Report - 70.60.35.204/

Report Overview

Submitted URL
70.60.35.204/
IP
70.60.35.204
ASN
#10796 TWC-10796-MIDWEST
Submitted
2024-05-01 21:28:22
Access
public
Website Title
WEB SERVICE
Final URL
70.60.35.204/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
288

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
70.60.35.204	unknown	unknown	No data	No data	57 kB	3.5 MB	70.60.35.204

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed
2024-05-01	medium	70.60.35.204	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	70.60.35.204/js/WindowManager.js	1.2 kB	2023-03-10	2024-05-01
Pretty URL 70.60.35.204/js/WindowManager.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:19:22 Last Seen2024-05-01 23:28:31 Times Seen111 Hash 21366030c720311e4cf0b8ffff61c4b2 df4e78e20fae29a2c97ad793d79f10d53acf4eb5 c9622cb92df2e18f392fb623fbcd3584e4291129ef9e2ab8e92131e777af8241 Loading...

	70.60.35.204/js/Calendar.js	5.3 kB	2023-03-11	2024-05-01
Pretty URL 70.60.35.204/js/Calendar.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:23:34 Last Seen2024-05-01 23:28:31 Times Seen78 Hash 21e037e49ddc0584d9883fc9b93d7537 879ccd00934764329cb12c76685788725698702b 052957f048ac4a921f38d017725b4927518feee9f4ddc107b526e8a5b58059f8 Loading...

	70.60.35.204/jsCore/aes.js?version=82908	14 kB	2023-03-07	2024-05-14
Pretty URL 70.60.35.204/jsCore/aes.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:28 Last Seen2024-05-14 00:57:18 Times Seen350 Hash 99e69df704e8b0718b8c6fc7fc60d6ba 62ab8b0d8243aec79a66062aea3d36f98e19cbaa 4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2 Loading...

	70.60.35.204/js/loginEx.js?version=82908	5.5 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/loginEx.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen18 Hash cd1c893afccb9a9fc087a0fb05da06a3 a7d06014c88c877054c26d7dbbf01bbae9b4621c 8add73e3c2ec97625c58d2a3d35f52484202b751cfd452b064f56d9492698440 Loading...

	70.60.35.204/js/PlayControl.js	836 B	2023-03-11	2024-05-01
Pretty URL 70.60.35.204/js/PlayControl.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:23:34 Last Seen2024-05-01 23:28:31 Times Seen77 Hash c2a7d1b954e08c08106880b45da72c54 5e8665bec7644b6b51703b0b8cad4de0e381dc1e f42d5e32965ef4a081dc1ea04b436699893020d03fc3ab9aa7d80be509e9e29b Loading...

	70.60.35.204/js/publicFunc.js	88 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/publicFunc.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen20 Hash c50b2436fa0866394d450f876dd93363 f1ddc44a14e9289919b61efdf35b10798c82d59a a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a Loading...

	70.60.35.204/Component/level.js?version=82908	918 B	2023-03-10	2024-05-01
Pretty URL 70.60.35.204/Component/level.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:00:37 Last Seen2024-05-01 23:28:31 Times Seen77 Hash cfc552d083b28ccbd72c7ddb121db96c a624e129052ddb295c9a6bf7a878bc71de752cf6 8120d62701d9043c125c050a659c1edaa19369f8937be40b9bd7913ecff51a1d Loading...

	70.60.35.204/js/findPwd.js?version=82908	10 kB	2023-05-08	2024-05-01
Pretty URL 70.60.35.204/js/findPwd.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 17:49:59 Last Seen2024-05-01 23:28:31 Times Seen4 Hash 4d2ecf6cbef756bf05d956cacbb287fa 44b50961dcdeebcd47ea993bd530a6b89be4cdde 07af0fb753640049d3158c15ac4e196d9752d5fffc3fa1fd9f8103a3fa1c71eb Loading...

	70.60.35.204/js/playbackindex.js	115 kB	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/js/playbackindex.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:58 Last Seen2024-05-01 23:28:31 Times Seen19 Hash 975cf3d7353719e7a39f104bbbe640b1 6c35f6067ca258633f0d62c5efb7de34ee122c05 6b2fb573a9ee43250e2cda5ef1dc49dfbf49db1779bca656e731923c764ccc96 Loading...

	70.60.35.204/js/previewindex.js?version=82908	62 kB	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/js/previewindex.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:59 Last Seen2024-05-01 23:28:31 Times Seen15 Hash 223c620cbb4003e7bfe57639cad10040 e8ef8bc8c0de214ca804a5f64cd8931d161c4f40 df98a64f6ba04376e028d866fadaa69dbcaa3f27e47eca6d30960d1329ded6e3 Loading...

	70.60.35.204/jsBase/lib/base64.js	1.5 kB	2023-03-07	2024-05-14
Pretty URL 70.60.35.204/jsBase/lib/base64.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-14 00:57:18 Times Seen322 Hash 512bb7f354e5bd222c2ffbc3f9d601b9 c386932682ec7abc2726fed93bd72b552c6c4a2f 3b3cf5585ebda2f6e7e6bd9ace18ca949f5d9320175dca73c46834c91f6d56d1 Loading...

	70.60.35.204/jsBase/lib/m1.2.js	62 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/jsBase/lib/m1.2.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:28 Last Seen2024-05-01 23:28:31 Times Seen144 Hash f6e9f50e585afd4893de1601be17290c 0273603651305e4e65c8e1c5bf57713cfae24cb8 4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee Loading...

	70.60.35.204/jsBase/lib/more.js	27 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/jsBase/lib/more.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen144 Hash 9c52ac022747a849806bb1c37c3d6bcc 589e960fb22b9f39aa3090a6299b40f075dd0f38 dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b Loading...

	70.60.35.204/jsBase/lib/md5.js	4.3 kB	2023-03-07	2024-05-14
Pretty URL 70.60.35.204/jsBase/lib/md5.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-14 00:57:18 Times Seen322 Hash 60507d416334913c0aa439206a56b809 93d7d042fe9ce7e19c4f0e9bac5327d3ad82adce b2c98d52873337d8ec20f30582e1af4125fd612e396e6821d2dd3e848f48169d Loading...

	70.60.35.204/pluginVersion.js?version=82908	318 B	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/pluginVersion.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:59 Last Seen2024-05-01 23:28:31 Times Seen20 Hash e919197f502ac06002d41972fbb34368 2002d76953a4664ddd4572d2184b575c2a703a3f 73bd0117a7a86ddafefa93f825731df37130588a576723cd0f5650c6f0351ac0 Loading...

	70.60.35.204/jsCore/rpcCore.js	96 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/jsCore/rpcCore.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen18 Hash 3e8ffef27fd0400e431f9a4a2347d748 fc8285b3ac73e7332165f77a1ef66f3dc4902d50 e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af Loading...

	70.60.35.204/js/system.js?version=82908	1.5 kB	2023-03-10	2024-05-01
Pretty URL 70.60.35.204/js/system.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:00:37 Last Seen2024-05-01 23:28:31 Times Seen136 Hash fd88c0b55bb19ccf78175730eb48b55f 11540332dfebb40d3db0426ca17cb16e9ffbeef2 662543bb51b9400ba5f6c690e18884ee3a3bd40579c80fe287a50d37dffa1645 Loading...

	70.60.35.204/js/deviceInitial.js?version=82908	5.3 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/deviceInitial.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen33 Hash a12de5b25c2cf2b91573f2719db068a1 4354a90c083df92e942f077a9e5f59789f3a21a6 54ace0ed0d16bbf8bc74688671ec43db9504f4dc1c009ce22c8444b3256d7f54 Loading...

	70.60.35.204/js/Grid.js	795 B	2023-03-11	2024-05-01
Pretty URL 70.60.35.204/js/Grid.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:23:34 Last Seen2024-05-01 23:28:31 Times Seen113 Hash 66f9f8fa7e2d39e85d41773655c1d208 a8f502c2b9f2c6e3140c8be1a09f6f2bf891867d a5e7262f8217354bb191990e200137148bf33b04b7c8068265d15df885048302 Loading...

