Report - 109.104.198.139/

Report Overview

Submitted URL
109.104.198.139/
IP
109.104.198.139
ASN
#12436 Bergon Internet Ltd.
Submitted
2023-01-24 22:15:28
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
184

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.13.249.229
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
109.104.198.139	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	3.1 MB	109.104.198.139
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed
2023-01-24	medium	109.104.198.139	Sinkholed

ThreatFox

No alerts detected

JavaScript (72)

	URL	Size	First Seen	Last Seen
	109.104.198.139/app/libs/css.min.js	1.4 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/css.min.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen138 Hash d262841a0c904e72ca20f78f03258b81 516bcda3260f418c9ccd00cd2fb42950093572c4 5fe56d8b09444a439e57fdfc6792371cdfff1c7814e6e6415ac8d63305b92e2d Loading...

	109.104.198.139/app/libs/jquery.ui.core.js	16 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/jquery.ui.core.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:01 Times Seen136 Hash d16214611dfc9f2b1f0293d43383661b df865143f0f51d72546a025ccaa2b6d21c6060b1 d322635f8d81553035aaa5f750698281be1971cf6a4b7ae0e6b465449c424996 Loading...

	109.104.198.139/baseProj/js/widget/ipv4Address.js?_dc=1674598520888	219 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/ipv4Address.js?_dc=1674598520888 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen28 Hash 977ddd9ad9d679a00e42abad41fb0128 c7eda14f2ca1bd54f8305ac256036499034edf45 73133460324b4afe039d71c072e85ce20640de7e35328dfc92ae4ffe6ae06bb9 Loading...

	109.104.198.139/baseProj/js/startingUp/StartingUp.js?_dc=1674598520679	1.9 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/baseProj/js/startingUp/StartingUp.js?_dc=1674598520679 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:01 Times Seen83 Hash cd803ff4959d2f6cd34503926fe8f3d9 9dfdf6f54b483d066775ad2734c6887e4983e840 bcd4f784ef4f45f5e8106ecedf9f41bc9aefb9cdd466d0b58514de69b1c20835 Loading...

	109.104.198.139/baseProj/js/widget/Button.js?_dc=1674598520884	829 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Button.js?_dc=1674598520884 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen36 Hash 00e5d0cb76bb09303e9da87d7185f4ac 864d708ba2cdb17f24dd6b2a7c4852bf855434db a1630219c06a29977bbf18b9b8f7f6e8f1393bc783394acbb1160a4ec5ecaa5a Loading...

	109.104.198.139/app/jsCore/require-config.js	1.0 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/require-config.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen30 Hash 78ced353de87a381e8752a7acb98bb56 b9ba0f586767665ddb114d7b770597e9bf21a5c4 f353234ea6407442ffc34e4c59f553582edf2f0dd032c9a505e87e813b2d7db5 Loading...

	109.104.198.139/app/libs/rsa.js	12 kB	2023-03-08	2024-04-13
Pretty URL 109.104.198.139/app/libs/rsa.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-04-13 12:46:06 Times Seen203 Hash a227364ff603d1a6b6b1a969bb86d9f4 d5fe143af42b9f5b305513975bd696be84fb00db a7466ff04bff6f719423ff1e0ad7fbdc84205b5090a6b3087de33ce5771c66cb Loading...

	109.104.198.139/app/jsCore/extend.js	24 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/extend.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen23 Hash ac8b52231eec7ddf7911a3197621c947 7dd3469ee276fb8b4a53401637ef13ad5593d724 e15595765bc99647db50276f6409dd8c36782c85b626742e0d72136096ca04b9 Loading...

	109.104.198.139/ext/locale/ext-lang-en.js?_dc=1674598520390	11 kB	2023-03-07	2024-02-19
Pretty URL 109.104.198.139/ext/locale/ext-lang-en.js?_dc=1674598520390 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:11 Last Seen2024-02-19 23:17:39 Times Seen73 Hash 9acf707801403d1d4ed44585b040b373 93289ad5152e1f61c8377c2d9450ae43cd52bcde cb12161580b68e3b8dc1c945957f6edc8e062c67464eb03cc04a8ca200cfba8f Loading...

	109.104.198.139/baseProj/js/widget/Factory.js?_dc=1674598520678	22 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Factory.js?_dc=1674598520678 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen26 Hash 17583d7e7b9cb8e51abac4a37a529f09 75783cc88361d86fb53259a46c5f06f11656ead0 f4da41dd24da5acd007b150a04427a61f1723d176b9cbf59f5d73eecc1a7704e Loading...

	109.104.198.139/app/libs/jsonpath.js	12 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/jsonpath.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen138 Hash 0c2131a1d823906bd625d8fecd324fe8 c8c96935d117db1206539c4917e8aacd2a5dddd2 b4a0f6a3d27f3a57d1881fc1ea4e6bcf526098fe6e31559afdc10a695ac2c0c4 Loading...

	109.104.198.139/app/libs/aes.js	14 kB	2023-03-07	2024-04-14
Pretty URL 109.104.198.139/app/libs/aes.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:28 Last Seen2024-04-14 20:48:21 Times Seen338 Hash 99e69df704e8b0718b8c6fc7fc60d6ba 62ab8b0d8243aec79a66062aea3d36f98e19cbaa 4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2 Loading...

	109.104.198.139/app/libs/jquery.js	96 kB	2023-03-07	2024-04-14
Pretty URL 109.104.198.139/app/libs/jquery.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:57:27 Last Seen2024-04-14 20:48:21 Times Seen248 Hash 4776dee8907881fcc27087852756abb8 8d1613ec8a13300b7d0d4ff1f6be17265b01f46d 3a44dbc1750aa9cc4a96e0bda84ae11e86f85f5ea52104dae8f94c70fe3c2fa5 Loading...

	109.104.198.139/app/baseCls/App.js?_dc=1674598520392	4.6 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/baseCls/App.js?_dc=1674598520392 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen29 Hash 03066e2e77ee5cdefd8af4c25f79514a 54a3154af7fc564205df1d1b2c370fd2204ef168 a9e8124b2a763431117982eb2e1acfeaeb292547f71cc0120620005d50d4560f Loading...

	109.104.198.139/baseProj/js/widget/Switch.js?_dc=1674598520883	638 B	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/baseProj/js/widget/Switch.js?_dc=1674598520883 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:01 Times Seen111 Hash 6d396e81ada7d1776064e60946963435 6ad7ea3a282c6c9178f98408fd51319493cad3e7 72831a29f7d192b2a136caecfa40e03c81d64630d48a2d2319005523834caaba Loading...

	109.104.198.139/baseProj//js/desktop/QrCodeWin.js?_dc=1674598520936	2.0 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//js/desktop/QrCodeWin.js?_dc=1674598520936 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen28 Hash 699ef27594fc7a62928710a9c8be89dc 72a0f6baf691719de1cd44d73266f91c9e9b9f6c e53c7bcd15c248bd6460dbc9597fb7d6a6478cf247f678b6c4e9332676323a07 Loading...

	109.104.198.139/app/libs/jquery.pubsub.js	908 B	2023-03-07	2024-04-14
Pretty URL 109.104.198.139/app/libs/jquery.pubsub.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:57:27 Last Seen2024-04-14 20:48:21 Times Seen208 Hash fb110f87d00598231a539918e2b5c5ca fc310b9cc162e338acb6e8bfd096197006b3a941 502a31b0c5cbd2927b1fe353d2569f7fbb0a2f23a3b428dc708a283de7cfac07 Loading...

	109.104.198.139/baseProj//js/desktop/Desktop.js?_dc=1674598520538	5.1 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//js/desktop/Desktop.js?_dc=1674598520538 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen28 Hash a16bab7582596f2058bc488aa06ab866 38d7ba71505c11d7eb0b16ac0ca62117e0dc4339 5948728e1157a5af0355b71ba2136a6e3cd8f7890b5e268dd734e23606a2f633 Loading...

	109.104.198.139/baseProj/js/Login.js?_dc=1674598520540	4.9 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/Login.js?_dc=1674598520540 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen29 Hash a60408d4d27d980b7851661818374e0b 249296ed8de2c8f2a0057dbb626e04080f4b5211 ed18635bcc7f62db9e28bb88399c7d9478bcf4856b6d4387c4bcee22a3d83265 Loading...

	109.104.198.139/baseProj/js/widget/Date.js?_dc=1674598520886	1.6 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Date.js?_dc=1674598520886 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen26 Hash 27476a2edce3863315dd82dff02598f1 bbc167ec0a6e652ac5780c966aeeedcdb77a33be f94eee621595993d7bbe8d7b9ad9eba6e4d066ea87d755f130c039a24acd6006 Loading...

	109.104.198.139/app/plugin/platForm/Ocx.js?_dc=1674598520958	1.5 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/plugin/platForm/Ocx.js?_dc=1674598520958 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen37 Hash b381753157a02f7d86e2775223846235 de33f19ed5c5c5fe1697ebd4f04faf409cfae85c 94649973b4aa2a7de970b953402feac7518ef2e22943d0c9cb28fc3c6d8b4904 Loading...

