| 41.76.80.5/ | 41.76.80.5 | | 95 B |
IP41.76.80.5:0
File typeHTML document, ASCII text Hash740ccbd1449b50747feaba1faabe73a7 47182d8d16d74d4a8fae6c2a5baf434cf2d7d5d1 bf24555036e398f819f67b1490d45ee68b5d7f168d9ee86553ba0adba4c14c50
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:57 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2024 00:34:58 GMT
ETag: "4f88f-5f-6123e144b1080"
Accept-Ranges: bytes
Content-Length: 95
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html
|
|
| 41.76.80.5/24online/webpages/login.jsp | 41.76.80.5 | | 13 kB |
URL User Request GET 41.76.80.5/24online/webpages/login.jsp IP41.76.80.5:0
File typeJavaScript source, ASCII text, with very long lines (314) Hash48197c6f0aae6b87fa4119714ea46045 fe7da2b5ce3f461ae9d79df29a70f75a426ed110 e95b5a094ecaa4f04aaac598618a5938be576f053666689e5954e302c62114dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /24online/webpages/login.jsp HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://41.76.80.5/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Set-Cookie: JSESSIONID=4467AB0D85F505CB1A62257D1D50C210.GUI; Path=/24online/; HttpOnly
X-Frame-Options: SAMEORIGIN
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=ISO-8859-1
|
|
| 41.76.80.5/css/login.css | 41.76.80.5 | 200 OK | 7.6 kB |
IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeASCII text, with CRLF line terminators Hash0ec5d8789c1cf87842b72b9e226fd6e6 3f4a51f75552068b3ae03747d8746331372fa363 a6cac5e6f15e3357c41ac1d25e634039212399e13df7055a5da8d7b77c322852
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/login.css HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f857-1dce-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 7630
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| 41.76.80.5/css/jquery/jquery-impromptu.css | 41.76.80.5 | 200 OK | 2.4 kB |
URL GET HTTP/1.141.76.80.5/css/jquery/jquery-impromptu.css IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
Hash51689032f33d77a7a20fbe3e436df8c4 0197a9a9bb42f99d95ad08adb5a456fec7ad1e3d d3c88489eb7d0e09f5944f9bbb1f71f1ed46214c0129e543e19996ff872d8de0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/jquery/jquery-impromptu.css HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f83c-942-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 41.76.80.5/javascript/jquery/grid.locale-en.js | 41.76.80.5 | 200 OK | 3.0 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/grid.locale-en.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (2954), with no line terminators Hashbd188761c59a445345715905f7f389b9 9d2cd485f350978dd3302ac98a07b9c99cf923b5 6f7cad9993d4ff9c7364d6ef0a25435f985f409b93fbd7055168655d83625edd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/grid.locale-en.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f96e-b8a-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 2954
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-3.4.1.min.js | 41.76.80.5 | 200 OK | 88 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-3.4.1.min.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-3.4.1.min.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9a8-15851-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 88145
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery.ui.datepicker.js | 41.76.80.5 | 200 OK | 76 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery.ui.datepicker.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text Hashbcc4f8f99d22b66e015e32ae9460574b 4b0259978b8b52513cf78cbdce588caad7bb44b5 15c41399a1e3da9e0ea314d5535708d7154a816efd009b0fca0b1877611bdf30
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery.ui.datepicker.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9be-12af3-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 76531
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jqgrid/ui.multiselect.js | 41.76.80.5 | 200 OK | 11 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jqgrid/ui.multiselect.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text Hash630ce271fa0e69212e4c31654d9e0a5c 8d2fc0480498848032b2f12df0e2dea2af0e1529 d69c98cf5dd219af53bb0b640cac253a26c74d9a71c5c8d546d8255a459900ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jqgrid/ui.multiselect.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9a3-2b10-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 11024
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-ui-timepicker-addon.js | 41.76.80.5 | 200 OK | 42 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-ui-timepicker-addon.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (41919), with no line terminators Hashc9d602312da5fa98c132be9cd8bcf54e 629323e1ff8041c3d865aa6ce5faa6413803867b c84ad5b59e30958816390594ce1737eb2a82e292e144e908349c4aa01e3fa910
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-ui-timepicker-addon.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9af-a3bf-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 41919
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-migrate-1.4.1.js | 41.76.80.5 | 200 OK | 24 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-migrate-1.4.1.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text Hash6c57b762589f13ea5b3579ca5e6c369b 581e1ff87a8c1ec09cd43d24b88b36fb03ce8ae9 c68a880944aa03082e88bbe6c7df7747ee45f506fa777e76fb41709a0ba5a935
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-migrate-1.4.1.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9ab-5bc9-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 23497
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/ajax.js | 41.76.80.5 | 200 OK | 9.0 kB |
URL GET HTTP/1.141.76.80.5/javascript/ajax.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeASCII text, with CRLF line terminators Hash5f2e5e91ea50872a4bd04487d0cc4a89 c14cf42c63ff9470ac381b93610f0943b0aa78c7 1940af30b8f5f87dde0729e9e272a23f2757049748227a4c7b89bf15f131d5ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/ajax.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f894-2353-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 9043
