| 190.167.126.98/ | 190.167.126.98 | | 3.4 kB |
IP190.167.126.98:0 ASN#6400 Compania Dominicana de Telefonos S. A.
File typeHTML document, ASCII text, with CRLF line terminators Hashec456ac28f951af49541a047b708254d e1cfe6133971a8ed77ea2a47a60042d7a3187074 1287779f8c874a5567c27b8fcbe587711a825f50a8197edce63063d0bc104cb3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 190.167.126.98
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Language: en
Pragma: no-cache
Cache-control: no-cache, no-store, max-age=0
Transfer-Encoding: chunked
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
|
|
| 190.167.126.98/ | 190.167.126.98 | | 3.4 kB |
IP190.167.126.98:0 ASN#6400 Compania Dominicana de Telefonos S. A.
File typeHTML document, ASCII text, with CRLF line terminators Hashec456ac28f951af49541a047b708254d e1cfe6133971a8ed77ea2a47a60042d7a3187074 1287779f8c874a5567c27b8fcbe587711a825f50a8197edce63063d0bc104cb3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 190.167.126.98
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Language: en
Pragma: no-cache
Cache-control: no-cache, no-store, max-age=0
Transfer-Encoding: chunked
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
|
|
| mitmdetection.services.mozilla.com/ | 54.230.111.23 | | 0 B |
URL mitmdetection.services.mozilla.com/ IP54.230.111.23:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: mitmdetection.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/xml
date: Thu, 25 Apr 2024 14:39:57 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pw4VYUXiqfnHHANZyauhOORqAt3XuU75SbI8PFIPmbmOB-5agVzYew==
X-Firefox-Spdy: h2
|
|
| | 190.167.126.98 | 200 OK | 68 kB |
URL User Request GET HTTP/1.1IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashc52e9b9ca4cb626eca1e98eb3839fd6e 135d49e7242687dfc7d2b196856353456264a59e 87d79f116f825e83831d432477d741f763a6544e5393688b69fde52c6874d603
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://190.167.126.98/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-control: no-cache, no-store, max-age=0
Content-Type: text/html; charset=UTF-8
Content-Language: en
Pragma: no-cache
Transfer-Encoding: chunked
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
|
|
| 190.167.126.98:80/resource/common/safelogin.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 16 kB |
URL GET HTTP/1.1190.167.126.98:80/resource/common/safelogin.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeJavaScript source, ASCII text Hashba26c982d62f4a63446309debee8c60e 96ac946ab849da3297d5872e9439c3f7b2db6ae9 2ceda45d895aa8c3b1bf1cc96d23fc531202f9ff4e14b463a2d23802269da9a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resource/common/safelogin.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 15507
|
|
| 190.167.126.98:80/resource/common/jquery.min.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 90 kB |
URL GET HTTP/1.1190.167.126.98:80/resource/common/jquery.min.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resource/common/jquery.min.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 89501
|
|
| 190.167.126.98:80/Cuscss/login.css?202306270604070553184798 | 190.167.126.98 | 200 OK | 3.5 kB |
URL GET HTTP/1.1190.167.126.98:80/Cuscss/login.css?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeassembler source, Unicode text, UTF-8 text, with CRLF line terminators Hash10c726fbbd42da71d086076f2b49d06b fb50e419a79caef71ac4bfdff26c16bb90c7ba73 0115e5e49989bb7b1b8630dade4cca2d0aecf2252978349faa100dfde6d7e510
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Cuscss/login.css?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/css; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 3518
|
|
| 190.167.126.98:80/Cuscss/english/frame.css?202306270604070553184798 | 190.167.126.98 | 200 OK | 31 kB |
URL GET HTTP/1.1190.167.126.98:80/Cuscss/english/frame.css?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeassembler source, Unicode text, UTF-8 text, with CRLF line terminators Hashd538ab9a85653874f2bc0c8545b606ab acca567b373ee73f00115f058b448e473d156c41 6a1a8e9e333a6539bb02a3a4992f1cbca7f73d25131eab7748894e522d4e13a7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Cuscss/english/frame.css?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/css; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 30550
|
|
| 190.167.126.98:80/frameaspdes/english/ssmpdes.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 12 kB |
URL GET HTTP/1.1190.167.126.98:80/frameaspdes/english/ssmpdes.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (310), with CRLF line terminators Hashef922e073b63264c2f0af919f648b5c5 1dd4849502f2961229dffeb458ac013fd9b9708e 7ed47a161ce4e86f96ad0f05191d97b7e954aab9a30d1abf23e7d1bec5ccbcd6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frameaspdes/english/ssmpdes.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 12167
|
|
| 190.167.126.98:80/resource/common/md5.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 10 kB |
URL GET HTTP/1.1190.167.126.98:80/resource/common/md5.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashf0bc7ebe7cf76eccf156d5f93e2bdd20 8e2c39e2438db3e19ea8af4fff4b9b46a3f6619f 392890e4ed6c111b069abaa327e362d444f45e656957b079086abc9bb320c664
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resource/common/md5.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 10076
|
|
| 190.167.126.98:80/resource/common/RndSecurityFormat.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 6.3 kB |
URL GET HTTP/1.1190.167.126.98:80/resource/common/RndSecurityFormat.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeASCII text, with CRLF line terminators Hashb903d1ae2d914c8a7ebe8342f9051600 11acb171b24bf4e8dbc3fb2cb21733f3d2f90099 563c905771cf595da438930ab25b92e87a8587fbe3683baa20ed5445b5582e34
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resource/common/RndSecurityFormat.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 6279
|
|
| 190.167.126.98:80/resource/common/util.js?202306270604070553184798 | 190.167.126.98 | 200 OK | 73 kB |
URL GET HTTP/1.1190.167.126.98:80/resource/common/util.js?202306270604070553184798 IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashfd42f8e2c59af989bdb87ab950837cf4 1da7d9838a3c7214cab9fda6a7a1234c0220497e a4bc33412f2577d3e2b071d66eb7c5b06b1ea857b3f85d0abff4bf7b700cb12e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resource/common/util.js?202306270604070553184798 HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 73256
|
|
| 190.167.126.98:80/images/copyright_log.jpg | 190.167.126.98 | 200 OK | 974 B |
URL GET HTTP/1.1190.167.126.98:80/images/copyright_log.jpg IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typePNG image data, 35 x 25, 8-bit/color RGBA, non-interlaced Hashbf8d0561105d8301d0b822b662a71c91 dc40b8ecfa609859558d2ae0a4d5f35d5d256d75 93cb07f9d52b21873cf08a54362f6767ce929400f02539b372dff8c06ded2202
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/copyright_log.jpg HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/Cuscss/english/frame.css?202306270604070553184798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: image/jpeg; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 974
|
|
| 190.167.126.98:80/images/loginbg.jpg | 190.167.126.98 | 200 OK | 24 kB |
URL GET HTTP/1.1190.167.126.98:80/images/loginbg.jpg IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1960x545, components 3 Hash49874a80e3a14addd6f7fc3c4e2454e5 4e41bc78138a4b11f3c3193d25f4e042e48245e3 e8e2198a5a935c9f63a04411feb80ba068932fccfbe7a5c314f2541f3c401ca6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/loginbg.jpg HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/Cuscss/login.css?202306270604070553184798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: image/jpeg; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 23738
|
|
| 190.167.126.98:80/images/logo_clarodr.gif | 190.167.126.98 | 200 OK | 2.2 kB |
URL GET HTTP/1.1190.167.126.98:80/images/logo_clarodr.gif IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeGIF image data, version 89a, 53 x 50 Hash24a1dae2329cc113e657c1c860e86276 71ebb181ae0b13f09310d48d1a8ebc23076afc2d e2aa1794659d2211b7b7961ea2c454effd1a14a0a0288374a40169fe16b9f862
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/logo_clarodr.gif HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/Cuscss/english/frame.css?202306270604070553184798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: image/gif; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 2230
|
|
| 190.167.126.98:80/images/greenline.jpg | 190.167.126.98 | 200 OK | 633 B |
URL GET HTTP/1.1190.167.126.98:80/images/greenline.jpg IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 16x3, components 3 Hash5c2c1e359bc1d9606a4e480545abba31 044535d3dbadde1dd1b7ded84f2a59942f5f8ed3 11a3e0175efff4ea5949e729214635c155d4c8ca259dd92b870d97f2112c571f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/greenline.jpg HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/Cuscss/english/frame.css?202306270604070553184798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: image/jpeg; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 633
|
|
| 190.167.126.98:80/favicon.ico | 190.167.126.98 | 404 Not Found | 47 B |
URL GET HTTP/1.1190.167.126.98:80/favicon.ico IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeASCII text, with no line terminators Hashf9ae9006943e3a67b95ca4c6c733b6d4 9f9e7a7e2602d29e4df8c38df6277ab37fb1b079 cd8b79123a843eee64985a23257e2fab80ef2c4c08427b688ea979671fc1c457
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 47
Connection: Keep-Alive
|
|
| 190.167.126.98:80/frameaspdes/english/ssmpdes.js | 190.167.126.98 | 200 OK | 12 kB |
URL GET HTTP/1.1190.167.126.98:80/frameaspdes/english/ssmpdes.js IP190.167.126.98:80 ASN#6400 Compania Dominicana de Telefonos S. A.
Requested byhttps://190.167.126.98:80/ CertificateIssuerHuawei Subjectont.huawei.com Fingerprint22:80:81:E0:B7:EB:3A:55:07:BB:D8:20:C5:6F:36:83:EF:57:30:84 ValidityTue, 25 Aug 2020 06:59:49 GMT - Fri, 23 Aug 2030 06:59:49 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (310), with CRLF line terminators Hashef922e073b63264c2f0af919f648b5c5 1dd4849502f2961229dffeb458ac013fd9b9708e 7ed47a161ce4e86f96ad0f05191d97b7e954aab9a30d1abf23e7d1bec5ccbcd6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frameaspdes/english/ssmpdes.js HTTP/1.1
Host: 190.167.126.98:80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://190.167.126.98:80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'
Content-Type: text/js; charset=UTF-8
Connection: Keep-Alive
Last-Modified: Mon, 26 Jun 2023 22:04:07 GMT
Content-Length: 12167
|
|