Report - 208.107.46.36

Report Overview

Submitted URL
208.107.46.36
IP
208.107.46.36
ASN
#11232 MIDCO-NET
Submitted
2024-04-18 12:20:32
Access
public
Website Title
EZBridge.LT2.Plus - LuCI
Final URL
208.107.46.36/cgi-bin/luci
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
208.107.46.36	unknown	unknown	No data	No data	3.7 kB	160 kB	208.107.46.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed
2024-04-18	medium	208.107.46.36	Sinkholed

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	208.107.46.36/luci-static/material/js/jquery.min.js	96 kB	2023-03-07	2024-05-01
Pretty URL 208.107.46.36/luci-static/material/js/jquery.min.js IP 208.107.46.36 ASN #11232 MIDCO-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:11 Last Seen2024-05-01 21:40:56 Times Seen15431 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	208.107.46.36/luci-static/material/js/script.js	7.0 kB	2023-03-11	2024-04-18
Pretty URL 208.107.46.36/luci-static/material/js/script.js IP 208.107.46.36 ASN #11232 MIDCO-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:07:11 Last Seen2024-04-18 14:20:38 Times Seen14 Hash 13c32489235cd6419f2328bd1f75675e 602ef8caa9087e1e61bfedb1870e9b16e4c65e09 82e6cedfbc1a848c52bb6e2c3875ecf039fb4c5ae7a553615a33ad8d9364f9a2 Loading...

	208.107.46.36/luci-static/resources/xhr.js	4.6 kB	2023-03-07	2024-04-18
Pretty URL 208.107.46.36/luci-static/resources/xhr.js IP 208.107.46.36 ASN #11232 MIDCO-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:48:39 Last Seen2024-04-18 14:20:38 Times Seen189 Hash 1b3ce6bba05c18ea3c74b387ed5240b6 291764e687ff753d77d756182dd1f45e3ff8db41 663b4e3ce868a5ae6a6fa251cb2c1f497fa570b2bd4d5fa151a1586fd25d9055 Loading...

	208.107.46.36/cgi-bin/luci	0 B	2023-03-07	2024-05-01
Pretty URL 208.107.46.36/cgi-bin/luci IP 208.107.46.36 ASN #11232 MIDCO-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 23:09:18 Times Seen37257651 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	208.107.46.36/cgi-bin/luci	0 B	2023-03-07	2024-05-01
Pretty URL 208.107.46.36/cgi-bin/luci IP 208.107.46.36 ASN #11232 MIDCO-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 23:09:18 Times Seen37257651 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (10)

URL IP Response Size

208.107.46.36/

208.107.46.36

419 B

URL
208.107.46.36/
IP
208.107.46.36:0
ASN
#11232 MIDCO-NET

File type
XML 1.0 document, ASCII text
Size
419 B (419 bytes)
Hash
b55993cb73060a58d829dc134ca2be09
27926dc30ffdf7e2bf5c2905bc93941d87ec69e0
f561c88afb0a011001fa2cfb9473b0d037ce8a4f62ec82c4d62f4af2bd40cf75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "292-1a3-5b74c552"
Last-Modified: Thu, 16 Aug 2018 00:29:06 GMT
Date: Thu, 18 Apr 2024 12:20:07 GMT
Content-Type: text/html
Content-Length: 419
Transfer-Encoding: chunked

208.107.46.36/luci-static/resources/xhr.js

208.107.46.36

200 OK

4.6 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/resources/xhr.js
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
ASCII text
Size
4.6 kB (4612 bytes)
Hash
1b3ce6bba05c18ea3c74b387ed5240b6
291764e687ff753d77d756182dd1f45e3ff8db41
663b4e3ce868a5ae6a6fa251cb2c1f497fa570b2bd4d5fa151a1586fd25d9055

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/resources/xhr.js HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "27a-1204-5b74c552"
Last-Modified: Thu, 16 Aug 2018 00:29:06 GMT
Date: Thu, 18 Apr 2024 12:20:22 GMT
Content-Type: text/javascript
Content-Length: 4612
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/css/style.css

208.107.46.36

200 OK

29 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/css/style.css
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
ASCII text
Size
29 kB (29445 bytes)
Hash
cdb8fb1acb60984f71ad802b6e34437c
4f8f2183ed55e6137bd3f3179dde761f5ba6d8ea
dd550d3fe59487e8df5c7b0a02d2b965b0b67bb36da20b031c5cecfcbd89b2f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/css/style.css HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "27c-7305-5c9cf56f"
Last-Modified: Thu, 28 Mar 2019 16:25:19 GMT
Date: Thu, 18 Apr 2024 12:20:22 GMT
Content-Type: text/css
Content-Length: 29445
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/js/jquery.min.js

208.107.46.36

200 OK

96 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/js/jquery.min.js
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
96 kB (95992 bytes)
Hash
f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/js/jquery.min.js HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "284-176f8-59c4d392"
Last-Modified: Fri, 22 Sep 2017 09:10:42 GMT
Date: Thu, 18 Apr 2024 12:20:22 GMT
Content-Type: text/javascript
Content-Length: 95992
Transfer-Encoding: chunked

208.107.46.36/cgi-bin/luci

208.107.46.36

200 OK

3.7 kB

URL User Request GET HTTP/1.1
208.107.46.36/cgi-bin/luci
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

File type
HTML document, ASCII text
Size
3.7 kB (3708 bytes)
Hash
3c3b50ec314c3b26cc5218f91df38366
91dc7bd376afad2fd8561dde4a60165023b16a83
b99e096ee590c93cbbf53c1b6096af4c798f2ba4b0600bec7b97146b3125b340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi-bin/luci HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html
Cache-Control: no-cache
Expires: 0

208.107.46.36/luci-static/material/js/script.js

208.107.46.36

200 OK

7.0 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/js/script.js
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
JavaScript source, Unicode text, UTF-8 text
Size
7.0 kB (6972 bytes)
Hash
13c32489235cd6419f2328bd1f75675e
602ef8caa9087e1e61bfedb1870e9b16e4c65e09
82e6cedfbc1a848c52bb6e2c3875ecf039fb4c5ae7a553615a33ad8d9364f9a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/js/script.js HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "285-1b3c-59c4d392"
Last-Modified: Fri, 22 Sep 2017 09:10:42 GMT
Date: Thu, 18 Apr 2024 12:20:23 GMT
Content-Type: text/javascript
Content-Length: 6972
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/tyconsystems.png

208.107.46.36

200 OK

10 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/tyconsystems.png
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
PNG image data, 160 x 45, 8-bit/color RGBA, non-interlaced
Size
10 kB (10525 bytes)
Hash
c646ca6d803cc51b78217fea3f74d95b
034b83759327638a86187ae9f1aba7d22ba83181
1f87ec09b167bc09c70f2e0cd3ced187bb98ebb375d7050c86bacbf15ca13b75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/tyconsystems.png HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "27e-291d-5a2060a0"
Last-Modified: Thu, 30 Nov 2017 19:48:48 GMT
Date: Thu, 18 Apr 2024 12:20:23 GMT
Content-Type: image/png
Content-Length: 10525
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/fonts/font.ttf

208.107.46.36

200 OK

1.7 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/fonts/font.ttf
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
1.7 kB (1748 bytes)
Hash
45cb37094496e6979ecb1fcca90676c5
099b56f73d35cc72692e1515b84aec822290da96
7d62e5946255343c734a5ac3c4823baccd7e7a71ce1a8c15d330109f8e1e7fc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/fonts/font.ttf HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/luci-static/material/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "280-6d4-59c4d392"
Last-Modified: Fri, 22 Sep 2017 09:10:42 GMT
Date: Thu, 18 Apr 2024 12:20:24 GMT
Content-Type: application/octet-stream
Content-Length: 1748
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/favicon.ico

208.107.46.36

200 OK

2.5 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/favicon.ico
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
MS Windows icon resource - 1 icon, 24x24, 32 bits/pixel
Size
2.5 kB (2462 bytes)
Hash
75dcecbcfc1af4fb37bb75f4f521c358
8076c40fa42d658fcdc2abc77f4f6f8e88d9accd
c4e44ae2274dee6942f53d4a060b50e6bf9fdc5ed51163d3f885c3b4d7c63aaf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/favicon.ico HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "27d-99e-59cbe63c"
Last-Modified: Wed, 27 Sep 2017 17:56:12 GMT
Date: Thu, 18 Apr 2024 12:20:24 GMT
Content-Type: application/octet-stream
Content-Length: 2462
Transfer-Encoding: chunked

208.107.46.36/luci-static/material/logo.png

208.107.46.36

200 OK

2.2 kB

URL GET HTTP/1.1
208.107.46.36/luci-static/material/logo.png
IP
208.107.46.36:80
ASN
#11232 MIDCO-NET

Requested by
http://208.107.46.36/cgi-bin/luci

File type
PNG image data, 144 x 144, 8-bit gray+alpha, non-interlaced
Size
2.2 kB (2224 bytes)
Hash
2520df38b495d85a9eb322c48b253477
a508ede67a3bd37bcf36b4d80b8452e1b7947648
1118789204fd2af785ef45c944feb5ceadb19838879983f6f6b0a67e35843263

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /luci-static/material/logo.png HTTP/1.1
Host: 208.107.46.36
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://208.107.46.36/cgi-bin/luci
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
ETag: "283-8b0-59c4d392"
Last-Modified: Fri, 22 Sep 2017 09:10:42 GMT
Date: Thu, 18 Apr 2024 12:20:24 GMT
Content-Type: image/png
Content-Length: 2224
Transfer-Encoding: chunked

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1