| guerrilladefense.com/wp/login.php/ | 70.32.23.52 | 200 OK | 619 B |
URL User Request GET HTTP/2guerrilladefense.com/wp/login.php/ IP70.32.23.52:443
CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/ HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=c176423e376019988146d7b94be2b453; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:08 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/css/bootstrap-extension.css | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/css/bootstrap-extension.css IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/bower_components/bootstrap-extension/css/bootstrap-extension.css HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/bootstrap/dist/css/bootstrap.min.css | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/bootstrap/dist/css/bootstrap.min.css IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/bootstrap/dist/css/bootstrap.min.css HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/bootstrap/dist/js/bootstrap.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/bootstrap/dist/js/bootstrap.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/bootstrap/dist/js/bootstrap.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/sweetalert/dist/sweetalert.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.css | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.css IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/sweetalert/dist/sweetalert.css HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/bootstrap/dist/js/tether.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/bootstrap/dist/js/tether.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/bootstrap/dist/js/tether.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/plugins/bower_components/jquery/dist/jquery.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/plugins/bower_components/jquery/dist/jquery.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| guerrilladefense.com/wp/login.php/bootstrap/dist/js/tether.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/2guerrilladefense.com/wp/login.php/bootstrap/dist/js/tether.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/bootstrap/dist/js/tether.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| guerrilladefense.com/wp/login.php/bootstrap/dist/js/bootstrap.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/bootstrap/dist/js/bootstrap.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/bootstrap/dist/js/bootstrap.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
|
|
| guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/bower_components/bootstrap-extension/js/bootstrap-extension.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
|
|
| guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.min.js | 70.32.23.52 | 200 OK | 619 B |
URL GET HTTP/3guerrilladefense.com/wp/login.php/plugins/sweetalert/dist/sweetalert.min.js IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashfe63b1c5a4c1cef5831e1c53fea96819 85d83d158b35a42c8f02d75618d624ea9ae5e0d1 66570233b27c0c11c1bf1a393b51332ffc0d274fd514afbecda91dabe1750d59
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel |
GET /wp/login.php/plugins/sweetalert/dist/sweetalert.min.js HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-length: 619
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
|
|
| guerrilladefense.com/favicon.ico | 70.32.23.52 | 404 Not Found | 796 B |
URL GET HTTP/3guerrilladefense.com/favicon.ico IP70.32.23.52:443
Requested byhttps://guerrilladefense.com/wp/login.php/ CertificateIssuerLet's Encrypt Subjectwebdisk.guerrilladefense.com Fingerprint97:D1:6F:92:54:2E:C5:EA:31:65:D3:F3:02:86:60:B5:60:1C:69:6A ValiditySun, 21 Apr 2024 03:18:22 GMT - Sat, 20 Jul 2024 03:18:21 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash265e51037981a14ed99a5fc8c5ec1b51 d12ac588953298fdaf46dd5b4af8eb4cf6b06f0a c4b07931b3fc37bc80d56a367783e7fa7c04ced4befec7f57ed079c38c960400
GET /favicon.ico HTTP/1.1
Host: guerrilladefense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://guerrilladefense.com/wp/login.php/
Cookie: PHPSESSID=c176423e376019988146d7b94be2b453
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 796
date: Tue, 23 Apr 2024 17:33:09 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
|
|