Report - 79.8.163.200/

Report Overview

Submitted URL
79.8.163.200/
IP
79.8.163.200
ASN
#3269 Telecom Italia
Submitted
2024-05-04 11:53:41
Access
public
Website Title
Login
Final URL
79.8.163.200/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
79.8.163.200	unknown	unknown	2022-01-28	2022-03-26	14 kB	685 kB	79.8.163.200

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed
2024-05-04	medium	79.8.163.200	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	79.8.163.200/jsCore/base64.js?version=2.210	1.4 kB	2023-03-07	2024-05-10
Pretty URL 79.8.163.200/jsCore/base64.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:25 Last Seen2024-05-10 13:53:42 Times Seen569 Hash 5eff3600464bfd8f5ef4c272907b9549 2a5d22360933506d19d43e00923ed4e21ca31bb8 406d5f2eaf96a6969b0ab8eec948ea8ef4bc5d187af61b4bc0d0f149e06af38f Loading...

	79.8.163.200/jsCore/publicLibrary.js?version=2.210	8.4 kB	2023-06-05	2024-05-04
Pretty URL 79.8.163.200/jsCore/publicLibrary.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 03:11:56 Last Seen2024-05-04 13:53:48 Times Seen8 Hash f0879cbf6df5ba498840368417606571 97482f15917a279e154b7b3c16f63b0df25e865b a345f98a66e37c9f21359de06750d75cc05bebcf40805b16727785892e29bb2f Loading...

	79.8.163.200/js/publicFunc.js?version=2.210	31 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/publicFunc.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:47 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 95d1fd7a0ad6a19968deefa6fcb54105 6b33b9aac6bc4c885c1a2e55bcbb7b826224d8b3 749c45c387fe7f6e9aa475c828add356d63e685cd587fc083f6dc99920737b11 Loading...

	79.8.163.200/js/ptzCtrl.js?version=2.210	625 B	2023-06-05	2024-05-04
Pretty URL 79.8.163.200/js/ptzCtrl.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 03:11:56 Last Seen2024-05-04 13:53:48 Times Seen6 Hash 5c82de155fed087887fd889596f7c91e f3819137c6c846340c5acc9ef778d7044856e486 16d75d2ee1e7e4e4b8590e7899af57644260de111ce45fb4dcbc1ac935158c85 Loading...

	79.8.163.200/js/set.js?version=2.210	11 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/set.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:47 Last Seen2024-05-04 13:53:48 Times Seen2 Hash cbaa064c696f07b0330ba27b9d2e657a 75c015b18d0963f2bc11de937aecbedf7dc24c03 4fb01b9e405160b822d98e6a03e663034e4285833ce79d5f6a04203cec51949d Loading...

	79.8.163.200/jsCore/more.js?version=2.210	27 kB	2023-03-12	2024-05-04
Pretty URL 79.8.163.200/jsCore/more.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 09:33:13 Last Seen2024-05-04 13:53:48 Times Seen21 Hash ab852b07565ee01030d1b5802bad6d09 bff6f32c6b0523c613d937a2904cd69195e4bb6c 039b1520948823ae984b8fd574e3de2431923f01a1be3d6f973b1ac146b2182c Loading...

	79.8.163.200/jsCore/common.js?version=2.210	7.0 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/jsCore/common.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:47 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 900f26b5bd308a8a91773c79428b8dbd d99a66184024bc56057befa6f59b9141d88d4a4b d37e828e8fc0c7be3b250b0ba2adec19078d02051261bc26c8bcacb9977aa06e Loading...

	79.8.163.200/js/index.js?version=2.210	80 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/index.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 24ddd46bce2b54a6df1000545823ab8a 0cbfd663a837085690ae3bcfe7e9e18d82838c16 c777534a9d4c28d57c330de5e1dcd0fef0a0537f0121e64db5535c8b3e065c7d Loading...

	79.8.163.200/jsCore/rpcLogin.js?version=2.210	2.9 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/jsCore/rpcLogin.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash ff2077f4f5dad35c54d2a3410390864b e2d3409f9b3383c6229e9c7066c802ffb41428c6 dc53fb61077715039af425211de13f028250fcb718e80380739ebd3b524e7da7 Loading...