	70.60.35.204/cap.js?version=82908	203 B	2024-05-01	2024-05-01
Pretty URL 70.60.35.204/cap.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 23:28:30 Last Seen2024-05-01 23:28:31 Times Seen3 Hash 6e17fb5dc2ace8f321e6710e45b0b0de 0263ffd7dc3d405bab40c56694c22c4342929f06 c67ffb8a9e508f2f5a92e0641fc0cb401d776632610c484dce12e2f00cba0042 Loading...

	70.60.35.204/jsCore/rsa.js?version=82908	12 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/jsCore/rsa.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen138 Hash eaae5edb9cd65b9f3436248baebe326a b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba 0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6 Loading...

	70.60.35.204/Component/chnlGroup.js	4.6 kB	2023-03-11	2024-05-01
Pretty URL 70.60.35.204/Component/chnlGroup.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:23:34 Last Seen2024-05-01 23:28:31 Times Seen48 Hash efbd2103dee9fd12717b6b051f1f17b4 abdaff3e986b8252a8cd0181301565c55de9197d 323aa705d5d8e1663d9883e83542aa1e06d28fd09030f1ce6225f8d184279e6a Loading...

	70.60.35.204/html/previewindex.htm?version=3,2,7,98369	254 B	2023-06-10	2024-05-01
Pretty URL 70.60.35.204/html/previewindex.htm?version=3,2,7,98369 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-10 23:21:46 Last Seen2024-05-01 23:28:30 Times Seen11 Hash 23f4c0d8db92ccf3936abf3e42c1c44b 0c74bdebeadcca243bf1ba39e26213dd1b1235f1 32674f9593a4c948ab9ca9b4a08ce4a1ac3284aeb68aad6155bb0cc3e7862ae0 Loading...

	70.60.35.204/js/GroupControl.js	4.5 kB	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/js/GroupControl.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:59 Last Seen2024-05-01 23:28:31 Times Seen43 Hash e484eb758e96921ba0145648a2958b4c 2cd1fcc7591b6091f72b2b23f9cccfda4a5e9c07 a287b2dc20f65c34b09bbf516344c2317587531e36faebe814902dc2edb04b79 Loading...

	70.60.35.204/olp.js?version=82908	3.1 kB	2023-03-12	2024-05-01
Pretty URL 70.60.35.204/olp.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:52:50 Last Seen2024-05-01 23:28:31 Times Seen47 Hash 624c2690344db5a1d4004e4ccc7b2279 e6da6fb00a6abf50446f7f99dc1d3a98ddd5da3c dc1b94da6030e63a5b2cbaf841545d6364a922582c150a058c4dedb0d642cd86 Loading...

	70.60.35.204/js/FileList.js	3.6 kB	2023-03-11	2024-05-01
Pretty URL 70.60.35.204/js/FileList.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:23:33 Last Seen2024-05-01 23:28:31 Times Seen80 Hash 5effee7bfb51c0964b809bb615502362 73a649a5fcfb6a6ad05f431dcd868022106e4a29 c6365fdacf30596f0bb7bc21ed96a7e1d2abfdab68f3a3b8d8d574f774a40145 Loading...

	70.60.35.204/jsCore/common.js	10 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/jsCore/common.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:28 Last Seen2024-05-01 23:28:31 Times Seen73 Hash d573089eff82e144b909cf9273cd6f0e 59582544a931c68f1fa0b9def00bf9557f7d4795 724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24 Loading...

	70.60.35.204/js/ptzCtrl.js?version=82908	2.6 kB	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/js/ptzCtrl.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:59 Last Seen2024-05-01 23:28:31 Times Seen29 Hash 985f23369e7e158c795c5952a7ce3010 daebf326988ab1ce84b0139f36218637256db9fc e894b564d69de1f921e82ce869bd8c70931024aa5330535b34f08022965fbbf1 Loading...

	70.60.35.204/js/ft.js	54 B	2023-06-10	2024-05-01
Pretty URL 70.60.35.204/js/ft.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-10 23:21:46 Last Seen2024-05-01 23:28:31 Times Seen9 Hash 2374bbec3e8afda232887349f68684e0 6a0f74e24e761a6dbe1ed66c60ad754f9ac8898f 861e0bb14632864724ac081466644149e3965ed358cdff0535227096c7e54724 Loading...

	70.60.35.204/js/index.js?version=82908	37 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/index.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen13 Hash ce4718a81b31b3f86eb0554e33e56c9f d022e7cdf2db547f03414bf29a71419f665b148f 9953ea67e7b66df64f272918f795b913ac58e2cc976900c5d9b3c2358f0f852c Loading...

	unknown	89 B	2023-04-14	2024-05-10
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-14 22:42:06 Last Seen2024-05-10 13:53:42 Times Seen279 Hash 49da9db83405aae23f0786c25cf717d6 41ba4aa507e09a426b03808ecd176a99e23ddbc8 4e20c10ccfc3f15a48b79c7a3f83096ecf7652a385d4f9da834b35e2ad9610ce Loading...

	70.60.35.204/	84 B	2023-03-26	2024-05-01
Pretty URL 70.60.35.204/ IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 14:31:59 Last Seen2024-05-01 23:28:31 Times Seen17 Hash b961338242ebe3803d86b824984255cc c30b5b2725b1f14d48d50204fd076d9e4dfdd6bb 72b3d5e5eba07b83b18d1216cb1e1df8cee1989747d697a1e5d34c0cf2c8591f Loading...

	70.60.35.204/js/appAbility.js	16 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/appAbility.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:28 Last Seen2024-05-01 23:28:31 Times Seen15 Hash 03ed3c91cd7179406a7e37e05f476d5b bbac6206f73213869d9ed3aaa0f0e3ad1cf55778 2f619a2b9139e42a04c2d642c07313c961e6b6ad1fe6daec9aa255cb51b4bd65 Loading...

	70.60.35.204/webVersion.js	38 B	2023-05-08	2024-05-01
Pretty URL 70.60.35.204/webVersion.js IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 17:49:59 Last Seen2024-05-01 23:28:31 Times Seen4 Hash 628e30172793b9bdaa3e0765af18baaa 15b2bebb78510bd4b2e63472651b9c5102e070d1 aa90fc876209cf8b2c980b96b54dae517cd0a073c9d8d91ec829d38dce054104 Loading...

	70.60.35.204/js/eventScript.js?version=82908	5.9 kB	2023-03-07	2024-05-01
Pretty URL 70.60.35.204/js/eventScript.js?version=82908 IP 70.60.35.204 ASN #10796 TWC-10796-MIDWEST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-05-01 23:28:31 Times Seen44 Hash 83a21976b9a7eda3e73a84dc191dfef6 4d475ee9a683d0c4b9a5c7d8eafb9e0a72b21099 acfc868aa9a1a41a71e60d859e5b80b3db86206f7b5dd3f376b988a04ea05dc4 Loading...

		Size	First Seen	Last Seen
	#1 Write - a34d7676093c4fd81dc862e53cc76d08	35 B	2023-06-10	2024-05-01
Pretty Observations First Seen2023-06-10 23:21:46 Last Seen2024-05-01 23:28:31 Times Seen4 Hash a34d7676093c4fd81dc862e53cc76d08 651a43888ec5d636087abea6d500562ac05c9008 bc05cb1ab7aa673da26d791993e84df17f4a1182002fbec6caf3a06d684c6dbc Loading...

