Report - 189.196.91.114/public/index.php

Report Overview

Submitted URL
189.196.91.114/public/index.php
IP
189.196.91.114
ASN
#262916 Mega Cable, S.A. de C.V.
Submitted
2024-05-08 07:33:23
Access
public
Website Title
Error
Final URL
189.196.91.114/public/index.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
189.196.91.114	unknown	unknown	No data	No data	1.3 kB	3.2 kB	189.196.91.114

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	189.196.91.114	Sinkholed
2024-05-08	medium	189.196.91.114	Sinkholed
2024-05-08	medium	189.196.91.114	Sinkholed
2024-05-08	medium	189.196.91.114	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

URL IP Response Size

189.196.91.114/

189.196.91.114

208 B

URL
189.196.91.114/
IP
189.196.91.114:0
ASN
#262916 Mega Cable, S.A. de C.V.

File type
HTML document, ASCII text
Size
208 B (208 bytes)
Hash
e8b37457b9dee981a0c9cf55b33d9c08
666515fbd82afc561259f05c28e47e9cf2dce60a
1b1b477970d3d42b841594a01efb4ea06e38b0521a048601044948324d8f0737

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 189.196.91.114
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Wed, 08 May 2024 07:33:02 GMT
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Location: http://189.196.91.114/ng
Content-Length: 208
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

189.196.91.114/ng

189.196.91.114

1.2 kB

URL
189.196.91.114/ng
IP
189.196.91.114:0
ASN
#262916 Mega Cable, S.A. de C.V.

File type
HTML document, ASCII text
Size
1.2 kB (1206 bytes)
Hash
1023d4baec6ddc9a4841ab3522212731
a5451de74a6b7526adb0463f1c4794480dd58cf7
abb41be9fc89d0031f6b3340a35ffc22672ec1f1a241e1032f8806d95d2ab110

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ng HTTP/1.1
Host: 189.196.91.114
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 07:33:02 GMT
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Vary: Accept-encoding
Cache-Control: no-cache
Last-Modified: Thu, 22 Jun 2023 21:27:40 GMT
Accept-Ranges: bytes
Content-Length: 1206
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
Content-Encoding: gzip

189.196.91.114/public/index.php

189.196.91.114

401 Unauthorized

123 B

URL User Request GET HTTP/1.1
189.196.91.114/public/index.php
IP
189.196.91.114:80
ASN
#262916 Mega Cable, S.A. de C.V.

File type
HTML document, ASCII text, with no line terminators
Size
123 B (123 bytes)
Hash
54c8f699322a7eca202a9f16f96728a0
28af5c7cb40f0c9b32aaad47fe73dbb21b1c37d9
748aff55ce918b0ecefe33dc4e951392177c0254e800f06a6836f5a82dc8586e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/index.php HTTP/1.1
Host: 189.196.91.114
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 401 Unauthorized
Date: Wed, 08 May 2024 07:33:02 GMT
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 123
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

189.196.91.114/favicon.ico

189.196.91.114

200 OK

318 B

URL GET HTTP/1.1
189.196.91.114/favicon.ico
IP
189.196.91.114:80
ASN
#262916 Mega Cable, S.A. de C.V.

Requested by
http://189.196.91.114/public/index.php

File type
MS Windows icon resource - 1 icon, 16x16, 16 colors
Size
318 B (318 bytes)
Hash
e462005902f81094ab3de44e4381de19
684d6a3783a92305592c4211412ad0e17d402195
d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 189.196.91.114
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://189.196.91.114/public/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 07:33:02 GMT
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
Last-Modified: Thu, 22 Jun 2023 21:27:40 GMT
Accept-Ranges: bytes
Content-Length: 318
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (4)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers