Report - 134.209.164.195/ai.i686

Report Overview

Visited public
2024-04-21 04:06:43
Tags
URL
134.209.164.195/ai.i686
Finishing URL
git.asaari.finance/user/login
IP / ASN
134.209.164.195
#14061 DIGITALOCEAN-ASN
Title
Sign In - Asaari Git

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
134.209.164.195	unknown	unknown	2019-11-11 14:58:23	2024-04-17 08:18:29	393 B	376 B	134.209.164.195
git.asaari.finance	unknown	2023-09-19	2024-03-16 02:32:23	2024-04-17 08:18:29	4.2 kB	491 kB	134.209.164.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-21 04:06:18	medium	Client IP	134.209.164.195	ET HUNTING Suspicious GET Request for .i686 File

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	git.asaari.finance/user/login	0 B	0001-01-01 00:00	2025-02-23 23:31
Pretty URL git.asaari.finance/user/login IP 134.209.164.195 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-02-23 23:31 Times Seen3980981 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	git.asaari.finance/assets/js/webcomponents.js?v=1.21.10	98 kB	2024-04-15 07:18	2025-02-08 05:39
Pretty URL git.asaari.finance/assets/js/webcomponents.js?v=1.21.10 IP 134.209.164.195 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 07:18 Last Seen2025-02-08 05:39 Times Seen10 Hash ae4b399c95c65a74ec9c1fa3f4b0fa2a 11a3634fbbbd2c07f33631c179299e162a9d8a81 a8bbb890a523760d38018ebe22bd349090229b65a3ccaab1fe6ddbb89109e330 Loading...

	git.asaari.finance/assets/js/index.js?v=1.21.10	1.1 MB	2024-04-15 07:18	2024-08-20 04:30
Pretty URL git.asaari.finance/assets/js/index.js?v=1.21.10 IP 134.209.164.195 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 07:18 Last Seen2024-08-20 04:30 Times Seen8 Hash ea2ea834a3ca6e14b1236f8bb2a15b88 a2ba35c790ab37a74c5510b42b4e86ab4fc03961 636936e53a9b5820ca327a1ccefd12a91fe0c7a14433d865384c4631798736ea Loading...

HTTP Transactions (9)

URL IP Response Size

134.209.164.195/ai.i686

134.209.164.195

301 Moved Permanently

169 B

URL User Request GET HTTP/1.1
134.209.164.195/ai.i686
IP
134.209.164.195:80
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request for .i686 File

HTTP Headers

GET /ai.i686 HTTP/1.1
Host: 134.209.164.195
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://git.asaari.finance/ai.i686

git.asaari.finance/ai.i686

134.209.164.195

303 See Other

38 B

URL User Request GET HTTP/1.1
git.asaari.finance/ai.i686
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
HTML document, ASCII text
Size
38 B (38 bytes)
Hash
3e982ad3ad3c62fbe298ade6bc79b53f
0c8a4b8d60cdf9de3048943c6095671015d1d366
fa428c389b0639770201918054ff3c45670b5eceffa5bf2a77b1178392391fc1

HTTP Headers

GET /ai.i686 HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 303 See Other
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 38
Connection: keep-alive
Cache-Control: max-age=0, private, must-revalidate, no-transform
Location: /user/login
Set-Cookie: i_like_gitea=1dbc5d17e3f7a7cc; Path=/; HttpOnly; Secure; SameSite=Lax
_csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; Path=/; Max-Age=86400; HttpOnly; Secure; SameSite=Lax
redirect_to=%2Fai.i686; Path=/; HttpOnly; Secure; SameSite=Lax
X-Frame-Options: SAMEORIGIN

git.asaari.finance/user/login

134.209.164.195

200 OK

9.8 kB

URL User Request GET HTTP/1.1
git.asaari.finance/user/login
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (850)
Size
9.8 kB (9843 bytes)
Hash
9ed9e73525039f27b845a6f369587c80
f3f3950599d8a1fe1065d0c7b7cf00be0f90baec
0e6d47185ba3bcb46f829a8e7d697747342cfb2d59d22c2fa08df9432c9053b9

