| | 64.124.50.139 | 200 OK | 1.1 kB |
URL User Request GET HTTP/1.1IP64.124.50.139:80
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash7d6a2ab1355b5ff24093e9349973e847 b84fd284e2b4eefcad09af884f7924faef348123 a5b60469fa091788df4865927313de97f39c46c4956859093ca24b3b2d83c186
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:43 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
transfer-encoding: chunked
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-encoding: gzip
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store
set-cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e; path=/
server: Niagara Web Server/3.8.111
|
|
| 64.124.50.139/login/login.css?3.8.111 | 64.124.50.139 | 200 OK | 872 B |
URL GET HTTP/1.164.124.50.139/login/login.css?3.8.111 IP64.124.50.139:80
Requested byhttp://64.124.50.139/login
File typeassembler source, ASCII text Hash4669d38dcfa8febc0150174d421010bd 35d8dbbe5f30be06e0bc3370626a06a229a08805 cea0c0c0d78ed7168550b8c37e493d3419984113991fb416820c4d92aa5296d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login/login.css?3.8.111 HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.124.50.139/login
Cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:43 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
transfer-encoding: chunked
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-encoding: gzip
content-type: text/css; charset=UTF-8
cache-control: private, must-revalidate
server: Niagara Web Server/3.8.111
|
|
| 64.124.50.139/login/login.js?3.8.111 | 64.124.50.139 | 200 OK | 4.3 kB |
URL GET HTTP/1.164.124.50.139/login/login.js?3.8.111 IP64.124.50.139:80
Requested byhttp://64.124.50.139/login
Hash861f3a843a634228ff28db2092a4512d 10789c1ca01cfa1883b336dc231af32adf5e0899 41f7b3357c479ab61bcffa24b66ad13446605a0bdb0aeb2a8bb395606972dbb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login/login.js?3.8.111 HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.124.50.139/login
Cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:43 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
transfer-encoding: chunked
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
cache-control: private, must-revalidate
server: Niagara Web Server/3.8.111
|
|
| 64.124.50.139/login/auth.min.js?3.8.111 | 64.124.50.139 | 200 OK | 41 kB |
URL GET HTTP/1.164.124.50.139/login/auth.min.js?3.8.111 IP64.124.50.139:80
Requested byhttp://64.124.50.139/login
File typeJavaScript source, ASCII text, with very long lines (8624) Hash6c8a63e40f08d3ce371fd22e8d46243d 96a2bb6540398c5b31df7b598a84becfe35976c4 c3931ac40f2381bcd91e768582ca8c7157e8e43c0567e57a0ea8d2afad95cc80
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login/auth.min.js?3.8.111 HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.124.50.139/login
Cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:43 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
transfer-encoding: chunked
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
cache-control: private, must-revalidate
server: Niagara Web Server/3.8.111
|
|
| 64.124.50.139/login/keys.png | 64.124.50.139 | 200 OK | 2.8 kB |
URL GET HTTP/1.164.124.50.139/login/keys.png IP64.124.50.139:80
Requested byhttp://64.124.50.139/login
File typePNG image data, 64 x 64, 8-bit colormap, non-interlaced Hash129f914b2570b50374ebeb8f1306617d 43a794b181040b7278080667d272bc9e4a56e929 3377ae917f6dcc1ee5d3cc09e0a4a7d2e92968acd153f34fd9adb6aa2ec5660d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login/keys.png HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.124.50.139/login
Cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:44 GMT
content-length: 2786
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-type: image/png; charset=UTF-8
cache-control: private, must-revalidate
server: Niagara Web Server/3.8.111
|
|
| 64.124.50.139/favicon.ico | 64.124.50.139 | 200 OK | 3.6 kB |
URL GET HTTP/1.164.124.50.139/favicon.ico IP64.124.50.139:80
Requested byhttp://64.124.50.139/login
File typeMS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel Hashd8d705cef8dbf67357ee908f42fd1baa b3620afa1746a1c1655fbb3ca88d35c8ab5df6d0 bba82de3842176d0d43f843188b424a4e3239b1ffab1ebf670d150cac2db4673
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 64.124.50.139
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.124.50.139/login
Cookie: niagara_session=sfe77285dc6ed1ded6833d1733e42db4170a91a4ab0642eb80e
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 May 2024 23:03:45 GMT
content-length: 3638
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-language: en-US,en;q=0.5
x-frame-options: sameorigin
content-type: image/x-icon; charset=UTF-8
cache-control: private, must-revalidate
server: Niagara Web Server/3.8.111
|
|