	109.104.198.139/app/libs/require.js	18 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/require.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen140 Hash 1f57901f2b583f9e73ca4889563c8c63 7100752ecadeea47c28b8dc0904326e55b45ea8b 3a6bc24af5efcbc41dd27c5ca7b0bec34ac8a4fd078ac0ca0ba1668c56fb8343 Loading...

	109.104.198.139/ext/ext-all.js	1.5 MB	2023-03-07	2024-02-21
Pretty URL 109.104.198.139/ext/ext-all.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:11 Last Seen2024-02-21 11:16:00 Times Seen272 Hash 33c8a2191d27ee2812d9e5469f094556 7655fa8f1e248587943ea14c9c8739e5dd0b3e05 affefe36854341fcff50a56695f122ff2eec7e893891aa17ba4f0f98888f6f38 Loading...

	109.104.198.139/baseProj//data/Constants.js?_dc=1674598520677	330 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//data/Constants.js?_dc=1674598520677 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen29 Hash 2bce71cd30368a209b59c0c246c76b6b ccc2efff38f115b2284b4e2edbef395c6b9d596e e7237b9f5fefae39e761e5ff58f362f1be2dbedacbaf26ebef5a9b0063371047 Loading...

	109.104.198.139/baseProj/js/widget/Numberfield.js?_dc=1674598520887	1.4 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Numberfield.js?_dc=1674598520887 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen37 Hash 98236d8bb297ff7682e80072c8485d53 f41d803bf75fdf192e278ea9c821b802bbff4491 6975d3c1cb5df76a2667c292fd7d63473d8aface35d3001401529961ce4e4327 Loading...

	109.104.198.139/app/libs/json2.js	3.0 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/json2.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen138 Hash fbc338d3e23ad41974333c762ec15d9a 76c9c988b04ba6fc08d4091c0da4ba97cc2fb024 d9b708897b69993198e81809ab25a960118a6712b8236f1fb02b2a08adc48a44 Loading...

	109.104.198.139/app/libs/qrcode.js	17 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/app/libs/qrcode.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen128 Hash 0c0bf3d65c914a7d3032fa8df5cc0f6e a83ce2bf605052bfb87cb5a6ba842fb29bbbd609 098321cb38307503aff3735e37a77b8464b28329a0e2024b7f6a0c402bcb16d9 Loading...

	109.104.198.139/baseProj/js/widget/DateTime.js?_dc=1674598520887	4.9 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/DateTime.js?_dc=1674598520887 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen26 Hash 09c02d88ec7a0e0b578d2e24b2c32c35 5cd7a237cad90f80f669fef75aa2c541ba9875ae b34191b25601169cfa1ed621490d43113551d98b9bd214f998acf3a94b3294b4 Loading...

	109.104.198.139/baseProj//js/desktop/StartMenu.js?_dc=1674598520935	309 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//js/desktop/StartMenu.js?_dc=1674598520935 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen37 Hash 211780f7450e7bc9bbeac1304be76144 fee5b848c1de8e47bb1fa9e5181c5f9eb6285a98 7a8e1d689a8676c3c1840b59bf59b89c28d9fdc35d5b5642e073ce45100da42f Loading...

	109.104.198.139/projectPath.js	55 B	2023-03-07	2024-02-21
Pretty URL 109.104.198.139/projectPath.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:11 Last Seen2024-02-21 11:16:00 Times Seen146 Hash 71397840d9e17c98a0997b67e0f1c0b9 28a110eb13c293254e1640f2194ccea8af59bc50 b5d1d89fbbaab2e2e2d82f2fdd91a1b5972bb61ed35191a056c7eba29d687790 Loading...

	109.104.198.139/baseProj//js/desktop/TaskBar.js?_dc=1674598520681	4.0 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//js/desktop/TaskBar.js?_dc=1674598520681 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen26 Hash 416e6a6ca5800a537c06a574a059cfa2 98647123b45756fcb656e449fb7a11b965d3a2b1 0c3a3c65d3361467466d6f2579552d11d0178f9972d226e06c5401db3c911ac3 Loading...

	109.104.198.139/baseProj/js/widget/SetupWinow.js?_dc=1674598521280	1.2 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/SetupWinow.js?_dc=1674598521280 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen28 Hash fda3064cce985566af376c60a8ec70f9 d4084840fd8aea1aff87c26745f2032ee7be43de fd4c9155a6a7b933eb74c811aa37097ab1805399631d3bbfbb59cb337a75d6d7 Loading...

	109.104.198.139/cap.js	199 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/cap.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:55:15 Last Seen2024-02-19 23:17:39 Times Seen43 Hash 31626044b96af6bb0c8f498072cdd117 94e91bab68fc13daf4c75e19e122719d99ade445 8768dc58fbee3fb54c6bf95b42d39f1277c7617dce8ad7b75dc1af2f1afaa11a Loading...

	109.104.198.139/app/libs/base64.js	1.5 kB	2023-03-07	2024-04-14
Pretty URL 109.104.198.139/app/libs/base64.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-04-14 20:48:21 Times Seen313 Hash 512bb7f354e5bd222c2ffbc3f9d601b9 c386932682ec7abc2726fed93bd72b552c6c4a2f 3b3cf5585ebda2f6e7e6bd9ace18ca949f5d9320175dca73c46834c91f6d56d1 Loading...

	109.104.198.139/baseProj//js/desktop/Wallpaper.js?_dc=1674598520537	939 B	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/baseProj//js/desktop/Wallpaper.js?_dc=1674598520537 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:01 Times Seen116 Hash 6a8ec113cd97c5f21f0f3d93e9830e04 efa1dea371edad5e4b4709662891c3a38c72ad73 cd8c21aaebd85bd8f2be1638735d8ea6af48c850fe1a2bb7075022bd208fdbed Loading...

	109.104.198.139/baseProj/js/widget/Zoombar.js?_dc=1674598520885	2.7 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Zoombar.js?_dc=1674598520885 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen36 Hash 827a64dd226a1b70be807b07b88dbcf2 60c34673866177895f92549f25265c504cf31d4b ea4562b90b817f1a83993fde5a87d2e2ba8a9fca97b43e2680a41ef5b9a82fca Loading...

	109.104.198.139/app/plugin/platForm/Base.js?_dc=1674598521285	19 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/plugin/platForm/Base.js?_dc=1674598521285 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen25 Hash d5043697f1b1de7097a74427e87853fe f11115d30c00ec61a226d2d5bc3b9e8b0c36eb47 daff4e279415c30cc7d786f672ae8371bf6c1226c8db8acc16a6c327f43c2b32 Loading...

	109.104.198.139/app/jsCore/Common.js?_dc=1674598519613	13 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/Common.js?_dc=1674598519613 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen27 Hash 88cd89c6f01756b8be206c66097b1c7e 5bbac9c5f775785058ec8b11c6eaeb888ffb9171 6e9a9bf4fcd698f59aac1c9ebc48e85dad01a0b9803dd8c69359a190381c4b13 Loading...

	109.104.198.139/baseProj/js/widget/Time.js?_dc=1674598520885	7.6 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/Time.js?_dc=1674598520885 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen28 Hash cc3b8333488c1d09424a66afe847a77b 5e9edb50869540106b34a75c86ec03e9b7a6c4c6 53847a7e7ff8bb06afcb811117b228f27c74c1df6523a1655989068bd728886f Loading...

	109.104.198.139/baseProj/js/component/Calendar.js?_dc=1674598521023	5.8 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/component/Calendar.js?_dc=1674598521023 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen33 Hash 609f798205cc6cee52d12c4c3781c37c e8ee659d396ceac93fc0c0fbbf45b39c98c161ec 37d29457769031d3eb4211d19cd0ccd3fabfea3dd5d0f40e454b8dec8a1cdba5 Loading...

	109.104.198.139/pluginVersion.js	332 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/pluginVersion.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen24 Hash 740f047e070c28e34f6fc739ab5fd1c5 5a8eca185e249ffeaf2df4181bb37b9c573bb699 186132b25b933409fe8406ae0358560f742023b3a33ad8068670da8d75efa9b9 Loading...

	109.104.198.139/baseProj/js/widget/macAdress.js?_dc=1674598520887	365 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/macAdress.js?_dc=1674598520887 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen25 Hash 25c0123cffcc92a06c4c615fc749345d a4909e39d246e8329d9175ca0a1453da1fc6b18a 22a9c438f3b9dddd13348cdd261e5dffac3dc5aa7bd56dffa6333cc2e1f3983b Loading...

	109.104.198.139/baseProj//js/desktop/ShutdownMenu.js?_dc=1674598520936	3.0 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj//js/desktop/ShutdownMenu.js?_dc=1674598520936 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen34 Hash bcc109debca6453b259c81ee0c09fe08 21f7c0dc3db6560101ce37cdeb0a8309c2758196 319dadd8f9afb40f96e7755e1eee1d6dd69e6ffcff549bc607cb8063443ed12f Loading...