HTTP Headers

GET /user/login HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0, private, must-revalidate, no-transform
X-Frame-Options: SAMEORIGIN

git.asaari.finance/assets/js/webcomponents.js?v=1.21.10

134.209.164.195

200 OK

33 kB

URL GET HTTP/1.1
git.asaari.finance/assets/js/webcomponents.js?v=1.21.10
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (32840 bytes)
Hash
ae4b399c95c65a74ec9c1fa3f4b0fa2a
11a3634fbbbd2c07f33631c179299e162a9d8a81
a8bbb890a523760d38018ebe22bd349090229b65a3ccaab1fe6ddbb89109e330

HTTP Headers

GET /assets/js/webcomponents.js?v=1.21.10 HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

git.asaari.finance/assets/css/theme-auto.css?v=1.21.10

134.209.164.195

200 OK

2.9 kB

URL GET HTTP/1.1
git.asaari.finance/assets/css/theme-auto.css?v=1.21.10
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
ASCII text, with very long lines (11395), with no line terminators
Size
2.9 kB (2850 bytes)
Hash
afd730418f4c1ecb5036db275e9dffee
7f395a33b423dade130bdb61fa8616dd1aefc47c
661af66adda97f54e9e3719f8aee831021c83705893121aa1188f19c3dffc697

HTTP Headers

GET /assets/css/theme-auto.css?v=1.21.10 HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

git.asaari.finance/assets/css/index.css?v=1.21.10

134.209.164.195

200 OK

87 kB

URL GET HTTP/1.1
git.asaari.finance/assets/css/index.css?v=1.21.10
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
87 kB (87146 bytes)
Hash
07f8794e921417378fb5a51724493cea
4d893528441c92cb2212d445a2f1aeec62662b19
8bead5177e32cc2adaadc1850a22476e74245f58750e68d313ff6b3908500a40

HTTP Headers

GET /assets/css/index.css?v=1.21.10 HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

git.asaari.finance/assets/img/logo.svg

134.209.164.195

200 OK

1.1 kB

URL GET HTTP/1.1
git.asaari.finance/assets/img/logo.svg
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1078 bytes)
Hash
040de3d1e9bbfb70fd0287dac0214106
576426b10f7441422977eed04e199112110e4dfa
e50bd7150872581fe0e1d1eea9872bfe08ec15f50d800bdd699d3c49c7792100

HTTP Headers

GET /assets/img/logo.svg HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:19 GMT
Content-Type: image/svg+xml
Content-Length: 1078
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

git.asaari.finance/assets/js/index.js?v=1.21.10

134.209.164.195

200 OK

354 kB

URL GET HTTP/1.1
git.asaari.finance/assets/js/index.js?v=1.21.10
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
JavaScript source, ASCII text, with very long lines (28110)
Size
354 kB (353971 bytes)
Hash
ea2ea834a3ca6e14b1236f8bb2a15b88
a2ba35c790ab37a74c5510b42b4e86ab4fc03961
636936e53a9b5820ca327a1ccefd12a91fe0c7a14433d865384c4631798736ea

HTTP Headers

GET /assets/js/index.js?v=1.21.10 HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:18 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

git.asaari.finance/assets/img/favicon.svg

134.209.164.195

200 OK

1.1 kB

URL GET HTTP/1.1
git.asaari.finance/assets/img/favicon.svg
IP
134.209.164.195:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://git.asaari.finance/user/login
Certificate
IssuerLet's Encrypt
Subject*.asaari.finance
FingerprintF3:E3:17:28:DB:E8:9B:8D:63:FA:4D:35:49:F3:66:00:F8:01:36:1F
ValidityThu, 14 Mar 2024 18:44:42 GMT - Wed, 12 Jun 2024 18:44:41 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1078 bytes)
Hash
040de3d1e9bbfb70fd0287dac0214106
576426b10f7441422977eed04e199112110e4dfa
e50bd7150872581fe0e1d1eea9872bfe08ec15f50d800bdd699d3c49c7792100

HTTP Headers

GET /assets/img/favicon.svg HTTP/1.1
Host: git.asaari.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: i_like_gitea=1dbc5d17e3f7a7cc; _csrf=F02ZS6az-kijlVXHF2hhoqYcVRc6MTcxMzY3MjM3ODMyNzA1MjQ2NA; redirect_to=%2Fai.i686
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 04:06:19 GMT
Content-Type: image/svg+xml
Content-Length: 1078
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=21600
Content-Encoding: gzip
Last-Modified: Tue, 26 Mar 2024 00:18:40 GMT

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (9)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash