| | 36.66.16.233 | 200 OK | 114 B |
URL User Request GET HTTP/1.1IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeHTML document, ASCII text, with no line terminators Hash86908540fc8c475dbd7a3c5f77c03079 b8e76b7dac98093ef31562847a532ba456edc703 72094e391f84badd28962e19d749878248f01946990a0bd1b65e5a75534ef162
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 May 2024 11:28:49 GMT
Content-Type: text/html
Content-Length: 114
Connection: close
X-XSS-Protection: 1;mode=block
X-Content-Type-Options: nosniff
Location: https://36.66.16.233:443/
|
|
| mitmdetection.services.mozilla.com/ | 143.204.55.19 | | 0 B |
URL mitmdetection.services.mozilla.com/ IP143.204.55.19:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: mitmdetection.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/xml
date: Tue, 07 May 2024 04:21:20 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eGfGeZp2TRS-XSFZf161jKFVa4V0kPFTdLAphQNdjFZCX_gRXaWRrw==
X-Firefox-Spdy: h2
|
|
| | 36.66.16.233 | 200 OK | 3.1 kB |
URL User Request GET HTTP/1.1IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (522) Hash352b5ed16efab11df7ee45680c8278ef 403288e0f9472a903726df4a9af399beff2dcab3 2bb79241107e748db50ab64972952780a44abc052da5309e370d4ddcc841bde5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:28:58 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:bf6"
CONTENT-LENGTH: 3062
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: text/html
|
|
| 36.66.16.233/projectPath.js | 36.66.16.233 | 200 OK | 67 B |
URL GET HTTP/1.136.66.16.233/projectPath.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeASCII text, with no line terminators Hash534547184bca39810a17b87d4a4a053f 1b8776e2ff6e9ccf92ff052279d625b6fc5c8f33 8f82ad37d5abd4e4580cfc4f716bc3f5dd222ac61068a3adb033c2b29b90b17a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /projectPath.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:01 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:43"
CONTENT-LENGTH: 67
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/ext/ext-all.js | 36.66.16.233 | 200 OK | 1.5 MB |
URL GET HTTP/1.136.66.16.233/ext/ext-all.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeJavaScript source, ASCII text, with very long lines (64818) Size1.5 MB (1497654 bytes) Hash33c8a2191d27ee2812d9e5469f094556 7655fa8f1e248587943ea14c9c8739e5dd0b3e05 affefe36854341fcff50a56695f122ff2eec7e893891aa17ba4f0f98888f6f38
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ext/ext-all.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:28:59 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:16da36"
CONTENT-LENGTH: 1497654
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/app/libs/require.js | 36.66.16.233 | 200 OK | 18 kB |
URL GET HTTP/1.136.66.16.233/app/libs/require.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17565), with no line terminators Hash1f57901f2b583f9e73ca4889563c8c63 7100752ecadeea47c28b8dc0904326e55b45ea8b 3a6bc24af5efcbc41dd27c5ca7b0bec34ac8a4fd078ac0ca0ba1668c56fb8343
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/require.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:01 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:449d"
CONTENT-LENGTH: 17565
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/app/jsCore/require-config.js | 36.66.16.233 | 200 OK | 1.6 kB |
URL GET HTTP/1.136.66.16.233/app/jsCore/require-config.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeASCII text, with very long lines (1635), with no line terminators Hasha426d873859e7f0d504cf362d04d739f e7c11bd2c6cdfb73303f796e48426f2457202be9 e1252f090d15a784c5a8d13d57ec498b966fc32f6d350e5c2f55a89c62725345
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/jsCore/require-config.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:02 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:663"
CONTENT-LENGTH: 1635
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/pluginVersion.js | 36.66.16.233 | 200 OK | 332 B |
URL GET HTTP/1.136.66.16.233/pluginVersion.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeASCII text, with CRLF line terminators Hash74ff68631dbc26b49113278fe0ee3f63 080d0bd1e59b5e4af22f704b49c0babd01161409 3b07deebeaa0774cba30e11905fdc4f8ac04c8ed6e9d0c7b9f478f6ee4e05dc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pluginVersion.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:03 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:14c"
CONTENT-LENGTH: 332
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/webVersion.js | 36.66.16.233 | 200 OK | 39 B |
URL GET HTTP/1.136.66.16.233/webVersion.js IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeASCII text, with no line terminators Hash8006440ec67372417406be4c973a9652 a0f2949b2a084d0077bccf21f63c418c8582f863 0019cc2c0a117c60b0d8dad922b75824b77369a2c7dcbe1cc7cbc9f1d361c91b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webVersion.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:03 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:27"
CONTENT-LENGTH: 39
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: application/x-javascript
|
|
| 36.66.16.233/cap.js | 36.66.16.233 | 200 OK | 212 B |
IP36.66.16.233:443 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hash19365773e002776b02f847246d2d8964 2f07701f96a6ce0c90295d8579c08c8b458733a4 38e5bf05f5f077007c8aab5709e618bc1c02a75bd1c9bda4718ec882aca59554
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cap.js HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
X-XSS-Protection: 1;mode=block
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=604800; includeSubDomains
CONTENT-LENGTH: 212
CONNECTION: keep-alive
Set-Cookie: secure; HttpOnly
Content-type: application/x-javascript;charset=utf-8
|
|
| 36.66.16.233/baseProj/images/favicon.ico | 36.66.16.233 | | 1.2 kB |
URL GET 36.66.16.233/baseProj/images/favicon.ico IP36.66.16.233:0 ASN#7713 PT Telekomunikasi Indonesia
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hasha437e84d20c9cf7442fffab49e0f07e7 a9b858bd48976f8c2f2ab471a0d7843bfde58c7b 6fe49ae6a389a8cc3ef2866682443909dbb6987ca1918392b6e5d6473cbdd969
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /baseProj/images/favicon.ico HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 07 May 2024 11:29:10 GMT
Last-Modified: Fri, 09 Aug 2019 12:19:30 GMT
Etag: "1565353170:47e"
CONTENT-LENGTH: 1150
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: image/x-icon
|
|
| 36.66.16.233/app/libs/qrcode.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/qrcode.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/qrcode.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeAxesAdaptor.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeAxesAdaptor.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/plugin/platForm/h5/timeaxes/TimeAxesAdaptor.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/jquery.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/jquery.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/jquery.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeGridLayer.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeGridLayer.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/plugin/platForm/h5/timeaxes/TimeGridLayer.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/xss.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/xss.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/xss.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/json2.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/json2.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/json2.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/aes.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/aes.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/aes.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/rsa.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/rsa.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/rsa.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/jsonpath.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/jsonpath.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/jsonpath.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/css.min.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/css.min.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/css.min.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/md5.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/md5.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/md5.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeAxes.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/plugin/platForm/h5/timeaxes/TimeAxes.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/plugin/platForm/h5/timeaxes/TimeAxes.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 36.66.16.233/app/libs/base64.js?_dc=1715055688177 | 0.0.0.0 | | 0 B |
URL GET 36.66.16.233/app/libs/base64.js?_dc=1715055688177 IP0.0.0.0:0
CertificateIssuer Subject36.66.16.233 FingerprintBA:E2:24:4D:31:81:3C:78:8C:46:DD:D8:BB:06:18:FE:21:F8:80:F6 ValidityTue, 24 Jan 2023 11:24:52 GMT - Sun, 25 Jan 2026 11:24:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/libs/base64.js?_dc=1715055688177 HTTP/1.1
Host: 36.66.16.233
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://36.66.16.233/
Cookie: secure
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|