HTTP Transactions (144)

URL IP Response Size

70.60.35.204/

70.60.35.204

200 OK

26 kB

URL User Request GET HTTP/1.1
70.60.35.204/
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

File type
HTML document, Unicode text, UTF-8 text, with very long lines (23833), with CRLF line terminators
Size
26 kB (25731 bytes)
Hash
c7fa0f4cbc6baa8380e412351d55aa88
75fc8f60cb25a0af8eb650efa114d19bcaad8ab9
de5b2324e8027d7f5e24b3f19393ec3db7d5fa2fb217cde152438c6f24d30e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:55 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6483"
CONTENT-LENGTH: 25731
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/

70.60.35.204

200 OK

26 kB

URL User Request GET HTTP/1.1
70.60.35.204/
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

File type
HTML document, Unicode text, UTF-8 text, with very long lines (23833), with CRLF line terminators
Size
26 kB (25731 bytes)
Hash
c7fa0f4cbc6baa8380e412351d55aa88
75fc8f60cb25a0af8eb650efa114d19bcaad8ab9
de5b2324e8027d7f5e24b3f19393ec3db7d5fa2fb217cde152438c6f24d30e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6483"
CONTENT-LENGTH: 25731
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/jsCore/aes.js

70.60.35.204

200 OK

14 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/aes.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (13633), with no line terminators
Size
14 kB (13633 bytes)
Hash
99e69df704e8b0718b8c6fc7fc60d6ba
62ab8b0d8243aec79a66062aea3d36f98e19cbaa
4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/aes.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/rsa.js

70.60.35.204

200 OK

12 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rsa.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (11802), with no line terminators
Size
12 kB (11802 bytes)
Hash
eaae5edb9cd65b9f3436248baebe326a
b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba
0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rsa.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/md5.js

70.60.35.204

200 OK

4.3 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/md5.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (4302), with no line terminators
Size
4.3 kB (4302 bytes)
Hash
60507d416334913c0aa439206a56b809
93d7d042fe9ce7e19c4f0e9bac5327d3ad82adce
b2c98d52873337d8ec20f30582e1af4125fd612e396e6821d2dd3e848f48169d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/md5.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:10ce"
CONTENT-LENGTH: 4302
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/appAbility.js

70.60.35.204

200 OK

16 kB

URL GET HTTP/1.1
70.60.35.204/js/appAbility.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (16288), with no line terminators
Size
16 kB (16288 bytes)
Hash
03ed3c91cd7179406a7e37e05f476d5b
bbac6206f73213869d9ed3aaa0f0e3ad1cf55778
2f619a2b9139e42a04c2d642c07313c961e6b6ad1fe6daec9aa255cb51b4bd65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/appAbility.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3fa0"
CONTENT-LENGTH: 16288
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/m1.2.js

70.60.35.204

200 OK

62 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/m1.2.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32155)
Size
62 kB (61931 bytes)
Hash
f6e9f50e585afd4893de1601be17290c
0273603651305e4e65c8e1c5bf57713cfae24cb8
4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/common.js

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/common.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (10177), with no line terminators
Size
10 kB (10177 bytes)
Hash
d573089eff82e144b909cf9273cd6f0e
59582544a931c68f1fa0b9def00bf9557f7d4795
724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/common.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/more.js

70.60.35.204

200 OK

27 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/more.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (27050), with no line terminators
Size
27 kB (27050 bytes)
Hash
9c52ac022747a849806bb1c37c3d6bcc
589e960fb22b9f39aa3090a6299b40f075dd0f38
dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:56 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/sea.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/sea.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/sea.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/loginEx.js?version=82908

70.60.35.204

200 OK

5.5 kB

URL GET HTTP/1.1
70.60.35.204/js/loginEx.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (5453), with no line terminators
Size
5.5 kB (5453 bytes)
Hash
cd1c893afccb9a9fc087a0fb05da06a3
a7d06014c88c877054c26d7dbbf01bbae9b4621c
8add73e3c2ec97625c58d2a3d35f52484202b751cfd452b064f56d9492698440

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/loginEx.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:154d"
CONTENT-LENGTH: 5453
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/system.js?version=82908

70.60.35.204

200 OK

1.5 kB

URL GET HTTP/1.1
70.60.35.204/js/system.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (1484), with no line terminators
Size
1.5 kB (1484 bytes)
Hash
fd88c0b55bb19ccf78175730eb48b55f
11540332dfebb40d3db0426ca17cb16e9ffbeef2
662543bb51b9400ba5f6c690e18884ee3a3bd40579c80fe287a50d37dffa1645

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/system.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:5cc"
CONTENT-LENGTH: 1484
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/pluginVersion.js?version=82908

70.60.35.204

200 OK

318 B

URL GET HTTP/1.1
70.60.35.204/pluginVersion.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with CRLF line terminators
Size
318 B (318 bytes)
Hash
e919197f502ac06002d41972fbb34368
2002d76953a4664ddd4572d2184b575c2a703a3f
73bd0117a7a86ddafefa93f825731df37130588a576723cd0f5650c6f0351ac0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pluginVersion.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:13e"
CONTENT-LENGTH: 318
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/webVersion.js

70.60.35.204

200 OK

38 B

URL GET HTTP/1.1
70.60.35.204/webVersion.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with no line terminators
Size
38 B (38 bytes)
Hash
628e30172793b9bdaa3e0765af18baaa
15b2bebb78510bd4b2e63472651b9c5102e070d1
aa90fc876209cf8b2c980b96b54dae517cd0a073c9d8d91ec829d38dce054104

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webVersion.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:26"
CONTENT-LENGTH: 38
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/rpcCore.js

70.60.35.204

200 OK

96 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rpcCore.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (32113)
Size
96 kB (96460 bytes)
Hash
3e8ffef27fd0400e431f9a4a2347d748
fc8285b3ac73e7332165f77a1ef66f3dc4902d50
e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rpcCore.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/olp.js?version=82908

70.60.35.204

200 OK

3.1 kB

URL GET HTTP/1.1
70.60.35.204/olp.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (3125), with no line terminators
Size
3.1 kB (3125 bytes)
Hash
624c2690344db5a1d4004e4ccc7b2279
e6da6fb00a6abf50446f7f99dc1d3a98ddd5da3c
dc1b94da6030e63a5b2cbaf841545d6364a922582c150a058c4dedb0d642cd86

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /olp.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:c35"
CONTENT-LENGTH: 3125
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/cap.js?version=82908

70.60.35.204

200 OK

203 B

URL GET HTTP/1.1
70.60.35.204/cap.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text
Size
203 B (203 bytes)
Hash
6e17fb5dc2ace8f321e6710e45b0b0de
0263ffd7dc3d405bab40c56694c22c4342929f06
c67ffb8a9e508f2f5a92e0641fc0cb401d776632610c484dce12e2f00cba0042

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cap.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONTENT-LENGTH: 203
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8

70.60.35.204/Component/level.js?version=82908

70.60.35.204

200 OK

918 B

URL GET HTTP/1.1
70.60.35.204/Component/level.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (918), with no line terminators
Size
918 B (918 bytes)
Hash
cfc552d083b28ccbd72c7ddb121db96c
a624e129052ddb295c9a6bf7a878bc71de752cf6
8120d62701d9043c125c050a659c1edaa19369f8937be40b9bd7913ecff51a1d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Component/level.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:396"
CONTENT-LENGTH: 918
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/findPwd.js?version=82908

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/js/findPwd.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (10097), with no line terminators
Size
10 kB (10097 bytes)
Hash
4d2ecf6cbef756bf05d956cacbb287fa
44b50961dcdeebcd47ea993bd530a6b89be4cdde
07af0fb753640049d3158c15ac4e196d9752d5fffc3fa1fd9f8103a3fa1c71eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/findPwd.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2771"
CONTENT-LENGTH: 10097
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/pluginAdaptor.js?version=82908

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/js/pluginAdaptor.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/pluginAdaptor.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/deviceInitial.js?version=82908

70.60.35.204

200 OK

5.3 kB

URL GET HTTP/1.1
70.60.35.204/js/deviceInitial.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (5298), with no line terminators
Size
5.3 kB (5298 bytes)
Hash
a12de5b25c2cf2b91573f2719db068a1
4354a90c083df92e942f077a9e5f59789f3a21a6
54ace0ed0d16bbf8bc74688671ec43db9504f4dc1c009ce22c8444b3256d7f54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/deviceInitial.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14b2"
CONTENT-LENGTH: 5298
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/eventScript.js?version=82908

70.60.35.204

200 OK

5.9 kB

URL GET HTTP/1.1
70.60.35.204/js/eventScript.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (5905), with no line terminators
Size
5.9 kB (5905 bytes)
Hash
83a21976b9a7eda3e73a84dc191dfef6
4d475ee9a683d0c4b9a5c7d8eafb9e0a72b21099
acfc868aa9a1a41a71e60d859e5b80b3db86206f7b5dd3f376b988a04ea05dc4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/eventScript.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1711"
CONTENT-LENGTH: 5905
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/widget/css/ui.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/publicFunc.js?version=82908

70.60.35.204

200 OK

88 kB

URL GET HTTP/1.1
70.60.35.204/js/publicFunc.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32235)
Size
88 kB (88435 bytes)
Hash
c50b2436fa0866394d450f876dd93363
f1ddc44a14e9289919b61efdf35b10798c82d59a
a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/widget/css/skin.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/css/oem.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/css/oem.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/index.js?version=82908

70.60.35.204

200 OK

37 kB

URL GET HTTP/1.1
70.60.35.204/js/index.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (32011)
Size
37 kB (37149 bytes)
Hash
ce4718a81b31b3f86eb0554e33e56c9f
d022e7cdf2db547f03414bf29a71419f665b148f
9953ea67e7b66df64f272918f795b913ac58e2cc976900c5d9b3c2358f0f852c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/index.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:57 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:911d"
CONTENT-LENGTH: 37149
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/jquery.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/jquery.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/jquery.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/jquery.ui.core.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.core.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/jquery.ui.widget.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.widget.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/dui.fisheye.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/dui.fisheye.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/lib/base64.js

70.60.35.204

200 OK

1.5 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/base64.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (1466), with no line terminators
Size
1.5 kB (1466 bytes)
Hash
512bb7f354e5bd222c2ffbc3f9d601b9
c386932682ec7abc2726fed93bd72b552c6c4a2f
3b3cf5585ebda2f6e7e6bd9ace18ca949f5d9320175dca73c46834c91f6d56d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/base64.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:58 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:5ba"
CONTENT-LENGTH: 1466
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/sea.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/sea.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/sea.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/current_config/WebCapConfig

70.60.35.204

200 OK

808 B

URL GET HTTP/1.1
70.60.35.204/current_config/WebCapConfig
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JSON text data
Size
808 B (808 bytes)
Hash
4c406857cc63fd22e598816624fdfb2c
405b40872a97f068f9927bad21d9e883e2c88459
7f4e743e70c28716bc9c941d13bf7eba54c23180be27a97b73339eb83a1950e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/WebCapConfig HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:58 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:328"
CONTENT-LENGTH: 808
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/current_config/preLanguage?1714598879184

70.60.35.204

200 OK

26 B

URL GET HTTP/1.1
70.60.35.204/current_config/preLanguage?1714598879184
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JSON text data
Size
26 B (26 bytes)
Hash
662021470c60975c899f5fb14a073815
d511585b2f18e5c7d9d35e17b54abd0da6bb68f5
d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/preLanguage?1714598879184 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:59 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:27:59 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/custom_lang/English.txt

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/custom_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:01 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:02 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/css/reset.css

70.60.35.204

200 OK

1.2 kB

URL GET HTTP/1.1
70.60.35.204/css/reset.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.2 kB (1215 bytes)
Hash
0a54b62f33d4f81c78bb13794aafdbe5
c87391a44c4937f8be066a565114ca33ae95a6bd
884cd5c4ddfbf0f86e7f0fc2c7a0daf7278f5e8ed0a96863db9471ebb3303b0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/reset.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4bf"
CONTENT-LENGTH: 1215
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/fn.css

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/css/fn.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
10 kB (10040 bytes)
Hash
8cb5379d291ce2c02bd22b9fc24ed9a8
dd342d923758dc38d5dcc2bd47beb70f090e84ae
26ca0b2d7557b1f089cab2d58cddf2c76650d9b701c8d147c71ee199c065c7c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/fn.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2738"
CONTENT-LENGTH: 10040
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/index.css

70.60.35.204

200 OK

5.0 kB

URL GET HTTP/1.1
70.60.35.204/css/index.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
5.0 kB (4999 bytes)
Hash
4d84b9bb283b13d5c4d839885bd8d143
20d2d644e1ab67f716e7ace7210844a2388530ea
3bb530cc489533993ff961a8b16b609f3034934886ee0e2439ed3440181a6d22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/index.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1387"
CONTENT-LENGTH: 4999
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/skin.css

70.60.35.204

200 OK

17 kB

URL GET HTTP/1.1
70.60.35.204/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
17 kB (16983 bytes)
Hash
c42b0184012e18a9cc65911f354512b5
fd5935b5bc6f69d4353a3f0855e400488b77ef84
23cf274abcbb4b7be70c9f113cabaa817e5e73de0641f1eb22c2f74282322500

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4257"
CONTENT-LENGTH: 16983
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/playbackindex.css

70.60.35.204

200 OK

26 kB

URL GET HTTP/1.1
70.60.35.204/css/playbackindex.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
26 kB (25996 bytes)
Hash
1ceb357b90e1ddae0fef81718f42dd28
c2dbe87a85942d8a3b029d43c3d451809ebc9c82
57d4ed8ad2e75c41afb2054045048059d492e4fe2d97df7b043430a30cc165c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/playbackindex.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:658c"
CONTENT-LENGTH: 25996
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/ui.css

70.60.35.204

200 OK

42 kB

URL GET HTTP/1.1
70.60.35.204/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
42 kB (42391 bytes)
Hash
b0b4d1abd3e2d04174fdd05add6ea3bd
b464ce450253ab64aea5393293744be3c4dc21e3
eb01e25a1ad6a2bb7284020ba1dbccca4d0ea642ff9c38e6b575f569ee02e160

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a597"
CONTENT-LENGTH: 42391
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/oem.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/css/oem.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/current_config/preLanguage?1714598883469

70.60.35.204

200 OK

26 B

URL GET HTTP/1.1
70.60.35.204/current_config/preLanguage?1714598883469
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JSON text data
Size
26 B (26 bytes)
Hash
662021470c60975c899f5fb14a073815
d511585b2f18e5c7d9d35e17b54abd0da6bb68f5
d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/preLanguage?1714598883469 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/custom_lang/English.txt

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/custom_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:05 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/js/pluginAdaptor.js?version=82908

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/js/pluginAdaptor.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/pluginAdaptor.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/css/ui.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/css/oem.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/css/oem.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/css/skin.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/OutsideCmd

70.60.35.204

200 OK

602 B

URL POST HTTP/1.1
70.60.35.204/OutsideCmd
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JSON text data
Size
602 B (602 bytes)
Hash
e698d2649645f177d4086c501223b7e3
bd498d6979cb4f37c787c06a334c61091ff7289f
ccc1bbac1574f47e911501782b8c0b8bfba3678543326aec082a6fc9707d4c66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /OutsideCmd HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 69
Origin: http://70.60.35.204
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 602

70.60.35.204/image/bg.png?version=2.210

70.60.35.204

200 OK

107 B

URL GET HTTP/1.1
70.60.35.204/image/bg.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 1 x 170, 8-bit grayscale, non-interlaced
Size
107 B (107 bytes)
Hash
4ac9ebf2e60abab71df8aa318c01f146
466ae1a7130103fea8f2e70f2699d3df3956918a
c46ce5c0beb386d2fe600cf278c7e74868f32b6dbe45b7977d37ceae365b2cb8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/bg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:6b"
CONTENT-LENGTH: 107
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/lgbg.png?version=2.210

70.60.35.204

200 OK

3.9 kB

URL GET HTTP/1.1
70.60.35.204/image/lgbg.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 483 x 317, 8-bit colormap, non-interlaced
Size
3.9 kB (3878 bytes)
Hash
f27158a4c7033bd6de690c4a2bac3ff0
a3fb465118ece487970a3b375e8fb1f2ba3a1a1c
44af33f747fc456e0a73d60b3384b1d38a6946d6ed62afd24278ead8c9f0c603

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/lgbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f26"
CONTENT-LENGTH: 3878
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/loginlogo.jpg?version=2.210

70.60.35.204

200 OK

4.4 kB

URL GET HTTP/1.1
70.60.35.204/image/loginlogo.jpg?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 474x56, components 3
Size
4.4 kB (4407 bytes)
Hash
7fff9c7fb62f31395ac493b60d2060dc
509f2baa8f3acc5d893b8bd6fae5aa67b202770d
03334d3d56748945718362d5e6c8c762b0fd5868e02186e6e7206e79f85e7677

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/loginlogo.jpg?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1137"
CONTENT-LENGTH: 4407
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/jpeg

70.60.35.204/image/allbg.png?version=2.210

70.60.35.204

200 OK

881 B

URL GET HTTP/1.1
70.60.35.204/image/allbg.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 1 x 600, 8-bit colormap, non-interlaced
Size
881 B (881 bytes)
Hash
1aeb577649bef9feb132160d3ae7f3b5
19c05d04818cca95c7ccd8a2b7d68273a1229733
711cbb1fadbf5a1f3fcabd0c72c118315b2b0d1596b68c3a0865fc1864baebbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/allbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:371"
CONTENT-LENGTH: 881
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/horizonline.png?version=2.210

70.60.35.204

200 OK

223 B

URL GET HTTP/1.1
70.60.35.204/image/horizonline.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 320 x 5, 8-bit grayscale, non-interlaced
Size
223 B (223 bytes)
Hash
0d90fe9b9b7a16a1a9648c2cad296808
1df833014d06d01a8c365ce0691bd5c48acf453c
f74ad267235a559126688ca239b35794396d7dde5f268d8ab6a718f341544903

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/horizonline.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:df"
CONTENT-LENGTH: 223
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/pic.png?version=2.210

70.60.35.204

200 OK

13 kB

URL GET HTTP/1.1
70.60.35.204/image/pic.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 454 x 250, 8-bit/color RGBA, non-interlaced
Size
13 kB (12823 bytes)
Hash
9fb57c6e196e68248ab8f6d5395fdb55
90296ee97fd5d8622665a57841eec55015e716b3
13079dd7e5b1900b680ca2e7c9af587734994df89fb071523cf44cb6e6041f6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/pic.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3217"
CONTENT-LENGTH: 12823
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/icons2.png?version=2.210

70.60.35.204

200 OK

4.5 kB

URL GET HTTP/1.1
70.60.35.204/image/icons2.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
4.5 kB (4459 bytes)
Hash
ecd675022901936787a968790885c2e6
1463155ef1fd261cb9b74df334fe1f4fa7273e37
80bc584286ca497bc0975cc15c05783f778389a4793183658c54617330ba82d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/icons2.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/ui.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:116b"
CONTENT-LENGTH: 4459
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/logo.jpg?version=2.210

70.60.35.204

200 OK

2.2 kB

URL GET HTTP/1.1
70.60.35.204/image/logo.jpg?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 165x55, components 3
Size
2.2 kB (2249 bytes)
Hash
c24db6d5c07f870a54cbe1cd76757e13
7ee56d3de5b58f4aa75a33514cf338fe4d44145e
f9f92b1239ef65cbd7e6dc2d5e42dea72a9178eb7de6dfc011d1589e11917f79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/logo.jpg?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:8c9"
CONTENT-LENGTH: 2249
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/jpeg

70.60.35.204/jsBase/widget/js/jquery.ui.core.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.core.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/lib/jquery.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/jquery.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/jquery.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/html/previewindex.htm?version=3,2,7,98369

70.60.35.204

200 OK

54 kB

URL GET HTTP/1.1
70.60.35.204/html/previewindex.htm?version=3,2,7,98369
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (398), with CRLF line terminators
Size
54 kB (53971 bytes)
Hash
3550b8cc9e241824fc608da67586712e
31e402a8f6255366c548f5e9884795725dbd8b2d
009bb9a28805bf0db58e7ece8197e68c51c8739a284d8ee3be1639f241bcbec5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /html/previewindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:08 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:d2d3"
CONTENT-LENGTH: 53971
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/jquery.ui.widget.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.widget.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/dui.fisheye.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/dui.fisheye.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsCore/rsa.js?version=82908

70.60.35.204

200 OK

12 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rsa.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (11802), with no line terminators
Size
12 kB (11802 bytes)
Hash
eaae5edb9cd65b9f3436248baebe326a
b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba
0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rsa.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/aes.js?version=82908

70.60.35.204

200 OK

14 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/aes.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (13633), with no line terminators
Size
14 kB (13633 bytes)
Hash
99e69df704e8b0718b8c6fc7fc60d6ba
62ab8b0d8243aec79a66062aea3d36f98e19cbaa
4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/aes.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/common.js?version=82908

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/common.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (10177), with no line terminators
Size
10 kB (10177 bytes)
Hash
d573089eff82e144b909cf9273cd6f0e
59582544a931c68f1fa0b9def00bf9557f7d4795
724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/common.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/more.js

70.60.35.204

200 OK

27 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/more.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (27050), with no line terminators
Size
27 kB (27050 bytes)
Hash
9c52ac022747a849806bb1c37c3d6bcc
589e960fb22b9f39aa3090a6299b40f075dd0f38
dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/ptzCtrl.js?version=82908

70.60.35.204

200 OK

2.6 kB

URL GET HTTP/1.1
70.60.35.204/js/ptzCtrl.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (2587), with no line terminators
Size
2.6 kB (2587 bytes)
Hash
985f23369e7e158c795c5952a7ce3010
daebf326988ab1ce84b0139f36218637256db9fc
e894b564d69de1f921e82ce869bd8c70931024aa5330535b34f08022965fbbf1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/ptzCtrl.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a1b"
CONTENT-LENGTH: 2587
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/loginEx.js?version=82908

70.60.35.204

200 OK

5.5 kB

URL GET HTTP/1.1
70.60.35.204/js/loginEx.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (5453), with no line terminators
Size
5.5 kB (5453 bytes)
Hash
cd1c893afccb9a9fc087a0fb05da06a3
a7d06014c88c877054c26d7dbbf01bbae9b4621c
8add73e3c2ec97625c58d2a3d35f52484202b751cfd452b064f56d9492698440

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/loginEx.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:154d"
CONTENT-LENGTH: 5453
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/cap.js?version=82908

70.60.35.204

200 OK

203 B

URL GET HTTP/1.1
70.60.35.204/cap.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text
Size
203 B (203 bytes)
Hash
6e17fb5dc2ace8f321e6710e45b0b0de
0263ffd7dc3d405bab40c56694c22c4342929f06
c67ffb8a9e508f2f5a92e0641fc0cb401d776632610c484dce12e2f00cba0042

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cap.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONTENT-LENGTH: 203
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8

70.60.35.204/jsBase/lib/m1.2.js

70.60.35.204

200 OK

62 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/m1.2.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32155)
Size
62 kB (61931 bytes)
Hash
f6e9f50e585afd4893de1601be17290c
0273603651305e4e65c8e1c5bf57713cfae24cb8
4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/widget/css/ui.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/css/skin.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/OutsideCmd

70.60.35.204

200 OK

80 B

URL POST HTTP/1.1
70.60.35.204/OutsideCmd
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JSON text data
Size
80 B (80 bytes)
Hash
96402f390abdff2d4343994bcfe61fe2
a4e9084473469394421bd46178e48abb6c0940f7
7cd809a9f4500d4e2b5ad6cf3acb646b8ddbf9adefc1fab49f64889b02a87f5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /OutsideCmd HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 61
Origin: http://70.60.35.204
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 80

70.60.35.204/jsBase/widget/js/jquery.ui.core.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.core.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.core.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsCore/rpcCore.js?version=82908

70.60.35.204

200 OK

96 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rpcCore.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32113)
Size
96 kB (96460 bytes)
Hash
3e8ffef27fd0400e431f9a4a2347d748
fc8285b3ac73e7332165f77a1ef66f3dc4902d50
e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rpcCore.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/ft.js

70.60.35.204

200 OK

54 B

URL GET HTTP/1.1
70.60.35.204/js/ft.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
ASCII text, with no line terminators
Size
54 B (54 bytes)
Hash
2374bbec3e8afda232887349f68684e0
6a0f74e24e761a6dbe1ed66c60ad754f9ac8898f
861e0bb14632864724ac081466644149e3965ed358cdff0535227096c7e54724

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/ft.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:36"
CONTENT-LENGTH: 54
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/custom_logo/loginlogo.jpg

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/custom_logo/loginlogo.jpg
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_logo/loginlogo.jpg HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsBase/widget/js/jquery.ui.widget.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/jquery.ui.widget.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/jquery.ui.widget.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/custom_logo/logo.jpg

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/custom_logo/logo.jpg
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_logo/logo.jpg HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/previewindex.js?version=82908

