| | 70.60.35.204 | 200 OK | 26 kB |
URL User Request GET HTTP/1.1IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 text, with very long lines (23833), with CRLF line terminators Hashc7fa0f4cbc6baa8380e412351d55aa88 75fc8f60cb25a0af8eb650efa114d19bcaad8ab9 de5b2324e8027d7f5e24b3f19393ec3db7d5fa2fb217cde152438c6f24d30e21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:55 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6483"
CONTENT-LENGTH: 25731
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| | 70.60.35.204 | 200 OK | 26 kB |
URL User Request GET HTTP/1.1IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 text, with very long lines (23833), with CRLF line terminators Hashc7fa0f4cbc6baa8380e412351d55aa88 75fc8f60cb25a0af8eb650efa114d19bcaad8ab9 de5b2324e8027d7f5e24b3f19393ec3db7d5fa2fb217cde152438c6f24d30e21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6483"
CONTENT-LENGTH: 25731
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsCore/aes.js | 70.60.35.204 | 200 OK | 14 kB |
URL GET HTTP/1.170.60.35.204/jsCore/aes.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (13633), with no line terminators Hash99e69df704e8b0718b8c6fc7fc60d6ba 62ab8b0d8243aec79a66062aea3d36f98e19cbaa 4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/aes.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/rsa.js | 70.60.35.204 | 200 OK | 12 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rsa.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (11802), with no line terminators Hasheaae5edb9cd65b9f3436248baebe326a b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba 0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rsa.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/md5.js | 70.60.35.204 | 200 OK | 4.3 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/md5.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (4302), with no line terminators Hash60507d416334913c0aa439206a56b809 93d7d042fe9ce7e19c4f0e9bac5327d3ad82adce b2c98d52873337d8ec20f30582e1af4125fd612e396e6821d2dd3e848f48169d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/md5.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:10ce"
CONTENT-LENGTH: 4302
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/appAbility.js | 70.60.35.204 | 200 OK | 16 kB |
URL GET HTTP/1.170.60.35.204/js/appAbility.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (16288), with no line terminators Hash03ed3c91cd7179406a7e37e05f476d5b bbac6206f73213869d9ed3aaa0f0e3ad1cf55778 2f619a2b9139e42a04c2d642c07313c961e6b6ad1fe6daec9aa255cb51b4bd65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/appAbility.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3fa0"
CONTENT-LENGTH: 16288
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/m1.2.js | 70.60.35.204 | 200 OK | 62 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/m1.2.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32155) Hashf6e9f50e585afd4893de1601be17290c 0273603651305e4e65c8e1c5bf57713cfae24cb8 4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/common.js | 70.60.35.204 | 200 OK | 10 kB |
URL GET HTTP/1.170.60.35.204/jsCore/common.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (10177), with no line terminators Hashd573089eff82e144b909cf9273cd6f0e 59582544a931c68f1fa0b9def00bf9557f7d4795 724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/common.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/more.js | 70.60.35.204 | 200 OK | 27 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/more.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (27050), with no line terminators Hash9c52ac022747a849806bb1c37c3d6bcc 589e960fb22b9f39aa3090a6299b40f075dd0f38 dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/sea.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/lib/sea.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/sea.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/loginEx.js?version=82908 | 70.60.35.204 | 200 OK | 5.5 kB |
URL GET HTTP/1.170.60.35.204/js/loginEx.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (5453), with no line terminators Hashcd1c893afccb9a9fc087a0fb05da06a3 a7d06014c88c877054c26d7dbbf01bbae9b4621c 8add73e3c2ec97625c58d2a3d35f52484202b751cfd452b064f56d9492698440
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/loginEx.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:154d"
CONTENT-LENGTH: 5453
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/system.js?version=82908 | 70.60.35.204 | 200 OK | 1.5 kB |
URL GET HTTP/1.170.60.35.204/js/system.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (1484), with no line terminators Hashfd88c0b55bb19ccf78175730eb48b55f 11540332dfebb40d3db0426ca17cb16e9ffbeef2 662543bb51b9400ba5f6c690e18884ee3a3bd40579c80fe287a50d37dffa1645
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/system.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:5cc"
CONTENT-LENGTH: 1484
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/pluginVersion.js?version=82908 | 70.60.35.204 | 200 OK | 318 B |
URL GET HTTP/1.170.60.35.204/pluginVersion.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with CRLF line terminators Hashe919197f502ac06002d41972fbb34368 2002d76953a4664ddd4572d2184b575c2a703a3f 73bd0117a7a86ddafefa93f825731df37130588a576723cd0f5650c6f0351ac0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pluginVersion.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:13e"
CONTENT-LENGTH: 318
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/webVersion.js | 70.60.35.204 | 200 OK | 38 B |
URL GET HTTP/1.170.60.35.204/webVersion.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with no line terminators Hash628e30172793b9bdaa3e0765af18baaa 15b2bebb78510bd4b2e63472651b9c5102e070d1 aa90fc876209cf8b2c980b96b54dae517cd0a073c9d8d91ec829d38dce054104
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webVersion.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:26"
CONTENT-LENGTH: 38
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/rpcCore.js | 70.60.35.204 | 200 OK | 96 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rpcCore.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (32113) Hash3e8ffef27fd0400e431f9a4a2347d748 fc8285b3ac73e7332165f77a1ef66f3dc4902d50 e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rpcCore.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/olp.js?version=82908 | 70.60.35.204 | 200 OK | 3.1 kB |
