13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
13.85.80.152200 OK 848 B URL User Request GET HTTP/1.1 13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
IP 13.85.80.152:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text
Hash 665c94bd7f3d49711c5b8066afd9928d
0b8682e7a50658c8e6d8538b680ff66ce29a07e3
5bd0519d3785d23d2ba6851d7be33ce3a6602ebf54081e0a3484f944e65b04a6
Analyzer Verdict Alert quad9 Sinkholed
GET /f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA HTTP/1.1
Host: 13.85.80.152
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 02:55:08 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
IP 13.85.80.152:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by http://13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 13.85.80.152
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 09 Jun 2023 02:55:08 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
location: /
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
IP 13.85.80.152:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by http://13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1140), with CRLF line terminators
Hash e64ef1f7affb3b1910ee93312ed0e078
68116f04713d3b3ee646c3a882dd22d665be955d
a8c0717f977a7ffd9a21c9aa2f41191cdae6e73bb0d423ff7ad71950dba55a3a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 13.85.80.152
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13.85.80.152/f/v/001mu120ctvpb4179gy7~~/HHJOWPD~/pWjPIGxopGIPJomROSTYxLwLbPoTtweJsnybUWqjCYYmmlebdXZAJvmKlBD-WQQYInqVLsPHIZkGYwSjAUmyTNipaSABwezesQadiQLQQWwOQAAAAA
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 02:55:09 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Thu, 13 Apr 2023 14:23:13 GMT
ETag: "32de-5f9387706d04a"
Accept-Ranges: bytes
Content-Length: 13022
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8