70.60.35.204

200 OK

62 kB

URL GET HTTP/1.1
70.60.35.204/js/previewindex.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32122)
Size
62 kB (61751 bytes)
Hash
223c620cbb4003e7bfe57639cad10040
e8ef8bc8c0de214ca804a5f64cd8931d161c4f40
df98a64f6ba04376e028d866fadaa69dbcaa3f27e47eca6d30960d1329ded6e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/previewindex.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f137"
CONTENT-LENGTH: 61751
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/publicFunc.js?version=82908

70.60.35.204

200 OK

88 kB

URL GET HTTP/1.1
70.60.35.204/js/publicFunc.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32235)
Size
88 kB (88435 bytes)
Hash
c50b2436fa0866394d450f876dd93363
f1ddc44a14e9289919b61efdf35b10798c82d59a
a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:09 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/widget/js/dui.fisheye.js

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/js/dui.fisheye.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/js/dui.fisheye.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/GroupControl.js

70.60.35.204

200 OK

4.5 kB

URL GET HTTP/1.1
70.60.35.204/js/GroupControl.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (4457), with no line terminators
Size
4.5 kB (4457 bytes)
Hash
e484eb758e96921ba0145648a2958b4c
2cd1fcc7591b6091f72b2b23f9cccfda4a5e9c07
a287b2dc20f65c34b09bbf516344c2317587531e36faebe814902dc2edb04b79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/GroupControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1169"
CONTENT-LENGTH: 4457
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/WindowManager.js

70.60.35.204

200 OK

1.2 kB

URL GET HTTP/1.1
70.60.35.204/js/WindowManager.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (1231), with no line terminators
Size
1.2 kB (1231 bytes)
Hash
21366030c720311e4cf0b8ffff61c4b2
df4e78e20fae29a2c97ad793d79f10d53acf4eb5
c9622cb92df2e18f392fb623fbcd3584e4291129ef9e2ab8e92131e777af8241

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/WindowManager.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4cf"
CONTENT-LENGTH: 1231
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/Grid.js

70.60.35.204

200 OK

795 B

URL GET HTTP/1.1
70.60.35.204/js/Grid.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (795), with no line terminators
Size
795 B (795 bytes)
Hash
66f9f8fa7e2d39e85d41773655c1d208
a8f502c2b9f2c6e3140c8be1a09f6f2bf891867d
a5e7262f8217354bb191990e200137148bf33b04b7c8068265d15df885048302

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/Grid.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:31b"
CONTENT-LENGTH: 795
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/Calendar.js

70.60.35.204

200 OK

5.3 kB

URL GET HTTP/1.1
70.60.35.204/js/Calendar.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (5306), with no line terminators
Size
5.3 kB (5306 bytes)
Hash
21e037e49ddc0584d9883fc9b93d7537
879ccd00934764329cb12c76685788725698702b
052957f048ac4a921f38d017725b4927518feee9f4ddc107b526e8a5b58059f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/Calendar.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14ba"
CONTENT-LENGTH: 5306
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/PlayControl.js

70.60.35.204

200 OK

836 B

URL GET HTTP/1.1
70.60.35.204/js/PlayControl.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (836), with no line terminators
Size
836 B (836 bytes)
Hash
c2a7d1b954e08c08106880b45da72c54
5e8665bec7644b6b51703b0b8cad4de0e381dc1e
f42d5e32965ef4a081dc1ea04b436699893020d03fc3ab9aa7d80be509e9e29b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/PlayControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:344"
CONTENT-LENGTH: 836
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/FileList.js

70.60.35.204

200 OK

3.6 kB

URL GET HTTP/1.1
70.60.35.204/js/FileList.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (3584), with no line terminators
Size
3.6 kB (3584 bytes)
Hash
5effee7bfb51c0964b809bb615502362
73a649a5fcfb6a6ad05f431dcd868022106e4a29
c6365fdacf30596f0bb7bc21ed96a7e1d2abfdab68f3a3b8d8d574f774a40145

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/FileList.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:e00"
CONTENT-LENGTH: 3584
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/WindowManager.js

70.60.35.204

200 OK

1.2 kB

URL GET HTTP/1.1
70.60.35.204/js/WindowManager.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (1231), with no line terminators
Size
1.2 kB (1231 bytes)
Hash
21366030c720311e4cf0b8ffff61c4b2
df4e78e20fae29a2c97ad793d79f10d53acf4eb5
c9622cb92df2e18f392fb623fbcd3584e4291129ef9e2ab8e92131e777af8241

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/WindowManager.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4cf"
CONTENT-LENGTH: 1231
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/Grid.js

70.60.35.204

200 OK

795 B

URL GET HTTP/1.1
70.60.35.204/js/Grid.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (795), with no line terminators
Size
795 B (795 bytes)
Hash
66f9f8fa7e2d39e85d41773655c1d208
a8f502c2b9f2c6e3140c8be1a09f6f2bf891867d
a5e7262f8217354bb191990e200137148bf33b04b7c8068265d15df885048302

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/Grid.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:31b"
CONTENT-LENGTH: 795
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/GroupControl.js

70.60.35.204

200 OK

4.5 kB

URL GET HTTP/1.1
70.60.35.204/js/GroupControl.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (4457), with no line terminators
Size
4.5 kB (4457 bytes)
Hash
e484eb758e96921ba0145648a2958b4c
2cd1fcc7591b6091f72b2b23f9cccfda4a5e9c07
a287b2dc20f65c34b09bbf516344c2317587531e36faebe814902dc2edb04b79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/GroupControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1169"
CONTENT-LENGTH: 4457
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/publicFunc.js

70.60.35.204

200 OK

88 kB

URL GET HTTP/1.1
70.60.35.204/js/publicFunc.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32235)
Size
88 kB (88435 bytes)
Hash
c50b2436fa0866394d450f876dd93363
f1ddc44a14e9289919b61efdf35b10798c82d59a
a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/Component/chnlGroup.js

70.60.35.204

200 OK

4.6 kB

URL GET HTTP/1.1
70.60.35.204/Component/chnlGroup.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (4555), with no line terminators
Size
4.6 kB (4555 bytes)
Hash
efbd2103dee9fd12717b6b051f1f17b4
abdaff3e986b8252a8cd0181301565c55de9197d
323aa705d5d8e1663d9883e83542aa1e06d28fd09030f1ce6225f8d184279e6a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Component/chnlGroup.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:11cb"
CONTENT-LENGTH: 4555
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/Calendar.js

70.60.35.204

200 OK

5.3 kB

URL GET HTTP/1.1
70.60.35.204/js/Calendar.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (5306), with no line terminators
Size
5.3 kB (5306 bytes)
Hash
21e037e49ddc0584d9883fc9b93d7537
879ccd00934764329cb12c76685788725698702b
052957f048ac4a921f38d017725b4927518feee9f4ddc107b526e8a5b58059f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/Calendar.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:14ba"
CONTENT-LENGTH: 5306
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/playbackindex.js

70.60.35.204

200 OK

115 kB

URL GET HTTP/1.1
70.60.35.204/js/playbackindex.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (32091)
Size
115 kB (114559 bytes)
Hash
975cf3d7353719e7a39f104bbbe640b1
6c35f6067ca258633f0d62c5efb7de34ee122c05
6b2fb573a9ee43250e2cda5ef1dc49dfbf49db1779bca656e731923c764ccc96

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/playbackindex.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:10 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1bf7f"
CONTENT-LENGTH: 114559
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/PlayControl.js

70.60.35.204

200 OK

836 B

URL GET HTTP/1.1
70.60.35.204/js/PlayControl.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (836), with no line terminators
Size
836 B (836 bytes)
Hash
c2a7d1b954e08c08106880b45da72c54
5e8665bec7644b6b51703b0b8cad4de0e381dc1e
f42d5e32965ef4a081dc1ea04b436699893020d03fc3ab9aa7d80be509e9e29b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/PlayControl.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:344"
CONTENT-LENGTH: 836
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/FileList.js

70.60.35.204

200 OK

3.6 kB

URL GET HTTP/1.1
70.60.35.204/js/FileList.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (3584), with no line terminators
Size
3.6 kB (3584 bytes)
Hash
5effee7bfb51c0964b809bb615502362
73a649a5fcfb6a6ad05f431dcd868022106e4a29
c6365fdacf30596f0bb7bc21ed96a7e1d2abfdab68f3a3b8d8d574f774a40145

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/FileList.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:e00"
CONTENT-LENGTH: 3584
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/current_config/WebCapConfig

70.60.35.204

200 OK

808 B

URL GET HTTP/1.1
70.60.35.204/current_config/WebCapConfig
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JSON text data
Size
808 B (808 bytes)
Hash
4c406857cc63fd22e598816624fdfb2c
405b40872a97f068f9927bad21d9e883e2c88459
7f4e743e70c28716bc9c941d13bf7eba54c23180be27a97b73339eb83a1950e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/WebCapConfig HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:328"
CONTENT-LENGTH: 808
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

70.60.35.204

200 OK

8.1 kB

URL GET HTTP/1.1
70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, Unicode text, UTF-8 text, with very long lines (7863), with no line terminators
Size
8.1 kB (8083 bytes)
Hash
cd037bc5b18cf22dddb902898a3d123f
1c83cd6652d38000d7bb4ba32b58dd5957b5f70d
4ad1a591a7a20b9e4f603d783a96c892053d76967508444ef042a8ce3824f950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /html/alarmindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1f93"
CONTENT-LENGTH: 8083
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/js/publicFunc.js

70.60.35.204

200 OK

88 kB

URL GET HTTP/1.1
70.60.35.204/js/publicFunc.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32235)
Size
88 kB (88435 bytes)
Hash
c50b2436fa0866394d450f876dd93363
f1ddc44a14e9289919b61efdf35b10798c82d59a
a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/jsBase/widget/css/ui.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/js/playbackindex.js

70.60.35.204

200 OK

115 kB

URL GET HTTP/1.1
70.60.35.204/js/playbackindex.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
JavaScript source, ASCII text, with very long lines (32091)
Size
115 kB (114559 bytes)
Hash
975cf3d7353719e7a39f104bbbe640b1
6c35f6067ca258633f0d62c5efb7de34ee122c05
6b2fb573a9ee43250e2cda5ef1dc49dfbf49db1779bca656e731923c764ccc96

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/playbackindex.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:1bf7f"
CONTENT-LENGTH: 114559
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/widget/css/skin.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/jsBase/widget/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/widget/css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/jsCore/aes.js

70.60.35.204

200 OK

14 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/aes.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (13633), with no line terminators
Size
14 kB (13633 bytes)
Hash
99e69df704e8b0718b8c6fc7fc60d6ba
62ab8b0d8243aec79a66062aea3d36f98e19cbaa
4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/aes.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3541"
CONTENT-LENGTH: 13633
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/html/playbackindex.htm?version=3,2,7,98369

70.60.35.204

200 OK

56 kB

URL GET HTTP/1.1
70.60.35.204/html/playbackindex.htm?version=3,2,7,98369
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, Unicode text, UTF-8 text, with very long lines (55524), with no line terminators
Size
56 kB (56436 bytes)
Hash
07309ccae3d6cd373a19bca053accc97
3ecbdbc96a69441d796597b51bf5118b3c327001
77ee5ea4df3415fb9665a3b170dcd973e543c17d2a247aeebb1bee72d465d462

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /html/playbackindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:11 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:dc74"
CONTENT-LENGTH: 56436
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/jsBase/lib/more.js

70.60.35.204

200 OK

27 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/more.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (27050), with no line terminators
Size
27 kB (27050 bytes)
Hash
9c52ac022747a849806bb1c37c3d6bcc
589e960fb22b9f39aa3090a6299b40f075dd0f38
dffdfa0bc9f9cad7063d3e373143645e1cd87cd0164acbd96d94ad447a874f5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/more.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:69aa"
CONTENT-LENGTH: 27050
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/rsa.js

70.60.35.204

200 OK

12 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rsa.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ASCII text, with very long lines (11802), with no line terminators
Size
12 kB (11802 bytes)
Hash
eaae5edb9cd65b9f3436248baebe326a
b7a31d3ea6697790d04a2d1ba7a142b2d4f203ba
0b4787424c32d1339b2b2e5eae3e9a31fa8b653c21f5b2828ed72ddfbce961c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rsa.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2e1a"
CONTENT-LENGTH: 11802
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsCore/common.js?version=82908

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/common.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (10177), with no line terminators
Size
10 kB (10177 bytes)
Hash
d573089eff82e144b909cf9273cd6f0e
59582544a931c68f1fa0b9def00bf9557f7d4795
724078fce5b73c79eec9bfba1b9ee86a213763ed1d105313d0bc46c7f4c18d24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/common.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:27c1"
CONTENT-LENGTH: 10177
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/jsBase/lib/m1.2.js

70.60.35.204

200 OK

62 kB

URL GET HTTP/1.1
70.60.35.204/jsBase/lib/m1.2.js
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32155)
Size
62 kB (61931 bytes)
Hash
f6e9f50e585afd4893de1601be17290c
0273603651305e4e65c8e1c5bf57713cfae24cb8
4def57faf702f06bbbc4c4429e963a1facc3fe9d0bb70eb57c2daf4f2a43dfee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsBase/lib/m1.2.js HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:f1eb"
CONTENT-LENGTH: 61931
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/js/alarmindex.js?version=82908

70.60.35.204

200 OK

5.1 kB

URL GET HTTP/1.1
70.60.35.204/js/alarmindex.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369

File type
ASCII text, with very long lines (5113), with no line terminators
Size
5.1 kB (5113 bytes)
Hash
695d842218bad7b602be804587d12f8f
6c15f98426ec559d94d5360662450546b892787d
ca4f5f4b99b7fd9a7ea86df666989bba4fa11fab24e3266b01fcf8047118084f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/alarmindex.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:13f9"
CONTENT-LENGTH: 5113
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/favicon.ico

70.60.35.204

200 OK

1.2 kB

URL GET HTTP/1.1
70.60.35.204/favicon.ico
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
bd9e17c46bbbc18af2a2bd718dddad0e
f8548e9f44dd45eefadd22bf0c758cb2d04912d7
95720d030ba3db423c71eef7c6d919151b2e868b9331506577bcf1050f846f98

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:47e"
CONTENT-LENGTH: 1150
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/x-icon

70.60.35.204/current_config/preLanguage?1714598893029

70.60.35.204

200 OK

26 B

URL GET HTTP/1.1
70.60.35.204/current_config/preLanguage?1714598893029
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JSON text data
Size
26 B (26 bytes)
Hash
662021470c60975c899f5fb14a073815
d511585b2f18e5c7d9d35e17b54abd0da6bb68f5
d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/preLanguage?1714598893029 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/jsCore/rpcCore.js?version=82908

70.60.35.204

200 OK

96 kB

URL GET HTTP/1.1
70.60.35.204/jsCore/rpcCore.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, ASCII text, with very long lines (32113)
Size
96 kB (96460 bytes)
Hash
3e8ffef27fd0400e431f9a4a2347d748
fc8285b3ac73e7332165f77a1ef66f3dc4902d50
e11f1a2ec74b8c8fe1c3fb670a5766fbbe7d8435a9e1deae276d0e633ce4e5af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rpcCore.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:178cc"
CONTENT-LENGTH: 96460
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:13 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/html/playbackindex.htm?version=3,2,7,98369

70.60.35.204

200 OK

56 kB

URL GET HTTP/1.1
70.60.35.204/html/playbackindex.htm?version=3,2,7,98369
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, Unicode text, UTF-8 text, with very long lines (55524), with no line terminators
Size
56 kB (56436 bytes)
Hash
07309ccae3d6cd373a19bca053accc97
3ecbdbc96a69441d796597b51bf5118b3c327001
77ee5ea4df3415fb9665a3b170dcd973e543c17d2a247aeebb1bee72d465d462

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /html/playbackindex.htm?version=3,2,7,98369 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:dc74"
CONTENT-LENGTH: 56436
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

70.60.35.204/js/publicFunc.js?version=82908

70.60.35.204

200 OK

88 kB

URL GET HTTP/1.1
70.60.35.204/js/publicFunc.js?version=82908
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32235)
Size
88 kB (88435 bytes)
Hash
c50b2436fa0866394d450f876dd93363
f1ddc44a14e9289919b61efdf35b10798c82d59a
a26a3a7339005b1a7d84cde70e78863344fd217322545d2dfa5a7b92a8fea05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js?version=82908 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/alarmindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:12 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:15973"
CONTENT-LENGTH: 88435
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:13 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/custom_lang/English.txt

