| mitmdetection.services.mozilla.com/ | 54.230.111.77 | | 0 B |
URL mitmdetection.services.mozilla.com/ IP54.230.111.77:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: mitmdetection.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/xml
date: Tue, 07 May 2024 22:12:04 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xAtekgd0P9yHPlV4xgqRZbllMbrMrnerCnq3leCKFbISlomUKj5zfw==
X-Firefox-Spdy: h2
|
|
| 212.216.210.174/ | 212.216.210.174 | | 1.8 kB |
IP212.216.210.174:0
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hashd723794aa15babaf73c71abd9e9fc16a faa06bfcd3cebc9c98ff166ddbc0dd38849b5fb7 a6b5ae791c617795d1fb394f0e505b009a91423ecb6444959ce6251f786560ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 302 Redirect
Server: DVRDVS-Webs
Date: Wed May 8 00:12:04 2024
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Location: https://212.216.210.174/index.asp
|
|
| 212.216.210.174/doc/script/jquery-1.7.1.min.js | 212.216.210.174 | 200 OK | 94 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/jquery-1.7.1.min.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32769) Hashddb84c1587287b2df08966081ef063bf 9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f 88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/jquery-1.7.1.min.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/index.asp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:05 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 93868
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/script/jquery.cookie.js | 212.216.210.174 | 200 OK | 3.8 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/jquery.cookie.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hasha479f46b2a66d5772f839cdf20c24898 dfc20a0ffcf24df1fdb6d2b15dabde27a3956eb1 087712cabcc08391246c1c3ab4ddecd706ac939a7b1f10e13fe207d9f9240148
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/jquery.cookie.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/index.asp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:05 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 3752
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/page/login.asp | 212.216.210.174 | 200 OK | 2.1 kB |
URL User Request GET HTTP/1.0212.216.210.174/doc/page/login.asp IP212.216.210.174:443
CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash23d1f6113e4ae1c7755d27ccba87f00d f1163b70314916735464c8f5c60dd6926b3f52d5 ea9f31819a7503a974619890edfbc4f2856e90caa8da505a586815c098456b96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/page/login.asp HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/index.asp
Cookie: language=en; updateTips=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:05 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 2110
Content-type: text/html
|
|
| 212.216.210.174/doc/css/base.css | 212.216.210.174 | 200 OK | 933 B |
URL GET HTTP/1.0212.216.210.174/doc/css/base.css IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashc9f676955ddb0002f2cf9ae5c9859dfc 74ccdcdcb2bf5fae840cf6327db5660289c2d055 d22dc2e1a7a128730f7e3399a0ac3734f6ae4c499d09a705c90ece12f204201c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/css/base.css HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:05 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 933
Content-type: text/css
|
|
| 212.216.210.174/doc/script/jquery-1.7.1.min.js | 212.216.210.174 | 200 OK | 94 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/jquery-1.7.1.min.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32769) Hashddb84c1587287b2df08966081ef063bf 9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f 88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/jquery-1.7.1.min.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:05 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 93868
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/css/login.css | 212.216.210.174 | 200 OK | 1.1 kB |
URL GET HTTP/1.0212.216.210.174/doc/css/login.css IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeASCII text, with CRLF line terminators Hash9e92089b4549cecdaa845826bae82620 3557726fdf5fd002aac9535ac7668915e8f1ea25 7b4223ddeb4f586881eeba585bdf55a66937486ec981ae702397f010512e6eca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/css/login.css HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:06 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 1096
Content-type: text/css
|
|
| 212.216.210.174/doc/script/jquery.cookie.js | 212.216.210.174 | 200 OK | 3.8 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/jquery.cookie.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hasha479f46b2a66d5772f839cdf20c24898 dfc20a0ffcf24df1fdb6d2b15dabde27a3956eb1 087712cabcc08391246c1c3ab4ddecd706ac939a7b1f10e13fe207d9f9240148
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/jquery.cookie.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:06 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 3752
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/script/login.js | 212.216.210.174 | 200 OK | 5.3 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/login.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashb3db92981c688b307f0b8d4e2c286f48 a4b6e40b105abe07177da212ec7479b8301e5715 0415a5f68531693e39916b718918b4c9db304c002582918eda43671a438c727a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/login.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:06 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 5287
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/script/common.js | 212.216.210.174 | 200 OK | 43 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/common.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1119), with CRLF line terminators Hash1d41f7aa18d4e0dfb47a1b3c651e83c6 abf743a59621fb7f2001c0f11ba59b31b1c3d336 4f9d5bb580bf04c6ddab512ee3d1472251c4ee483d965bb3824e53ce3ae3ff7b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/common.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:06 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 43137
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/script/Translator.js | 212.216.210.174 | 200 OK | 15 kB |
URL GET HTTP/1.0212.216.210.174/doc/script/Translator.js IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hash3a0d9389d8f4ed449fdc9ab591290e3f b6920330b42aa1995d0b20004e38b5700ed45e2c af60da9e04e125a7aadca238a8a705a5e4f8c82a2ce5ada0586f264bd035798a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/script/Translator.js HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:06 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 14942
Content-type: application/x-javascript
|
|
| 212.216.210.174/doc/xml/Languages.xml | 212.216.210.174 | 200 OK | 1.3 kB |
URL GET HTTP/1.0212.216.210.174/doc/xml/Languages.xml IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash4c4d6df44c6513de624a30cfb0be1762 578c8950feffb7f1f154a6fb2a7c6092aa97db5e e0bd53ed6669df73e5fca45feabe21750f60f00e85699255be5216d05043b537
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/xml/Languages.xml HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:07 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 1347
Content-type: text/xml
|
|
| 212.216.210.174/doc/images/login/login_14.png | 212.216.210.174 | 200 OK | 80 kB |
URL GET HTTP/1.0212.216.210.174/doc/images/login/login_14.png IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typePNG image data, 716 x 344, 8-bit/color RGBA, non-interlaced Hashafb32f6ebaf4ec9a882513fc400e5d87 a139d8d20f5d419ce179b01fc822512696d81fcb 4aaf51bad5e225e09a8eb8835dcf005820ffa2c7c5f907214efbe1fd5067c3bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/images/login/login_14.png HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/css/login.css
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:07 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 80144
Content-type: text/plain
|
|
| 212.216.210.174/doc/images/login/input_normal.png | 212.216.210.174 | 200 OK | 4.0 kB |
URL GET HTTP/1.0212.216.210.174/doc/images/login/input_normal.png IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typePNG image data, 200 x 28, 8-bit/color RGBA, interlaced Hash18e83d6645bb1e382735a508569e8057 6d329d4cdcf26e505be0fd5ec25fedf396012d42 5babca8a7b2041dae3d2a575bfef57aa22f520b27cc11531f1494d8f54cd0c99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/images/login/input_normal.png HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/css/login.css
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:07 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 4046
Content-type: text/plain
|
|
| 212.216.210.174/favicon.ico | 212.216.210.174 | 200 OK | 1.2 kB |
URL GET HTTP/1.0212.216.210.174/favicon.ico IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash89b932fcc47cf4ca3faadb0cfdef89cf bbe285bc080460c8d71e80965e993852e62d438f 7d249b2fca8ab8d5ab373444732b8bc9104ab597976640f3441ddfd70148b527
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:07 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 1150
Content-type: text/plain
|
|
| 212.216.210.174/doc/xml/en/Login.xml | 212.216.210.174 | 200 OK | 854 B |
URL GET HTTP/1.0212.216.210.174/doc/xml/en/Login.xml IP212.216.210.174:443
Requested byhttps://212.216.210.174/doc/page/login.asp CertificateIssuerInternet Widgits Pty Ltd Subject FingerprintF2:CF:AD:74:39:6F:F3:A7:64:B8:97:4F:FE:35:0A:0A:41:F8:23:DF ValidityFri, 23 Nov 2012 12:36:33 GMT - Thu, 20 Aug 2015 12:36:33 GMT
File typeXML 1.0 document, ASCII text, with CRLF line terminators Hash1491dea09bb7fb0897823065a959bc54 8bd6134910e17a107b9a0671ce25fdaa906ddca2 5d8c60ebea2c4a3e3f5c9ae2fe395496a67c56674aa27d9ebd69ab0295b7d308
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /doc/xml/en/Login.xml HTTP/1.1
Host: 212.216.210.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://212.216.210.174/doc/page/login.asp
Cookie: language=en; updateTips=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Wed May 8 00:12:07 2024
Server: DVRDVS-Webs
Last-modified: Tue Mar 19 02:02:31 2013
Content-length: 854
Content-type: text/xml
|
|