| 1.55.143.80/ | 1.55.143.80 | | 481 B |
IP1.55.143.80:0 ASN#18403 FPT Telecom Company
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash2621b0025eba08059205075d7ce110cf 3465a60393b00a2c97dc6ef379d6c8e7942111c2 2481efc222e836ea5ad0f588893c8aa91750e6b338991dec241a393e98183b31
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:00 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e50-1e1"
Content-Length: 481
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:23 GMT
|
|
| 1.55.143.80/favicon.ico | 1.55.143.80 | 200 OK | 1.2 kB |
IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash89b932fcc47cf4ca3faadb0cfdef89cf bbe285bc080460c8d71e80965e993852e62d438f 7d249b2fca8ab8d5ab373444732b8bc9104ab597976640f3441ddfd70148b527
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:01 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e4f-47e"
Content-Length: 1150
Content-Type: image/x-icon
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/page/login.asp?_1714862882958 | 1.55.143.80 | 200 OK | 4.6 kB |
URL User Request GET HTTP/1.11.55.143.80/doc/page/login.asp?_1714862882958 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
File typeHTML document, ASCII text, with CRLF line terminators Hashfdfd62a3f2a7df8f6b10a33187363cc3 69c2e9751eb95d09ee8d25f19e45fd6c71be1945 2d41ed640df198c4002209034dc62af90d1b9cf058a0c54d686090d5aad41a6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/page/login.asp?_1714862882958 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://1.55.143.80/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:02 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1ce7-1229"
Content-Length: 4649
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:23 GMT
|
|
| 1.55.143.80/doc/script/lib/seajs/seajs/sea.min.js | 1.55.143.80 | 200 OK | 6.4 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/seajs/seajs/sea.min.js IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (511) Hash7e060169c1fdcef260258da925c064f2 724fb40ca1818764bcde34a85ba1068233dcc5b1 51c6399460ae18751972bf0baa8c39923eec6e15d57a9a4ca5bd996bfb26effe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/seajs/seajs/sea.min.js HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:02 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1df7-18dd"
Content-Length: 6365
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/ui/css/ui.css?version=1714862884327 | 1.55.143.80 | 200 OK | 151 kB |
URL GET HTTP/1.11.55.143.80/doc/ui/css/ui.css?version=1714862884327 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Size151 kB (150714 bytes) Hash5924859fac13529b759b7c665160dc8c 4a5eac881139e63c7e396843880e336190e2a36b fcd304a7702a20146b0fb5263d8b656203f379a3c9e00ef29c7edeea4d56e43f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/css/ui.css?version=1714862884327 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:02 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e0a-24cba"
Content-Length: 150714
Content-Type: text/css
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:40:00 GMT
|
|
| 1.55.143.80/favicon.ico | 1.55.143.80 | 200 OK | 1.2 kB |
IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash89b932fcc47cf4ca3faadb0cfdef89cf bbe285bc080460c8d71e80965e993852e62d438f 7d249b2fca8ab8d5ab373444732b8bc9104ab597976640f3441ddfd70148b527
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:04 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e4f-47e"
Content-Length: 1150
Content-Type: image/x-icon
Connection: keep-alive
Keep-Alive: timeout=180, max=96
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/script/lib/seajs/config/sea-config.js?version=1714862885996 | 1.55.143.80 | 200 OK | 1.9 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/seajs/config/sea-config.js?version=1714862885996 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (1869), with no line terminators Hashb18e1a093484a7da635bccd84a32f086 0b764945a529093a40c20072c173e73f8a596c13 c72daee9de95fdbf1ac56d0fad8fd0e10777ecd785f8dc7a894cb8f74a49c763
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/seajs/config/sea-config.js?version=1714862885996 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:04 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1df3-74d"
Content-Length: 1869
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:49 GMT
|
|
| 1.55.143.80/doc/script/lib/seajs/nocache/nocache.js | 1.55.143.80 | 200 OK | 204 B |
URL GET HTTP/1.11.55.143.80/doc/script/lib/seajs/nocache/nocache.js IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with no line terminators Hash43bc248e54d2b0dae5736de8ba6a3b16 d1a16609a4d12de2ce9b228328bae87c2b89353a fd35f0873d0b33c87fa96cc17015ee2a8958cd07fa8e65a4a7c9b7ea1766f433
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/seajs/nocache/nocache.js HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:04 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1df5-cc"
Content-Length: 204
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 08 Jan 2021 08:42:49 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery/jquery.min.js | 1.55.143.80 | 200 OK | 98 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery/jquery.min.js IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (32039) Hash31c529eeadca3a517aea7fea984a492e a733c266d6aaaabf4bf8c388b21660dda44bb9ff fbecc5d3e6749de47e911611d59219e165240cc29dabf1c46018aefa817b230f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery/jquery.min.js HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:04 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1da6-17d10"
Content-Length: 97552
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=96
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/jsPlugin/polyfill2.js | 1.55.143.80 | 200 OK | 108 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jsPlugin/polyfill2.js IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (33741), with NEL line terminators Size108 kB (108458 bytes) Hash290f66815ede6af300e945fd4a8f6119 8bd2bc7debb11d188f2a30206a80ba24e8dfd1a3 ea259836d608a21e549f46857ccf178695d184ff3eec7230a8aa36e1c6c95f6f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jsPlugin/polyfill2.js HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:04 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dec-1a7aa"
Content-Length: 108458
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/common.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 15 kB |
URL GET HTTP/1.11.55.143.80/doc/script/common.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashcaa874072832748c0d9661563b974b99 c4308c6bda830a93b0fd54e00ce890c5c02ced2c bf80edf24415caeceb8fc20ab90f7ea6172d56c350612d9f5131dd5ac4b82d26
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/common.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:05 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1cfe-39bc"
Content-Length: 14780
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/cookie/jquery.cookie.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 679 B |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/cookie/jquery.cookie.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (679), with no line terminators Hashfb09eeb11bf7ffc82d1646daf133b09d 885c389a3d0da5a52213e9f0afd5db05e4ce6b67 e133a98f077e7befbf6fdbba043ea780473f9987a450d26aa067525131b4d2dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/cookie/jquery.cookie.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:06 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1da2-2a7"
Content-Length: 679
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=94
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/lib/json2.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 2.9 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/json2.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (2935), with no line terminators Hash58b056b497b0837f56bdb7a9dbbef18b b72a5406c1e4e5a5e18dedc83b92615c0e0f2eee 7b8a7efbaf4cdf38ed38557ce99fc54b9261f9478776d4e5ed9672d892626205
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/json2.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:06 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1de2-b77"
Content-Length: 2935
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:44 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/layout/jquery.layout.js?version=V4.0.1build210105 | 1.55.143.80 | | 63 kB |
URL 1.55.143.80/doc/script/lib/jquery/layout/jquery.layout.js?version=V4.0.1build210105 IP1.55.143.80:0 ASN#18403 FPT Telecom Company
File typeJavaScript source, ASCII text, with very long lines (32624) Hashefb03022af618173dbc39e141d56f379 582afba05c83c2a7610b6d3a6a74d60c77cc9dd7 31fb3686fb65e1291adf6ec8be3f76f4be847c7c45318eda42b0ecbc3e8c3193
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/layout/jquery.layout.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:06 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1db3-f464"
Content-Length: 62564
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:48 GMT
|
|
| 1.55.143.80/doc/script/lib/base64.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 1.5 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/base64.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeASCII text, with very long lines (1485), with no line terminators Hash1107ad0db4ea7b095cc8333b2a5c2482 f6542236da44464a1bd35454e583c8136c457c53 8d7bda7755683a49c9998b8240a5b7c91ad1af341a4635bffaf2b2d65f65921f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/base64.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d96-5cd"
Content-Length: 1485
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:44 GMT
|
|
| 1.55.143.80/doc/script/lib/webSession.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 909 B |
URL GET HTTP/1.11.55.143.80/doc/script/lib/webSession.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (909), with no line terminators Hashb3502e85584241e49ba8a587905ff414 d555b53552bb7efd80da168dce934fb345a0f03f df52301ffbc6bc3e294cb749ae3e2143cd57f75f0ae7738b2845a4e0e6850725
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/webSession.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dfc-38d"
Content-Length: 909
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=96
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/lib/translator.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 2.0 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/translator.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1988), with no line terminators Hasha5ad52b0076f5533ddb64b5081113bd6 01a700850cdcaa6f7c5b54b8530aa2ce80df73e6 3bb401a9bb5da537c8fbaaaffd12634e91d083595196697bac42f78c1ccd85cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/translator.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1df9-7c8"
Content-Length: 1992
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:44 GMT
|
|
| 1.55.143.80/doc/script/lib/angularjs/angularjs/angular.min.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 91 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/angularjs/angularjs/angular.min.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (655) Hash3c7b2ef53f00b70dff61c9de7b4d4f64 9583120456f268278236334ef189f306279264f5 300d7ca59a52ace3860f451365dd4e993c847b53ad32e84704e2281ea8c35c9c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/angularjs/angularjs/angular.min.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:06 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d95-16240"
Content-Length: 90688
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/utils.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 17 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/utils.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (16951), with no line terminators Hasha7c6988746ab6c98702159072b75f655 966a36962509de8e0be59b1b05ae4412b26a13ab 7526559f5acfd295f19f8b0329df457e74742ab23e8545fc6ab68d38db52546a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/utils.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dfa-423f"
Content-Length: 16959
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/lib/encryption/cryptico.min.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 44 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/encryption/cryptico.min.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeASCII text, with very long lines (566) Hash4b820cb63c6f80f2e96a923cc3e80f86 f53a6b67c3908685e6bc75269494773876c112ee 5091677736355d037662d083a7b75bcb3c73d577d620901cf0d2bacc8c40ac65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/encryption/cryptico.min.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:06 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d9a-abc7"
Content-Length: 43975
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/dialog.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 5.5 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/dialog.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (5547), with no line terminators Hash1e8072853790fe46bbcef6343a2e9234 e19ef17c7edb42a410b2826a0151088b8773012d 495c70d2c32e08e403bff4af3f01e13eb4cdabcf314f716a540997386928fce8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/dialog.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d97-15ab"
Content-Length: 5547
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:44 GMT
|
|
| 1.55.143.80/doc/script/isapi/webAuth.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 13 kB |
URL GET HTTP/1.11.55.143.80/doc/script/isapi/webAuth.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (12649), with no line terminators Hash871e631456c0fbeee3d137fb6ea1fe65 820b672d16f8b4aef621e0f837682806c1670f13 af86df7bfc39a57512a7b27822d459c197d29be4c66c15d0b6702b88ca39ddf0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/isapi/webAuth.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d90-3169"
Content-Length: 12649
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:43 GMT
|
|
| 1.55.143.80/doc/script/lib/encryption/AES.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 5.3 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/encryption/AES.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (5265), with no line terminators Hash018372f6e81362242fe9bec55e4e7ba0 7d7ae188d84bd9f328d72e10197c9772f16b8b42 90015d0792538141d0fa0b91b9508c8ac9e30902f80743c01b1cf3e2fecab704
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/encryption/AES.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d99-1491"
Content-Length: 5265
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=94
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/isapi/websdk.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 85 kB |
URL GET HTTP/1.11.55.143.80/doc/script/isapi/websdk.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashe7c2fa7d107234f820b6d7b49c6b7d75 2a4781edddc8ec604e5f082053e9fd67108414a4 5fa325c34190e601a6474ddd65b6623ddf665a908fe1183f381ef46db5ea4abd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/isapi/websdk.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d91-14ce4"
Content-Length: 85220
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=93
Last-Modified: Fri, 08 Jan 2021 08:42:44 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/artDialog/jquery.artDialog.source.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 16 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/artDialog/jquery.artDialog.source.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (15897), with no line terminators Hashc960df2b679165f1c3c7cb93696c44ff 8d7b2f05a662988b4d898d10a112042d3515d0a9 63dc985290eee1481c4eff155f94a70935c3bcfc5d030e5f855844b9957265d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/artDialog/jquery.artDialog.source.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:08 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1da0-3e26"
Content-Length: 15910
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/lib/encryption/crypto.min.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 13 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/encryption/crypto.min.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (548) Hash4ff108e4584780dce15d610c142c3e62 77e4519962e2f6a9fc93342137dbb31c33b76b04 fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/encryption/crypto.min.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d9b-3430"
Content-Length: 13360
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=99
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 362 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size362 kB (361630 bytes) Hashbe85d2bace460a90c5ccdb2df03a2911 210419a9367ee271940c8843b29cd09d4d9836c0 dd9c1bb580d14600933534513ae1cc7939eb6ce46037315c77b152b33c5d9aa9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:07 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1de4-5849e"
Content-Length: 361630
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js | 1.55.143.80 | | 362 kB |
URL 1.55.143.80/doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js IP1.55.143.80:0 ASN#18403 FPT Telecom Company
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size362 kB (361630 bytes) Hashbe85d2bace460a90c5ccdb2df03a2911 210419a9367ee271940c8843b29cd09d4d9836c0 dd9c1bb580d14600933534513ae1cc7939eb6ce46037315c77b152b33c5d9aa9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jsPlugin/jsVideoPlugin-1.0.0.min.js HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:08 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1de4-5849e"
Content-Length: 361630
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/SDK/language | 1.55.143.80 | 200 OK | 147 B |
IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeXML 1.0 document, ASCII text Hash78effafef8a902eeec377faf7b0745aa 3f84824dfa11a0e9f2937a01b025be0b7d65f60a 722473db053b01304fea8997cfb26778ff832db4821046467b22aec1ca5d76ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /SDK/language HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:11 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Content-Length: 147
Content-Type: application/xml; charset="UTF-8"
Connection: keep-alive
Keep-Alive: timeout=180, max=96
|
|
| 1.55.143.80/doc/i18n/Languages.json?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 541 B |
URL GET HTTP/1.11.55.143.80/doc/i18n/Languages.json?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash048e82f8738c65c699ed0b074965076c 497f17c235d0b4c2ca634449c6085461d1c6ca29 0e081bfd205cf652692ec5a99e15999f464bc95f8db0a167340ff2d23d651913
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/i18n/Languages.json?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:11 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1c3f-21d"
Content-Length: 541
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 07 May 2021 13:07:37 GMT
|
|
| 1.55.143.80/doc/i18n/en/Common.json?version=V4.0.1build210105 | 1.55.143.80 | | 22 kB |
URL 1.55.143.80/doc/i18n/en/Common.json?version=V4.0.1build210105 IP1.55.143.80:0 ASN#18403 FPT Telecom Company
Hash907e9bba3ea5c04e938ed80fcdbba6b6 0f61034c924e79c7891d8980e47ae88ac9713919 34b2ce50b61cc7dbfa2967bda9ac1697ae4c0e1e329b7764524abf8bc2ba7566
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/i18n/en/Common.json?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:13 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1c38-5814"
Content-Length: 22548
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=94
Last-Modified: Fri, 08 Jan 2021 08:39:54 GMT
|
|
| 1.55.143.80/doc/script/login.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 16 kB |
URL GET HTTP/1.11.55.143.80/doc/script/login.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (16236), with no line terminators Hash8b8164d828f3a3afd4ed6efa652c1f98 66b762356e63e38ff1ee9f5a1e1f3c31588f5848 bb676cb896c71a9a927f1aba7d541b81ba5c316b9c863f87f3ad287220b5dcba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/login.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:13 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dfe-3f6c"
Content-Length: 16236
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=93
Last-Modified: Fri, 08 Jan 2021 08:42:25 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.tooltips.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 2.4 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.tooltips.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (2383), with no line terminators Hash27dda132d40c95836efb824eecc37556 3ef754af96abd7050b91a71fc9b22d3050a7ac93 5b23ad7fec20c13706b4e3e9f841797d41c814aa21760638cf79ed77f2e5cef1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery-ui/jquery.ui.tooltips.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1daf-94f"
Content-Length: 2383
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:46 GMT
|
|
| 1.55.143.80/doc/script/lib/encryption/encryption.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 1.8 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/encryption/encryption.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (1833), with no line terminators Hash8b84eee0c5b725bc68f9c983b2578246 834a31002f5664bf2f09a745cf149709982680cc 87dd5b1cfce086c9f68da6f018cbc73d61176cf3ee13f96dafc39bafaaa3297e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/encryption/encryption.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d9c-729"
Content-Length: 1833
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=92
Last-Modified: Fri, 08 Jan 2021 08:42:45 GMT
|
|
| 1.55.143.80/doc/script/wizard.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 8.9 kB |
URL GET HTTP/1.11.55.143.80/doc/script/wizard.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (8908), with no line terminators Hashb025f901ce6692a47b5d01683ff74166 818fad7654c41e9da4de42eac2b75bda78d75a4f 796b9587640644dd0dd0cc55922f4c2b04430170329338cc558ebdf688f0eb75
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/wizard.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e07-22cc"
Content-Length: 8908
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:26 GMT
|
|
| 1.55.143.80/doc/script/isapi/response.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 12 kB |
URL GET HTTP/1.11.55.143.80/doc/script/isapi/response.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (12160), with no line terminators Hashee0eadeb3028ae3f7189d8c76503588a ca3d5f49a365d99050a4ae2be8bd26a54e50cfb4 ec24945a9c250bc0b9ffba5ec098def16201309c7709d4511a2ac457bdb1e6fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/isapi/response.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d8f-2f80"
Content-Length: 12160
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=93
Last-Modified: Fri, 08 Jan 2021 08:42:43 GMT
|
|
| 1.55.143.80/doc/script/config/network/advancedWAN.js?version=V4.0.1build210105 | 1.55.143.80 | 404 Not Found | 166 B |
URL GET HTTP/1.11.55.143.80/doc/script/config/network/advancedWAN.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeHTML document, ASCII text, with CRLF line terminators Hashd3597f128ae39a4655c198a1952745e2 e3618639387fa644af0f9260fff7052bbb87b566 de51228533654ca5c505984e74fb8e3a1bf2a0571b326c2faa832db7c786280c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/network/advancedWAN.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Content-Length: 166
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=96
|
|
| 1.55.143.80/doc/script/config/service.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 22 kB |
URL GET HTTP/1.11.55.143.80/doc/script/config/service.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (22139), with no line terminators Hash043d4c8367ac0908826fca850fe01041 de2ed8f8c274cf652b39032de0ea7342dde5d853 fd0231197b3f8613e2846a4304e222216ede4496ab27ec062834af08e72b4fb7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/service.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d36-567b"
Content-Length: 22139
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=92
Last-Modified: Fri, 08 Jan 2021 08:42:28 GMT
|
|
| 1.55.143.80/doc/script/common/plugin.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 24 kB |
URL GET HTTP/1.11.55.143.80/doc/script/common/plugin.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (24405), with no line terminators Hash2e9eea50be0a57fe1c9aefeb3cbad863 dc9f75a40bd3c933c1199ba7171d632de220eefb b4e876bbc97f3c3944d3c3bcc670225a102ee0297c45218340e470f89ba70119
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/common/plugin.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1cfa-5f55"
Content-Length: 24405
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=92
Last-Modified: Fri, 08 Jan 2021 08:42:27 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery-ui/ui.jquery.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 20 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery-ui/ui.jquery.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (20150), with no line terminators Hasha663b2802ec580f21d68d3f136a62972 077c7bbf01f2d056e94f8ab73a699f010ba9b9d3 7122094a688a1674f15be00963c8fcd602e90edceaf84d2106fb24211f6f4c1b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery-ui/ui.jquery.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1db1-4eb6"
Content-Length: 20150
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=96
Last-Modified: Fri, 08 Jan 2021 08:42:47 GMT
|
|
| 1.55.143.80/doc/script/isapi/device.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 39 kB |
URL GET HTTP/1.11.55.143.80/doc/script/isapi/device.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (32556) Hash0a21eaada292ee61f0ba32a9397eec35 9db4ac7c1734e646660a78b3c0a297ac3518a669 9a4d8927bb1692325cd9f1226f9f8c1ab2c9e86b1d38534e4a3c16c3b2aee0c2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/isapi/device.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d8e-9966"
Content-Length: 39270
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=91
Last-Modified: Fri, 08 Jan 2021 08:42:43 GMT
|
|
| 1.55.143.80/doc/script/config/network/advancedWifi.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 25 kB |
URL GET HTTP/1.11.55.143.80/doc/script/config/network/advancedWifi.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hash8d0efbc0446d9ad69a8e883bda2c2f00 824ff452bb5673128c6577b848f8caafbb82e800 361ef83debcbde6bd77457e1c7488468d4447da5012429be42f3e4bb251c3281
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/network/advancedWifi.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d2e-621d"
Content-Length: 25117
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:42:35 GMT
|
|
| 1.55.143.80/doc/script/config/storage/storageManageHarddisk.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 11 kB |
URL GET HTTP/1.11.55.143.80/doc/script/config/storage/storageManageHarddisk.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (10692), with no line terminators Hashabe4293d702bdf2250affea0c4df4f66 bdf4cc27e3a34e59d5a3fedd55d2f8facb6ef57b e5cadf86665a0edbcd9e79e72e38275a995c500e2c546d192404725279521f68
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/storage/storageManageHarddisk.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d44-29c4"
Content-Length: 10692
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=91
Last-Modified: Fri, 08 Jan 2021 08:42:37 GMT
|
|
| 1.55.143.80/doc/script/config/ui.config.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 56 kB |
URL GET HTTP/1.11.55.143.80/doc/script/config/ui.config.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashfeff07ba909415c2f0778b66b55f7fbb 6b7f4f7e034e73b112f6dfb04bdcdd9be00e6427 e0f7d57930bd7e706ebca7e0ee2f654abd61681723aae196e4738e02599bcedb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/ui.config.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:14 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d67-dc41"