URL GET HTTP/1.170.60.35.204/olp.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (3125), with no line terminators Hash624c2690344db5a1d4004e4ccc7b2279 e6da6fb00a6abf50446f7f99dc1d3a98ddd5da3c dc1b94da6030e63a5b2cbaf841545d6364a922582c150a058c4dedb0d642cd86
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /olp.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:c35"
CONTENT-LENGTH: 3125
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/cap.js?version=82908 | 70.60.35.204 | 200 OK | 203 B |
URL GET HTTP/1.170.60.35.204/cap.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hash6e17fb5dc2ace8f321e6710e45b0b0de 0263ffd7dc3d405bab40c56694c22c4342929f06 c67ffb8a9e508f2f5a92e0641fc0cb401d776632610c484dce12e2f00cba0042
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cap.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONTENT-LENGTH: 203
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8
|
|
| 70.60.35.204/Component/level.js?version=82908 | 70.60.35.204 | 200 OK | 918 B |
URL GET HTTP/1.170.60.35.204/Component/level.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (918), with no line terminators Hashcfc552d083b28ccbd72c7ddb121db96c a624e129052ddb295c9a6bf7a878bc71de752cf6 8120d62701d9043c125c050a659c1edaa19369f8937be40b9bd7913ecff51a1d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Component/level.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:396"
CONTENT-LENGTH: 918
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/findPwd.js?version=82908 | 70.60.35.204 | 200 OK | 10 kB |
URL GET HTTP/1.170.60.35.204/js/findPwd.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (10097), with no line terminators Hash4d2ecf6cbef756bf05d956cacbb287fa 44b50961dcdeebcd47ea993bd530a6b89be4cdde 07af0fb753640049d3158c15ac4e196d9752d5fffc3fa1fd9f8103a3fa1c71eb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/findPwd.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2771"
CONTENT-LENGTH: 10097
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/pluginAdaptor.js?version=82908 | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/js/pluginAdaptor.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/pluginAdaptor.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/deviceInitial.js?version=82908 | 70.60.35.204 | 200 OK | 5.3 kB |
URL GET HTTP/1.170.60.35.204/js/deviceInitial.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (5298), with no line terminators Hasha12de5b25c2cf2b91573f2719db068a1 4354a90c083df92e942f077a9e5f59789f3a21a6 54ace0ed0d16bbf8bc74688671ec43db9504f4dc1c009ce22c8444b3256d7f54
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/deviceInitial.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14b2"
CONTENT-LENGTH: 5298
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/eventScript.js?version=82908 | 70.60.35.204 | 200 OK | 5.9 kB |
URL GET HTTP/1.170.60.35.204/js/eventScript.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (5905), with no line terminators Hash83a21976b9a7eda3e73a84dc191dfef6 4d475ee9a683d0c4b9a5c7d8eafb9e0a72b21099 acfc868aa9a1a41a71e60d859e5b80b3db86206f7b5dd3f376b988a04ea05dc4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/eventScript.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1711"
CONTENT-LENGTH: 5905
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/widget/css/ui.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/ui.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/publicFunc.js?version=82908 | 70.60.35.204 | 200 OK | 88 kB |
URL GET HTTP/1.170.60.35.204/js/publicFunc.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32235) Hashc50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/widget/css/skin.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/css/oem.css | 70.60.35.204 | 404 Not Found | 48 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/index.js?version=82908 | 70.60.35.204 | 200 OK | 37 kB |
URL GET HTTP/1.170.60.35.204/js/index.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (32011) Hashce4718a81b31b3f86eb0554e33e56c9f d022e7cdf2db547f03414bf29a71419f665b148f 9953ea67e7b66df64f272918f795b913ac58e2cc976900c5d9b3c2358f0f852c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/index.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:911d"
CONTENT-LENGTH: 37149
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/jquery.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/lib/jquery.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/jquery.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.core.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.core.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.widget.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.widget.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/dui.fisheye.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/dui.fisheye.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/lib/base64.js | 70.60.35.204 | 200 OK | 1.5 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/base64.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (1466), with no line terminators Hash512bb7f354e5bd222c2ffbc3f9d601b9 c386932682ec7abc2726fed93bd72b552c6c4a2f 3b3cf5585ebda2f6e7e6bd9ace18ca949f5d9320175dca73c46834c91f6d56d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/base64.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:58 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:5ba"
CONTENT-LENGTH: 1466
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/sea.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/lib/sea.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/sea.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/current_config/WebCapConfig | 70.60.35.204 | 200 OK | 808 B |
URL GET HTTP/1.170.60.35.204/current_config/WebCapConfig IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Hash4c406857cc63fd22e598816624fdfb2c 405b40872a97f068f9927bad21d9e883e2c88459 7f4e743e70c28716bc9c941d13bf7eba54c23180be27a97b73339eb83a1950e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/WebCapConfig HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:58 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:328"
CONTENT-LENGTH: 808
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/current_config/preLanguage?1714598879184 | 70.60.35.204 | 200 OK | 26 B |
URL GET HTTP/1.170.60.35.204/current_config/preLanguage?1714598879184 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hash662021470c60975c899f5fb14a073815 d511585b2f18e5c7d9d35e17b54abd0da6bb68f5 d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/preLanguage?1714598879184 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:59 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:59 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/custom_lang/English.txt | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/custom_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:01 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:02 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/css/reset.css | 70.60.35.204 | 200 OK | 1.2 kB |
URL GET HTTP/1.170.60.35.204/css/reset.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash0a54b62f33d4f81c78bb13794aafdbe5 c87391a44c4937f8be066a565114ca33ae95a6bd 884cd5c4ddfbf0f86e7f0fc2c7a0daf7278f5e8ed0a96863db9471ebb3303b0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/reset.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4bf"
CONTENT-LENGTH: 1215
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/fn.css | 70.60.35.204 | 200 OK | 10 kB |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash8cb5379d291ce2c02bd22b9fc24ed9a8 dd342d923758dc38d5dcc2bd47beb70f090e84ae 26ca0b2d7557b1f089cab2d58cddf2c76650d9b701c8d147c71ee199c065c7c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/fn.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2738"
CONTENT-LENGTH: 10040
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/index.css | 70.60.35.204 | 200 OK | 5.0 kB |
URL GET HTTP/1.170.60.35.204/css/index.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash4d84b9bb283b13d5c4d839885bd8d143 20d2d644e1ab67f716e7ace7210844a2388530ea 3bb530cc489533993ff961a8b16b609f3034934886ee0e2439ed3440181a6d22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/index.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1387"
CONTENT-LENGTH: 4999
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/skin.css | 70.60.35.204 | 200 OK | 17 kB |
URL GET HTTP/1.170.60.35.204/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashc42b0184012e18a9cc65911f354512b5 fd5935b5bc6f69d4353a3f0855e400488b77ef84 23cf274abcbb4b7be70c9f113cabaa817e5e73de0641f1eb22c2f74282322500
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4257"
CONTENT-LENGTH: 16983
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/playbackindex.css | 70.60.35.204 | 200 OK | 26 kB |
URL GET HTTP/1.170.60.35.204/css/playbackindex.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash1ceb357b90e1ddae0fef81718f42dd28 c2dbe87a85942d8a3b029d43c3d451809ebc9c82 57d4ed8ad2e75c41afb2054045048059d492e4fe2d97df7b043430a30cc165c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/playbackindex.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:658c"
CONTENT-LENGTH: 25996
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/ui.css | 70.60.35.204 | 200 OK | 42 kB |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashb0b4d1abd3e2d04174fdd05add6ea3bd b464ce450253ab64aea5393293744be3c4dc21e3 eb01e25a1ad6a2bb7284020ba1dbccca4d0ea642ff9c38e6b575f569ee02e160
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a597"
CONTENT-LENGTH: 42391
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/oem.css | 70.60.35.204 | 404 Not Found | 48 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/current_config/preLanguage?1714598883469 | 70.60.35.204 | 200 OK | 26 B |
URL GET HTTP/1.170.60.35.204/current_config/preLanguage?1714598883469 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hash662021470c60975c899f5fb14a073815 d511585b2f18e5c7d9d35e17b54abd0da6bb68f5 d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/preLanguage?1714598883469 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/custom_lang/English.txt | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/custom_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:05 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/js/pluginAdaptor.js?version=82908 | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/js/pluginAdaptor.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/pluginAdaptor.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/css/ui.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/ui.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/css/oem.css | 70.60.35.204 | 404 Not Found | 48 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/css/skin.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/OutsideCmd | 70.60.35.204 | 200 OK | 602 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hashe698d2649645f177d4086c501223b7e3 bd498d6979cb4f37c787c06a334c61091ff7289f ccc1bbac1574f47e911501782b8c0b8bfba3678543326aec082a6fc9707d4c66
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /OutsideCmd HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 69
Origin: http://70.60.35.204
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 602
|
|
| 70.60.35.204/image/bg.png?version=2.210 | 70.60.35.204 | 200 OK | 107 B |
URL GET HTTP/1.170.60.35.204/image/bg.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 1 x 170, 8-bit grayscale, non-interlaced Hash4ac9ebf2e60abab71df8aa318c01f146 466ae1a7130103fea8f2e70f2699d3df3956918a c46ce5c0beb386d2fe600cf278c7e74868f32b6dbe45b7977d37ceae365b2cb8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/bg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6b"
CONTENT-LENGTH: 107
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/lgbg.png?version=2.210 | 70.60.35.204 | 200 OK | 3.9 kB |
URL GET HTTP/1.170.60.35.204/image/lgbg.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 483 x 317, 8-bit colormap, non-interlaced Hashf27158a4c7033bd6de690c4a2bac3ff0 a3fb465118ece487970a3b375e8fb1f2ba3a1a1c 44af33f747fc456e0a73d60b3384b1d38a6946d6ed62afd24278ead8c9f0c603
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/lgbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f26"
CONTENT-LENGTH: 3878
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/loginlogo.jpg?version=2.210 | 70.60.35.204 | 200 OK | 4.4 kB |
URL GET HTTP/1.170.60.35.204/image/loginlogo.jpg?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 474x56, components 3 Hash7fff9c7fb62f31395ac493b60d2060dc 509f2baa8f3acc5d893b8bd6fae5aa67b202770d 03334d3d56748945718362d5e6c8c762b0fd5868e02186e6e7206e79f85e7677
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/loginlogo.jpg?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1137"
CONTENT-LENGTH: 4407
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/jpeg
|
|
| 70.60.35.204/image/allbg.png?version=2.210 | 70.60.35.204 | 200 OK | 881 B |
URL GET HTTP/1.170.60.35.204/image/allbg.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 1 x 600, 8-bit colormap, non-interlaced Hash1aeb577649bef9feb132160d3ae7f3b5 19c05d04818cca95c7ccd8a2b7d68273a1229733 711cbb1fadbf5a1f3fcabd0c72c118315b2b0d1596b68c3a0865fc1864baebbd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/allbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:371"
CONTENT-LENGTH: 881
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/horizonline.png?version=2.210 | 70.60.35.204 | 200 OK | 223 B |
URL GET HTTP/1.170.60.35.204/image/horizonline.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 320 x 5, 8-bit grayscale, non-interlaced Hash0d90fe9b9b7a16a1a9648c2cad296808 1df833014d06d01a8c365ce0691bd5c48acf453c f74ad267235a559126688ca239b35794396d7dde5f268d8ab6a718f341544903
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/horizonline.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:df"
CONTENT-LENGTH: 223
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/pic.png?version=2.210 | 70.60.35.204 | 200 OK | 13 kB |
URL GET HTTP/1.170.60.35.204/image/pic.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 454 x 250, 8-bit/color RGBA, non-interlaced Hash9fb57c6e196e68248ab8f6d5395fdb55 90296ee97fd5d8622665a57841eec55015e716b3 13079dd7e5b1900b680ca2e7c9af587734994df89fb071523cf44cb6e6041f6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/pic.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3217"
CONTENT-LENGTH: 12823
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/icons2.png?version=2.210 | 70.60.35.204 | 200 OK | 4.5 kB |
URL GET HTTP/1.170.60.35.204/image/icons2.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Hashecd675022901936787a968790885c2e6 1463155ef1fd261cb9b74df334fe1f4fa7273e37 80bc584286ca497bc0975cc15c05783f778389a4793183658c54617330ba82d0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/icons2.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/ui.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:116b"
CONTENT-LENGTH: 4459
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/logo.jpg?version=2.210 | 70.60.35.204 | 200 OK | 2.2 kB |
URL GET HTTP/1.170.60.35.204/image/logo.jpg?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 165x55, components 3 Hashc24db6d5c07f870a54cbe1cd76757e13 7ee56d3de5b58f4aa75a33514cf338fe4d44145e f9f92b1239ef65cbd7e6dc2d5e42dea72a9178eb7de6dfc011d1589e11917f79
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/logo.jpg?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:8c9"
CONTENT-LENGTH: 2249
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/jpeg
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.core.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.core.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/lib/jquery.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/lib/jquery.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/jquery.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/html/previewindex.htm?version=3,2,7,98369 | 70.60.35.204 | 200 OK | 54 kB |
URL GET HTTP/1.170.60.35.204/html/previewindex.htm?version=3,2,7,98369 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (398), with CRLF line terminators Hash3550b8cc9e241824fc608da67586712e 31e402a8f6255366c548f5e9884795725dbd8b2d 009bb9a28805bf0db58e7ece8197e68c51c8739a284d8ee3be1639f241bcbec5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /html/previewindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:d2d3"
CONTENT-LENGTH: 53971
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.widget.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.widget.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/dui.fisheye.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/dui.fisheye.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsCore/rsa.js?version=82908 | 70.60.35.204 | 200 OK | 12 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rsa.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (11802), with no line terminators Hasheaae5edb9cd65b9f3436248baebe326a b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba 0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rsa.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/aes.js?version=82908 | 70.60.35.204 | 200 OK | 14 kB |
URL GET HTTP/1.170.60.35.204/jsCore/aes.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (13633), with no line terminators Hash99e69df704e8b0718b8c6fc7fc60d6ba 62ab8b0d8243aec79a66062aea3d36f98e19cbaa 4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/aes.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/common.js?version=82908 | 70.60.35.204 | 200 OK | 10 kB |
URL GET HTTP/1.170.60.35.204/jsCore/common.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (10177), with no line terminators Hashd573089eff82e144b909cf9273cd6f0e 59582544a931c68f1fa0b9def00bf9557f7d4795 724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/common.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/more.js | 70.60.35.204 | 200 OK | 27 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/more.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (27050), with no line terminators Hash9c52ac022747a849806bb1c37c3d6bcc 589e960fb22b9f39aa3090a6299b40f075dd0f38 dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/ptzCtrl.js?version=82908 | 70.60.35.204 | 200 OK | 2.6 kB |
URL GET HTTP/1.170.60.35.204/js/ptzCtrl.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (2587), with no line terminators Hash985f23369e7e158c795c5952a7ce3010 daebf326988ab1ce84b0139f36218637256db9fc e894b564d69de1f921e82ce869bd8c70931024aa5330535b34f08022965fbbf1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/ptzCtrl.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a1b"
CONTENT-LENGTH: 2587
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/loginEx.js?version=82908 | 70.60.35.204 | 200 OK | 5.5 kB |
URL GET HTTP/1.170.60.35.204/js/loginEx.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (5453), with no line terminators Hashcd1c893afccb9a9fc087a0fb05da06a3 a7d06014c88c877054c26d7dbbf01bbae9b4621c 8add73e3c2ec97625c58d2a3d35f52484202b751cfd452b064f56d9492698440
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/loginEx.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:154d"
CONTENT-LENGTH: 5453
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/cap.js?version=82908 | 70.60.35.204 | 200 OK | 203 B |
URL GET HTTP/1.170.60.35.204/cap.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hash6e17fb5dc2ace8f321e6710e45b0b0de 0263ffd7dc3d405bab40c56694c22c4342929f06 c67ffb8a9e508f2f5a92e0641fc0cb401d776632610c484dce12e2f00cba0042
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cap.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONTENT-LENGTH: 203
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8
|
|
| 70.60.35.204/jsBase/lib/m1.2.js | 70.60.35.204 | 200 OK | 62 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/m1.2.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32155) Hashf6e9f50e585afd4893de1601be17290c 0273603651305e4e65c8e1c5bf57713cfae24cb8 4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/widget/css/ui.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/ui.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/css/skin.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/OutsideCmd | 70.60.35.204 | 200 OK | 80 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Hash96402f390abdff2d4343994bcfe61fe2 a4e9084473469394421bd46178e48abb6c0940f7 7cd809a9f4500d4e2b5ad6cf3acb646b8ddbf9adefc1fab49f64889b02a87f5d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /OutsideCmd HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 61
Origin: http://70.60.35.204
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 80
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.core.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.core.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsCore/rpcCore.js?version=82908 | 70.60.35.204 | 200 OK | 96 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rpcCore.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32113) Hash3e8ffef27fd0400e431f9a4a2347d748 fc8285b3ac73e7332165f77a1ef66f3dc4902d50 e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rpcCore.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/ft.js | 70.60.35.204 | 200 OK | 54 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeASCII text, with no line terminators Hash2374bbec3e8afda232887349f68684e0 6a0f74e24e761a6dbe1ed66c60ad754f9ac8898f 861e0bb14632864724ac081466644149e3965ed358cdff0535227096c7e54724
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/ft.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:36"
CONTENT-LENGTH: 54
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/custom_logo/loginlogo.jpg | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/custom_logo/loginlogo.jpg IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /custom_logo/loginlogo.jpg HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/widget/js/jquery.ui.widget.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/jquery.ui.widget.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/custom_logo/logo.jpg | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/custom_logo/logo.jpg IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /custom_logo/logo.jpg HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/previewindex.js?version=82908 | 70.60.35.204 | 200 OK | 62 kB |
URL GET HTTP/1.170.60.35.204/js/previewindex.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32122) Hash223c620cbb4003e7bfe57639cad10040 e8ef8bc8c0de214ca804a5f64cd8931d161c4f40 df98a64f6ba04376e028d866fadaa69dbcaa3f27e47eca6d30960d1329ded6e3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/previewindex.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f137"
CONTENT-LENGTH: 61751
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/publicFunc.js?version=82908 | 70.60.35.204 | 200 OK | 88 kB |
URL GET HTTP/1.170.60.35.204/js/publicFunc.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32235) Hashc50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/widget/js/dui.fisheye.js | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/js/dui.fisheye.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/GroupControl.js | 70.60.35.204 | 200 OK | 4.5 kB |
URL GET HTTP/1.170.60.35.204/js/GroupControl.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (4457), with no line terminators Hashe484eb758e96921ba0145648a2958b4c 2cd1fcc7591b6091f72b2b23f9cccfda4a5e9c07 a287b2dc20f65c34b09bbf516344c2317587531e36faebe814902dc2edb04b79
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/GroupControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1169"
CONTENT-LENGTH: 4457
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/WindowManager.js | 70.60.35.204 | 200 OK | 1.2 kB |
URL GET HTTP/1.170.60.35.204/js/WindowManager.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (1231), with no line terminators Hash21366030c720311e4cf0b8ffff61c4b2 df4e78e20fae29a2c97ad793d79f10d53acf4eb5 c9622cb92df2e18f392fb623fbcd3584e4291129ef9e2ab8e92131e777af8241
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/WindowManager.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4cf"
CONTENT-LENGTH: 1231
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/Grid.js | 70.60.35.204 | 200 OK | 795 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (795), with no line terminators Hash66f9f8fa7e2d39e85d41773655c1d208 a8f502c2b9f2c6e3140c8be1a09f6f2bf891867d a5e7262f8217354bb191990e200137148bf33b04b7c8068265d15df885048302
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/Grid.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:31b"
CONTENT-LENGTH: 795
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/Calendar.js | 70.60.35.204 | 200 OK | 5.3 kB |
URL GET HTTP/1.170.60.35.204/js/Calendar.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (5306), with no line terminators Hash21e037e49ddc0584d9883fc9b93d7537 879ccd00934764329cb12c76685788725698702b 052957f048ac4a921f38d017725b4927518feee9f4ddc107b526e8a5b58059f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/Calendar.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14ba"
CONTENT-LENGTH: 5306
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/PlayControl.js | 70.60.35.204 | 200 OK | 836 B |
URL GET HTTP/1.170.60.35.204/js/PlayControl.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (836), with no line terminators Hashc2a7d1b954e08c08106880b45da72c54 5e8665bec7644b6b51703b0b8cad4de0e381dc1e f42d5e32965ef4a081dc1ea04b436699893020d03fc3ab9aa7d80be509e9e29b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/PlayControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:344"
CONTENT-LENGTH: 836
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/FileList.js | 70.60.35.204 | 200 OK | 3.6 kB |
URL GET HTTP/1.170.60.35.204/js/FileList.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (3584), with no line terminators Hash5effee7bfb51c0964b809bb615502362 73a649a5fcfb6a6ad05f431dcd868022106e4a29 c6365fdacf30596f0bb7bc21ed96a7e1d2abfdab68f3a3b8d8d574f774a40145
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/FileList.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:e00"
CONTENT-LENGTH: 3584
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/WindowManager.js | 70.60.35.204 | 200 OK | 1.2 kB |
URL GET HTTP/1.170.60.35.204/js/WindowManager.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (1231), with no line terminators Hash21366030c720311e4cf0b8ffff61c4b2 df4e78e20fae29a2c97ad793d79f10d53acf4eb5 c9622cb92df2e18f392fb623fbcd3584e4291129ef9e2ab8e92131e777af8241
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/WindowManager.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4cf"
CONTENT-LENGTH: 1231
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/Grid.js | 70.60.35.204 | 200 OK | 795 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (795), with no line terminators Hash66f9f8fa7e2d39e85d41773655c1d208 a8f502c2b9f2c6e3140c8be1a09f6f2bf891867d a5e7262f8217354bb191990e200137148bf33b04b7c8068265d15df885048302
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/Grid.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:31b"
CONTENT-LENGTH: 795
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/GroupControl.js | 70.60.35.204 | 200 OK | 4.5 kB |
URL GET HTTP/1.170.60.35.204/js/GroupControl.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (4457), with no line terminators Hashe484eb758e96921ba0145648a2958b4c 2cd1fcc7591b6091f72b2b23f9cccfda4a5e9c07 a287b2dc20f65c34b09bbf516344c2317587531e36faebe814902dc2edb04b79
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/GroupControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1169"
CONTENT-LENGTH: 4457
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/publicFunc.js | 70.60.35.204 | 200 OK | 88 kB |
URL GET HTTP/1.170.60.35.204/js/publicFunc.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32235) Hashc50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/publicFunc.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/Component/chnlGroup.js | 70.60.35.204 | 200 OK | 4.6 kB |
URL GET HTTP/1.170.60.35.204/Component/chnlGroup.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (4555), with no line terminators Hashefbd2103dee9fd12717b6b051f1f17b4 abdaff3e986b8252a8cd0181301565c55de9197d 323aa705d5d8e1663d9883e83542aa1e06d28fd09030f1ce6225f8d184279e6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Component/chnlGroup.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:11cb"
CONTENT-LENGTH: 4555
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/Calendar.js | 70.60.35.204 | 200 OK | 5.3 kB |
URL GET HTTP/1.170.60.35.204/js/Calendar.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (5306), with no line terminators Hash21e037e49ddc0584d9883fc9b93d7537 879ccd00934764329cb12c76685788725698702b 052957f048ac4a921f38d017725b4927518feee9f4ddc107b526e8a5b58059f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/Calendar.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14ba"
CONTENT-LENGTH: 5306
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/playbackindex.js | 70.60.35.204 | 200 OK | 115 kB |
URL GET HTTP/1.170.60.35.204/js/playbackindex.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (32091) Size115 kB (114559 bytes) Hash975cf3d7353719e7a39f104bbbe640b1 6c35f6067ca258633f0d62c5efb7de34ee122c05 6b2fb573a9ee43250e2cda5ef1dc49dfbf49db1779bca656e731923c764ccc96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/playbackindex.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1bf7f"
CONTENT-LENGTH: 114559
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/PlayControl.js | 70.60.35.204 | 200 OK | 836 B |
URL GET HTTP/1.170.60.35.204/js/PlayControl.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (836), with no line terminators Hashc2a7d1b954e08c08106880b45da72c54 5e8665bec7644b6b51703b0b8cad4de0e381dc1e f42d5e32965ef4a081dc1ea04b436699893020d03fc3ab9aa7d80be509e9e29b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/PlayControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:344"
CONTENT-LENGTH: 836
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/FileList.js | 70.60.35.204 | 200 OK | 3.6 kB |
URL GET HTTP/1.170.60.35.204/js/FileList.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (3584), with no line terminators Hash5effee7bfb51c0964b809bb615502362 73a649a5fcfb6a6ad05f431dcd868022106e4a29 c6365fdacf30596f0bb7bc21ed96a7e1d2abfdab68f3a3b8d8d574f774a40145
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/FileList.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:e00"
CONTENT-LENGTH: 3584
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/current_config/WebCapConfig | 70.60.35.204 | 200 OK | 808 B |
URL GET HTTP/1.170.60.35.204/current_config/WebCapConfig IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Hash4c406857cc63fd22e598816624fdfb2c 405b40872a97f068f9927bad21d9e883e2c88459 7f4e743e70c28716bc9c941d13bf7eba54c23180be27a97b73339eb83a1950e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/WebCapConfig HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:328"
CONTENT-LENGTH: 808
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/html/alarmindex.htm?version=3,2,7,98369 | 70.60.35.204 | 200 OK | 8.1 kB |
URL GET HTTP/1.170.60.35.204/html/alarmindex.htm?version=3,2,7,98369 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7863), with no line terminators Hashcd037bc5b18cf22dddb902898a3d123f 1c83cd6652d38000d7bb4ba32b58dd5957b5f70d 4ad1a591a7a20b9e4f603d783a96c892053d76967508444ef042a8ce3824f950
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /html/alarmindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1f93"
CONTENT-LENGTH: 8083
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/publicFunc.js | 70.60.35.204 | 200 OK | 88 kB |
URL GET HTTP/1.170.60.35.204/js/publicFunc.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32235) Hashc50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/publicFunc.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/jsBase/widget/css/ui.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/ui.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/playbackindex.js | 70.60.35.204 | 200 OK | 115 kB |
URL GET HTTP/1.170.60.35.204/js/playbackindex.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeJavaScript source, ASCII text, with very long lines (32091) Size115 kB (114559 bytes) Hash975cf3d7353719e7a39f104bbbe640b1 6c35f6067ca258633f0d62c5efb7de34ee122c05 6b2fb573a9ee43250e2cda5ef1dc49dfbf49db1779bca656e731923c764ccc96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/playbackindex.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1bf7f"
CONTENT-LENGTH: 114559
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/widget/css/skin.css | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/jsBase/widget/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsCore/aes.js | 70.60.35.204 | 200 OK | 14 kB |
URL GET HTTP/1.170.60.35.204/jsCore/aes.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (13633), with no line terminators Hash99e69df704e8b0718b8c6fc7fc60d6ba 62ab8b0d8243aec79a66062aea3d36f98e19cbaa 4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/aes.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/html/playbackindex.htm?version=3,2,7,98369 | 70.60.35.204 | 200 OK | 56 kB |
URL GET HTTP/1.170.60.35.204/html/playbackindex.htm?version=3,2,7,98369 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 text, with very long lines (55524), with no line terminators Hash07309ccae3d6cd373a19bca053accc97 3ecbdbc96a69441d796597b51bf5118b3c327001 77ee5ea4df3415fb9665a3b170dcd973e543c17d2a247aeebb1bee72d465d462
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /html/playbackindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:dc74"
CONTENT-LENGTH: 56436
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/jsBase/lib/more.js | 70.60.35.204 | 200 OK | 27 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/more.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (27050), with no line terminators Hash9c52ac022747a849806bb1c37c3d6bcc 589e960fb22b9f39aa3090a6299b40f075dd0f38 dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/rsa.js | 70.60.35.204 | 200 OK | 12 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rsa.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeASCII text, with very long lines (11802), with no line terminators Hasheaae5edb9cd65b9f3436248baebe326a b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba 0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rsa.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsCore/common.js?version=82908 | 70.60.35.204 | 200 OK | 10 kB |
URL GET HTTP/1.170.60.35.204/jsCore/common.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (10177), with no line terminators Hashd573089eff82e144b909cf9273cd6f0e 59582544a931c68f1fa0b9def00bf9557f7d4795 724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/common.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/jsBase/lib/m1.2.js | 70.60.35.204 | 200 OK | 62 kB |
URL GET HTTP/1.170.60.35.204/jsBase/lib/m1.2.js IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32155) Hashf6e9f50e585afd4893de1601be17290c 0273603651305e4e65c8e1c5bf57713cfae24cb8 4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/js/alarmindex.js?version=82908 | 70.60.35.204 | 200 OK | 5.1 kB |
URL GET HTTP/1.170.60.35.204/js/alarmindex.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
File typeASCII text, with very long lines (5113), with no line terminators Hash695d842218bad7b602be804587d12f8f 6c15f98426ec559d94d5360662450546b892787d ca4f5f4b99b7fd9a7ea86df666989bba4fa11fab24e3266b01fcf8047118084f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/alarmindex.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:13f9"
CONTENT-LENGTH: 5113
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/favicon.ico | 70.60.35.204 | 200 OK | 1.2 kB |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashbd9e17c46bbbc18af2a2bd718dddad0e f8548e9f44dd45eefadd22bf0c758cb2d04912d7 95720d030ba3db423c71eef7c6d919151b2e868b9331506577bcf1050f846f98
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:47e"
CONTENT-LENGTH: 1150
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/x-icon
|
|
| 70.60.35.204/current_config/preLanguage?1714598893029 | 70.60.35.204 | 200 OK | 26 B |
URL GET HTTP/1.170.60.35.204/current_config/preLanguage?1714598893029 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Hash662021470c60975c899f5fb14a073815 d511585b2f18e5c7d9d35e17b54abd0da6bb68f5 d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/preLanguage?1714598893029 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/jsCore/rpcCore.js?version=82908 | 70.60.35.204 | 200 OK | 96 kB |
URL GET HTTP/1.170.60.35.204/jsCore/rpcCore.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, ASCII text, with very long lines (32113) Hash3e8ffef27fd0400e431f9a4a2347d748 fc8285b3ac73e7332165f77a1ef66f3dc4902d50 e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jsCore/rpcCore.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:13 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/html/playbackindex.htm?version=3,2,7,98369 | 70.60.35.204 | 200 OK | 56 kB |
URL GET HTTP/1.170.60.35.204/html/playbackindex.htm?version=3,2,7,98369 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, Unicode text, UTF-8 text, with very long lines (55524), with no line terminators Hash07309ccae3d6cd373a19bca053accc97 3ecbdbc96a69441d796597b51bf5118b3c327001 77ee5ea4df3415fb9665a3b170dcd973e543c17d2a247aeebb1bee72d465d462
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /html/playbackindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:dc74"
CONTENT-LENGTH: 56436
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/js/publicFunc.js?version=82908 | 70.60.35.204 | 200 OK | 88 kB |
URL GET HTTP/1.170.60.35.204/js/publicFunc.js?version=82908 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32235) Hashc50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:13 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/custom_lang/English.txt | 70.60.35.204 | 404 Not Found | 48 B |
URL GET HTTP/1.170.60.35.204/custom_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/web_lang/English.txt | 70.60.35.204 | 200 OK | 222 kB |
URL GET HTTP/1.170.60.35.204/web_lang/English.txt IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators Size222 kB (221698 bytes) Hashc1333a521c7036f0a3508423b97c09f6 782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb 2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:15 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/css/reset.css | 70.60.35.204 | 200 OK | 1.2 kB |
URL GET HTTP/1.170.60.35.204/css/reset.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash0a54b62f33d4f81c78bb13794aafdbe5 c87391a44c4937f8be066a565114ca33ae95a6bd 884cd5c4ddfbf0f86e7f0fc2c7a0daf7278f5e8ed0a96863db9471ebb3303b0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/reset.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4bf"
CONTENT-LENGTH: 1215
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/previewindex.css | 70.60.35.204 | | 12 kB |
URL GET 70.60.35.204/css/previewindex.css IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
Requested byhttp://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash8453b3c8512e238b4a5b78b439f76091 e568f451f62b6443a442cfc92d09e521f4ccbfda a87fa4886805977877adfbb1a47b9c3b4f2d5726ffd24792d67525ff4840d255
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/previewindex.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2d82"
CONTENT-LENGTH: 11650
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/oem.css | 70.60.35.204 | 404 Not Found | 48 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeHTML document, ASCII text, with no line terminators Hashde47b8952cf60220f474d5004f9f04df d44daa88381eacd58e1186a9d7a36bdc5adae7d3 a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html
|
|
| 70.60.35.204/css/fn.css | 70.60.35.204 | 200 OK | 10 kB |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash8cb5379d291ce2c02bd22b9fc24ed9a8 dd342d923758dc38d5dcc2bd47beb70f090e84ae 26ca0b2d7557b1f089cab2d58cddf2c76650d9b701c8d147c71ee199c065c7c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/fn.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2738"
CONTENT-LENGTH: 10040
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/skin.css | 70.60.35.204 | 200 OK | 17 kB |
URL GET HTTP/1.170.60.35.204/css/skin.css IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashc42b0184012e18a9cc65911f354512b5 fd5935b5bc6f69d4353a3f0855e400488b77ef84 23cf274abcbb4b7be70c9f113cabaa817e5e73de0641f1eb22c2f74282322500
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4257"
CONTENT-LENGTH: 16983
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/css/ui.css | 70.60.35.204 | 200 OK | 42 kB |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashb0b4d1abd3e2d04174fdd05add6ea3bd b464ce450253ab64aea5393293744be3c4dc21e3 eb01e25a1ad6a2bb7284020ba1dbccca4d0ea642ff9c38e6b575f569ee02e160
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a597"
CONTENT-LENGTH: 42391
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/playbackline.png | 70.60.35.204 | | 610 B |
URL GET 70.60.35.204/image/playbackline.png IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 1 x 400, 8-bit colormap, non-interlaced Hash3ad2f87e9a0b43f334d81d3c7d2a7abb e0f649b27b1db6181d1033ba42f3046eb756e0dd 98c25303261fc862c03515b853fc10eb5a1ba4d2258f05e3a9948b78b5c2febf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/playbackline.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/playbackindex.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:262"
CONTENT-LENGTH: 610
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/local.png | 70.60.35.204 | 200 OK | 337 B |
IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typeISO-8859 text, with CRLF line terminators Hash9e9bf2b9215776e174f4b48cfff0a9fe ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e 7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/playback.png | 70.60.35.204 | | 39 kB |
URL 70.60.35.204/image/playback.png IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 486 x 478, 8-bit/color RGBA, non-interlaced Hash9fd47be575c6e2f5ef378fb04e399b50 e8c7247c2c82f59dd693c605baae2da22ae6916b ebc7ed84a3bb247b5dfc54404f8ce3c9642d2c2667c3dfe8657d429fb7ab189d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/playback.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/playbackindex.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:96ca"
CONTENT-LENGTH: 38602
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/icons.png?version=2.210 | 70.60.35.204 | | 40 kB |
URL 70.60.35.204/image/icons.png?version=2.210 IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 570 x 720, 8-bit/color RGBA, non-interlaced Hash66d18fd262d66feb4e91657d32c165a4 6d8f2affbdc7d7320855c0423bb5660317befef8 cfd240d736e807e5de6017356dfbfb23dcf497519fd5bceb323a83359426646d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/icons.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:9dd4"
CONTENT-LENGTH: 40404
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/current_config/preLanguage?1714598898104 | 70.60.35.204 | | 26 B |
URL 70.60.35.204/current_config/preLanguage?1714598898104 IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
Hash662021470c60975c899f5fb14a073815 d511585b2f18e5c7d9d35e17b54abd0da6bb68f5 d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /current_config/preLanguage?1714598898104 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream
|
|
| 70.60.35.204/image/allbg.png?version=2.210 | 70.60.35.204 | 200 OK | 881 B |
URL GET HTTP/1.170.60.35.204/image/allbg.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 1 x 600, 8-bit colormap, non-interlaced Hash1aeb577649bef9feb132160d3ae7f3b5 19c05d04818cca95c7ccd8a2b7d68273a1229733 711cbb1fadbf5a1f3fcabd0c72c118315b2b0d1596b68c3a0865fc1864baebbd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/allbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:371"
CONTENT-LENGTH: 881
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/pic.png?version=2.210 | 70.60.35.204 | 200 OK | 13 kB |
URL GET HTTP/1.170.60.35.204/image/pic.png?version=2.210 IP70.60.35.204:80 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 454 x 250, 8-bit/color RGBA, non-interlaced Hash9fb57c6e196e68248ab8f6d5395fdb55 90296ee97fd5d8622665a57841eec55015e716b3 13079dd7e5b1900b680ca2e7c9af587734994df89fb071523cf44cb6e6041f6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/pic.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3217"
CONTENT-LENGTH: 12823
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|
| 70.60.35.204/image/icons.png?version=2.210 | 70.60.35.204 | | 40 kB |
URL 70.60.35.204/image/icons.png?version=2.210 IP70.60.35.204:0 ASN#10796 TWC-10796-MIDWEST
File typePNG image data, 570 x 720, 8-bit/color RGBA, non-interlaced Hash66d18fd262d66feb4e91657d32c165a4 6d8f2affbdc7d7320855c0423bb5660317befef8 cfd240d736e807e5de6017356dfbfb23dcf497519fd5bceb323a83359426646d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/icons.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:9dd4"
CONTENT-LENGTH: 40404
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png
|
|