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-1.7.2.min.js | 41.76.80.5 | 200 OK | 65 B |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-1.7.2.min.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
Hasha80f25da3faf30fab5084d9aa46c6e26 536d80bfc5a1119b2a1b53ac4fc68fe02e96fecf 07db8e628eccf92c200ac7fd29a5538cd49be977d77ab5d9d8cfe21435f5a07a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-1.7.2.min.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9a7-41-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 65
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery.cookie.js | 41.76.80.5 | 200 OK | 4.3 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery.cookie.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeASCII text, with CRLF line terminators Hashc840b994c245b4567d28c1687ea42274 d120ad0384ae7e627d391d6f873cc626ee372998 0c779ae95a8b1f10dcec474f7d89e001dfc1d27816dfe9e92542efdee4c6dc76
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery.cookie.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9b2-10f5-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 4341
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/spectrum.js | 41.76.80.5 | 200 OK | 67 kB |
URL GET HTTP/1.141.76.80.5/javascript/spectrum.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text Hashf434a76b7abfa8b00426c133f3b15ab9 4f218536aaee1851f287072e500ed99387565ff3 8633f1c24150c0d8db7c9daeefd37a395a3df5d3dbe730e88ec02976d15de6fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/spectrum.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9ee-10597-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 66967
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-ui-1.8.21.custom.min.js | 41.76.80.5 | 200 OK | 253 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-ui-1.8.21.custom.min.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (32250) Size253 kB (253381 bytes) Hashe52fb30847949047e72a75c4d5941a96 6f29927298c266d067f79e4bda4d6e85b79289e0 49875c46000bc33f7f585c642f6ecfa99f322f15216b462befc4dd6d6453fe77
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-ui-1.8.21.custom.min.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9ae-3ddc5-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 253381
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery-impromptu-min.js | 41.76.80.5 | 200 OK | 26 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery-impromptu-min.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (25694), with no line terminators Hash94cdae8bb1eed1e5268484e62a7a2f9d 3fbf2b72d1e7db3b3b6c3c51ecce2d28d98e56af 140fe19d4bb5a146a053e2eb0dfa98c81454f71e49628f5be4f11966b2f3d411
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery-impromptu-min.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9a9-645e-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 25694
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/utilities.js | 41.76.80.5 | 200 OK | 18 kB |
URL GET HTTP/1.141.76.80.5/javascript/utilities.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeASCII text, with CRLF line terminators Hashef07fc3c59a504536f5a95824e77c5f9 6c399818f6d2e5bf515af9d0cfe066f38f06526e bce7fc4a7d7e4a9b13e8a4e855a9cfe1001f36d5099ff3856e188a58f292a6d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/utilities.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:59 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9f3-4706-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 18182
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery.jqgrid.min.js | 41.76.80.5 | 200 OK | 366 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery.jqgrid.min.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text, with very long lines (65148) Size366 kB (365621 bytes) Hash2d0b7b52316489a22dc19613d77b0548 ac9a4fde1261051cfeb638cf9326230ba6166606 10b8b672cd7b80bd8ca8dce4464a20c59b152e62fea167de54ec1940b729f1e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery.jqgrid.min.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:10:58 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9b5-59435-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 365621
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/javascript/jquery/jquery.ui.widget.js | 41.76.80.5 | 200 OK | 7.0 kB |
URL GET HTTP/1.141.76.80.5/javascript/jquery/jquery.ui.widget.js IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJavaScript source, ASCII text Hash8bea0d7c5df92bc621e9a39e903c0011 c71f1b79cbb8052bd56268967e4c50bf43e2a1bb 9b9430a52833f5bc2d4e57dfcfc2adf53e6cfba585ae35d955fe83bffd3f3b39
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/jquery/jquery.ui.widget.js HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Sat, 20 Feb 2021 08:43:42 GMT
ETag: "4f9c0-1b5b-5bbc090dbeb80"
Accept-Ranges: bytes
Content-Length: 7003
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript
|
|
| 41.76.80.5/images/newgui/login-left-bot.jpg | 41.76.80.5 | 200 OK | 1.9 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/login-left-bot.jpg IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 184x42, components 3 Hash9f8543ab14631b15cdf55bbaf904e1f2 2b0810637a132434c698ec3b5203bbc05fb39cb0 c5d5901e6d3c8c75be54e3cf6c86365366341910443972d187cd2df920b108b6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/login-left-bot.jpg HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e89d-73d-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 1853
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 41.76.80.5/images/newgui/password.png | 41.76.80.5 | 200 OK | 1.3 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/password.png IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typePNG image data, 62 x 17, 8-bit/color RGBA, non-interlaced Hasha4a394d01f012e55611b9215f8418f8b fa26cbfd5ca20368291f9e42d5ef33b48003d3b4 d1470d9d57478436405e5196441cb8cdb777154546b46c3bf9c132654b1b9dd6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/password.png HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e885-4eb-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 1259
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
Content-Type: image/png
|
|
| 41.76.80.5/images/newgui/login-left.jpg | 41.76.80.5 | 200 OK | 1.5 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/login-left.jpg IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 54x72, components 3 Hash4bccc37d58a5ceef8e0123c9286bd671 4207de6a65831732b9b2de8cd30915ba5b67627b 92a91f0986aca70dc0dc10e44950ddd9d1bb7ccf99c17c34814da0bf8d1273f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/login-left.jpg HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e878-604-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 1540
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 41.76.80.5/images/newgui/username.png | 41.76.80.5 | 200 OK | 1.0 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/username.png IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typePNG image data, 62 x 10, 8-bit/color RGBA, non-interlaced Hash6a3164478ae448407d6935a6563c0032 48b83e9205ac47a150627cf63428d94901b335aa f37bfd17b341a110b1a2b482da757e79d9f644b6ec834f7bfc943876cdc179b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/username.png HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e8a7-3f4-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 1012
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| 41.76.80.5/images/newgui/login-left-top.jpg | 41.76.80.5 | 200 OK | 2.8 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/login-left-top.jpg IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 184x91, components 3 Hashc2982b7df29884f7459cfa8a8423d842 89676cc0677a5621dca031af6449eb4e064c65fa 452dfae901040e749656bc3ef605be65138a1e4483f373ee30575b42a2ce0ffc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/login-left-top.jpg HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e877-afc-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 2812
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 41.76.80.5/images/newgui/arrow-2.png | 41.76.80.5 | 200 OK | 47 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/arrow-2.png IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typePNG image data, 4 x 7, 8-bit/color RGBA, non-interlaced Hash4431a5e68b0fd5fd27541cfd603d3ea0 42da6f6fdeda8dd1a41c10c4bd21cda18c7c251f f589c8f876f89872e76fb9a4b08b605372a07d9cddfd4fdbc7f20e72c0e27955
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/arrow-2.png HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e887-b649-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 46665
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: image/png
|
|
| 41.76.80.5/images/newgui/bottom.jpg | 41.76.80.5 | 200 OK | 40 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/bottom.jpg IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 326x284, components 3 Hashbbf8ae4f3f0b55e3ade3a6c742987a3b cc2dbd61dd37138ed6b3caf11ff86d7fb534f247 09710708808a6c0e675710912391652db4502fd7ddec4704e8ad5784db0abd1c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/bottom.jpg HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/css/login.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e8a9-9e0c-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 40460
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 41.76.80.5/images/newgui/login-right.jpg | 41.76.80.5 | 200 OK | 28 kB |
URL GET HTTP/1.141.76.80.5/images/newgui/login-right.jpg IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 324x205, components 3 Hashd7372bd6ed0413d1848a0cd968ef454b cd8beaa8941a8606b7cbf7fc80e332a213ba2ead ce52d027a607f4edc8a7b134595aef3d50423310de9c183889b573bac1fc550c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/newgui/login-right.jpg HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/css/login.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e884-6dc3-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 28099
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 41.76.80.5/images/logo.png | 41.76.80.5 | 200 OK | 138 kB |
URL GET HTTP/1.141.76.80.5/images/logo.png IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1936x1204, components 3 Size138 kB (137653 bytes) Hash775b6b3fe98684b621db8143e2c3dfa2 0db76897bc48417e897ea32f45eec0112205f049 c22656c994d7b39a4127c39e68b9688dbbb98dc65cb8d40480d35974e3b32aa5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/logo.png HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:07:28 GMT
ETag: "5e957-219b5-521fcf74c4800"
Accept-Ranges: bytes
Content-Length: 137653
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: image/png
|
|
| 41.76.80.5/images/favicon.ico | 41.76.80.5 | 200 OK | 126 kB |
URL GET HTTP/1.141.76.80.5/images/favicon.ico IP41.76.80.5:80
Requested byhttp://41.76.80.5/24online/webpages/login.jsp
File typeMS Windows icon resource - 15 icons, 16x16, 16 colors, 16x16, 24 bits/pixel Size126 kB (125790 bytes) Hash1675260ad7be03624eefbc62e7f39814 cac13d5a3fc948da99cdd4918a56a55bc8979a19 441fc8e524fef0f38ffc52d15e4f9bfa30ffd0b290b84a3c7a29336f267f9994
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/favicon.ico HTTP/1.1
Host: 41.76.80.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://41.76.80.5/24online/webpages/login.jsp
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:11:00 GMT
Server: Apache
Last-Modified: Tue, 13 Oct 2015 14:15:49 GMT
ETag: "5e9a8-1eb5e-521fd1528ef40"
Accept-Ranges: bytes
Content-Length: 125790
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: text/plain
|
|