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/custom_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/web_lang/English.txt

70.60.35.204

200 OK

222 kB

URL GET HTTP/1.1
70.60.35.204/web_lang/English.txt
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Size
222 kB (221698 bytes)
Hash
c1333a521c7036f0a3508423b97c09f6
782ba1fef7ab10eaae53f6c75c2fc6fafb5944bb
2868055ca023540965ae165e4268100ac64ca35679d01858ec6c5ef8c18a42a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_lang/English.txt HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:15 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:36202"
CONTENT-LENGTH: 221698
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/css/reset.css

70.60.35.204

200 OK

1.2 kB

URL GET HTTP/1.1
70.60.35.204/css/reset.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.2 kB (1215 bytes)
Hash
0a54b62f33d4f81c78bb13794aafdbe5
c87391a44c4937f8be066a565114ca33ae95a6bd
884cd5c4ddfbf0f86e7f0fc2c7a0daf7278f5e8ed0a96863db9471ebb3303b0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/reset.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4bf"
CONTENT-LENGTH: 1215
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/previewindex.css

70.60.35.204

12 kB

URL GET
70.60.35.204/css/previewindex.css
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
12 kB (11650 bytes)
Hash
8453b3c8512e238b4a5b78b439f76091
e568f451f62b6443a442cfc92d09e521f4ccbfda
a87fa4886805977877adfbb1a47b9c3b4f2d5726ffd24792d67525ff4840d255

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/previewindex.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2d82"
CONTENT-LENGTH: 11650
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/oem.css

70.60.35.204

404 Not Found

48 B

URL GET HTTP/1.1
70.60.35.204/css/oem.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/oem.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

70.60.35.204/css/fn.css

70.60.35.204

200 OK

10 kB

URL GET HTTP/1.1
70.60.35.204/css/fn.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
10 kB (10040 bytes)
Hash
8cb5379d291ce2c02bd22b9fc24ed9a8
dd342d923758dc38d5dcc2bd47beb70f090e84ae
26ca0b2d7557b1f089cab2d58cddf2c76650d9b701c8d147c71ee199c065c7c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/fn.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:2738"
CONTENT-LENGTH: 10040
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/skin.css

70.60.35.204

200 OK

17 kB

URL GET HTTP/1.1
70.60.35.204/css/skin.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
17 kB (16983 bytes)
Hash
c42b0184012e18a9cc65911f354512b5
fd5935b5bc6f69d4353a3f0855e400488b77ef84
23cf274abcbb4b7be70c9f113cabaa817e5e73de0641f1eb22c2f74282322500

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/skin.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:4257"
CONTENT-LENGTH: 16983
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/css/ui.css

70.60.35.204

200 OK

42 kB

URL GET HTTP/1.1
70.60.35.204/css/ui.css
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
42 kB (42391 bytes)
Hash
b0b4d1abd3e2d04174fdd05add6ea3bd
b464ce450253ab64aea5393293744be3c4dc21e3
eb01e25a1ad6a2bb7284020ba1dbccca4d0ea642ff9c38e6b575f569ee02e160

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/ui.css HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:a597"
CONTENT-LENGTH: 42391
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/playbackline.png

70.60.35.204

610 B

URL GET
70.60.35.204/image/playbackline.png
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 1 x 400, 8-bit colormap, non-interlaced
Size
610 B (610 bytes)
Hash
3ad2f87e9a0b43f334d81d3c7d2a7abb
e0f649b27b1db6181d1033ba42f3046eb756e0dd
98c25303261fc862c03515b853fc10eb5a1ba4d2258f05e3a9948b78b5c2febf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/playbackline.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/playbackindex.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:262"
CONTENT-LENGTH: 610
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/local.png

70.60.35.204

200 OK

337 B

URL GET HTTP/1.1
70.60.35.204/local.png
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
ISO-8859 text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
9e9bf2b9215776e174f4b48cfff0a9fe
ae8519c1d7f8f19ebd68d68fa13c756aaba8d43e
7d11ee23f7f7ddb76c22628e2141285f7e0290f725ce5ddbb681384c54364534

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /local.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:151"
CONTENT-LENGTH: 337
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/playback.png

70.60.35.204

39 kB

URL
70.60.35.204/image/playback.png
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

File type
PNG image data, 486 x 478, 8-bit/color RGBA, non-interlaced
Size
39 kB (38602 bytes)
Hash
9fd47be575c6e2f5ef378fb04e399b50
e8c7247c2c82f59dd693c605baae2da22ae6916b
ebc7ed84a3bb247b5dfc54404f8ce3c9642d2c2667c3dfe8657d429fb7ab189d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/playback.png HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/playbackindex.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:96ca"
CONTENT-LENGTH: 38602
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/icons.png?version=2.210

70.60.35.204

40 kB

URL
70.60.35.204/image/icons.png?version=2.210
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

File type
PNG image data, 570 x 720, 8-bit/color RGBA, non-interlaced
Size
40 kB (40404 bytes)
Hash
66d18fd262d66feb4e91657d32c165a4
6d8f2affbdc7d7320855c0423bb5660317befef8
cfd240d736e807e5de6017356dfbfb23dcf497519fd5bceb323a83359426646d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/icons.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:9dd4"
CONTENT-LENGTH: 40404
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/current_config/preLanguage?1714598898104

70.60.35.204

26 B

URL
70.60.35.204/current_config/preLanguage?1714598898104
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

File type
JSON text data
Size
26 B (26 bytes)
Hash
662021470c60975c899f5fb14a073815
d511585b2f18e5c7d9d35e17b54abd0da6bb68f5
d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/preLanguage?1714598898104 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/html/previewindex.htm?version=3,2,7,98369
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:46 GMT
Etag: "46:1a"
CONTENT-LENGTH: 26
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

70.60.35.204/image/allbg.png?version=2.210

70.60.35.204

200 OK

881 B

URL GET HTTP/1.1
70.60.35.204/image/allbg.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 1 x 600, 8-bit colormap, non-interlaced
Size
881 B (881 bytes)
Hash
1aeb577649bef9feb132160d3ae7f3b5
19c05d04818cca95c7ccd8a2b7d68273a1229733
711cbb1fadbf5a1f3fcabd0c72c118315b2b0d1596b68c3a0865fc1864baebbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/allbg.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:371"
CONTENT-LENGTH: 881
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/pic.png?version=2.210

70.60.35.204

200 OK

13 kB

URL GET HTTP/1.1
70.60.35.204/image/pic.png?version=2.210
IP
70.60.35.204:80
ASN
#10796 TWC-10796-MIDWEST

Requested by
http://70.60.35.204/

File type
PNG image data, 454 x 250, 8-bit/color RGBA, non-interlaced
Size
13 kB (12823 bytes)
Hash
9fb57c6e196e68248ab8f6d5395fdb55
90296ee97fd5d8622665a57841eec55015e716b3
13079dd7e5b1900b680ca2e7c9af587734994df89fb071523cf44cb6e6041f6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/pic.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:3217"
CONTENT-LENGTH: 12823
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

70.60.35.204/image/icons.png?version=2.210

70.60.35.204

40 kB

URL
70.60.35.204/image/icons.png?version=2.210
IP
70.60.35.204:0
ASN
#10796 TWC-10796-MIDWEST

File type
PNG image data, 570 x 720, 8-bit/color RGBA, non-interlaced
Size
40 kB (40404 bytes)
Hash
66d18fd262d66feb4e91657d32c165a4
6d8f2affbdc7d7320855c0423bb5660317befef8
cfd240d736e807e5de6017356dfbfb23dcf497519fd5bceb323a83359426646d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/icons.png?version=2.210 HTTP/1.1
Host: 70.60.35.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://70.60.35.204/css/skin.css
Cookie: DHLangCookie30=%2Fweb_lang%2FEnglish.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 01 May 2024 16:28:17 GMT
Last-Modified: Fri, 01 Jun 2018 10:37:44 GMT
Etag: "1527849464:9dd4"
CONTENT-LENGTH: 40404
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML