We call SHODAN.
By Viss!

Prepared for Defcon 20

Thursday, July 12, 12

This is not just another

shodan talk.

Today we turn shodan into a gateway

drug.

Thursday, July 12, 12

What do people put on
the internet?

Routers, switches, servers, printers..

Meh. seen it.
Show me something new!

Thursday, July 12, 12

What's on the internet that
nobody is accounting for?

... is anybody actually checking?
Seriously, has anybody ever done this?

Thursday, July 12, 12

Thursday, July 12, 12

A little editorial o
policy....

If you can't scan yourself freely, how do
you determine your level of exposure?
What's the attack surface?

Thursday, July 12, 12

Before we begin.

Everything found here is

PUBLIC

No credentials required
no "secure" systems.
This is all "free play".

Thursday, July 12, 12

Also, No systems
were altered.

This was a
READ ONLY

Exercise.

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

T-2000 CC User Interface W [ LOGIN

UserName :
Password :

] ^?

) 2003 ReliOn Inc.

Unit Name :

Unit Date

04/17/12

Unit Location :

Unit Time

23:35:53

Major Alarms : O

Chassis S/N

Minor Alarms : 1

Control Ler Ver

02.02.01

AGO Status : OFF 0:00

FPGA Ver

01.01.03

System Status : STANDBY

Comm Card Ver

02.02.01

ReliOn

15913 E. Euclid Aye

Spokane, WA 99216

Tel: +1-509-223-6500

24 Hour Support: +1-366-661-0020

techsupportOre L ion-inc .com

SYSTEM MESSAGES: Alpha Text, TAB-Next Fie

Ld, Enter-Select, E

!SC-Abandon

Thursday, July 12, 12

m.. "T-2000" !

whats a T-2000?.. relion?

T-2000 CC User Interface [ LQGIPi

UserName :
Password :

(c) 2008 ReLiOn Inc.

Unit Name
Unit Location

Major Alarms
Minor Alarms
AGO Status
System Status

OFF 0:60
STANDBY

Unit Date
Unit Time

04/17/12

Chassis S/N :

Controller Ver : 02.02.01

FPGA Ver : 01.01.03

Comm Card Ver : 02.02.01

ReliOn

15913 E. Euclid Ave

Spokane, WA 99216

Tel: +1-509-223-6500

24 Hour Support: +1-366-661-0020

techsupportOre L ion-inc .com

V3TEM MESSAGES: Alpha Text, TAB-Next Field, Enter-Select, ESC-Abandon

Thursday, July 12, 12

Government
Off-Grid

Transportation

Utility

Certifications
Tax Incentives

Thursday, July 12, 12

I PRODUCTS & SOLUTIONS

T-2000 | T-2000: 2kW Outdoor Configuration I T-2000 : -ikvV Outdoor Configuration
T-2000: 6kW Outdoor Configuration I T-2000: fik'A 1 Outdoor Configuration
T-2000: 12kW Outdoor Configuration

T-2000® 2kW PEM Fuel Cell

The fuel cell system is cesignec specifically for

larger communications backup power loads within the
wireless and wireline telecommunications, utility and
■government sectors. The T-2000® fuel cell uses
RellOn's patentee Mocular Cartridge Technology© for
hot-swappable high reliability, ease of maintenance and
simplicity of design. Modular electronics cares enable
scalability by providing flexible configuration from 600
Watts to a full 2,000 Watt capacity In one chassis. Or
combine multiple T-2000® fuel cells to provide higher
outputs for a variety of site requirements up to l2kw.

Click for specifications in bnglish (19 /KB)
Click for specifications In Spanish (130KB)
Click for specifications in Portuguese (213KB)
Click for specifications In Chinese (595KB)

Features:

* Output: to 2,000 Watts - 24 or 46 VDC nominal output

• 23 " Rack Mountable (Incoors)
p Multiple Outdoor Configurations
- Remote Monitoring Capability

■ Pimcrsicrs: Zb"h x 21 "w x Zl.b "c (66cm x S3cm x ^.4, 6cm)

rP

oks industria

Field Trial Prototype

■ Relion's modular cartridge approach normally operates with
six cartridges connected to a common BUS. Each cartridge
supplies a nominal power of 200W.

■ In case a cartridge is damaged, the replacement procedure
can be performed in a few seconds while the fuel cell
continues to provide power to the load.

Figure 2 -Relion's T-1000 hydrogen fuel cell

MTS

a/istrearL

i

Gets

DOE/DOD Back-Up Power
Demonstration

Site

kW Req'd

Buildings Backed-up

Fuel Cell Units Used

Aberdeen Proving
Ground

15;
20;
S

Energy Management Building.
Range Control and Coordination,
DPW Conservation Branch

(3} IdaTech ElectraGen 5;
Hyrogenics HyPM Rack 20;
ReliOnT-2000 SkW

Fort Bragg

15

Training Range Control Building

<B) IdaTech ElectraGen 5

Picatinny Arsenal

10;
10

Sewage Lift Pump
Sewage Lift Pump

(2) IdaTechElectraGen 5;
(2) IdaTechElectraGen 5

West Point

20;
20

Internet Switch

Internet Service and Telecom Closet

Altergy FPS-20;
Altergy FPS-20

Cheyenne Mountain

24

911 Call Center

R eliO n T-20 00 4 kW, BkW r 12 kW

Fort Hood

9;

10

Wast ew ate r Pretreatm ent Plant,
Wastewater Pretreatm ent Plant

ReliOn T-20 00 SkW, ReliOn T-1000 1.2 kW;
Altergy FPS -10

Ohio Nat l Guard

20;

20

Command Headquarters,
Civil Support Administration

(4} IdaTech ElectraGen 5;
(4) IdaTech ElectraGen 5

Marines 29 Palms

4

Internet Switch

ReliOn T-20 00 4kW

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

urity is a joke.

■Jbackgromd.teq A B A Cyy^0^

v D A C A(j *ENTER PASSWORD TO ADVANCE TO OTHER SCREENS A B A D A B A ^ A B A ^ A E A G A D A ^ A ^ A ^ A B A D A B A (3 A B A

V C A @ A @ A D A C A @ A @ A B A @ A B A D A B A @ A B A @ A B A B A E+ A ^
^■D A C A @ A N««-^ p a ssword A B A D A B A G A B A G A E A G A D A C^

3 A @ A B A @ A E3 A D A @ A @ A @ A B A @ A B A A A B A C A D A E A @ A H^ % d A

^■@ A B A @ A E , A D A @ A @ A @ A B A D A B A @ A B A @ A E3 A D A @ A @ A @ A B A ^

v^A(3A^A(39£Ap^AHiButtonP A ^ A V A ^ A ^ A ^r A C A ^^^

^D A C A G A GFTP.teq A B A G A B^

^6 A HIButtonP A G A V A G A G A G^a^

3*G*F A G A G A G A W A F^^

:tonP A G A Y A G A G A GN A C A G^

^G*E , A D A G A G A G A B A D A B A G A B A G A B A G

Thursday, July 12, 12

Endurance* 1

Instantaneous

a Real Power: 2.0 kW

pOWer winded: 4.5 ml*

Last hour average

Real Power 1.7 KW

Wind speed: 3.3 mfe

Cumulative
energy

135745 kWh

Start

J

Stop

Status:

6- General Ing

Generator speid:
Rotor spaed ' ratio:
Rolor speed:

PPM
RPM

SEL-547 energy measurements

Current
Frequency

[ 60.01 1 H2
Power Factor

Voltage 3 Phase Power

A-N | 125.6] V [ 2.0j kW

B*l V P32j kVAR

C-N | 125 fe| V

A , B ^^g| y Cumulative energy

B-C V I 13574^ kWh

C-A ! 216.7] V

Alarms Inactive
Shutdowns inactive

User name:
User level:

SFCslep: i

2912-49-14
19:44:90

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Private residences?!

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

ome more power systems

Menu

Landis

Gyr +

ircage energy better

Meter List

You may optionally enter a comparison operator (<„<=,>,>=,<> or :
Displaying 1-25 of 576 result(s}.

Seltime &timezone

LGZ1 293 1286
LGZ1 2957680
LGZ129S7679
LGZ12892452
LGZ12930536
LGZ1 2892402
LGZ1 2931256
LGZ12892426
LGZ12930523
LGZ.1 293 1595
LGZ1 2892564
LGZ1 2892561

:LG2:2892455
: .C,l.2S92343
i .CZ12S37642
JLGZ12892580

ILGZ12B92419

| .02:2892566
GZ 2892547
LGZ 12 892453

LGZ12892532

.0212692163
.CZL2892S23
! .CZ12S31571
j LGZ12892485

049895210935
049895210981
049895210972
049895144158

C49S9 32 10895
049895144189
049895210932
049895144223

049895210123

049895210707
C4989311122^
C4989 314 4222

1049895144328
049895144299
iC498932H052
1049895144260

1049895144162

1049895144323
C4989 31113D7
!C49895144163
!049895144186

C49S93111322
C49893144283
C 4989 32 1 07 19
C4989 314 4232

;} at the beginning of each of your search ualLes to specify r dia the comparison should be done.

Installation status

INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED
INSTALLED

j REG
REG
REG

Treg

j NEW
REG
REG

Ireg

REG
REG
REG
REG

IRlC
REG

Ireg

ALL. FLEX
ALL FLEX
ALL FLEX
ALL , FLEX

ALL. FLEX
ALL. FLEX
ALL FLEX
ALL . FLEX

ALL. FLEX
ALL FLEX
ALL . FLEX
ALL . FLEX

ALL FLEX

REG
REG
REG

ALL FLEX
ALL FLEX
ALL r ^3X
ALLFLEX '""
I ALL , -_EX
ALL FLEX
ALL FLEX

j ALL ELK

\ REG
REG
I REG

ALL FLEX
i ALL FLEX

ALL FLEX
i&LLEklx.

jPP
j.PP_
PP
|pp

[PP

;PP

{PP
jPP

j.P_P

PP

PP
;PP

PP

IPP

Ipp
Ipp
Ipp

ipp

[p p
|pp

Ipp

pp_
pp
jpp

Go to page: < Previous Q [T] H [7] [jj] [T] | 10 | [

Thursday, July 12, 12

Larger industrial system

SIEMENS

Synco™

Central communication unit OZW775 V2.0

with integrated web server -function

Commissioning instructions

knx

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

Level One:

Simple recon

Thursday, July 12, 12

Region: Massachusetts.

[G| PageRank: No Data

© Rank: No Data

Google Trends

^ McAfee Site Ad visor

Q WOT: Trust Wo rth i n e ss: n/a * i

Vendor Reliability: n/a °

Privacy: n/a *j

Child Safety: n/a

Optpns

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

ompany name leads to address

evel Two:

Interactions

DISCLAIMER:

I didn't have any idea this
happened until someone showed
me a gallery of screencaps...

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

evel Three:

Remember the movie

Live Free or Die Hard?

Thursday, July 12, 12

Thursday, July 12, 12

ough this depiction
Was an insanely successful

Social Engineering campaign, overall.

xcept, I m not shooting
down helicopters with cars.

Thursday, July 12, 12

Thursday, July 12, 12

Some scada keeps logs!

■ l3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-
Il3-Apr-

127:16:
12 7:23:
12 7:24:
12 7:25:
12 7:23:
127:31:
127:31:
12 7:56:
129:19:
12 9:22:
12 9:24:
12 9:24:

15 AM MDT
07 AM MDT
40 AM MDT
19 AM MDT
09 AM MDT

53 AM MDT

54 AM MDT
51 AM MDT
37 AM MDT

55 AM MDT
02 AM MDT
04 AM MDT

fox

fox

fox

fox
fox
fox
fox

fox

fox

fox

sys

history, db

Opened: 165 <-
Opened: 166 <-
Opened: 167 <-
Closed: 166 <- :
Closed: 167 <- :
Closed: 165 <- :
Opened: 163 <- 1
Closed: 163 <- 1 :
Opened: 169 <-
Closed: 169 <- :
Saving station...
Saved history archive (494ms)

: WbApplet [guest] @ Owner-PC
: WbApplet [admin] @ Denniss-MacBook-Pro. local
: WbApplet [admin] @ Denniss-MacBook-Pro. local
WbApplet [admin] @ Denniss-MacBook-Pro. local
WbApplet [admin] @ Denniss-MacBook-Pro. local
WbApplet [guest] @ Owner-PC
: WbApplet [guest] @ Owner-PC
WbApplet [guest] @ Owner-PC

:: WbApplet [admin] @ Denniss-MacBook-Pro. local
; WbApplet [admin] @ Denniss-MacBook-Pro. local

Thursday, July 12, 12

B£i Liebert

€3 Control MENU
\$CJ UPS Monitoring
g^ES UPS Management
|1|j UPS Configuration
(j) UPS Control
@ UPS Battery Test

UPS Battery Test Schedule
|jj UPS Shutdown

Weekly Schedule
(j=| Special Day Schedule
|^j EMD Configuration
EpO Liebert Management
□ O UPS History

• H UPS History Log
- [ffi UPS Extended Log
fffj UPS Events Log
■ [ffl Liebert Events Log
[ffj Clear & Save Log Data
ED-Q Language Selection

^^^^^

Comprehensive View

On -Line

197.3

Output Voltage (Vo/fJ

230.7

Output Load f%J

14

Battery Capacity Remaining |%)

1DD

Current Battery Voltage (Volt)

110.4

UPS Temperature fCJ

31.5

Input Frequency (Hertz)

49.5

UPS Next Off Time (hh:mm dd/mm/yyyy)

UPS Next On Time (hh:mm dd/mm/yyyy)

Liebert System Date (dd/mm/yyyy)

17/04/2012

Liebert System Time (hh:mm:ss)

04:35:12

Liebert Up Time (days hh:mm:ss)

Odays 16:19:11

Thursday, July 12, 12

Thursday, July 12, 12

w V

ay okay.. Its a little

Freaky, but it's no "firesale"...

Thursday, July 12, 12

id id id id id

id id id id id fd fd fd fd fd fd fd fd

(3(3(3(3 (3(3(3(3 (R)

id id id id id

■3 (aetata @@@@ (aetata

(3(3(3(3(3 (3(3(3(3

id id id id id

(3(3(3(3(3(3(3(3(3(3(3(3(3

(3(3(3(3(3(3 (3(3(3(3

<3<3<3(3 @@@@@

@@@@ "3"3i3"3

(3(3(3(3(3(3(3 (3(3(3(3

@@@@ (a (a (a (a (a

13131313 (3(3(3(3

(3(3(3(3(3(3(3(3(3(3(3(3(3

id id id id id

@@@@ (3(3(3(3

(3(3(3(3(3(3(3(3(3(3(3(3(3

@@@@ @@@@@

id id id id (d (d (d (d

(3 (3 (3 (3 @ (3 (3 (3 (3 @ (3 (3 (3

13131313 @@@@@

@@@@ (3(3(3(3

(3(3(3(3 (3(3(3(3(3(3(3(3

@@@@ @@@@@

@@@@ (3(3(3(3

(3(3(3(3 (3(3(3(3(3(3(3

13131313 ^^^^^^^^^^^^^^

(3(3(3(3(3(3(3(3(3(3(3(3(3

(3(3(3(3 (3(3(3(3(3(3

@@@@ 131313 <3<3(3(3(3(3(3(3(3(3(3(3(3(3

id id id id id id id id id id id id id

(3(3(3(3 (3(3(3(3(3

tatatata 131313 ^^^^^^^^^^^^^^

(3(3(3(3(3(3(3(3(3(3(3(3(3

(3(3(3(3 (3(3(3(3

i.LON SmartSer

^/er

Copyright (c) Echelon Corporation 1999-2009. ALL

rights reserved.

Software provided herein may c

□ntain or be derive

d from portions of

materials provided to Echelon

under License by a

third party supplier.

NOTE: Use 'Logout' or Escape C

haracter to exit

Carver> ??|

Thursday, July 12, 12

ts stackable! Like devo hats!

/.LOW SmartServer

POWERED BY — ECHELON

ATP_SktPaulsGa/Channel 1/iLON App/AN_Omega: Configure

+
+

e M

E^ _

El ^
E^
Etf>
E^
E^
Ei^
E^
E^
E^
E^
E^
E<i^
Etf>
E^
E^

Navigate

General O Driver
Ep) AN Omega
E In] PL Omega

E $ I Nq PJgrwnrlf Tnrprfana fTr
E <T il ON NT (Tnl-^rn^h

E^g Rnut-^r (Internal)
±

ajc

- LQN IP

-:iMbU3

7.10
7.19

9700 gym
ATP Aboulevard
ATP Dusager
ATP SktPaulsGa
CoMeTas Demo
Gigantium
Gladsaxe 02
Gladsaxe testl
HL AUTO
Hedebo

Hedebo Camping
Hedebo u Smart
Li ghtM aster
MartinG--. :
Nv Skallerup
Retrogas 02

Name: ATP_SktPaulsGa/Channel 1/iLON App/AN_0 meg a

Description:

Summary

Format CSV -

Size |50 kB

=s —

Entries ™ 201

File |ATP_SktPaulsGa/Channel 1/iLON App/AN_Ome<

[X<]- ^ Output ^
Aggregation Time (Email)

[o |Seconds [T

History

Format CSV ▼
Size [lOO kB

Entries ™ 403

File |ATP_SktPaulsGa/Channel 1/iLON App/AN_Ome<

Thursday, July 12, 12

GIGANTIUM

Idraets -og KulturcentGr

Presentation

Storhal
Isarena
Is traning

Ice skating on private
Isarrangement for
companies / individuals
Sports hall
Foyer

Meeting Rooms
Outdoor

Stomal

7

GIGANTIUM presentation nyheder arrangementer anvendelse neferencer

Storhal

Great Hall is a heated limtraasbuehal,, with more than 6,000 square meters of DIN-
approved sport linoleum brand BoFlex and a further 3,000 square meters of concrete
floor. Great Hall is based on a flexible system of props, mobile telescopic grandstands and
other facilities that make the hall suitable for virtually all types of events.

Thursday, July 12, 12

Contents

Welcome to Hedebo Strandcamping

Calendar

Hedebo Strandcamping

Camp Information

Location Map

Cabin Rental

Camper Rental

Activities

Sights

Atmosphere Pictures

Directions

Hedebo Classic MC

Season Room Rates

Offers

Prices

Query

Links

i

Hedebo Strandcamping

Frederikshavnsvej 108

9,300 Saeby

Tel 98461449

Fax 99401313 Email the

site

□ pen: 30.03. - 09,09,

LON 10 ° 30 '54.7308 "
LAT 57 a 21 '20,2752 "

■ Short
Route

Directly by the child-friendly sandy beach with blue flag
Our place has something for you if you bring your boat, want to fish
like to swim, want to surf, want to sunbathe on the beach, loves
long walks in nature or perhaps just want to sit on the bench down
at havbakken and enjoy the view above sea level.

26-05-2012
Flea at Hedebo

Read more

More events

Sue by Svommebad

Discount Appointment:
Adults: DKK 30
Children: £ 16
Wellness: 45 kr

Thursday, July 12, 12

SMIerwp Klit

| HOLIDAY HOMES & PRICES | ACTIVITIES | WELLNESS | FOOD & DRINKS | TOURIST GUIDE | CONFERENCE | FAQ |

Booking

Offers

Brochures
Newsletter

Gift certificates

Activity summa

HOLIDAY HOMES & PRICES

I Prices 2D 12

► Lavprlskaiender 2012

► Worth knowing

► Have a REAL holiday...

Skallerup offers over 262 stylish year-end holiday cottages, divided into S
different types. You can always find a place to stay here that suits your
wishes and needs and can serve as the perfect setting for a delightful
holiday - right close to the beautiful nature and crashing North Sea.

Amoking is prohibited in all holiday accomodations and pets are not
permitted in the E4 and E2 apartments.

WHAT TO SE AND DO I

in North Jutland

Nordjylland

CONTACT US □

Phone: 0045 9924 B400
info@skallerup.dk

HOW TO FIND US □

Classic cottage A4

Number of people: 4

I Info

I Prices

Classic cottage A6

Number of people: 6 + 2

D Info
□ Prices

BOOK

Thursday, July 12, 12

So I can control the:
power, lights, hvac
ice skating rink, garage doors
water pressure and boilers

Of something like 36 businesses
all in one town?

Thursday, July 12, 12

Thursday, July 12, 12

conolite. Stoplights.

Escape character is '■*■]' .

User name?:

URMS : DAT/dat
2070

Diagnostics Acceptance Test
CaLtrans Version 2.1

DANGER !

DO NOT USE WHILE CONTROLLER 15
BEING USED FOR TRAFFIC CONTROL
OR SERIOUS DAMAGE, INJURY OR
DEATH MAY OCCUR ! ! !

Warning!

Shutting off controller while running
the flash memory test may corrupt file:
or other data on the flash drive

* DAT Main Menu ***
Processor
Front Panel
Field I/O
Async Ports
Sync Ports
Modem Tests
Uti lity Functions
Run Continuous
Configure Standard Tests

Thursday, July 12, 12

These are red light cameras

The

ou.

Escape character is ,A ] ' .

72 application Apr 03 2008 09:42:23
72 Serial Number: 5998
b:l, vers:Q3, rel:x06, build :881
M: 128M G 128M EPROM: 512k

ex capabi lities 003f
Camera firmware: 4.34
362 epld vers: 13

ANPR enabled for: USA New York & surrounding , 2262

Operating system: C EXECUTIVE 3.3
rom image checksum: 1408
application crc: le57
current config crc: eb0f
ference config crc: eb0f
Installed options: 00200010
... Basic VES with no security
... USA Licenceplate recognition

PIPS Technology AUTOPLATE (tm) license plate recognition

VES - (violation enforcement system)

■?? A M

ailable Commands are:
system
active
client

Thursday, July 12, 12

akTronics.

DM5 Software & Controllers

> DM5. Control Hardware

> Vanguard v4 Co ntrol
Software

x Professional
> Standard

TRANSPORTATION
BLOG

TRANSPORTATION

ISO 9001:2008 REGISTERED

QUALITY MANAGEMENT SYSTEM

- DaJctroncs -* Products & Savices -* Products -* Software & G&nrtrollHS -* DMG Software & GonrtiollMS -* Vangjarc

wmm 45 45

Vanguard Professional
Message Scheduler

vanguard Professional
Display Monitor

' TRAVEL TIME

Vanguard Professional
Content Studio

Vanguard® v4 Professional Software

Vanguard Professional enacts powerful control over large DMS networks from traffic
management centers. Professional includes all the monitoring, message creation, and

Thursday, July 12, 12

Thursday, July 12, 12

ow about some current

events?

Ruggedcom?
Other stuff thats fun?

Thursday, July 12, 12

N4-DLC

Passwords

Thursday, July 12, 12

N4-DLC

Thursday, July 12, 12

Thursday, July 12, 12

Satellite systems

UfOM TECH

Vi^H EF DATA M

CDD-564L

Demod 1

IP Routing Statistics

Ethorn&t I IP I Wj

IP Routing Statistics - Sentf Received - Automatically Updates Every 10 Seconds

Total IP Packets from Satellite
Total IP Packets from Ethernet
Total IGMP Packets Received [
IP Options Packets Received

IP Routing Statistics - Dropped - Automatically Updates Every 10 Seconds

TTL Expired - Dropped QH No ARP Entry - Dropped fT*T*l

Bac! I Idrr GhkSum - Cropped Bad Buffer Leng.tr - Cropped

No Route - Dropped EH Bad IP Version - Dropped

Thursday, July 12, 12

storage arrays

Thursday, July 12, 12

aserWash"

Car Wash Systems

AbortyR&cov&rv Options
Door Settings
Dryer Settings
Freeze Protection
Installed Options
Machine Dimensions
Machine Offsets
Timers

Water and Chemical

Thursday, July 12, 12

Massive Humidifiers

STEEM

Vapor- log ic4

STATUS

System Status

44.9%

Auto

TANK
STATUS

Soiling

Alarms
active alarms

> View Alarms

Messages
active messages

> View Messages

DIAGNOSTICS SETUP

Wed Jul 11 2012 22:26:31 GMT-0700 (PDT)

Dala stream is LIVE

View all humidifier settings below. Some settings can be changed here. Go to the Setup tab to change settings that
cannot be changed from this page,

TANK STATUS:

Run Mode

Auto

| CHANGE |

Input signal

4,5 VDC

Steam output

44,9%

Steam production

3 Ibs/hr

Duct HL switch

Closed

Tank temperature

2ia°F

Tank temp signal

L745 Ohms

DI low water switch

Water

Fill valve

Open

Drain valve

Closed

Airflow switch

Flow

Interlock switch

Closed

H20 until service

L163 lbs

© Copyright 2D ID DRI-5TEEM Corporation. All rights reserved. Vapor-logic is a registered trademark of DRI-STEEM Corporation.

Thursday, July 12, 12

Aztek SOOOS

aztekH

Slot A Status: Mode: Monitoring

Operation

merit

Alarm s
Logs

Call Detail Record
Lock Mode

NETWORKS

Logout

Provisioning
Configuration

m

Date/Time

Severity

Object Type

Object
ID

Location Category

Description

1970/02/02 ■
20:10:19

Minor

SWUPDATE_SERVICE

CTA n Slot Equipment

Dial Plan download
fault

19 70/01 AH -
00:00:19

Minor

RESOURCE_SERVICE

CTA A Slot Equipment

ACTS time fault

Refresh this page every 30 seconds.
| Clear the Failed Dial Plan Download alarm |

Thursday, July 12, 12

//****************************************************************
// You are free to copy the "Folder-Tree' 1 script as long as you
// keep this copyright notices

/ / Script found in: http s / /www. geocities. com/mar celino_mar tins/ folder tree . html
// Authors Marcelino Alves Martins { http s //www. nunar tins . coin)
// 1557—2001.

//****************************************************************

// Log of changes:
// 10 Aug 01

//

// 17 Feb

//

// 27 Jan 98

//

Support for Netscape 6

Fix initialization flashing problem with Netscape

Root folder starts open) support for USETEXTL1NKS;
make the ftien4 a js file

// Definition of class Folder
// **************************

Thursday, July 12, 12

Thursday, July 12, 12

|~o~

■ g 74.101.128.141 (Mark_Hotel_Wine.
■ fjS] Device Networks
- ^ N2 Network

- □ 1-FX07-01

^) Points

- □ 1-FX07-02

Niagara Network
^ Schedule Manager
^ Link Manager
E^J Point Groups

EcJ Global Point Extension Manager

Alarm Console
£^2 Point Histories
■ Administration
+ Q Files

El Custom Control
+ (0 AlarmService
- EmailService

1^1 EmailRecipient
^ OutgoingAccount
+ History Container View
f^l Point Extension Defaults
Egi BackupService
£ Users
(3 Time Sync
§ Platform
DIP Web Service

Serial Port Configuration
j^h Dialup Configuration

Name

Long Name

Type

Out

Network Point Type

Netwo

O Temp Champagne

T3

Numeric Point

76.0 °F {ok}

Analog Data Float

1

O Humidity Champagne

H3

Numeric Point

58,3 %RH {ok}

Analog Data Float

4

O Setpoint Temp Champagne

StpT3

Numeric Writable

44.0 °F -(overridden)- @ 8

Analog Data Float

17

O Diff Temp Champagne

DiffT3

Numeric Writable

3.0 i°F -(overridden)- @ 8

Analog Data Float

18

O Alarm Diff Champagne

ReferenceShiftT3Avg

Numeric Writable

15.0 A°F -(overridden)- @ 8

Analog Data Float

20

O Alarm Delay Champagne

DelayTimeAlT3vg

Numeric Writable

3600.0 s {ok} @def

Analog Data Float

21

O Cooling Champagne

SV3

Enum Point

Off {okf

Binary Data

L.

O Avg Temp Bar Right

AvgT4

Numeric Point

53.0 °F {ok}

Analog Data Float

O Temp Bar Right Left

T4A

Numeric Point

52.7 °F {ok}

Analog Data Float

O Temp Bar Right Right

T4B

Numeric Point

53.2 °F {ok}

Analog Data Float

O Setpoint Temp Bar Right

StpT4

Numeric Writable

44.0 °F {ok)- @ def

Analog Data Float

22

O DiffAlarmT3Avg

DiffAlarmT3Avg

Numeric Writable

2.0 °F {ok)- @ def

Analog Data Float

19

O Diff Temp Bar Right

DiffT4

Numeric Writable

3,0 A°F -(overridden)- @ 8

Analog Data Float

23

O Alarm Diff Bar Right

ReferenceShiftT4

Numeric Writable

10.0 i°F {ok} @ def

Analog Data Float

24

O DiffAlarmT4

DiffAlarmT4

Numeric Writable

2.0 °F {ok}- @ def

Analog Data Float

I

9 Alarm Delay Bar Right

AlarmDelayT4

Numsric Writsbls

3600.0 s {ok} @def

Analog Data Float

O Cooling Bar Right

SV4

Enum Point

Off {ok}

Binary Data

O Alarm Bar Right

Boolean Point

Normal {ok}

Binary Data

O Alarm

Alarm

Enum Point

Alarm {okj-

Binary Data

\

• OffsetT3

OffsetT3

Numeric Writable

0.0 °F {ok}- @ def

Analog Data Float

# OffsetT4A

OffsetT4A

Numeric Writable

0.0 °F {ok}- @ def

Analog Data Float

# OffsetT4B

OffsetT4B

Numeric Writable

0.0 °F {ok} @ def

Analog Data Float

15

• OffsetH3

OffsetH3

Numeric Writable

0.0 % {ok} @ def

Analog Data Float

16

O RemoteValueAIl

RemoteValueAIl

Numeric Writable

0.0 °F -{fault)- @ def

Analog Data Float

6

O RemoteValueAI2

RemoteValueAI2

Numeric Writable

0.0 °F {Fault)- @ def

Analog Data Float

7

O RemoteValueAI3

RemoteValueAI3

Numeric Writable

0.0 °F {Fault}-® def

Analog Data Float

8

Thursday, July 12, 12

Thursday, July 12, 12

Thursday, July 12, 12

/ION SmartServer

View - Data Points

t*)G«*f*l DfWtf

|B rtrtAtAlArfn5mrlih_2

|» ■ ,t<-,:. v -j vf'b

>: QitimJ£i

! ~:i:>; -"lUcr;,
b( ridugriELtuti
| ndhrEndUed
■JnahrTine

■j nri§w*tfiEn6fcted
!■..!,.-...:

. m

|B nrtAeUijtf 'tor
|> rt**Btfet?urirt
]B nwH.ampYnlue2
• ^: ^n.-.t-li-.r

B 2? Funk 3
- t^-3»-

■ & LfrS Hamrofh interface

ma*

*a:iui H ik

er the trending?

Of imhmfllt'Tirul' IJA**JLl|i[«/lljunLkcAjrr: - .. i£wa\

F-H L« ErifV: 2012-0*- 17 02:43: LB

1.5

G-jant-jrrv'OTiinnel L/Wrt-nfl'vgBnhirMcMferi/ntiSwUP

IHI.MU7.1M9

LSHvrjwkcii

G-i*nOjrT*/CK»anf>tl

L/*r*na.'.] .; >"C jrlcoi « n/nvoAttlgn no"

m.»ajo.am

17

(.. -v.vi' ,rr.':; - niir-rl

1/Arc nn.' 5 ?-->nl jt l;r At Vrvof .irrr il'lrrnc

133.163.37. L9.B2

SMTT.Uiint

G-jtmUjrTV'CKmnr*!

1 /* rtno ■' 9«*6 n bu m 1 c e A ft- n/ n vo De boo nee

193 LU 1.37 19 Vi

SWT_llmc. ice

Cfl»nt»jiWCh»nrH-l

L..Ar<r>in.^ y.-vl jt !< rA-r v/i-vtil J-i ■ jiV.Hur :

133.163.37. L9:B2

[wwm 4

G ssnr jT/C--snr«-l

l».lU,l7,l«r«2

Cfl«nt,jrtv'<; runnel

: .-Ar? ■i.i.i; y.vl jt I-: r A -c -/i-vtil J.T ^V.ihir 1

133.163.37. L9:fl2

[ awijiuii :

U* L6fl Entry: 20L24H-17 -B2HS:]7

T .

ASCII LharKtSI
string

ASCII (hinrtrr
Wring

CHUNG

Thursday, July 12, 12

Since scanning the
whole internet is

getting easier, we can
take measurements!

Thursday, July 12, 12

ow about some

Measurable

Results?

Thursday, July 12, 12

Thursday, July 12, 12

Original Blogpost: Jan 10

My blogpost: Jan 24 (560 cameras)
BBC Article: Feb 7
A retest: April 3 ( 464 cameras)
US Media picks it up: mid April
Second Retest: May 24 ( 465 cameras)
Third Retest: July 12 (490 cameras)

Thursday, July 12, 12

Thursday, July 12, 12

anna stalk me

atenlabs.com/blog

@viss

Thursday, July 12, 12