	79.8.163.200/jsCore/md5.js?version=2.210	4.1 kB	2023-03-07	2024-05-10
Pretty URL 79.8.163.200/jsCore/md5.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:25 Last Seen2024-05-10 13:53:42 Times Seen580 Hash 2a97dd0b57aa2c62ecdb63f803c9040b ecc3580ac9f03705c2fc04571989cfea1a8def19 d4be5fd6e2d08e3b8ff86980c712d3f3606ec5c1da1a911f215937f35586e282 Loading...

	79.8.163.200/jsCore/rpcCore.js?version=2.210	52 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/jsCore/rpcCore.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 6c7cbe352e2f06c08f9b1f4b97ba7183 adfcef4a14dc7fbb17be91e9e19dfc9538dba823 4670b7725597de0a82ce78c9dceeeb89ff84efa5292144fc5f88f6fc55e0b380 Loading...

	79.8.163.200/js/loginEx.js?version=2.210	460 B	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/loginEx.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 36f9b437b6f4a42ef1db985ab9e1bb81 cfdd476d3b97402148e7e14fc0234ff34f6b3850 cdd1d973726f17f486112bfb80ab16c02a8d23f0bf5c67e72d1c813e4edbfbbd Loading...

	79.8.163.200/js/PlayBack.js?version=2.210	27 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/PlayBack.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 78d0f7eb9cfa3f01006144e922586798 d6a862fbbabda34ce7f89da7337f9cd16f7ba113 e52284784ab5e2ccadba5dccfef6783f90dd7f6db2e2cf876e833646d4a15562 Loading...

	79.8.163.200/jsCore/m.js?version=2.210	61 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/jsCore/m.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 047f7a6cb47faff9c89edb6154f9e937 8357c6a7569f7b3110e4a21c53bb65982308d389 56f0548e0c1bda895cacddc7681459c560ece7348cc242f72f57cbd660d20762 Loading...

	79.8.163.200/	318 B	2023-06-05	2024-05-04
Pretty URL 79.8.163.200/ IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 03:11:56 Last Seen2024-05-04 13:53:48 Times Seen3 Hash 05fb8e0a5f5cd4e95d2f252f73ce48c6 aec62b7fa97f3c28f06a7e84713727d5643df833 24305efdd57db29ddf3e9dbddebe192a88bb676c083e2f106ea995f78802a440 Loading...

	79.8.163.200/js/alarm.js?version=2.210	2.3 kB	2024-05-04	2024-05-04
Pretty URL 79.8.163.200/js/alarm.js?version=2.210 IP 79.8.163.200 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen2 Hash 83e4e88db517ddbb04445cbdee36cb9c c66e2a8c3844906fd43968acc505688cf9069a8c 7989a0f1c1fc428ad1b088147175a6bcbec947f237f042f6a8a7e3ee31b716f0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 635f084eb0bb500c286e29470d1744a1	100 kB	2024-05-04	2024-05-04
Pretty Observations First Seen2024-05-04 13:53:48 Last Seen2024-05-04 13:53:48 Times Seen1 Hash 635f084eb0bb500c286e29470d1744a1 a32e2f37b6cebb668521cd93b2e11e8b31983341 7ac9ff043ce9a161b58d4ed96223c4b54bd8da77b38b123309514cac5ff97621 Loading...

HTTP Transactions (40)

URL IP Response Size

79.8.163.200/

79.8.163.200

200 OK

85 kB

URL User Request GET HTTP/1.1
79.8.163.200/
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
85 kB (84805 bytes)
Hash
d8c93d9a3331141ae4bf21ae68a0b238
dbd91ef78e1329af829f6ebdc78f8c1aed2771ec
50822d42dba3f82ec8482475603a5774134c480fb9c77fe708defb3c8ab1baf9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:58 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:84805"
CONTENT-LENGTH: 84805
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/html

79.8.163.200/css/resize.css?version=2.210

79.8.163.200

200 OK

822 B

URL GET HTTP/1.1
79.8.163.200/css/resize.css?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with CRLF line terminators
Size
822 B (822 bytes)
Hash
f9c5b90e68eb8e01f83d08712b66122c
8b6308bb95b4f5d4c7cce39e4fa410cb77c58ebe
92bd6f9d8fc3b693c460c29302c9036c43c48ddaee9662decd7bd8fd4c53a5b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/resize.css?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:822"
CONTENT-LENGTH: 822
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/css

79.8.163.200/css/alarm.css?version=2.210

79.8.163.200

200 OK

862 B

URL GET HTTP/1.1
79.8.163.200/css/alarm.css?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
862 B (862 bytes)
Hash
7e43e42a06f97ce0d109966db0b327cc
c7aa35438b3089e801d263b061362f67ee144a63
e04190a5da601aa26b1949e24da9a7adf667e6b310bb7651a71be4b8b2f42fa2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/alarm.css?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:862"
CONTENT-LENGTH: 862
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/css

79.8.163.200/css/main.css?version=2.210

79.8.163.200

200 OK

28 kB

URL GET HTTP/1.1
79.8.163.200/css/main.css?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
Unicode text, UTF-8 text, with very long lines (303), with CRLF line terminators
Size
28 kB (28188 bytes)
Hash
96e3dc25443b61d557afa1824e794f96
a41aa0f74c2185d4f06cfdd7c88c2065b2aa2e69
928368b341aa4adf7d89d181b94817b74ad7782e58728b3af80cc3a8bff2e427

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/main.css?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:53 GMT
Etag: "1378929773:28188"
CONTENT-LENGTH: 28188
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/css

79.8.163.200/css/playback.css?version=2.210

79.8.163.200

200 OK

13 kB

URL GET HTTP/1.1
79.8.163.200/css/playback.css?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
13 kB (13246 bytes)
Hash
ff9ae854e20f33ad3f1b083203976047
4ecaa9dacc14235a36f3905a576c22936282da68
ecbadf6c9754ab80bc96f91db1e3e087e9fe459d6fc8e64c3c97b06410748c77

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/playback.css?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:13246"
CONTENT-LENGTH: 13246
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/css

79.8.163.200/jsCore/md5.js?version=2.210

79.8.163.200

200 OK

4.1 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/md5.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (513)
Size
4.1 kB (4088 bytes)
Hash
2a97dd0b57aa2c62ecdb63f803c9040b
ecc3580ac9f03705c2fc04571989cfea1a8def19
d4be5fd6e2d08e3b8ff86980c712d3f3606ec5c1da1a911f215937f35586e282

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/md5.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:4088"
CONTENT-LENGTH: 4088
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/base64.js?version=2.210

79.8.163.200

200 OK

1.4 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/base64.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (520)
Size
1.4 kB (1430 bytes)
Hash
5eff3600464bfd8f5ef4c272907b9549
2a5d22360933506d19d43e00923ed4e21ca31bb8
406d5f2eaf96a6969b0ab8eec948ea8ef4bc5d187af61b4bc0d0f149e06af38f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/base64.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:1430"
CONTENT-LENGTH: 1430
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/css/set.css?version=2.210

79.8.163.200

200 OK

57 kB

URL GET HTTP/1.1
79.8.163.200/css/set.css?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
Unicode text, UTF-8 text, with very long lines (349), with CRLF line terminators
Size
57 kB (56815 bytes)
Hash
3202086d08699c8f2de2bb7cc9a3663b
5d7f1491c413265859afe73fc64aeab5839e280a
d0d7cb4037c3c9baca6986a725c8371695d6224f99855d95dec4bb8ac61d97de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/set.css?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:53 GMT
Etag: "1378929773:56815"
CONTENT-LENGTH: 56815
CACHE-CONTROL: max-age=0
CONTENT-TYPE: text/css

79.8.163.200/jsCore/rpcLogin.js?version=2.210

79.8.163.200

200 OK

2.9 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/rpcLogin.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (528)
Size
2.9 kB (2946 bytes)
Hash
ff2077f4f5dad35c54d2a3410390864b
e2d3409f9b3383c6229e9c7066c802ffb41428c6
dc53fb61077715039af425211de13f028250fcb718e80380739ebd3b524e7da7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rpcLogin.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:2946"
CONTENT-LENGTH: 2946
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/more.js?version=2.210

79.8.163.200

200 OK

27 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/more.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (529)
Size
27 kB (27038 bytes)
Hash
ab852b07565ee01030d1b5802bad6d09
bff6f32c6b0523c613d937a2904cd69195e4bb6c
039b1520948823ae984b8fd574e3de2431923f01a1be3d6f973b1ac146b2182c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/more.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:27038"
CONTENT-LENGTH: 27038
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/m.js?version=2.210

79.8.163.200

200 OK

61 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/m.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (555)
Size
61 kB (61005 bytes)
Hash
047f7a6cb47faff9c89edb6154f9e937
8357c6a7569f7b3110e4a21c53bb65982308d389
56f0548e0c1bda895cacddc7681459c560ece7348cc242f72f57cbd660d20762

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/m.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:61005"
CONTENT-LENGTH: 61005
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/publicLibrary.js?version=2.210

79.8.163.200

200 OK

8.4 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/publicLibrary.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (535)
Size
8.4 kB (8444 bytes)
Hash
f0879cbf6df5ba498840368417606571
97482f15917a279e154b7b3c16f63b0df25e865b
a345f98a66e37c9f21359de06750d75cc05bebcf40805b16727785892e29bb2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/publicLibrary.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:8444"
CONTENT-LENGTH: 8444
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/common.js?version=2.210

79.8.163.200

200 OK

7.0 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/common.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (518)
Size
7.0 kB (7043 bytes)
Hash
900f26b5bd308a8a91773c79428b8dbd
d99a66184024bc56057befa6f59b9141d88d4a4b
d37e828e8fc0c7be3b250b0ba2adec19078d02051261bc26c8bcacb9977aa06e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/common.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:7043"
CONTENT-LENGTH: 7043
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/js/ptzCtrl.js?version=2.210

79.8.163.200

200 OK

625 B

URL GET HTTP/1.1
79.8.163.200/js/ptzCtrl.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (391)
Size
625 B (625 bytes)
Hash
5c82de155fed087887fd889596f7c91e
f3819137c6c846340c5acc9ef778d7044856e486
16d75d2ee1e7e4e4b8590e7899af57644260de111ce45fb4dcbc1ac935158c85

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/ptzCtrl.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:625"
CONTENT-LENGTH: 625
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/jsCore/rpcCore.js?version=2.210

79.8.163.200

200 OK

52 kB

URL GET HTTP/1.1
79.8.163.200/jsCore/rpcCore.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (562)
Size
52 kB (51750 bytes)
Hash
6c7cbe352e2f06c08f9b1f4b97ba7183
adfcef4a14dc7fbb17be91e9e19dfc9538dba823
4670b7725597de0a82ce78c9dceeeb89ff84efa5292144fc5f88f6fc55e0b380

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jsCore/rpcCore.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:51750"
CONTENT-LENGTH: 51750
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/js/alarm.js?version=2.210

79.8.163.200

200 OK

2.3 kB

URL GET HTTP/1.1
79.8.163.200/js/alarm.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (479)
Size
2.3 kB (2250 bytes)
Hash
83e4e88db517ddbb04445cbdee36cb9c
c66e2a8c3844906fd43968acc505688cf9069a8c
7989a0f1c1fc428ad1b088147175a6bcbec947f237f042f6a8a7e3ee31b716f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/alarm.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:2250"
CONTENT-LENGTH: 2250
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/js/loginEx.js?version=2.210

79.8.163.200

200 OK

460 B

URL GET HTTP/1.1
79.8.163.200/js/loginEx.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
ASCII text, with very long lines (459)
Size
460 B (460 bytes)
Hash
36f9b437b6f4a42ef1db985ab9e1bb81
cfdd476d3b97402148e7e14fc0234ff34f6b3850
cdd1d973726f17f486112bfb80ab16c02a8d23f0bf5c67e72d1c813e4edbfbbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/loginEx.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:460"
CONTENT-LENGTH: 460
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/js/publicFunc.js?version=2.210

79.8.163.200

200 OK

31 kB

URL GET HTTP/1.1
79.8.163.200/js/publicFunc.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
HTML document, ASCII text, with very long lines (827)
Size
31 kB (30936 bytes)
Hash
95d1fd7a0ad6a19968deefa6fcb54105
6b33b9aac6bc4c885c1a2e55bcbb7b826224d8b3
749c45c387fe7f6e9aa475c828add356d63e685cd587fc083f6dc99920737b11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/publicFunc.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:30936"
CONTENT-LENGTH: 30936
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/js/set.js?version=2.210

79.8.163.200

200 OK

11 kB

URL GET HTTP/1.1
79.8.163.200/js/set.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (533)
Size
11 kB (10679 bytes)
Hash
cbaa064c696f07b0330ba27b9d2e657a
75c015b18d0963f2bc11de937aecbedf7dc24c03
4fb01b9e405160b822d98e6a03e663034e4285833ce79d5f6a04203cec51949d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/set.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:10679"
CONTENT-LENGTH: 10679
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/image/focus.gif

79.8.163.200

200 OK

135 B

URL GET HTTP/1.1
79.8.163.200/image/focus.gif
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
GIF image data, version 89a, 18 x 13
Size
135 B (135 bytes)
Hash
20b06cd55a9e067c053fed42ddf67c47
4e5045d229eb37c9ff8d2081522a1abd1a7896a7
01f094eec21ba599ac6dd962e6352485fa1f641331c87ebbfc641aac60fd60ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/focus.gif HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:135"
CONTENT-LENGTH: 135
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/gif

79.8.163.200/image/del.png

79.8.163.200

200 OK

1.5 kB

URL GET HTTP/1.1
79.8.163.200/image/del.png
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 26 x 24, 8-bit colormap, non-interlaced
Size
1.5 kB (1467 bytes)
Hash
63fd7b6a9dadfe56a9efd2b98b93c76a
7ce6bea4ed51ed42fd529277726e35d29713120f
8e5f68920f7c005b2ab0ab0d32cae2c7ba563f488e34310a29abf0f220eaab2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/del.png HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:1467"
CONTENT-LENGTH: 1467
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/bg.png?version=2.210

79.8.163.200

200 OK

985 B

URL GET HTTP/1.1
79.8.163.200/image/bg.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 1 x 170, 8-bit colormap, non-interlaced
Size
985 B (985 bytes)
Hash
88f54be55f085162342d5bb51af52a26
b3a1734a05eb9395f83ad17adefadf6e249f75a8
632ac2a6c5d940bdb01830a0c090eba277209be1e0d16094971319cfc31bafff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/bg.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:985"
CONTENT-LENGTH: 985
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/js/index.js?version=2.210

79.8.163.200

200 OK

80 kB

URL GET HTTP/1.1
79.8.163.200/js/index.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (788)
Size
80 kB (80051 bytes)
Hash
24ddd46bce2b54a6df1000545823ab8a
0cbfd663a837085690ae3bcfe7e9e18d82838c16
c777534a9d4c28d57c330de5e1dcd0fef0a0537f0121e64db5535c8b3e065c7d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/index.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:80051"
CONTENT-LENGTH: 80051
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/Custom/local.png?version=2.210

79.8.163.200

200 OK

2.9 kB

URL GET HTTP/1.1
79.8.163.200/Custom/local.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
2.9 kB (2885 bytes)
Hash
1ad79db85344b092a383c383662552ce
571b5a926a3a8ddef23556d1bca5881d03d2fb4f
9dc6c116aa7a10d258c8bb3d23133a4ed0653b728549136031862e660c39d3de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Custom/local.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:56 GMT
Etag: "1378929776:2885"
CONTENT-LENGTH: 2885
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/js/PlayBack.js?version=2.210

79.8.163.200

200 OK

27 kB

URL GET HTTP/1.1
79.8.163.200/js/PlayBack.js?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JavaScript source, ASCII text, with very long lines (670)
Size
27 kB (27245 bytes)
Hash
78d0f7eb9cfa3f01006144e922586798
d6a862fbbabda34ce7f89da7337f9cd16f7ba113
e52284784ab5e2ccadba5dccfef6783f90dd7f6db2e2cf876e833646d4a15562

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/PlayBack.js?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:40:59 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:27245"
CONTENT-LENGTH: 27245
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/x-javascript

79.8.163.200/image/btnbg.png?version=2.210

79.8.163.200

200 OK

861 B

URL GET HTTP/1.1
79.8.163.200/image/btnbg.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 1 x 215, 8-bit colormap, non-interlaced
Size
861 B (861 bytes)
Hash
607a1582a3ce7761357bd195a339cf76
44ff5b537577247d616334ef3f1a971412fb7380
7f2e69521dc643950b531668646b54b849191149741eccbc8478935bf1c2cedc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/btnbg.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:861"
CONTENT-LENGTH: 861
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/loginlogo.jpg?version=2.210

79.8.163.200

200 OK

10 kB

URL GET HTTP/1.1
79.8.163.200/image/loginlogo.jpg?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 474x56, components 3
Size
10 kB (10145 bytes)
Hash
690d63485a980f02898a43852080eb77
ac3713d1547d97c50744c93519343e1e4483d2d0
b5d488b884fe90922d2d167b4a39601f1ea93dc04f482311a033a8e1fd2aa726

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/loginlogo.jpg?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:10145"
CONTENT-LENGTH: 10145
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/jpeg

79.8.163.200/image/lgbg.jpg?version=2.210

79.8.163.200

200 OK

6.3 kB

URL GET HTTP/1.1
79.8.163.200/image/lgbg.jpg?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 483x317, components 3
Size
6.3 kB (6255 bytes)
Hash
4ff53be6165e430af41d782e00207fda
a83930048e73d8e67fbfd284b1e7a9c15cef9b1d
e5cc6df02c1d12a041e4cf906f2f5465fb07c0a55d55a6e42be0a99894219e27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/lgbg.jpg?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:6255"
CONTENT-LENGTH: 6255
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/jpeg

79.8.163.200/image/logo.jpg?version=2.210

79.8.163.200

200 OK

3.8 kB

URL GET HTTP/1.1
79.8.163.200/image/logo.jpg?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 165x55, components 3
Size
3.8 kB (3787 bytes)
Hash
ba9d213137c84de52a29e94afafe3bc2
57d27e310c38adedabbf9647269bab49ee0f9848
15508883141c2ca2789ba15d8b71db66b09580f175a1977405cde2957f601efd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/logo.jpg?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:3787"
CONTENT-LENGTH: 3787
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/jpeg

79.8.163.200/current_config/preLanguage?version=2.210

79.8.163.200

200 OK

33 B

URL GET HTTP/1.1
79.8.163.200/current_config/preLanguage?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JSON text data
Size
33 B (33 bytes)
Hash
8982b8ca66cd76cac3501c6074383bc7
b92b312b8b6de2f860d65ab6f17d194e607b0c70
73e00b4de2da8f4446cc1ff5393de2b7ed62d4c925eeaa2eea92c7c122c63efa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /current_config/preLanguage?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Sat, 01 Jan 2000 00:00:30 GMT
Etag: "946684830:33"
CONTENT-LENGTH: 33
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/octet-stream

79.8.163.200/image/pbbbtn.png?version=2.210

79.8.163.200

200 OK

12 kB

URL GET HTTP/1.1
79.8.163.200/image/pbbbtn.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 270 x 500, 8-bit colormap, non-interlaced
Size
12 kB (12325 bytes)
Hash
1d864ce22e9b44dc3368ef0b160910d2
14baa89ab0b487fc871393d118ab4107c7ff5e1f
45008465d007b33fb902593f63c8aded02809377a113ed90ecb83c7fa7fee41b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/pbbbtn.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:12325"
CONTENT-LENGTH: 12325
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/vedioicon.png?version=2.210

79.8.163.200

200 OK

2.8 kB

URL GET HTTP/1.1
79.8.163.200/image/vedioicon.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 184 x 34, 8-bit colormap, non-interlaced
Size
2.8 kB (2827 bytes)
Hash
5a2417de8f91ba565c78837f4a2c83e2
51b959aa1437a56f59b2756f6dc84ac8ed947d30
963de434fa99688405bfab62aba7e3567c626ea3facbaad37c8d570e0a37702e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/vedioicon.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:2827"
CONTENT-LENGTH: 2827
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/btnbar.png?version=2.210

79.8.163.200

200 OK

10 kB

URL GET HTTP/1.1
79.8.163.200/image/btnbar.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 325 x 69, 8-bit colormap, non-interlaced
Size
10 kB (10108 bytes)
Hash
59f6f508212928b33290061b1ee749fa
7ae8ce61693e43055840ed9c74667ae678049ac6
af6eb200f720f8601bfbcea6d558c52dac4da8f5b873f9052cd0abf3ef4933fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/btnbar.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:10108"
CONTENT-LENGTH: 10108
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/bgx.png?version=2.210

79.8.163.200

200 OK

1.0 kB

URL GET HTTP/1.1
79.8.163.200/image/bgx.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 1 x 120, 8-bit colormap, non-interlaced
Size
1.0 kB (1002 bytes)
Hash
677c5926aedac2c95112271a012b122c
978c1513a365ed041fbbfd17fe1e5b9d0177129a
e0edf7fd1a512c1060f24126a574a0a032f9a75848305df28b076280607e7667

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/bgx.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:1002"
CONTENT-LENGTH: 1002
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/yt2.png?version=2.210

79.8.163.200

200 OK

8.0 kB

URL GET HTTP/1.1
79.8.163.200/image/yt2.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 74 x 416, 8-bit colormap, non-interlaced
Size
8.0 kB (8015 bytes)
Hash
3353c2e85203318b3303b0f475be2ee1
9b467a75cd5db101d67190f1d7f8af723feb669c
615e0a07f0943076c47351d3907e328395006f8b5e03a0457e6b2bfd1f8225c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/yt2.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:8015"
CONTENT-LENGTH: 8015
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/sidebar4.png?version=2.210

79.8.163.200

200 OK

8.2 kB

URL GET HTTP/1.1
79.8.163.200/image/sidebar4.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 200 x 417, 8-bit colormap, non-interlaced
Size
8.2 kB (8169 bytes)
Hash
9c4bea893e1f1d9efcf941b43212529f
82019b4d9dbb4f6ac89eff11aedf74f0a14bbbcc
d29ccc3ddfe8ca5c76ce07508b6072cedd484a86f172bd8f66a5a0e932c95b51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/sidebar4.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:8169"
CONTENT-LENGTH: 8169
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/image/yt3.png?version=2.210

79.8.163.200

200 OK

5.6 kB

URL GET HTTP/1.1
79.8.163.200/image/yt3.png?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
PNG image data, 74 x 480, 8-bit colormap, non-interlaced
Size
5.6 kB (5620 bytes)
Hash
52dece4a4711b7cbc054c5b7f4534374
6535bb834b2c3281610c5727141c0fa37e2f1199
3517bc10638e095c318c4de83f664ef066d094ec7046f9273c61f8ede68cf2bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/yt3.png?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/css/main.css?version=2.210
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Wed, 11 Sep 2013 20:02:52 GMT
Etag: "1378929772:5620"
CONTENT-LENGTH: 5620
CACHE-CONTROL: max-age=0
CONTENT-TYPE: image/png

79.8.163.200/web_caps/webCapsConfig?version=2.210

79.8.163.200

200 OK

948 B

URL GET HTTP/1.1
79.8.163.200/web_caps/webCapsConfig?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
JSON text data
Size
948 B (948 bytes)
Hash
67ff041b072fbcc2f012ddf7ef90a972
4c0358f061f50c93db1f3d9bd244fef6b71d2e88
03d4a9a6153cef45e50fe3a6529441a8100c970c17885db4577ed61a66d32541

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /web_caps/webCapsConfig?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Cookie: DHLangCookie30=Italian
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Mon, 03 Jan 2000 23:41:00 GMT
Etag: "946942860:948"
CONTENT-LENGTH: 948
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/octet-stream

79.8.163.200/custom_lang/Italian.txt?version=2.210

79.8.163.200

200 OK

100 kB

URL GET HTTP/1.1
79.8.163.200/custom_lang/Italian.txt?version=2.210
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
data
Size
100 kB (99752 bytes)
Hash
d4cc71514315d67140bc8f1f6227bd75
6f5b5dfe22e995d2df2195d974dbc3b671bc07c9
9fa945186c8c59cf77bba3a7406f01bcaac75bb43942d45bebe6a10de9fdb76f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /custom_lang/Italian.txt?version=2.210 HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-Request: JSON
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Cookie: DHLangCookie30=Italian
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
CONNECTION: close
Date: Mon, 03 Jan 2000 23:41:00 GMT
Last-Modified: Fri, 11 Oct 2013 08:02:30 GMT
Etag: "1381478550:99752"
CONTENT-LENGTH: 99752
CACHE-CONTROL: max-age=0
CONTENT-TYPE: application/octet-stream

79.8.163.200/favicon.ico

79.8.163.200

404 Not Found

48 B

URL GET HTTP/1.1
79.8.163.200/favicon.ico
IP
79.8.163.200:80
ASN
#3269 Telecom Italia

Requested by
http://79.8.163.200/

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 79.8.163.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://79.8.163.200/
Cookie: DHLangCookie30=Italian; DHVideoWHMode=Adaptive%20Window
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML