| mitmdetection.services.mozilla.com/ | 54.230.111.70 | | 0 B |
URL mitmdetection.services.mozilla.com/ IP54.230.111.70:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: mitmdetection.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/xml
date: Wed, 08 May 2024 10:39:06 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5X3NPxNcp6hqSk-2TF3BVLMfy04UOoBYmE7HWbeQtW6DacGFXugHhg==
X-Firefox-Spdy: h2
|
|
| 65.20.226.215/ | 65.20.226.215 | | 272 B |
IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeXML 1.0 document, ASCII text Hashbf09f1ff72ee7a91714816f78a2fd976 dc5404c9571e34c3f637a4ca3082212d4fd4d89a a0e089d1aca81cbe85313ac63b02086d5067eb0424bfa57c56b037314ccbd18a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "324-110-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:06 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: no-cache
Expires: 0
Content-Type: text/html
Content-Length: 272
|
|
| 65.20.226.215/webpages/index.html | 65.20.226.215 | | 3.2 kB |
URL 65.20.226.215/webpages/index.html IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeHTML document, ASCII text Hash9d90ce610dce847050ca21fa22c59351 056cd1919cae1b611fff7e11bc699e043689774d 80985104070c8a47e442cd95611f02cb5f065d1ef99b6cc337509b295e536fc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/index.html HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "378-c97-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:06 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: no-cache
Expires: 0
Content-Type: text/html
Content-Length: 3223
|
|
| 65.20.226.215/webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c | 65.20.226.215 | | 1.7 kB |
URL 65.20.226.215/webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (1712), with no line terminators Hash2266db0e4804abc5551b10758d96d9ab 00aa0d250bcc5bb3962b8b597107c0eb14a80208 48b73d75d4d603b31f1c5e538603615adaf8143019776a7ec00248026bb62946
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "370-6b0-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 1712
|
|
| 65.20.226.215/webpages/js/libs/base64.js?t=0865cb8c | 65.20.226.215 | | 1.5 kB |
URL 65.20.226.215/webpages/js/libs/base64.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (1511), with no line terminators Hash4f993937854b67c2c8ce9819786133af 32b493527dc9a3af145de5420371d5559fc7a919 e6a53e5de818d2bc3c496d023e80f6a03ba9cff3324bbd07f4a11e1aa9bade62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/base64.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "483-5e7-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 1511
|
|
| 65.20.226.215/webpages/js/libs/encrypt.js?t=0865cb8c | 65.20.226.215 | | 19 kB |
URL 65.20.226.215/webpages/js/libs/encrypt.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (18681), with no line terminators Hash725ad30a9b43310ed26f3993ce020b45 3e8015359679df906e9c5cbf6f80b338a8564193 14638370ba54a7005d12d5ff62c3cfb4914b7e910c85f1ad646698185f252341
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/encrypt.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "481-48f9-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 18681
|
|
| 65.20.226.215/webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c | 65.20.226.215 | | 3.1 kB |
URL 65.20.226.215/webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (3124), with no line terminators Hash7c7d50597056d7447cbd2e9d674a4923 58a7c5b7a8529cfb4a940f267523711c6c31bf72 f39c5f2fab5da8317e550348f76739099c372f9c38cbc914bd21209b67dc5d0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "484-c34-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 3124
|
|
| 65.20.226.215/webpages/js/libs/jquery.min.js?t=0865cb8c | 65.20.226.215 | | 93 kB |
URL 65.20.226.215/webpages/js/libs/jquery.min.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (32099) Hash00ff34b67a328f219fa3ae2423d4f252 19715ffee604b54e95a0e9db76f6de2b5125c29e dbe2f39d679680bec02757226881b9ac53fb18a7a6cf397e2bbe6d4724c1c8e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/jquery.min.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "482-16b62-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 93026
|
|
| 65.20.226.215/webpages/themes/default/css/base.css?t=0865cb8c | 65.20.226.215 | 200 OK | 252 kB |
URL GET HTTP/1.165.20.226.215/webpages/themes/default/css/base.css?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size252 kB (251825 bytes) Hashfffb66733c414cd989f99b74b00cb7d9 cbf5ed2c9337dc8c5e79287e4cd4c308cc9b72a5 af5b0650eee270d99e3ddd13a3c490a3574cc8ca5926de514d8334608dd3c753
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/css/base.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "375-3d7b1-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:08 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 251825
|
|
| 65.20.226.215/webpages/js/libs/cryptoJS.min.js?t=0865cb8c | 65.20.226.215 | | 37 kB |
URL 65.20.226.215/webpages/js/libs/cryptoJS.min.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (37061), with no line terminators Hash242f7a6460d88d62952bc73f3fdee691 679c50b118801a48f13ab4a0e06c00370d48d719 fe07d716cf3b06012d630b58916b1863d3d2359805d1a2309c8bd199a10a4eb8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/cryptoJS.min.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "489-90c5-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:09 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 37061
|
|
| 65.20.226.215/webpages/js/app/url.js?t=0865cb8c | 65.20.226.215 | | 323 B |
URL 65.20.226.215/webpages/js/app/url.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (323), with no line terminators Hash6e7925ced5dc121458d9a719972e5ea9 6de4445680d6cb123fef1bc9add4f5de78c48d3a 30c12d0f3035f7a9d42cfc43f7adb6e0ecd7754906965a8181bfc19c1fa45187
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/app/url.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "48a-143-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:09 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 323
|
|
| 65.20.226.215/webpages/js/su/language.js?t=0865cb8c | 65.20.226.215 | | 1.8 kB |
URL 65.20.226.215/webpages/js/su/language.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeHTML document, ASCII text, with very long lines (1827), with no line terminators Hash5a217da16545ded8c6b71c82ef502dc7 561bc4de20e900f62a8e6eddfed6214f9c34b670 f8df1395bc36bd17c83b60b6a1f75d678077619091a21bde0efdcad89fec1587
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/language.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47b-723-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:09 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 1827
|
|
| 65.20.226.215/webpages/js/su/char.js?t=0865cb8c | 65.20.226.215 | | 3.8 kB |
URL 65.20.226.215/webpages/js/su/char.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (3828), with no line terminators Hash492a8b26dc4ceee50242d80e4949efff cb78326c06ccc0ab873e0365d90b3a93abd7ff66 5249880594a0525556b122a6e1eed9a986040d8a901b8763d372d13c28c7d2a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/char.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47e-ef4-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:09 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 3828
|
|
| 65.20.226.215/ | 65.20.226.215 | | 4.0 kB |
IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (4003), with no line terminators Hash206beb113b80727837d467d60b7ecbb3 f59be1ff88b8dd12c46a4c5e4bebf8c3104a1a72 4acb4010c97c054a15564fc5a8dde4ecc0f3a4525d9f2ec3bdf179527fe5110e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Location: https://65.20.226.215:443/
Connection: close
|
|
| 65.20.226.215/webpages/js/su/frame.js?t=0865cb8c | 65.20.226.215 | | 643 kB |
URL 65.20.226.215/webpages/js/su/frame.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeUnicode text, UTF-8 text, with very long lines (65516), with no line terminators Size643 kB (643137 bytes) Hashc7dc1a4b081596950bea27ac0a35c5f3 335cc06a66d8d5aba67ea99fd9a3fdd74e2d5735 b9065ce4bac0b4cd70641ff2648e01c564f3e1745106e3638d1a4813b2ba8c47
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/frame.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47c-9d041-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:10 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 643137
|
|
| 65.20.226.215/cgi-bin/luci/;stok=/locale?form=lang&operation=read | 65.20.226.215 | | 144 kB |
URL 65.20.226.215/cgi-bin/luci/;stok=/locale?form=lang&operation=read IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeUnicode text, UTF-8 text, with very long lines (65514), with no line terminators Size144 kB (144195 bytes) Hashae280fd1dbc026847cc084b54e2e9dd0 be4490c0080c5ddd41a71ed4bdb5fd11e1d50aca c4570ae08f64cffdb8c72a558b3677cb6042dddba3e902193a316dd345ee5308
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cgi-bin/luci/;stok=/locale?form=lang&operation=read HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Type: application/json
Cache-Control: no-cache
Expires: 0
|
|
| 65.20.226.215/webpages/locale/en_US/help.js?_=1715164750333 | 65.20.226.215 | | 0 B |
URL 65.20.226.215/webpages/locale/en_US/help.js?_=1715164750333 IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/locale/en_US/help.js?_=1715164750333 HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "4dc-0-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:12 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 0
|
|
| 65.20.226.215/webpages/locale/en_US/lan.css?t=0865cb8c | 65.20.226.215 | | 310 B |
URL 65.20.226.215/webpages/locale/en_US/lan.css?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with CRLF line terminators Hash07562aa0bc9bcb2a235795a97df793f9 ff56c70c1c83f30d54375e873a85f169780a99ed bdd3ec8634d113797b19ec9139cb78e3097cb12d772e5703ab207da77543800d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/locale/en_US/lan.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "4db-136-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:12 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 310
|
|
| 65.20.226.215/webpages/locale/language.js?_=1715164750334 | 65.20.226.215 | | 2.8 kB |
URL 65.20.226.215/webpages/locale/language.js?_=1715164750334 IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeUnicode text, UTF-8 text, with very long lines (2725), with no line terminators Hasheca27241939a1baffdad7a2373a13b97 74fa565b4dbfb3d4eef61e394191cffdb57e4c53 fd3fb16d1784770436b130cf471f426a4f65a3c0faaef585cc6295e0632e3c6c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/locale/language.js?_=1715164750334 HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "49e-af8-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:12 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 2808
|
|
| 65.20.226.215/webpages/index.html?t=0865cb8c | 65.20.226.215 | | 3.2 kB |
URL 65.20.226.215/webpages/index.html?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeHTML document, ASCII text Hash9d90ce610dce847050ca21fa22c59351 056cd1919cae1b611fff7e11bc699e043689774d 80985104070c8a47e442cd95611f02cb5f065d1ef99b6cc337509b295e536fc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/index.html?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "378-c97-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:13 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: no-cache
Expires: 0
Content-Type: text/html
Content-Length: 3223
|
|
| 65.20.226.215/webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c | 65.20.226.215 | | 1.7 kB |
URL 65.20.226.215/webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (1712), with no line terminators Hash2266db0e4804abc5551b10758d96d9ab 00aa0d250bcc5bb3962b8b597107c0eb14a80208 48b73d75d4d603b31f1c5e538603615adaf8143019776a7ec00248026bb62946
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/css/perfect-scrollbar.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "370-6b0-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:14 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 1712
|
|
| 65.20.226.215/webpages/js/libs/base64.js?t=0865cb8c | 65.20.226.215 | | 1.5 kB |
URL 65.20.226.215/webpages/js/libs/base64.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (1511), with no line terminators Hash4f993937854b67c2c8ce9819786133af 32b493527dc9a3af145de5420371d5559fc7a919 e6a53e5de818d2bc3c496d023e80f6a03ba9cff3324bbd07f4a11e1aa9bade62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/base64.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "483-5e7-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:14 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 1511
|
|
| 65.20.226.215/webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c | 65.20.226.215 | | 3.1 kB |
URL 65.20.226.215/webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (3124), with no line terminators Hash7c7d50597056d7447cbd2e9d674a4923 58a7c5b7a8529cfb4a940f267523711c6c31bf72 f39c5f2fab5da8317e550348f76739099c372f9c38cbc914bd21209b67dc5d0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/jquery.backgroundSize.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "484-c34-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:14 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 3124
|
|
| 65.20.226.215/webpages/js/libs/cryptoJS.min.js?t=0865cb8c | 65.20.226.215 | | 37 kB |
URL 65.20.226.215/webpages/js/libs/cryptoJS.min.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (37061), with no line terminators Hash242f7a6460d88d62952bc73f3fdee691 679c50b118801a48f13ab4a0e06c00370d48d719 fe07d716cf3b06012d630b58916b1863d3d2359805d1a2309c8bd199a10a4eb8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/cryptoJS.min.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "489-90c5-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:14 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 37061
|
|
| 65.20.226.215/webpages/js/app/url.js?t=0865cb8c | 65.20.226.215 | | 323 B |
URL 65.20.226.215/webpages/js/app/url.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (323), with no line terminators Hash6e7925ced5dc121458d9a719972e5ea9 6de4445680d6cb123fef1bc9add4f5de78c48d3a 30c12d0f3035f7a9d42cfc43f7adb6e0ecd7754906965a8181bfc19c1fa45187
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/app/url.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "48a-143-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:15 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 323
|
|
| 65.20.226.215/webpages/js/su/frame.js?t=0865cb8c | 65.20.226.215 | | 643 kB |
URL 65.20.226.215/webpages/js/su/frame.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeUnicode text, UTF-8 text, with very long lines (65516), with no line terminators Size643 kB (643137 bytes) Hashc7dc1a4b081596950bea27ac0a35c5f3 335cc06a66d8d5aba67ea99fd9a3fdd74e2d5735 b9065ce4bac0b4cd70641ff2648e01c564f3e1745106e3638d1a4813b2ba8c47
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/frame.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47c-9d041-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:15 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 643137
|
|
| 65.20.226.215/webpages/js/su/char.js?t=0865cb8c | 65.20.226.215 | | 3.8 kB |
URL 65.20.226.215/webpages/js/su/char.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (3828), with no line terminators Hash492a8b26dc4ceee50242d80e4949efff cb78326c06ccc0ab873e0365d90b3a93abd7ff66 5249880594a0525556b122a6e1eed9a986040d8a901b8763d372d13c28c7d2a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/char.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47e-ef4-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:15 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 3828
|
|
| 65.20.226.215/webpages/js/su/language.js?t=0865cb8c | 65.20.226.215 | | 1.8 kB |
URL 65.20.226.215/webpages/js/su/language.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeHTML document, ASCII text, with very long lines (1827), with no line terminators Hash5a217da16545ded8c6b71c82ef502dc7 561bc4de20e900f62a8e6eddfed6214f9c34b670 f8df1395bc36bd17c83b60b6a1f75d678077619091a21bde0efdcad89fec1587
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/su/language.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "47b-723-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:15 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 1827
|
|
| 65.20.226.215/webpages/js/libs/tpEncrypt.js?t=0865cb8c | 65.20.226.215 | | 4.0 kB |
URL 65.20.226.215/webpages/js/libs/tpEncrypt.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeASCII text, with very long lines (4003), with no line terminators Hash206beb113b80727837d467d60b7ecbb3 f59be1ff88b8dd12c46a4c5e4bebf8c3104a1a72 4acb4010c97c054a15564fc5a8dde4ecc0f3a4525d9f2ec3bdf179527fe5110e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/tpEncrypt.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "487-fa3-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:16 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 4003
|
|
| 65.20.226.215/webpages/error.html?t=0865cb8c | 65.20.226.215 | 200 OK | 2.9 kB |
URL User Request GET HTTP/1.165.20.226.215/webpages/error.html?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash770b1047f6700e42a015105a4ce4ce03 398051a81685fe7b3233b19097c41cc898b1e943 cf6fe47220b38f6383fadc58c5121d5148b64a83083865651aebb1523e3e067c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/error.html?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "376-b6a-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:16 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/html
Content-Length: 2922
|
|
| 65.20.226.215/webpages/themes/default/css/base.css?t=0865cb8c | 65.20.226.215 | 200 OK | 250 kB |
URL GET HTTP/1.165.20.226.215/webpages/themes/default/css/base.css?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size250 kB (250052 bytes) Hash22438e303a4f93fa9c35925efbdc02a7 dceb6ed8e98d03d932d929f83a557ebc517b638d 1a12b530a71ec56a9819930da48fbc91fcfc97b070a1e0b151bd196b90e6e60a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/css/base.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "375-3d7b1-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:13 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 251825
|
|
| 65.20.226.215/webpages/themes/default/css/total.css?t=0865cb8c | 65.20.226.215 | 200 OK | 108 kB |
URL GET HTTP/1.165.20.226.215/webpages/themes/default/css/total.css?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size108 kB (108265 bytes) Hashc5f3db173cf40a51a9439c4887ce4259 4791d113125c19d63089e90da28cea4df5cd2fc3 a09ebbd2cc8161acf6bde55e62a2cc31b0c69b3162b301afda0987670dd73f96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/css/total.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/error.html?t=0865cb8c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "371-1a6e9-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:17 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 108265
|
|
| 65.20.226.215/webpages/js/libs/jquery.min.js?t=0865cb8c | 65.20.226.215 | | 342 kB |
URL 65.20.226.215/webpages/js/libs/jquery.min.js?t=0865cb8c IP65.20.226.215:0 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
File typeJavaScript source, ASCII text, with very long lines (32099) Size342 kB (341937 bytes) Hash35d31fbf9baf3c871a24431f9f490811 be43459ee1e3ccb025337de3d98c3e5454978150 41c6617bb62e4e9868a20f73658ab83b0c859feaababee0282e53635f77ae88e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/js/libs/jquery.min.js?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/index.html?t=0865cb8c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "482-16b62-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:14 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/javascript
Content-Length: 93026
|
|
| 65.20.226.215/webpages/favicon.ico?t=0865cb8c | 65.20.226.215 | 200 OK | 8.0 kB |
URL GET HTTP/1.165.20.226.215/webpages/favicon.ico?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
Hash952622d053b89d528848bc16d58bcc84 0d96740a05d950bfcfaaeafcbee474af7052dc25 94111d7d462f0c0735bce1c5e145ec672d20ca82c3ba578460fa0574338d76c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/favicon.ico?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/error.html?t=0865cb8c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "37f-1f5c-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:18 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: application/octet-stream
Content-Length: 8028
|
|
| 65.20.226.215/webpages/themes/default/img/spriteImages/png/sprite.total.png?t=0865cb8c | 65.20.226.215 | 200 OK | 100 kB |
URL GET HTTP/1.165.20.226.215/webpages/themes/default/img/spriteImages/png/sprite.total.png?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typePNG image data, 932 x 925, 8-bit colormap, non-interlaced Hash8c70636a3bdc83d7b4ab1aaff02cf6f5 e97783183c4c57f5dd27c82eab125f9050ab066a 0a0cd439ddf877edc4f271063eb7ee53847cc7b81e78d75293b0cd4e97d125ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/default/img/spriteImages/png/sprite.total.png?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/themes/default/css/base.css?t=0865cb8c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "353-18626-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:18 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: image/png
Content-Length: 99878
|
|
| 65.20.226.215/webpages/themes/widget.css?t=0865cb8c | 65.20.226.215 | 200 OK | 12 kB |
URL GET HTTP/1.165.20.226.215/webpages/themes/widget.css?t=0865cb8c IP65.20.226.215:443 ASN#203214 Hulum Almustakbal Company for Communication Engineering and Services Ltd
Requested byhttps://65.20.226.215/webpages/error.html?t=0865cb8c CertificateIssuer Subjecttplinkwifi.net Fingerprint91:40:05:B0:01:35:22:04:CD:F4:2E:04:0B:7E:C3:71:1E:E2:81:E7 ValidityFri, 01 Jan 2010 00:00:00 GMT - Tue, 31 Dec 2030 00:00:00 GMT
File typeASCII text, with very long lines (12484), with no line terminators Hash8da006c15a59bdc07c582a004b92b01a bbbf342902bfec43b5ada828c8c25d25bac7372b a4950e4fe71ec7b895d18826791c3b2679c7d37210f4de0c9c9a756e79e00381
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webpages/themes/widget.css?t=0865cb8c HTTP/1.1
Host: 65.20.226.215
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://65.20.226.215/webpages/error.html?t=0865cb8c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
ETag: "327-30c4-607ea5e6"
Last-Modified: Tue, 20 Apr 2021 09:59:02 GMT
Date: Wed, 08 May 2024 10:39:17 GMT
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors 'none'
Content-Type: text/css
Content-Length: 12484
|
|