-default.conf", "sshkey.conf", "stroke.conf", "updown.conf", "x509.conf", "xauth-generic.conf", "xcbc.conf", "pki.conf", "scepclient.conf", "starter.conf", "charon-logging.conf", "charon.conf", "priv-key.pem", "server-cert.pem", "access_control", "00_uhttpd_ubus", "10-fstab", "10_migrate-shadow", "11_migrate-sysctl", "09_fix-seama-header", "12_network-generate-ula", "root.key", "unbound.conf.back", "named.cache", "12d1_0004", "12d1_0003", "12d1_0005", "12d1_0001", "19d2_0001", "19d2_0002", "19d2_0003", "19d2_0004", "ffff_0001", "12d1_0002", "ffff_0002", "ffff_0003", "xl2tpd.conf", "xl2tp-secrets", "acl_timeobj.lua", "acl_timeobj_v6.lua", "acl_wanhook.lua", "access_func_v6.sh", "attach_timeobj.lua", "core.sh", "access_func.sh", "interface.sh", "acl_delete_rule.lua", "core_log.sh", "markdef.sh", "time.sh", "core_acl.sh", "config.sh", "core_global.sh", "arp.sh", "gettime.sh", "cmd.sh", "backup.sh", "ecmp.sh", "api.sh", "ecmp.lua", "dynanmic_arpreq.sh", "getVid.sh", "access_time_help.lua", "access_dir_help.lua", "accountmgnt.lua", "access_ip_help.lua", "access.lua", "clock.lua", "http.lua", "interface.lua", "dhcp.lua", "ipsec.lua", "monitor_port.lua", "nat.lua", "show_if_help.lua", "routing.lua", "cli_ospf.lua", "show_interface.lua", "rip.lua", "show_interface_status.lua", "snmp.lua", "ssh.lua", "time_range.lua", "vlan.lua", "lan.js", "uci.sh", "arping.sh", "get_option.lua", "dhcps.sh", "main.sh", "dnssecquery.sh", "core_forwarding.sh", "core_init.sh", "core_interface.sh", "core_redirect.sh", "core_rule.sh", "core_tpfirewall.sh", "uci_firewall.sh", "fw.sh", "tpcmd.sh", "freeStrategy_backup.sh", "add_delete_tuple.sh", "add_delete.sh", "getip.sh", "preinit.sh", "leds.sh", "network.sh", "service.sh", "switch_port.sh", "procd.sh", "userconfig.sh", "uci-defaults.sh", "system.sh", "functions.sh", "gre_common.sh", "gre-ipsec-up-down.sh", "delete_restart.sh", "core_ipgroup.sh", "ipsec_check_domain_wrap.sh", "ipsec_failover_process.sh", "ipsec_handle_iptables.sh", "ipsec_check_domain.sh", "ipsec_generate_domain.sh", "ipsec_execute_stroke.sh", "ipsec_monitor_tunnel.sh", "ipsec_vnet.sh", "pd_api.sh", "lanv6_server.sh", "pd_server.sh", "core_ipv6group.sh", "get-vpn-gw.sh", "ifup-l2tp.sh", "ifdown-l2tp.sh", "l2tp-get-tunnel-info.sh", "get-vpn-ip.sh", "l2tp-init.sh", "l2tp-ipsec-delete.lua", "l2tp-ipsec-setstatus.lua", "l2tp-doipsec.sh", "l2tp-ipsec-up-down.sh", "l2tp-functions.sh", "l2tp-reload.sh", "char_conv.sh", "api_VPN.sh", "ldap_check_result.sh", "ldap_query.sh", "pre_setting_config.sh", "net_share.sh", "ramips.sh", "lldp_get_wan_device.sh", "50-xt_flood", "50-arp_garp", "get_rps.sh", "get_temperature.sh", "set_fan.sh", "nat_alg.sh", "nat_config.sh", "nat_dmz.sh", "nat_common.sh", "nat_pt.sh", "nat_dmz_bypass.sh", "nat_vs.sh", "nat_core.sh", "nat_log.sh", "nat_one.sh", "nat_napt.sh", "6rd.sh", "dhcp.sh", "directip.sh", "3g.sh", "ncm.sh", "dhcp6c.sh", "6to4.sh", "ppp.sh", "l2tp.sh", "pppv6.sh", "dslite.sh", "qmi.sh", "v6plus.sh", "lanv6.sh", "passthrough.sh", "dhcp.script", "netifd-wireless.sh", "netifd-proto.sh", "if-do-timeobj.sh", "ppp-down", "ppp-up", "pppv6-share", "dslite-up.sh", "pppv6-up", "dhcp6c.script", "utils.sh", "v6plus-dial.sh", "ppp-dhcp6c.script", "switch.sh", "network_arch.sh", "online_api.sh", "online_reload.lua", "openvpn-client-disconnect.sh", "openvpn-client-routeup.sh", "openvpn-client-connect.sh", "openvpn-client-down.sh", "openvpn-server-up.sh", "openvpn-client-up.sh", "openvpn-common.sh", "openvpn-instance.sh", "openvpn-password.lua", "openvpn-server-down.sh", "pppox-default-variables.sh", "pppox-header.sh", "kill-pptpd-xl2tpd.sh", "pppox-reload-user.lua", "pppox-functions.sh", "pppox-reload-user.sh", "pppox-begin-reload-user.sh", "pppox-remote-management.sh", "pppox-load-user.lua", "pppox-pppoetimer.sh", "pppox-remote-management-get-ippool.lua", "pppox-wheader.sh", "pppox-killtunnel.sh", "ifup_down.sh", "add-service.sh", "enable_service.sh", "pptp-get-tuunel-info.sh", "delete-service.sh", "pptp-global-setting.sh", "pptp-client-add.sh", "pptp-ifdevice-info.sh", "pptp-client-update.sh", "pptp-option.sh", "pptp-startup.sh", "pptp-tunnel-action.sh", "test.sh", "pptp-client-delete.sh", "05_set_iface_mac_mediatek", "02_default_set_state", "07_set_preinit_iface_ramips", "40_run_failsafe_hook", "04_handle_checksumming", "50_indicate_regular_preinit", "10_indicate_failsafe", "70_initramfs_test", "03_preinit_do_ramips.sh", "80_mount_root", "98_10_mtk_failsafe_init", "30_failsafe_wait", "99_10_failsafe_login", "99_10_run_init", "10_indicate_preinit", "qos_config_sync.lua", "qos_nf.sh", "qos_api.sh", "qos_cid.sh", "qos_dpdk.sh", "qos_grpmark.sh", "find_index.lua", "qos_ifgroup.sh", "qos_core.sh", "qos_ipset.sh", "qos_mark.sh", "qos_polling.sh", "qos_public.sh", "qos_state.sh", "qos_tc.sh", "state_gen.lua", "zone-450", "qos_delete_rule.lua", "remote_mngt.sh", "route_api.sh", "core_service.sh", "session_limits.sh", "ar8327_switch_led", "ar8327_switch_portMirror", "ar8327_switch_init", "ar8327_switch_portStatistic", "ar8327_register", "ar8327_switch_portVlan", "ar8327_switch_portPara", "ar9533_register", "ar8327_switch_portState", "ar9533_switch_init", "ar8327_switch_portRateControl", "ar9533_switch_portMirror", "ar9533_switch_portPara", "ar9533_switch_portRateControl", "ar8327_switch_8021Qvlan", "ar9533_switch_portState", "ar9533_switch_portStatistic", "ar9533_switch_portVlan", "cn9130_register", "cn9130_switch_globalLed", "cn9130_switch_init", "cn9130_switch_portMirror", "cn9130_switch_portPara", "cn9130_switch_portRateControl", "cn9130_switch_portState", "cn9130_switch_portStatistic", "cn9130_switch_portVlan", "mt7621_register", "mt7621_switch_globalLed", "mt7621_switch_led", "mt7621_switch_portMirror", "mt7621_switch_portPara", "mt7621_switch_portRateControl", "mt7621_switch_portState", "mt7621_switch_portStatistic", "mt7621_switch_portVlan", "mt7628_register", "mt7628_switch_init", "mt7628_switch_led", "mt7628_switch_portMirror", "mt7628_switch_portPara", "mt7628_switch_portRateControl", "mt7628_switch_portState", "mt7628_switch_portStatistic", "mt7628_switch_portVlan", "rtl8367s_register", "rtl8367s_switch_globalLed", "rtl8367s_switch_init", "rtl8367s_switch_portMirror", "rtl8367s_switch_portPara", "rtl8367s_switch_portRateControl", "rtl8367s_switch_portState", "rtl8367s_switch_portStatistic", "rtl8367s_switch_portVlan", "switch_functions", "vlan_network", "sysparams_net.sh", "timeobj_cron_api.sh", "timeobj_api.sh", "boot_done", "led.sh", "set_time", "base-files-essential", "libopenldap", "base-files", "online_check", "mwan3-tplink", "openvpn-easy-rsa", "openvpn-mgmt", "portal-mgmt", "ppp-mod-radius", "snmpd-static", "https-dns-proxy", "luci-add-conffiles.sh", "platform.sh", "ubnt.sh", "nand.sh", "common.sh", "upnp_api.sh", "find_target.lua", "url_func.sh", "detach_timeobj.lua", "csv2db.sh", "vnet_zone_api.sh", "vnet_init.sh", "vnet.sh", "vnet_core.sh", "vnet_zone_init.sh", "webfilter_func.sh", "web_func.sh", "websec_timeobj.lua", "start_rule.sh", "wireguard-up.sh", "wireguard-down.sh", "auth_port_modify.sh", "core_wportal.sh", "zone_api.sh", "zone_core.sh", "zone_api_all.sh", "zone_conf.sh", "zone_init.sh", "zone_api_core.sh", "zone_init_all.sh", "note", "devstatus", "firstboot", "fixup-mac-address", "fw", "hotplug-call", "ifdown", "ifstart", "ifrestart", "ifstatus", "loadopenvpncert", "log_oops_recovery.sh", "luci-reload", "ifup", "reload_config", "restorefactory", "smp.sh", "snapshot", "sysupgrade", "wifi", "ubi_make_extra_volume.sh", "ipset.debug", "ipxd", "iptables.debug", "ipxr", "wifidog-init", "radiusclient-ng.h", "dpi.sh", "libradiusclient-ng.la", "libstdc++.so.6.0.21-gdb.py", "dynamic_dns_dyndns.sh", "dynamic_dns_log.sh", "customddns_set_url.sh", "url_escape.sed", "dynamic_dns_customddns.sh", "dynamic_dns_noip.sh", "dynamic_dns_updater.sh", "dynamic_dns_functions.sh", "dpi_log_database.lua", "dpi_log_database.sh", "dpi_tmngtd.sh", "_updown", "ngx_init.lua", "authlistCheck.lua", "ngx_wdas.lua", "ngx_sqlApi.lua", "cell_valueheader.htm", "cell_valuefooter.htm", "dvalue.htm", "compound.htm", "dynlist.htm", "browser.htm", "apply_xhr.htm", "firewall_zoneforwards.htm", "button.htm", "firewall_zonelist.htm", "delegator.htm", "footer.htm", "full_valuefooter.htm", "full_valueheader.htm", "fvalue.htm", "header.htm", "lvalue.htm", "map.htm", "mvalue.htm", "network_ifacelist.htm", "network_netinfo.htm", "network_netlist.htm", "nsection.htm", "nullsection.htm", "simpleform.htm", "tabcontainer.htm", "tabmenu.htm", "tblsection.htm", "tsection.htm", "tvalue.htm", "ucisection.htm", "upload.htm", "value.htm", "valuefooter.htm", "valueheader.htm", "error404.htm", "error500.htm", "indexer.htm", "sysauth.htm", "debug.lua", "mbimfind.lua", "log_awk", "modem_scan.sh", "check_switchmode.lua", "protofind.lua", "handle_card_process.sh", "search_tty.lua", "handle_card.sh", "unlock_pin.sh", "getisp.sh", "usbmodem_log.sh", "modemLedCtrl.sh", "portal_mgmt_monitor.lua", "portal_mgmt_monitor.sh", "rewrite.lua", "portal_status.sh", "hardware.txt", "jshn.sh", "default.script", "dbus-K5ae4EDHao", "osui.sock", "qipc_sharedmemory_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "qipc_systemsem_xFMOjWbQizvIQbjaGodBkPpoECFzUYyznnjEncea48051f6b8a69e2450843f1f32c0bb393e04349", "sddm-:0-BoTuTx", "sddm-auth-52b94a64-454a-4d7f-903e-32df6aac784a", "tmp.QMAjonKZB0", "xF43MOjWbQiz+vIQbjaGodBk4PpoECFzUYyznnj8Enc=", "about.svg", "about_hover.svg", "ie.css", "style.css", "widget.css", "access_control.html", "account_config.html", "account_mngt.html", "action_check.html", "alg.html", "appdist.html", "appdist_database.html", "appflow_statistics.html", "application_filter.html", "application_list.html", "arp_list.html", "arp_scan.html", "assign_restriction.html", "attack-defense.html", "balance_basic.html", "bridge.html", "bwlist_qq.html", "cmxddns.html", "controller_setting.html", "country_group.html", "custom_ddns.html", "ddm.html", "dhcp_client.html", "dhcp_lan_settings.html", "dhcp_lan_settings_standalone.html", "dhcp_server.html", "dhcp_static.html", "diagnostic.html", "dia_info.html", "dns_cache.html", "dns_doh.html", "dns_dot.html", "dnsproxy.html", "dnssec.html", "dyn3322ddns.html", "dynddns.html", "firmware_backuprestore.html", "firmware_factory.html", "firmware_managing.html", "firmware_reboot.html", "firmware_reseting.html", "firmware_upgrade.html", "gre_overipsec.html", "ifstat.html", "imb.html", "interface.html", "interface_mac.html", "interface_mode.html", "interface_wan.html", "interface_wan_standalone.html", "ipgroup_address.html", "ipgroup_group.html", "ipgroup_view.html", "ippool.html", "ips_blacklists.html", "ipsec_sa.html", "ipsec_tunnel.html", "ips_setting.html", "ips_signature_suppression.html", "ips_stats.html", "ip_stats.html", "ips_threat_management.html", "ips_whitelists.html", "iptv.html", "ipv6.html", "ipv6group_address.html", "ipv6group_group.html", "ipv6_lan.html", "isp_routing.html", "l2tp_client.html", "l2tp_global.html", "l2tp_server.html", "l2tp_tunnel.html", "ldap_profiles.html", "line_backup.html", "macFiltering.html", "mdns.html", "napt.html", "nat_dmz.html", "noipddns.html", "one_nat.html", "online.html", "openvpn_client.html", "openvpn_server.html", "openvpn_tunnel.html", "ospf.html", "phddns.html", "policy_routing.html", "port_trigger.html", "pptp_client.html", "pptp_global.html", "pptp_server.html", "pptp_tunnel.html", "preview_mobile_wifi.html", "preview_remind.html", "preview_wportal.html", "print_server.html", "qos.html", "qos_Band_ctrl.html", "qos_Class_role.html", "qos_Traffic.html", "qos_VoIP.html", "quick_setup.html", "reboot_schedule.html", "remote_mngt.html", "rip_routing.html", "rules.html", "service.html", "session_limits.html", "session_monitor.html", "sessmngr.html", "snmp.html", "ssl_vpn_auth.html", "ssl_vpn_auth_radius.html", "ssl_vpn_locked_user.html", "ssl_vpn_quicksetup.html", "ssl_vpn_server.html", "ssl_vpn_status.html", "ssl_vpn_tunnel.html", "ssl_vpn_tunnel_group.html", "ssl_vpn_user.html", "ssl_vpn_user_group.html", "static_routing.html", "switch_Parameter.html", "switch_portLimit.html", "switch_portMonitor.html", "switch_portStatistics.html", "switch_portStatus.html", "switch_portVlan.html", "sys_status.html", "system_log.html", "system_mode.html", "system_params.html", "system_routetbl.html", "system_state.html", "time_mngt.html", "time_setting.html", "upnp.html", "url_filtering.html", "usb_backup.html", "usb_firmware_upgrade.html", "usbModem.html", "usb_storage.html", "usermngr_backup.html", "usermngr_user.html", "virtual_server.html", "vlan_portSetting.html", "vlan_relationTbl.html", "vlan_vlanSetting.html", "vpn_general.html", "vpn_peers.html", "vpn_user.html", "vpn_wireguard.html", "web_filter.html", "web_group.html", "web_security.html", "wechat.html", "wechat_wifi.html", "wizard.html", "wportal.html", "wportal_free.html", "advanced.html", "basic.html", "encrypt.js", "excanvas.js", "html5.js", "jquery.flot.barnumbers.js", "jquery.flot.crosshair.js", "jquery.flot.fillbetween.js", "jquery.flot.js", "jquery.flot.pie.min.js", "jquery.json-2.4.min.js", "jquery.min.js", "jquery.scrollTo.min.js", "md5.js", "button.js", "buttongroup.js", "checkbox.js", "combobox.js", "fieldset.js", "file.js", "folderTree.js", "form.js", "number.js", "password.js", "portrange.js", "progressbar.js", "radio.js", "region.js", "slider.js", "status.js", "subnet.js", "switch.js", "textarea.js", "textbox.js", "time.js", "timepicker.js", "tip.js", "waitingbar.js", "editor.js", "grid.js", "paging.js", "chart.js", "foldertree.js", "keyword.js", "msg.js", "page.js", "panel.js", "wizard.js", "widget.js", "proxy.js", "store.js", "treestore.js", "controller.js", "su.full.min.js", "su.js", "account.2ca6a054.js", "chunk-vendors.0cdf10f0.js", "index.a415cbb4.js", "login.4f52b876.js", "chunk-common.72de4705.css", "account.html", "app.manifest", "cs_dis.html", "error.html", "index.html", "login.html", "mobile_wifi.html", "pcauth.js", "pc_wifi.html", "style-pcdemo.css", "style-simple-follow.css", "web_login.html", "cbi.js", "xhr.js" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1520", "name": "Domain Generation Algorithms", "display_name": "T1520 - Domain Generation Algorithms" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 38, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "Merkd1904", "id": "196517", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CIDR": 11, "hostname": 491, "FileHash-SHA256": 3479, "FileHash-MD5": 67, "domain": 312, "FileHash-SHA1": 61, "email": 20, "URL": 373 }, "indicator_count": 4814, "is_author": false, "is_subscribing": null, "subscriber_count": 72, "modified_text": "756 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "65708c8a9635f156e79238f1", "name": "intel gained from a spam text", "description": "", "modified": "2023-12-06T15:00:26.727000", "created": "2023-12-06T15:00:26.727000", "tags": [], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 2, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "StreamMiningEx", "id": "262917", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "CVE": 1, "FileHash-SHA256": 823, "domain": 717, "URL": 2245, "hostname": 615, "email": 4, "FileHash-MD5": 5, "FileHash-SHA1": 1 }, "indicator_count": 4411, "is_author": false, "is_subscribing": null, "subscriber_count": 110, "modified_text": "906 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 }, { "id": "6266f7e0e0264cba210a4e9e", "name": "intel gained from a spam text", "description": "var b[f]=g, if b(f) is not allowed to reach its maximum by the end of a set, then a.b(b) will be able to do so at the same time as a", "modified": "2022-05-25T00:04:03.622000", "created": "2022-04-25T19:34:56.772000", "tags": [ "array", "typeerror", "symbol", "null", "string", "iterator", "object", "error", "boolean", "function", "service", "date", "phonenumber", "facebook", "meta", "typeof e", "typeof u", "typeof window", "es modules", "use esm", "webkit", "component", "typeof", "typeof y", "typeof symbol", "suspense", "context", "forwardref", "unknown", "4096", "typeof n", "promise", "weakmap", "dataview", "typeof t", "webpackrequire", "modulenotfound", "e1342177279", "array int8array", "loanup", "insurance", "group", "health", "solutions", "policy", "site", "america", "company", "life", "plan", "direct", "media", "alliance", "click", "team", "never", "advantage", "general", "light", "february", "april", "june", "august", "footer", "protect", "banker", "explorer", "fast", "martin", "union", "carrier", "next", "colony", "energy", "empire", "gerber", "philadelphia", "hippo", "king", "agent", "mercury", "moss", "premium", "nextgen", "oscar", "phoenix", "loans", "pure", "ramsey", "ranger", "solar", "titan", "tristate", "viking", "easy", "push", "code", "stop", "carriers", "live", "lucky", "moral", "story", "back", "lfunction", "dfunction", "cfunction", "typeof self", "number", "copyright", "closure library", "xdfunction", "cdfunction", "ddfunction", "bded", "kefunction", "reduceright", "gj9pcw0f6jv", "regexp", "r420", "uint8array", "typeof d", "void" ], "references": [ "https://www.googletagmanager.com/gtag/js?id=G-J9PCW0F6JV", "https://www.googletagmanager.com/gtag/js?id=UA-185991747-1", "https://insurancerateusa.com/polyfill-036b4a134d8725752ba0.js", "xfe-URL-insurancerateusa.com-stix2-2.1-export.json", "https://insurancerateusa.com/app-74647f151b541f3098c2.js", "https://insurancerateusa.com/bfcc7b67-0b189ba6da3fc3ae8b88.js", "https://insurancerateusa.com/94297995-69529ad7536f090aa776.js", "https://insurancerateusa.com/3bea8d40-8926f4790c0b3689a361.js", "https://insurancerateusa.com/framework-19eddc0d879a49dfe606.js", "https://insurancerateusa.com/webpack-runtime-f014a3267add02a94afb.js", "https://connect.facebook.net/signals/config/3689470801106673?v=2.9.57&r=stable" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [ { "id": "ReduceRight", "display_name": "ReduceRight", "target": null } ], "attack_ids": [ { "id": "T1059", "name": "Command and Scripting Interpreter", "display_name": "T1059 - Command and Scripting Interpreter" } ], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 10, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "adjadex1@gmail.com", "id": "187163", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "hostname": 615, "URL": 2246, "FileHash-SHA256": 823, "domain": 717, "CVE": 1, "email": 4, "FileHash-MD5": 5, "FileHash-SHA1": 1 }, "indicator_count": 4412, "is_author": false, "is_subscribing": null, "subscriber_count": 70, "modified_text": "1466 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "domain", "related_indicator_is_active": 1 } ], "error": null, "vt": { "error": "VirusTotal rate limit reached. Try again shortly.", "indicator": "date.day", "type": "Domain" }, "abuseipdb": null, "urlhaus": { "indicator": "date.day", "found": false, "verdict": "clean", "urls": [], "error": null }, "from_cache": true, "_cached_at": 1780185110.0305698 }