Content-Length: 56385
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=98
Last-Modified: Fri, 08 Jan 2021 08:42:29 GMT
|
|
| 1.55.143.80/doc/script/service.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 3.8 kB |
URL GET HTTP/1.11.55.143.80/doc/script/service.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (3825), with no line terminators Hash1e7899422ec80c446f62d293484a661c 146035a8e23fa35e986ba9d96b3f02af0010699f 2a5d5d1d6cdec2be037773ec3c923877cc73080d3104f3b31d9c4b0737a3745f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/service.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e06-ef1"
Content-Length: 3825
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 08 Jan 2021 08:42:26 GMT
|
|
| 1.55.143.80/doc/script/common/pluginDataMigrate.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 11 kB |
URL GET HTTP/1.11.55.143.80/doc/script/common/pluginDataMigrate.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (11299), with no line terminators Hash3466cfaff094d800f53b3a8e07d334c6 109ecb594696cbb581f4054235dcd0a73055c825 1f6b5e7ab3aac2f8e1f1907aacbff1257da170ed2f11549219730b374ef4a4a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/common/pluginDataMigrate.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1cfb-2c23"
Content-Length: 11299
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=90
Last-Modified: Fri, 08 Jan 2021 08:42:27 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.slider.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 4.8 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.slider.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (4828), with no line terminators Hashfee2d145e4af68fe4bf4a77901d2c77d d76cb4d9936ae22b0c476fb9c30a24c6f34b6af9 b1f39d533c8928d1727e4d668feee743fe4e7c1733e2743fd03b19da472ac5e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery-ui/jquery.ui.slider.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dac-12dc"
Content-Length: 4828
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=90
Last-Modified: Fri, 08 Jan 2021 08:42:46 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.table.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 15 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery-ui/jquery.ui.table.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (15060), with no line terminators Hash8f5488ec83be7d9f9c526aac91068956 ab89ef250f395e864b702764308f8c07cb628c69 132535e2619a2f746ab8ea54333dd382af990572703233f5f2847e8e5f8b143b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery-ui/jquery.ui.table.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dad-3ad4"
Content-Length: 15060
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=96
Last-Modified: Fri, 08 Jan 2021 08:42:46 GMT
|
|
| 1.55.143.80/doc/script/config/system/channelDigital.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 37 kB |
URL GET HTTP/1.11.55.143.80/doc/script/config/system/channelDigital.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (32203) Hashf409832b7338866603ce2c087f39df96 f593695732ddcf5e3b627d352266c3c5bc97277a 1258f285a26d1407c4f5c4bd83c47872be951275a31ffac8658aff6c3d5944f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/config/system/channelDigital.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1d4c-8ff6"
Content-Length: 36854
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=91
Last-Modified: Fri, 08 Jan 2021 08:42:38 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/resize/jquery.ba-resize.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 856 B |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/resize/jquery.ba-resize.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (856), with no line terminators Hash1e66aeda8c8b4166ae1ad3afba5a659a 08e9565c4c59b0fa5faf59c70cc552194dd00076 f507d30d710116d57c9eed3bde30f59838c06cfcd2d4ad21ea0e3b69b3a25c37
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/resize/jquery.ba-resize.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1dde-358"
Content-Length: 856
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=89
Last-Modified: Fri, 08 Jan 2021 08:42:48 GMT
|
|
| 1.55.143.80/doc/script/lib/jquery/jquery/jquery.qrcode.min.js?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 14 kB |
URL GET HTTP/1.11.55.143.80/doc/script/lib/jquery/jquery/jquery.qrcode.min.js?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJavaScript source, ASCII text, with very long lines (544) Hash05f0b1d7d4b9b0b4975870606d650e3c f424bd339870510d1160d1c5da5d698aedbb452e f4ccf02b69092819ac24575c717a080c3b6c6d6161f1b8d82bf0bb523075032d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/lib/jquery/jquery/jquery.qrcode.min.js?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:15 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1da7-36ab"
Content-Length: 13995
Content-Type: application/javascript
Connection: keep-alive
Keep-Alive: timeout=180, max=89
Last-Modified: Fri, 08 Jan 2021 08:42:24 GMT
|
|
| 1.55.143.80/doc/i18n/en/Login.json?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 1.2 kB |
URL GET HTTP/1.11.55.143.80/doc/i18n/en/Login.json?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hash951fd20e28e3e2a7a031ba6d316bbb99 0442a8a0f34c9c76d5c3cd4d25ab5895a9796ee0 ee3cdd03ef2da3263659fa00758a4df047fdc0636695bca9b99ef4829a6ae5ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/i18n/en/Login.json?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:16 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1c3b-4ad"
Content-Length: 1197
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=88
Last-Modified: Fri, 08 Jan 2021 08:39:54 GMT
|
|
| 1.55.143.80/doc/i18n/en/Wizard.json?version=V4.0.1build210105 | 1.55.143.80 | | 686 B |
URL 1.55.143.80/doc/i18n/en/Wizard.json?version=V4.0.1build210105 IP1.55.143.80:0 ASN#18403 FPT Telecom Company
Hash6d0f13eb560e1cc63e19333727525e23 bea01884a81a1179a647ea1c69dd3a1203cc8354 aaab2138507a403f968be799d3d790baf37818fba7a5731edb3faa5db17212c7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/i18n/en/Wizard.json?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1c3e-2ae"
Content-Length: 686
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=180, max=87
Last-Modified: Fri, 08 Jan 2021 08:39:54 GMT
|
|
| 1.55.143.80/doc/ui/images/login-icons.png | 1.55.143.80 | 200 OK | 356 B |
URL GET HTTP/1.11.55.143.80/doc/ui/images/login-icons.png IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typePNG image data, 130 x 50, 8-bit colormap, non-interlaced Hash01a6f1806b8454eabc7cf8acc5059e88 c29adf50115946555dead56eec79057e01e13af3 2b1d66cc4ea3b9eccd7853dc35027862de5a86494080c7c914d34f2cdafb5303
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/login-icons.png HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e20-164"
Content-Length: 356
Content-Type: image/png
Connection: keep-alive
Keep-Alive: timeout=180, max=88
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/ui/images/login-bg.png | 1.55.143.80 | 200 OK | 984 B |
URL GET HTTP/1.11.55.143.80/doc/ui/images/login-bg.png IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typePNG image data, 9 x 400, 8-bit colormap, non-interlaced Hasha6be1ccd16bd74b14410e111342e2c61 3dc8b5c08284b91aa3829454c73076864b6f0dc6 ccfdd67aeb2eb1eb52b443779a9f9e154bb976147704f1dd4dfaa20b10330101
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/login-bg.png HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e1f-3d8"
Content-Length: 984
Content-Type: image/png
Connection: keep-alive
Keep-Alive: timeout=180, max=90
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/ui/images/logo.png | 1.55.143.80 | 200 OK | 1.3 kB |
URL GET HTTP/1.11.55.143.80/doc/ui/images/logo.png IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typePNG image data, 109 x 14, 8-bit colormap, non-interlaced Hash8000d53cdd137e1f0db0e2120ec3f1bf 1ab2492d23ec06f2fc309078755c4d1f1e6abd7b 5af5ea310df0a0f7b4ab9705eb1bb188b81b2ad7925c72c0ffaa5f3be26d7cea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/logo.png HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e23-509"
Content-Length: 1289
Content-Type: image/png
Connection: keep-alive
Keep-Alive: timeout=180, max=86
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/ui/images/pigsney-close.png | 1.55.143.80 | 200 OK | 1.2 kB |
URL GET HTTP/1.11.55.143.80/doc/ui/images/pigsney-close.png IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashcd78bbe2bfbe1eb3ec92140f411ef27e 29ede702366a2403eebd1c53b43b01baad557dbe 4e5af02f603f1e415b946847b329266d854f88ea2b0fb9977d54ad586bbd7c93
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/pigsney-close.png HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e38-487"
Content-Length: 1159
Content-Type: image/png
Connection: keep-alive
Keep-Alive: timeout=180, max=95
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/SDK/activateStatus | 1.55.143.80 | 200 OK | 166 B |
URL GET HTTP/1.11.55.143.80/SDK/activateStatus IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeXML 1.0 document, ASCII text Hasha8ef8e2d6bee07833ace1573bd353830 268b8843c9d6bdaaa7d00feb7fd1a80e75f75bc0 df60fe4c5c3e3c323f83dd8653e41564c5e99d669849172119b6fd4db64f9967
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /SDK/activateStatus HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Content-Length: 166
Content-Type: application/xml; charset="UTF-8"
Connection: keep-alive
Keep-Alive: timeout=180, max=95
|
|
| 1.55.143.80/doc/ui/images/config-icons.png | 1.55.143.80 | 200 OK | 4.2 kB |
URL GET HTTP/1.11.55.143.80/doc/ui/images/config-icons.png IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typePNG image data, 261 x 225, 8-bit colormap, non-interlaced Hashd5fb9d2b4625c41014ecb9d052d63078 a4fd641ff20c0b41046e49fc85be0ec02dae518f a0acf311c3b4bb072f7ac12f1c311dd4bfe849b3cdbcd67af99b339ab9f52a64
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/config-icons.png HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e13-108a"
Content-Length: 4234
Content-Type: image/png
Connection: keep-alive
Keep-Alive: timeout=180, max=94
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/doc/ui/images/login.jpg | 1.55.143.80 | 200 OK | 21 kB |
URL GET HTTP/1.11.55.143.80/doc/ui/images/login.jpg IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x400, components 3 Hash7bf20f1a673efb641fd187907d33a5d7 53023fc7531ef103375d1eddc6807d28ed1de6c7 c3cc4fdb4a3865f438de7fab32a343a2aa0a7f02aba69e296ce97ac3fef33297
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/login.jpg HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:17 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e21-508a"
Content-Length: 20618
Content-Type: image/jpeg
Connection: keep-alive
Keep-Alive: timeout=180, max=97
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/ISAPI/Security/extern/capabilities | 1.55.143.80 | 403 Forbidden | 315 B |
URL GET HTTP/1.11.55.143.80/ISAPI/Security/extern/capabilities IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeXML 1.0 document, ASCII text Hashbdcc657fe34b3c7720b844c94bb5980a 4af8973587d5c9f74f76e3b2a653601e44c116ff d008b8c75be1519b3300b02bc090cd2312010004e985ff2a0edb75b60a5f5a7d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ISAPI/Security/extern/capabilities HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 05 May 2024 05:48:18 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Content-Length: 315
Content-Type: application/xml; charset="UTF-8"
Connection: keep-alive
Keep-Alive: timeout=180, max=87
|
|
| 1.55.143.80/doc/ui/images/artDialog/loading.gif | 1.55.143.80 | 200 OK | 381 B |
URL GET HTTP/1.11.55.143.80/doc/ui/images/artDialog/loading.gif IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeGIF image data, version 89a, 16 x 16 Hash4f3236673db18fbb34f4f6a942c2ce12 c921972529423393537442a891d0edb14d81ff80 f627b902dbb57bcca1ab7ccba32a015c45d2c84cae719ca5626993d7ced3c428
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/ui/images/artDialog/loading.gif HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/ui/css/ui.css?version=1714862884327
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:18 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1e10-17d"
Content-Length: 381
Content-Type: image/gif
Connection: keep-alive
Keep-Alive: timeout=180, max=85
Last-Modified: Fri, 08 Jan 2021 08:40:01 GMT
|
|
| 1.55.143.80/codebase/version.xml?version=V4.0.1build210105 | 1.55.143.80 | 200 OK | 516 B |
URL GET HTTP/1.11.55.143.80/codebase/version.xml?version=V4.0.1build210105 IP1.55.143.80:80 ASN#18403 FPT Telecom Company
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash52299638356675f0af088756f6c157a3 cc2b4b3ad8df6295ada6b8e3befa82c7053022f0 ba264339a1860afc70296938177be88be534d491955ee7022a3e681886613c5c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /codebase/version.xml?version=V4.0.1build210105 HTTP/1.1
Host: 1.55.143.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
If-Modified-Since: 0
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/doc/page/login.asp?_1714862882958
Cookie: language=en
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 May 2024 05:48:18 GMT
Server: Webs
X-Frame-Options: SAMEORIGIN
ETag: "0-1c29-204"
Content-Length: 516
Content-Type: text/xml
Connection: keep-alive
Keep-Alive: timeout=180, max=86
Last-Modified: Fri, 08 Jan 2021 08:39:50 GMT
|
|
| 127.0.0.1:33691/imghttp/local?update=1714862898807&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33691/imghttp/local?update=1714862898807&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898807&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33691
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33692/imghttp/local?update=1714862898808&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33692/imghttp/local?update=1714862898808&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898808&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33692
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33693/imghttp/local?update=1714862898809&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33693/imghttp/local?update=1714862898809&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898809&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33693
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33687/imghttp/local?update=1714862898803&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33687/imghttp/local?update=1714862898803&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898803&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33687
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33694/imghttp/local?update=1714862898810&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33694/imghttp/local?update=1714862898810&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898810&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33694
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33688/imghttp/local?update=1714862898804&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33688/imghttp/local?update=1714862898804&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898804&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33688
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33695/imghttp/local?update=1714862898811&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33695/imghttp/local?update=1714862898811&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898811&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33695
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33690/imghttp/local?update=1714862898806&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33690/imghttp/local?update=1714862898806&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898806&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33690
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 127.0.0.1:33689/imghttp/local?update=1714862898805&sessionID=&user=&challenge=&iterations=100&random=1 | 0.0.0.0 | | 0 B |
URL GET 127.0.0.1:33689/imghttp/local?update=1714862898805&sessionID=&user=&challenge=&iterations=100&random=1 IP0.0.0.0:0
Requested byhttp://1.55.143.80/doc/page/login.asp?_1714862882958
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /imghttp/local?update=1714862898805&sessionID=&user=&challenge=&iterations=100&random=1 HTTP/1.1
Host: 127.0.0.1:33689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://1.55.143.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|