	109.104.198.139/	825 B	2023-03-08	2023-04-02
Pretty URL 109.104.198.139/ IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2023-04-02 21:23:00 Times Seen6 Hash eafa35c65c416bfdd0430b2fa2e351f6 1fcd199fc857fd67b143aaaaa87080e156ef96b9 53d804fb69f558c3819784ed3799ba7ea042fd62754beb118746622042f394d2 Loading...

	109.104.198.139/webVersion.js	39 B	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/webVersion.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen23 Hash 803bb297f3d393a57a9062535b7afb30 6e7771c472278130bb2903cd94859c3b5e0c46b3 f5e479ecfd71ca525cd26afe9974bb53be16618389c1a52eff45d1ece889f164 Loading...

	109.104.198.139/app/jsCore/Ability.js?_dc=1674598520679	12 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/Ability.js?_dc=1674598520679 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen29 Hash 79c572b57c9315b54e92e387d45d8cb8 8787b0f105fe25159bc47872093cd8e3baa09f2b cc48f2037cbcf58d6b51cf95fc326f5ef81405941a3675214a9122e4c12d9ff4 Loading...

	109.104.198.139/baseProj//js/desktop/Page.js?_dc=1674598520681	1.4 kB	2023-03-08	2024-02-21
Pretty URL 109.104.198.139/baseProj//js/desktop/Page.js?_dc=1674598520681 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:01 Times Seen86 Hash cf4728150e7e05ea22fa7d9d23faedd8 428bf17972c06a5f9575f5f6bf841e9950540bc3 2d129372f538a20ada813e2fc68356fdf325760e58dfb404dfe4c8de47a6d6a5 Loading...

	109.104.198.139/baseProj/js/widget/multipleInput.js?_dc=1674598521149	3.3 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/multipleInput.js?_dc=1674598521149 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen25 Hash f4d4556a28afd59cc88e2e7563c8a1f5 d8a82716b648474d1afe9535a3e1ed55f114d7df b4bba8570c87b0ff742625c7c27193d2c81bc22cd1e4e056108a93e3cfe0e8a8 Loading...

	109.104.198.139/app/libs/md5.js	4.3 kB	2023-03-07	2024-04-14
Pretty URL 109.104.198.139/app/libs/md5.js IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:29 Last Seen2024-04-14 20:48:20 Times Seen313 Hash 60507d416334913c0aa439206a56b809 93d7d042fe9ce7e19c4f0e9bac5327d3ad82adce b2c98d52873337d8ec20f30582e1af4125fd612e396e6821d2dd3e848f48169d Loading...

	109.104.198.139/app/jsCore/RPC.js?_dc=1674598520539	67 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/RPC.js?_dc=1674598520539 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen21 Hash fff14228b82c99f0e40f804eb71bd9a4 208eef3a57a3a7bcafa94d56cd1c947d543b87c1 26a024e57231802acf06c446095c2927ba050cfe112cd3cbf73da1897d9af08e Loading...

	109.104.198.139/app/jsCore/KeepAlive.js?_dc=1674598520680	1.2 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/jsCore/KeepAlive.js?_dc=1674598520680 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen36 Hash d168896c7907d4af4baa3d11d14e273c 29faba5246f13a99ffbdf5742f5ad231fcc8eba1 7da437d7273141c01edc8e086189793f438d57e2b5916cbd5df7ed115212ade6 Loading...

	109.104.198.139/app/plugin/Plugin.js?_dc=1674598520682	2.8 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/app/plugin/Plugin.js?_dc=1674598520682 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen26 Hash 8fe6e401c31f24e6e335a34e6cd5dc4f 027a720319346ec62e71c58fcb341db96c51cbcc d56a518dca8731995530af063b3aa124734fb94c962c89cf12ce08e02ec19e62 Loading...

	109.104.198.139/baseProj/js/widget/IconList.js?_dc=1674598520884	5.5 kB	2023-03-08	2024-02-19
Pretty URL 109.104.198.139/baseProj/js/widget/IconList.js?_dc=1674598520884 IP 109.104.198.139 ASN #12436 Bergon Internet Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:39 Times Seen38 Hash 393c806b0d22aae17e42b2d3b991f384 91000a2c225966880c96bc0ea999b7d6dd1cb69b 0cf9c6681b9ee5ee7e98eb41a290795c49164f9387cf013fa9ccf55480f0149e Loading...

		Size	First Seen	Last Seen
	#1 Eval - 8fe2babe85ca6f8357cbf84ccf11c559	216 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-02-28 08:05:55 Times Seen507 Hash 8fe2babe85ca6f8357cbf84ccf11c559 985d3c517efccae373a9ce524529d536f8bd1a60 bb3daa9779d3adaee4b92e53c2c4f40c8fe03bed679b9e9b8b6c1e7548e84497 Loading...

	#2 Eval - 56a39d03563ededa5e6399d084541811	629 B	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen72 Hash 56a39d03563ededa5e6399d084541811 52914eead59d8da5aae491da996e3091ad4c2eda e6b76b4f4426199d34fd2f62d93de9007e47f82fe79b7313ef3ee58e5d782787 Loading...

	#3 Eval - efda4ad249e3b9d58256a69b7f97cb36	50 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-04-15 00:47:37 Times Seen583 Hash efda4ad249e3b9d58256a69b7f97cb36 a26343144c2418f60d34a263f334da6ab6ec0d3c fba72aa4d1d991e33c934c2202157bebdfdc62ef1bb8f17ac89d2e05cf0987c8 Loading...

	#4 Eval - a25995728656d9554151743fdbd47c2b	804 B	2023-03-08	2024-02-21
Pretty Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen59 Hash a25995728656d9554151743fdbd47c2b 11f928d749bb14053bf175601d4ebfed59aa9740 572299191b788bc195fcd1cc3f2732b1a4a542e8c6bd7aab9a82ef14330698c5 Loading...

	#5 Eval - 1e40bed79ce9ed961113ca3537abed9b	218 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 12:11:11 Last Seen2024-04-15 00:47:36 Times Seen483 Hash 1e40bed79ce9ed961113ca3537abed9b d5d1c8d9bfcf573c4b088501f852544265017cc5 de115cc34dfa7a68a8101d8dace2aa2609591e55454889d95d719130172ce5a9 Loading...

	#6 Eval - e022e2d70dd9ad115889c910e056e532	213 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-04-15 00:47:35 Times Seen512 Hash e022e2d70dd9ad115889c910e056e532 98411e277ea0ffe98878a10ff58eb6c1d22f0466 7ab3d9376f6b12127da11872f7070f3f8bc3554c2547a1227c5b4ffe5f49272a Loading...

	#7 Eval - a3e97247b22dc99127cd3fe35221b781	1.9 kB	2023-03-08	2024-02-21
Pretty Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen68 Hash a3e97247b22dc99127cd3fe35221b781 973cfe977956a16daf7b326544677191fd62bbf8 237654cf8f4ea80e851ec4bc519df004bf0207e1e30a9efef4aa04a34e978ec2 Loading...

	#8 Eval - a7029b6b8650b99bb915cb8277c9fddd	1.4 kB	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen75 Hash a7029b6b8650b99bb915cb8277c9fddd 7d914fc4ec3900b244a0c86654987c474a6366fe f3ad2b028fcb546dfceb5672ff942e1672de922079c5fdb52918db9b243362ce Loading...

	#9 Eval - 4f4e7daea99623dbbb009e4675d93325	4.3 kB	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 12:11:11 Last Seen2024-02-28 08:05:51 Times Seen507 Hash 4f4e7daea99623dbbb009e4675d93325 12427633252e73696e428217f8da542d04d8a589 93869b16f155ed5a23754202a7b0b56996d4d20f97691b7ba48deeac946ca335 Loading...

	#10 Eval - a959aa695bbe464a7ffcfb2922c8b038	904 B	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen79 Hash a959aa695bbe464a7ffcfb2922c8b038 57a58d1bca029ab056049e778b3cbcc16215c9bf c1df3b84b02267fe3bb06106c5086b27339a315b43b87ed5901c2fd932a1d90a Loading...

	#11 Eval - 05911bb8f9ee1443755aca5009c3a46e	1.6 kB	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen77 Hash 05911bb8f9ee1443755aca5009c3a46e 44d175819ad7f255e7d73942cea1d4966ac44591 f21009c0ebb932b5066cc10ba1388c7cd6263293e56845561b3478efae2084a6 Loading...

	#12 Eval - c605fe246f38e11826d23d91731696d4	246 B	2023-03-08	2024-02-19
Pretty Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-19 23:17:38 Times Seen21 Hash c605fe246f38e11826d23d91731696d4 908f29acf273aa9f3677429f5bcc07574f573ade 21c7ba71d7918e71205d2dafe27f9c936c52e33cb06302ad345fa4ae80a5b3ff Loading...

	#13 Eval - 7ae32d388cd867cef29229665fa14983	1.6 kB	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen79 Hash 7ae32d388cd867cef29229665fa14983 0d4c4a509ed84688fcf1e069f69680bbb4ca2cc7 ff4761c52766e18d55b4bb142773422fd95f26eafe73b90028b7e270b9f45c2f Loading...

	#14 Eval - 97db07a2e75944985d45f71579099241	2.5 kB	2023-03-08	2024-02-21
Pretty Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen75 Hash 97db07a2e75944985d45f71579099241 efed0cab0e9e1ff0f6ac7905dea038633ad4f5a0 1a83cac0e1b7b91d547b452703407d95e12386750b1548f524de5f778089d610 Loading...

	#15 Eval - c834d15d537c36e11aae88f29f7e7f86	1.8 kB	2023-03-07	2024-02-21
Pretty Observations First Seen2023-03-07 13:19:45 Last Seen2024-02-21 11:16:00 Times Seen79 Hash c834d15d537c36e11aae88f29f7e7f86 8f14a59c0661fb62cad0fe8c9a56169ba113fdf3 15ee4ca94ef158c98e9d7d0cfed49649e0a683527d6a4d2c8b37bc0e338b8afa Loading...

	#16 Eval - 4de546332cf69706c8919c1de99fc486	166 B	2023-03-08	2024-02-19
Pretty Observations First Seen2023-03-08 23:55:15 Last Seen2024-02-19 23:17:38 Times Seen12 Hash 4de546332cf69706c8919c1de99fc486 e4a38b528f9250033b84e1406f94c60edf0afd05 15f45b3097328ac6ac7638c361176be4b690acd46e65a2f8023e2bd048fe3f53 Loading...

	#17 Eval - 0b76e52aa36fb86929b2e9c75a30cbb9	269 kB	2023-03-13	2024-02-19
Pretty Observations First Seen2023-03-13 06:53:49 Last Seen2024-02-19 23:17:38 Times Seen9 Hash 0b76e52aa36fb86929b2e9c75a30cbb9 7dfb837d80be85ec13489bf7dd4a1feed8a18245 db205d0e015ad5869c17645a607679ed116bb35d98809ffdaf0cfd0adda1b715 Loading...

	#18 Eval - 2423280d29ff8dabe1bf638cad7c316c	5.0 kB	2023-03-08	2024-02-21
Pretty Observations First Seen2023-03-08 02:07:57 Last Seen2024-02-21 11:16:00 Times Seen75 Hash 2423280d29ff8dabe1bf638cad7c316c b586d730f1727332413a7bb0474ec5a7a3449f45 4001646d0faff86efdc397fc714b745cce9d758ee71ce7ef6020e1c40356fdc2 Loading...

	#19 Eval - 31626044b96af6bb0c8f498072cdd117	199 B	2023-03-08	2024-02-19
Pretty Observations First Seen2023-03-08 23:55:15 Last Seen2024-02-19 23:17:39 Times Seen43 Hash 31626044b96af6bb0c8f498072cdd117 94e91bab68fc13daf4c75e19e122719d99ade445 8768dc58fbee3fb54c6bf95b42d39f1277c7617dce8ad7b75dc1af2f1afaa11a Loading...

HTTP Transactions (112)

URL IP Response Size

109.104.198.139/

109.104.198.139

200 OK

2.9 kB

URL HTTP/1.1
109.104.198.139/
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (522)
Size
2.9 kB (2877 bytes)
Hash
102c4156fc60ca8a7a226da06b679bcb
51301fcf7b53c3a312ec5dcb2dde5e1dbd7f6104
eaf0168a07e6f6ac90d12b5ec3d5eaf724a1651c5d99de9d428ed8d220c53d98

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:08 GMT
Etag: "1535021228:b3d"
CONTENT-LENGTH: 2877
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/html

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6347
Expires: Wed, 25 Jan 2023 00:01:04 GMT
Date: Tue, 24 Jan 2023 22:15:17 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12936
Expires: Wed, 25 Jan 2023 01:50:53 GMT
Date: Tue, 24 Jan 2023 22:15:17 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 24 Jan 2023 21:35:07 GMT
content-type: application/json
age: 2410
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8307
Expires: Wed, 25 Jan 2023 00:33:44 GMT
Date: Tue, 24 Jan 2023 22:15:17 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Vae7AkvkgpQDqGi6N4KZlt1zkP28nigI0HX6UHIfq3lbt/YDDPKdr0Kf+DofjmvDyNpcKD/a7ZI=
x-amz-request-id: YGK5G7R6ZGT77YWG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 24 Jan 2023 21:48:19 GMT
age: 1618
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 24 Jan 2023 22:15:17 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

109.104.198.139/projectPath.js

109.104.198.139

200 OK

55 B

URL HTTP/1.1
109.104.198.139/projectPath.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
55 B (55 bytes)
Hash
71397840d9e17c98a0997b67e0f1c0b9
28a110eb13c293254e1640f2194ccea8af59bc50
b5d1d89fbbaab2e2e2d82f2fdd91a1b5972bb61ed35191a056c7eba29d687790

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /projectPath.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:10 GMT
Etag: "1535021230:37"
CONTENT-LENGTH: 55
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/require-config.js

109.104.198.139

200 OK

1.0 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/require-config.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1049), with no line terminators
Size
1.0 kB (1049 bytes)
Hash
78ced353de87a381e8752a7acb98bb56
b9ba0f586767665ddb114d7b770597e9bf21a5c4
f353234ea6407442ffc34e4c59f553582edf2f0dd032c9a505e87e813b2d7db5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/require-config.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:419"
CONTENT-LENGTH: 1049
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/webVersion.js

109.104.198.139

200 OK

39 B

URL HTTP/1.1
109.104.198.139/webVersion.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
39 B (39 bytes)
Hash
803bb297f3d393a57a9062535b7afb30
6e7771c472278130bb2903cd94859c3b5e0c46b3
f5e479ecfd71ca525cd26afe9974bb53be16618389c1a52eff45d1ece889f164

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webVersion.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:10 GMT
Etag: "1535021230:27"
CONTENT-LENGTH: 39
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/pluginVersion.js

109.104.198.139

200 OK

332 B

URL HTTP/1.1
109.104.198.139/pluginVersion.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with CRLF line terminators
Size
332 B (332 bytes)
Hash
740f047e070c28e34f6fc739ab5fd1c5
5a8eca185e249ffeaf2df4181bb37b9c573bb699
186132b25b933409fe8406ae0358560f742023b3a33ad8068670da8d75efa9b9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pluginVersion.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:10 GMT
Etag: "1535021230:14c"
CONTENT-LENGTH: 332
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/require.js

109.104.198.139

200 OK

18 kB

URL HTTP/1.1
109.104.198.139/app/libs/require.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (17565), with no line terminators
Size
18 kB (17565 bytes)
Hash
1f57901f2b583f9e73ca4889563c8c63
7100752ecadeea47c28b8dc0904326e55b45ea8b
3a6bc24af5efcbc41dd27c5ca7b0bec34ac8a4fd078ac0ca0ba1668c56fb8343

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/require.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:449d"
CONTENT-LENGTH: 17565
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/cap.js

109.104.198.139

200 OK

199 B

URL HTTP/1.1
109.104.198.139/cap.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text
Size
199 B (199 bytes)
Hash
31626044b96af6bb0c8f498072cdd117
94e91bab68fc13daf4c75e19e122719d99ade445
8768dc58fbee3fb54c6bf95b42d39f1277c7617dce8ad7b75dc1af2f1afaa11a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /cap.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONTENT-LENGTH: 199
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 24 Jan 2023 21:48:59 GMT
age: 1578
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16067
Expires: Wed, 25 Jan 2023 02:43:05 GMT
Date: Tue, 24 Jan 2023 22:15:18 GMT
Connection: keep-alive

push.services.mozilla.com/

52.13.249.229

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.249.229:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NnlUBjgwAVCnD/7/ezKTDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GFpZFamyzdp7I5D9Sji/LeltdoA=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Wed, 25 Jan 2023 00:22:51 GMT
Date: Tue, 24 Jan 2023 22:15:19 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Wed, 25 Jan 2023 00:22:51 GMT
Date: Tue, 24 Jan 2023 22:15:19 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Wed, 25 Jan 2023 00:22:51 GMT
Date: Tue, 24 Jan 2023 22:15:19 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Wed, 25 Jan 2023 00:22:51 GMT
Date: Tue, 24 Jan 2023 22:15:19 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Wed, 25 Jan 2023 00:22:51 GMT
Date: Tue, 24 Jan 2023 22:15:19 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1844f7f6-6470-4363-8fb9-e75d0315e86b.jpeg

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1844f7f6-6470-4363-8fb9-e75d0315e86b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4486 bytes)
Hash
019a2ef8bc38b89b40d57eb0b1619527
bdae9e51ce465861c1059d2c6e35476d29152b52
39ff0ae12d164850443a9dcbba51543f7f1f28a91f65f92e573c51af3b73f74b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1844f7f6-6470-4363-8fb9-e75d0315e86b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4486
x-amzn-requestid: 680bd2f9-5d7e-4262-8b86-d914ceadd975
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEo2oAMFiFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-48fea4443a71db9a691050ba;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WbEr30ewNe8lmcY6tTodHnTpLP-oxFEUDMdXRypg3N8oSMpIfLEnjg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:38:59 GMT
etag: "bdae9e51ce465861c1059d2c6e35476d29152b52"
content-type: image/jpeg
age: 2180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9091 bytes)
Hash
af3ceda828750acf5ac7c837612a6e0f
f6364de0805cf3cfe66d19293085da16a2c2f832
baa0cb6e3cec7f840477dfdcea518968f5b72a828dbd346abb09e2d3e3aa3bee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9091
x-amzn-requestid: c5849f51-8fc6-40c0-a1e3-9deb74e06c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEzxoAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-22d80a0c3e6485dd62f420ef;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JlD-eXZtA8-dDqRe6gMZSyNbPuksroMQ4J_L2g_NjPQB8KQGgZWpXA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:36:12 GMT
age: 2347
etag: "f6364de0805cf3cfe66d19293085da16a2c2f832"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe71d97f7-2292-4cf5-a029-f42cbbf136b7.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8985 bytes)
Hash
72c3b8253eada5e517356b2a93aa2cb1
cdba249871f2234d685eddaf22834c531bca4db0
b8287bcef62f40ac749ea6b4f9a8714b4cfc124fb49ac39c08ad09afa9c29ff2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe71d97f7-2292-4cf5-a029-f42cbbf136b7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8985
x-amzn-requestid: 3de4f2c8-913a-4ca2-a237-2ed1c12d1fa9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MTkG3dIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0e3-1f88ffba391806fa4eb8f5fd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NCxD9d8V5EyIme3NDXXu6ft8NLRXzORMgFme32QbzHPflXZRJ_gGbg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:39:05 GMT
age: 2174
etag: "cdba249871f2234d685eddaf22834c531bca4db0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11918 bytes)
Hash
4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqxwEyWoAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntW_cYMwX6UWInGOxxPlwnV1AJh46X-hiLvwggRz9oa1Yno6jyE51g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 03:28:47 GMT
age: 67592
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9864 bytes)
Hash
03ba93e6c29fb268712e33228fa5ee38
2528a659d067ce39b31d5d8a0a9943e313a4caa6
2a3dfcbafd31bfc0cc653f9f43cfa98206334551b8ab76e9ab6d20338c8d6e1c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9864
x-amzn-requestid: dd368937-de20-4e2a-82e3-e82bc20a806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AtgGu3oAMFaoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-7efe789a5411c14a74ec327a;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MDBCOwO8k543vmWo7ROvYyqyzju9iJIyGZvMpzHv7VqIoats0p3Nxg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 10:10:42 GMT
age: 43477
etag: "2528a659d067ce39b31d5d8a0a9943e313a4caa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.1 kB (3109 bytes)
Hash
dbbcba4403c1ea4e45ff47894d66e984
8555e8d6a38b78829a7dd2f10eb99bdbb254d89a
c9acd732889f9a58b085ceee3ceb8040fedb1e85ddb9f5b933960472c2f8d147

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3109
x-amzn-requestid: 89df621b-47d8-4127-8e4f-8e57f3244419
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKV9hFNKIAMFtlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cd9d23-0b4c0b5d2bf8c22b2ada0e9c;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 20:31:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B62xY4rlFNdJGd5ethwkCIwQTsegDVJy6s7OptIr1g_E8GvwttW2sQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 10:04:44 GMT
age: 43835
etag: "8555e8d6a38b78829a7dd2f10eb99bdbb254d89a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

109.104.198.139/ext/ext-all.js

109.104.198.139

200 OK

1.5 MB

URL HTTP/1.1
109.104.198.139/ext/ext-all.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (64818)
Size
1.5 MB (1497654 bytes)
Hash
33c8a2191d27ee2812d9e5469f094556
7655fa8f1e248587943ea14c9c8739e5dd0b3e05
affefe36854341fcff50a56695f122ff2eec7e893891aa17ba4f0f98888f6f38

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ext/ext-all.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:07 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:16da36"
CONTENT-LENGTH: 1497654
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/images/favicon.ico

109.104.198.139

200 OK

1.2 kB

URL HTTP/1.1
109.104.198.139/baseProj/images/favicon.ico
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
a437e84d20c9cf7442fffab49e0f07e7
a9b858bd48976f8c2f2ab471a0d7843bfde58c7b
6fe49ae6a389a8cc3ef2866682443909dbb6987ca1918392b6e5d6473cbdd969

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/favicon.ico HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:47e"
CONTENT-LENGTH: 1150
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/x-icon

109.104.198.139/app/libs/base64.js

109.104.198.139

200 OK

1.5 kB

URL HTTP/1.1
109.104.198.139/app/libs/base64.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1466), with no line terminators
Size
1.5 kB (1466 bytes)
Hash
512bb7f354e5bd222c2ffbc3f9d601b9
c386932682ec7abc2726fed93bd72b552c6c4a2f
3b3cf5585ebda2f6e7e6bd9ace18ca949f5d9320175dca73c46834c91f6d56d1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/base64.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:5ba"
CONTENT-LENGTH: 1466
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/jsonpath.js

109.104.198.139

200 OK

12 kB

URL HTTP/1.1
109.104.198.139/app/libs/jsonpath.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (11775), with no line terminators
Size
12 kB (11775 bytes)
Hash
0c2131a1d823906bd625d8fecd324fe8
c8c96935d117db1206539c4917e8aacd2a5dddd2
b4a0f6a3d27f3a57d1881fc1ea4e6bcf526098fe6e31559afdc10a695ac2c0c4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/jsonpath.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:2dff"
CONTENT-LENGTH: 11775
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/json2.js

109.104.198.139

200 OK

3.0 kB

URL HTTP/1.1
109.104.198.139/app/libs/json2.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (2964), with no line terminators
Size
3.0 kB (2964 bytes)
Hash
fbc338d3e23ad41974333c762ec15d9a
76c9c988b04ba6fc08d4091c0da4ba97cc2fb024
d9b708897b69993198e81809ab25a960118a6712b8236f1fb02b2a08adc48a44

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/json2.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:b94"
CONTENT-LENGTH: 2964
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/md5.js

109.104.198.139

200 OK

4.3 kB

URL HTTP/1.1
109.104.198.139/app/libs/md5.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (4302), with no line terminators
Size
4.3 kB (4302 bytes)
Hash
60507d416334913c0aa439206a56b809
93d7d042fe9ce7e19c4f0e9bac5327d3ad82adce
b2c98d52873337d8ec20f30582e1af4125fd612e396e6821d2dd3e848f48169d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/md5.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:10ce"
CONTENT-LENGTH: 4302
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/aes.js

109.104.198.139

200 OK

14 kB

URL HTTP/1.1
109.104.198.139/app/libs/aes.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (13633), with no line terminators
Size
14 kB (13633 bytes)
Hash
99e69df704e8b0718b8c6fc7fc60d6ba
62ab8b0d8243aec79a66062aea3d36f98e19cbaa
4558c48972521df0d7337323da7137d6b997e68037de93cdfbfd10f56422e8f2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/aes.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3541"
CONTENT-LENGTH: 13633
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/qrcode.js

109.104.198.139

200 OK

17 kB

URL HTTP/1.1
109.104.198.139/app/libs/qrcode.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (16822), with no line terminators
Size
17 kB (16822 bytes)
Hash
0c0bf3d65c914a7d3032fa8df5cc0f6e
a83ce2bf605052bfb87cb5a6ba842fb29bbbd609
098321cb38307503aff3735e37a77b8464b28329a0e2024b7f6a0c402bcb16d9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/qrcode.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:41b6"
CONTENT-LENGTH: 16822
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/css.min.js

109.104.198.139

200 OK

1.4 kB

URL HTTP/1.1
109.104.198.139/app/libs/css.min.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1417), with no line terminators
Size
1.4 kB (1417 bytes)
Hash
d262841a0c904e72ca20f78f03258b81
516bcda3260f418c9ccd00cd2fb42950093572c4
5fe56d8b09444a439e57fdfc6792371cdfff1c7814e6e6415ac8d63305b92e2d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/css.min.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:589"
CONTENT-LENGTH: 1417
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/rsa.js

109.104.198.139

200 OK

12 kB

URL HTTP/1.1
109.104.198.139/app/libs/rsa.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (11740), with no line terminators
Size
12 kB (11740 bytes)
Hash
a227364ff603d1a6b6b1a969bb86d9f4
d5fe143af42b9f5b305513975bd696be84fb00db
a7466ff04bff6f719423ff1e0ad7fbdc84205b5090a6b3087de33ce5771c66cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/rsa.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:2ddc"
CONTENT-LENGTH: 11740
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/jquery.js

109.104.198.139

200 OK

96 kB

URL HTTP/1.1
109.104.198.139/app/libs/jquery.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (32073)
Size
96 kB (96459 bytes)
Hash
4776dee8907881fcc27087852756abb8
8d1613ec8a13300b7d0d4ff1f6be17265b01f46d
3a44dbc1750aa9cc4a96e0bda84ae11e86f85f5ea52104dae8f94c70fe3c2fa5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/jquery.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:178cb"
CONTENT-LENGTH: 96459
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/css/main.css

109.104.198.139

200 OK

7.7 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/main.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (7748), with no line terminators
Size
7.7 kB (7748 bytes)
Hash
0267dfde6446d06c3ccb64db56413fb8
aafbe497fc1875df59d64f38e782195d1a522871
6b7baeeb347739f01c8b74c4452296862461143651aaa8e28f00e7306c39d6a2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/main.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1e44"
CONTENT-LENGTH: 7748
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/iconsui.css

109.104.198.139

200 OK

2.5 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/iconsui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (2532), with no line terminators
Size
2.5 kB (2532 bytes)
Hash
3c3dcec4bf71abf5c8c9f0a6aacb35fc
358c6395c89a7bda4faca5a3ab794558b28a3092
87de5c092c4593bf3789538bbee26026b2170217138322567306c0a80b3ca513

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/iconsui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:9e4"
CONTENT-LENGTH: 2532
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/desktopui.css

109.104.198.139

200 OK

21 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/desktopui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (20850), with no line terminators
Size
21 kB (20850 bytes)
Hash
7504dc79164e933d3b8e28a59b74084f
590f0baff3e761e95fb6c304cf27e6583073a973
e13df56e56c89cf714280f2e3384dbc6c8369932803483ed44561bf1933dcbfb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/desktopui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:5172"
CONTENT-LENGTH: 20850
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/widgetui.css

109.104.198.139

200 OK

31 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/widgetui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (30638), with no line terminators
Size
31 kB (30638 bytes)
Hash
0cec8af6aeacd4f90749bddf64b33fa6
45fb56b3bef5565a2ebdd9c095f3eafcc7edc4fc
fcad16133441955f27a4c718d1908703c025fafca5022dde9a8d01a15d4da2a7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/widgetui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:77ae"
CONTENT-LENGTH: 30638
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/loginui.css

109.104.198.139

200 OK

1.7 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/loginui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1664), with no line terminators
Size
1.7 kB (1664 bytes)
Hash
0a3c082967dd91eb0b2fdc10729585ca
05ad3eaa2973076b0f266a634af9fd87092e6214
b26c5468d8b222a4482f8592843aae2d49c9663841d57105a049d0e04704d85d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/loginui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:680"
CONTENT-LENGTH: 1664
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/deviceInitui.css

109.104.198.139

200 OK

310 B

URL HTTP/1.1
109.104.198.139/baseProj/css/deviceInitui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (310), with no line terminators
Size
310 B (310 bytes)
Hash
7b3ed6060b4e43aa84a6ca2e94b5dd24
29815a426c4b2ae69a9b34d6f4a972b979fd0908
175681c824ec3787357999a81981406b6e91cbb2fb141b40c278f2c970f967b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/deviceInitui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:136"
CONTENT-LENGTH: 310
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/findPwdui.css

109.104.198.139

200 OK

235 B

URL HTTP/1.1
109.104.198.139/baseProj/css/findPwdui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
235 B (235 bytes)
Hash
5fbd5d1712e7d81176b63a7a927b49d9
cfe8d2925bfcc810a8fab9a257f0ffaaaaa9daa8
bed2b74440fa80bd72c206f32f642b15efdfcf1ab1d4aee2353459619366268f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/findPwdui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:eb"
CONTENT-LENGTH: 235
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/componentui.css

109.104.198.139

200 OK

25 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/componentui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (25387), with no line terminators
Size
25 kB (25387 bytes)
Hash
a10bc95b4358da5f39d73c5df1fdd40e
9fe20c985be66c9ff6eea526d670ef329d88b20d
e68b2c34b738a470eed06e94aec5b3d0c71c2ba7166474371ae7ccce4b01fc27

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/componentui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:632b"
CONTENT-LENGTH: 25387
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/previewui.css

109.104.198.139

200 OK

16 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/previewui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (15619), with no line terminators
Size
16 kB (15619 bytes)
Hash
623816b32929e87a4ef8886af4b89ba1
e5aec9e697c4763f4e31780bb078857e4c172f2c
762b6e4ee8c7ffcd58744f81869ff64906d6312b738b35d0dddebad984b33810

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/previewui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3d03"
CONTENT-LENGTH: 15619
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/playbackui.css

109.104.198.139

200 OK

10 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/playbackui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (10343), with no line terminators
Size
10 kB (10343 bytes)
Hash
7022f98b5682fc81d94c1b6bc87519fa
0347d10da62c30f71c4be471145278b0cecc0135
a4d942dd055547bbe21387d0fa91b37b385a04986ff682b86fd2a1e6b768d7ce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/playbackui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:2867"
CONTENT-LENGTH: 10343
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/alarmui.css

109.104.198.139

200 OK

51 B

URL HTTP/1.1
109.104.198.139/baseProj/css/alarmui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
d336c6571483eb03ad7a9ee7cceb9cb1
fb3f2090cf3b6b8ecaee4acb17380a7c95ccff0f
c5fe618e4098e4fe227d34b0c590091f90b15901e7698b0f8f3d419d21372de8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/alarmui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:33"
CONTENT-LENGTH: 51
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/iotui.css

109.104.198.139

200 OK

778 B

URL HTTP/1.1
109.104.198.139/baseProj/css/iotui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (778), with no line terminators
Size
778 B (778 bytes)
Hash
94681929136a2f122bd9ef25b9c2c2b8
a2575397e1fa218af13ba337508608bf0e389e1d
ffb690b8635bace6f72f90f92be4c91c9d87661994603a7ea00ae18446a473e3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/iotui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:30a"
CONTENT-LENGTH: 778
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/backupui.css

109.104.198.139

200 OK

1.4 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/backupui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
assembler source, ASCII text, with very long lines (1370), with no line terminators
Size
1.4 kB (1370 bytes)
Hash
88c9e38c6e0a0829ab6351a654844138
2ffe2c2b9b13a40d5c29d96c7f44e7d106cb7af7
c24766c86d072cee5f2e717189e3ab6a2e71c9079a8100abdaf531a986a01538

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/backupui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:55a"
CONTENT-LENGTH: 1370
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/outmodeui.css

109.104.198.139

200 OK

135 B

URL HTTP/1.1
109.104.198.139/baseProj/css/outmodeui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
135 B (135 bytes)
Hash
948c1488ce19b119f25a9d8586d22fca
6e31213f80a6e9dce4277b2da66ae19b84939090
1a592b2d8f976dad4a4e28eec997c2e2a211ac0df24b38e97071776f519f9826

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/outmodeui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:87"
CONTENT-LENGTH: 135
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/audioui.css

109.104.198.139

200 OK

973 B

URL HTTP/1.1
109.104.198.139/baseProj/css/audioui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (973), with no line terminators
Size
973 B (973 bytes)
Hash
3e21b9f5cd1ecbea42c27c539ed017b0
8e52caee688883fa1b1911380ebb548ddf4b4c7f
281b7e5981c4431951bd3537fcfe8986c2279f3a7f99647721fd101a9b64c05f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/audioui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3cd"
CONTENT-LENGTH: 973
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/ext/packages/ext-theme-neptune/build/resources/ext-theme-neptune-all.css

109.104.198.139

200 OK

319 kB

URL HTTP/1.1
109.104.198.139/ext/packages/ext-theme-neptune/build/resources/ext-theme-neptune-all.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
319 kB (318915 bytes)
Hash
4192c2ac72ce736d0b52ee7380afdfdc
3fc3a5ee6534da4c2bddb9f313ebe8bf72d35e3b
98d87264c50a5f3c87f473d49c9303f33452ffa88a064eee4769a1f1aa13f1a6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ext/packages/ext-theme-neptune/build/resources/ext-theme-neptune-all.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:10 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:4ddc3"
CONTENT-LENGTH: 318915
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/intelui.css

109.104.198.139

200 OK

1.3 kB

URL HTTP/1.1
109.104.198.139/baseProj/css/intelui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1264), with no line terminators
Size
1.3 kB (1264 bytes)
Hash
f48ae8b8df8f6f73f2b1e2229bfea44e
645e9c9598d2115d5b93d43b85ee5360b8ed4296
7ab25e5ba4b59a1b858d0b4f99682ed6406fac4fb76fba4dbb8df5bb3f0cdf20

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/intelui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:4f0"
CONTENT-LENGTH: 1264
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/accountManui.css

109.104.198.139

200 OK

948 B

URL HTTP/1.1
109.104.198.139/baseProj/css/accountManui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (948), with no line terminators
Size
948 B (948 bytes)
Hash
756725f1d49b297f47500da75c4c120a
c486b1519f7b0680275befa9ebc095b5ae2c90f0
3fef70de5262f1cca4893368c3e8e0f616805ca1ca3342a92920eaa264e5994a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/accountManui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3b4"
CONTENT-LENGTH: 948
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/channelTypeui.css

109.104.198.139

200 OK

487 B

URL HTTP/1.1
109.104.198.139/baseProj/css/channelTypeui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (487), with no line terminators
Size
487 B (487 bytes)
Hash
c0de1fd5b85b93491da2268244317fcb
7c700f16e583c64f05bc200c320aaf3c3770335e
1433e96354377d367b05627bf6b9efc93408c7d44b48c46ee6a45bc908c4e9bc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/channelTypeui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1e7"
CONTENT-LENGTH: 487
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/baseProj/css/storageui.css

109.104.198.139

200 OK

30 B

URL HTTP/1.1
109.104.198.139/baseProj/css/storageui.css
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
d4d56eb8c518030eedc673df85e21872
d353a1e22a3a402dcf3a5b0b4e09f52558fe5eb3
caefcf0c58bbb22b90edb1be0e736036ada3bee32906d202919c985afd47922f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/css/storageui.css HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1e"
CONTENT-LENGTH: 30
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: text/css

109.104.198.139/app/libs/jquery.ui.core.js

109.104.198.139

200 OK

16 kB

URL HTTP/1.1
109.104.198.139/app/libs/jquery.ui.core.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
Unicode text, UTF-8 text, with very long lines (15856), with no line terminators
Size
16 kB (15949 bytes)
Hash
d16214611dfc9f2b1f0293d43383661b
df865143f0f51d72546a025ccaa2b6d21c6060b1
d322635f8d81553035aaa5f750698281be1971cf6a4b7ae0e6b465449c424996

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/jquery.ui.core.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3e4d"
CONTENT-LENGTH: 15949
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/extend.js

109.104.198.139

200 OK

24 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/extend.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (23622), with no line terminators
Size
24 kB (23622 bytes)
Hash
ac8b52231eec7ddf7911a3197621c947
7dd3469ee276fb8b4a53401637ef13ad5593d724
e15595765bc99647db50276f6409dd8c36782c85b626742e0d72136096ca04b9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/extend.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:5c46"
CONTENT-LENGTH: 23622
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/libs/jquery.pubsub.js

109.104.198.139

200 OK

908 B

URL HTTP/1.1
109.104.198.139/app/libs/jquery.pubsub.js
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (908), with no line terminators
Size
908 B (908 bytes)
Hash
fb110f87d00598231a539918e2b5c5ca
fc310b9cc162e338acb6e8bfd096197006b3a941
502a31b0c5cbd2927b1fe353d2569f7fbb0a2f23a3b428dc708a283de7cfac07

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/libs/jquery.pubsub.js HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:38c"
CONTENT-LENGTH: 908
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/Common.js?_dc=1674598519613

109.104.198.139

200 OK

13 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/Common.js?_dc=1674598519613
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (13414), with no line terminators
Size
13 kB (13414 bytes)
Hash
88cd89c6f01756b8be206c66097b1c7e
5bbac9c5f775785058ec8b11c6eaeb888ffb9171
6e9a9bf4fcd698f59aac1c9ebc48e85dad01a0b9803dd8c69359a190381c4b13

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/Common.js?_dc=1674598519613 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3466"
CONTENT-LENGTH: 13414
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/current_config/preLanguage?1674598519751&_dc=1674598519751

109.104.198.139

200 OK

26 B

URL HTTP/1.1
109.104.198.139/current_config/preLanguage?1674598519751&_dc=1674598519751
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
JSON data\012- , ASCII text
Size
26 B (26 bytes)
Hash
662021470c60975c899f5fb14a073815
d511585b2f18e5c7d9d35e17b54abd0da6bb68f5
d449a5b2f00e1a804cd78a95ec00d495dfc09f6312740d45facb39246d99e180

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /current_config/preLanguage?1674598519751&_dc=1674598519751 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Mon, 19 Dec 2022 10:55:11 GMT
Etag: "1671447311:1a"
CONTENT-LENGTH: 26
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

109.104.198.139/custom_lang/English.txt?_dc=1674598519889

109.104.198.139

404 Not Found

48 B

URL HTTP/1.1
109.104.198.139/custom_lang/English.txt?_dc=1674598519889
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
de47b8952cf60220f474d5004f9f04df
d44daa88381eacd58e1186a9d7a36bdc5adae7d3
a5ab8a7699e699284cf698b35a5172defde53ab4db229b33d24307656cbed54b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /custom_lang/English.txt?_dc=1674598519889 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 404 Not Found
CONNECTION: close
CONTENT-LENGTH: 48
CONTENT-TYPE: text/html

109.104.198.139/web_lang/English.txt?_dc=1674598519889

109.104.198.139

200 OK

269 kB

URL HTTP/1.1
109.104.198.139/web_lang/English.txt?_dc=1674598519889
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (364), with CRLF line terminators
Size
269 kB (268846 bytes)
Hash
61c8ac839894eb89126a0753d786cc08
366f5b5d0066406886091b897ffaf6318bc49f07
2f59bec1f7a88c976daa261066b0b18ebb42a7d7476a13d61df5435b14829419

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /web_lang/English.txt?_dc=1674598519889 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:10 GMT
Etag: "1535021230:41a2e"
CONTENT-LENGTH: 268846
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

109.104.198.139/web_lang/English.txt?_dc=1674598519889

109.104.198.139

200 OK

269 kB

URL HTTP/1.1
109.104.198.139/web_lang/English.txt?_dc=1674598519889
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (364), with CRLF line terminators
Size
269 kB (268846 bytes)
Hash
61c8ac839894eb89126a0753d786cc08
366f5b5d0066406886091b897ffaf6318bc49f07
2f59bec1f7a88c976daa261066b0b18ebb42a7d7476a13d61df5435b14829419

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /web_lang/English.txt?_dc=1674598519889 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:11 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:10 GMT
Etag: "1535021230:41a2e"
CONTENT-LENGTH: 268846
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

109.104.198.139/ext/locale/ext-lang-en.js?_dc=1674598520390

109.104.198.139

200 OK

11 kB

URL HTTP/1.1
109.104.198.139/ext/locale/ext-lang-en.js?_dc=1674598520390
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text
Size
11 kB (10688 bytes)
Hash
9acf707801403d1d4ed44585b040b373
93289ad5152e1f61c8377c2d9450ae43cd52bcde
cb12161580b68e3b8dc1c945957f6edc8e062c67464eb03cc04a8ca200cfba8f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ext/locale/ext-lang-en.js?_dc=1674598520390 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:29c0"
CONTENT-LENGTH: 10688
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/baseCls/App.js?_dc=1674598520392

109.104.198.139

200 OK

4.6 kB

URL HTTP/1.1
109.104.198.139/app/baseCls/App.js?_dc=1674598520392
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (4583), with no line terminators
Size
4.6 kB (4583 bytes)
Hash
03066e2e77ee5cdefd8af4c25f79514a
54a3154af7fc564205df1d1b2c370fd2204ef168
a9e8124b2a763431117982eb2e1acfeaeb292547f71cc0120620005d50d4560f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/baseCls/App.js?_dc=1674598520392 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:11e7"
CONTENT-LENGTH: 4583
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/Wallpaper.js?_dc=1674598520537

109.104.198.139

200 OK

939 B

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/Wallpaper.js?_dc=1674598520537
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
6a8ec113cd97c5f21f0f3d93e9830e04
efa1dea371edad5e4b4709662891c3a38c72ad73
cd8c21aaebd85bd8f2be1638735d8ea6af48c850fe1a2bb7075022bd208fdbed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/Wallpaper.js?_dc=1674598520537 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:3ab"
CONTENT-LENGTH: 939
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/Desktop.js?_dc=1674598520538

109.104.198.139

200 OK

5.1 kB

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/Desktop.js?_dc=1674598520538
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (5075), with no line terminators
Size
5.1 kB (5075 bytes)
Hash
a16bab7582596f2058bc488aa06ab866
38d7ba71505c11d7eb0b16ac0ca62117e0dc4339
5948728e1157a5af0355b71ba2136a6e3cd8f7890b5e268dd734e23606a2f633

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/Desktop.js?_dc=1674598520538 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:13d3"
CONTENT-LENGTH: 5075
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/Login.js?_dc=1674598520540

109.104.198.139

200 OK

4.9 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/Login.js?_dc=1674598520540
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (4871), with no line terminators
Size
4.9 kB (4871 bytes)
Hash
a60408d4d27d980b7851661818374e0b
249296ed8de2c8f2a0057dbb626e04080f4b5211
ed18635bcc7f62db9e28bb88399c7d9478bcf4856b6d4387c4bcee22a3d83265

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/Login.js?_dc=1674598520540 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1307"
CONTENT-LENGTH: 4871
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/RPC.js?_dc=1674598520539

109.104.198.139

200 OK

67 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/RPC.js?_dc=1674598520539
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (32082)
Size
67 kB (66787 bytes)
Hash
fff14228b82c99f0e40f804eb71bd9a4
208eef3a57a3a7bcafa94d56cd1c947d543b87c1
26a024e57231802acf06c446095c2927ba050cfe112cd3cbf73da1897d9af08e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/RPC.js?_dc=1674598520539 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:104e3"
CONTENT-LENGTH: 66787
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//data/Constants.js?_dc=1674598520677

109.104.198.139

200 OK

330 B

URL HTTP/1.1
109.104.198.139/baseProj//data/Constants.js?_dc=1674598520677
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (330), with no line terminators
Size
330 B (330 bytes)
Hash
2bce71cd30368a209b59c0c246c76b6b
ccc2efff38f115b2284b4e2edbef395c6b9d596e
e7237b9f5fefae39e761e5ff58f362f1be2dbedacbaf26ebef5a9b0063371047

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//data/Constants.js?_dc=1674598520677 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:14a"
CONTENT-LENGTH: 330
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/Ability.js?_dc=1674598520679

109.104.198.139

200 OK

12 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/Ability.js?_dc=1674598520679
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (12032), with no line terminators
Size
12 kB (12032 bytes)
Hash
79c572b57c9315b54e92e387d45d8cb8
8787b0f105fe25159bc47872093cd8e3baa09f2b
cc48f2037cbcf58d6b51cf95fc326f5ef81405941a3675214a9122e4c12d9ff4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/Ability.js?_dc=1674598520679 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:2f00"
CONTENT-LENGTH: 12032
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/jsCore/KeepAlive.js?_dc=1674598520680

109.104.198.139

200 OK

1.2 kB

URL HTTP/1.1
109.104.198.139/app/jsCore/KeepAlive.js?_dc=1674598520680
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1186), with no line terminators
Size
1.2 kB (1186 bytes)
Hash
d168896c7907d4af4baa3d11d14e273c
29faba5246f13a99ffbdf5742f5ad231fcc8eba1
7da437d7273141c01edc8e086189793f438d57e2b5916cbd5df7ed115212ade6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/jsCore/KeepAlive.js?_dc=1674598520680 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:4a2"
CONTENT-LENGTH: 1186
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/startingUp/StartingUp.js?_dc=1674598520679

109.104.198.139

200 OK

1.9 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/startingUp/StartingUp.js?_dc=1674598520679
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1873), with no line terminators
Size
1.9 kB (1873 bytes)
Hash
cd803ff4959d2f6cd34503926fe8f3d9
9dfdf6f54b483d066775ad2734c6887e4983e840
bcd4f784ef4f45f5e8106ecedf9f41bc9aefb9cdd466d0b58514de69b1c20835

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/startingUp/StartingUp.js?_dc=1674598520679 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:751"
CONTENT-LENGTH: 1873
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Factory.js?_dc=1674598520678

109.104.198.139

200 OK

22 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Factory.js?_dc=1674598520678
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (21759), with no line terminators
Size
22 kB (21759 bytes)
Hash
17583d7e7b9cb8e51abac4a37a529f09
75783cc88361d86fb53259a46c5f06f11656ead0
f4da41dd24da5acd007b150a04427a61f1723d176b9cbf59f5d73eecc1a7704e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Factory.js?_dc=1674598520678 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:54ff"
CONTENT-LENGTH: 21759
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/TaskBar.js?_dc=1674598520681

109.104.198.139

200 OK

4.0 kB

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/TaskBar.js?_dc=1674598520681
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (4018), with no line terminators
Size
4.0 kB (4018 bytes)
Hash
416e6a6ca5800a537c06a574a059cfa2
98647123b45756fcb656e449fb7a11b965d3a2b1
0c3a3c65d3361467466d6f2579552d11d0178f9972d226e06c5401db3c911ac3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/TaskBar.js?_dc=1674598520681 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:fb2"
CONTENT-LENGTH: 4018
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/Page.js?_dc=1674598520681

109.104.198.139

200 OK

1.4 kB

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/Page.js?_dc=1674598520681
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1445), with no line terminators
Size
1.4 kB (1445 bytes)
Hash
cf4728150e7e05ea22fa7d9d23faedd8
428bf17972c06a5f9575f5f6bf841e9950540bc3
2d129372f538a20ada813e2fc68356fdf325760e58dfb404dfe4c8de47a6d6a5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/Page.js?_dc=1674598520681 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:5a5"
CONTENT-LENGTH: 1445
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/plugin/Plugin.js?_dc=1674598520682

109.104.198.139

200 OK

2.8 kB

URL HTTP/1.1
109.104.198.139/app/plugin/Plugin.js?_dc=1674598520682
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
Unicode text, UTF-8 text, with very long lines (2742), with no line terminators
Size
2.8 kB (2766 bytes)
Hash
8fe6e401c31f24e6e335a34e6cd5dc4f
027a720319346ec62e71c58fcb341db96c51cbcc
d56a518dca8731995530af063b3aa124734fb94c962c89cf12ce08e02ec19e62

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/plugin/Plugin.js?_dc=1674598520682 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:ace"
CONTENT-LENGTH: 2766
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/OutsideCmd

109.104.198.139

200 OK

602 B

URL HTTP/1.1
109.104.198.139/OutsideCmd
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
JSON data\012- , ASCII text, with very long lines (601)
Size
602 B (602 bytes)
Hash
e698d2649645f177d4086c501223b7e3
bd498d6979cb4f37c787c06a334c61091ff7289f
ccc1bbac1574f47e911501782b8c0b8bfba3678543326aec082a6fc9707d4c66

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /OutsideCmd HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 69
Origin: http://109.104.198.139
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 602

109.104.198.139/baseProj/js/widget/Date.js?_dc=1674598520886

109.104.198.139

200 OK

1.6 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Date.js?_dc=1674598520886
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1595), with no line terminators
Size
1.6 kB (1595 bytes)
Hash
27476a2edce3863315dd82dff02598f1
bbc167ec0a6e652ac5780c966aeeedcdb77a33be
f94eee621595993d7bbe8d7b9ad9eba6e4d066ea87d755f130c039a24acd6006

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Date.js?_dc=1674598520886 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:63b"
CONTENT-LENGTH: 1595
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Time.js?_dc=1674598520885

109.104.198.139

200 OK

7.6 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Time.js?_dc=1674598520885
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (7609), with no line terminators
Size
7.6 kB (7609 bytes)
Hash
cc3b8333488c1d09424a66afe847a77b
5e9edb50869540106b34a75c86ec03e9b7a6c4c6
53847a7e7ff8bb06afcb811117b228f27c74c1df6523a1655989068bd728886f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Time.js?_dc=1674598520885 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1db9"
CONTENT-LENGTH: 7609
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/DateTime.js?_dc=1674598520887

109.104.198.139

200 OK

4.9 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/DateTime.js?_dc=1674598520887
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (4899), with no line terminators
Size
4.9 kB (4899 bytes)
Hash
09c02d88ec7a0e0b578d2e24b2c32c35
5cd7a237cad90f80f669fef75aa2c541ba9875ae
b34191b25601169cfa1ed621490d43113551d98b9bd214f998acf3a94b3294b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/DateTime.js?_dc=1674598520887 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1323"
CONTENT-LENGTH: 4899
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Numberfield.js?_dc=1674598520887

109.104.198.139

200 OK

1.4 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Numberfield.js?_dc=1674598520887
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1421), with no line terminators
Size
1.4 kB (1421 bytes)
Hash
98236d8bb297ff7682e80072c8485d53
f41d803bf75fdf192e278ea9c821b802bbff4491
6975d3c1cb5df76a2667c292fd7d63473d8aface35d3001401529961ce4e4327

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Numberfield.js?_dc=1674598520887 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:58d"
CONTENT-LENGTH: 1421
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Zoombar.js?_dc=1674598520885

109.104.198.139

200 OK

2.7 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Zoombar.js?_dc=1674598520885
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (2746), with no line terminators
Size
2.7 kB (2746 bytes)
Hash
827a64dd226a1b70be807b07b88dbcf2
60c34673866177895f92549f25265c504cf31d4b
ea4562b90b817f1a83993fde5a87d2e2ba8a9fca97b43e2680a41ef5b9a82fca

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Zoombar.js?_dc=1674598520885 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:aba"
CONTENT-LENGTH: 2746
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/IconList.js?_dc=1674598520884

109.104.198.139

200 OK

5.5 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/IconList.js?_dc=1674598520884
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (5475), with no line terminators
Size
5.5 kB (5475 bytes)
Hash
393c806b0d22aae17e42b2d3b991f384
91000a2c225966880c96bc0ea999b7d6dd1cb69b
0cf9c6681b9ee5ee7e98eb41a290795c49164f9387cf013fa9ccf55480f0149e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/IconList.js?_dc=1674598520884 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:12 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:1563"
CONTENT-LENGTH: 5475
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/ipv4Address.js?_dc=1674598520888

109.104.198.139

200 OK

219 B

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/ipv4Address.js?_dc=1674598520888
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with no line terminators
Size
219 B (219 bytes)
Hash
977ddd9ad9d679a00e42abad41fb0128
c7eda14f2ca1bd54f8305ac256036499034edf45
73133460324b4afe039d71c072e85ce20640de7e35328dfc92ae4ffe6ae06bb9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/ipv4Address.js?_dc=1674598520888 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:db"
CONTENT-LENGTH: 219
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/macAdress.js?_dc=1674598520887

109.104.198.139

200 OK

365 B

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/macAdress.js?_dc=1674598520887
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (365), with no line terminators
Size
365 B (365 bytes)
Hash
25c0123cffcc92a06c4c615fc749345d
a4909e39d246e8329d9175ca0a1453da1fc6b18a
22a9c438f3b9dddd13348cdd261e5dffac3dc5aa7bd56dffa6333cc2e1f3983b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/macAdress.js?_dc=1674598520887 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:16d"
CONTENT-LENGTH: 365
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Switch.js?_dc=1674598520883

109.104.198.139

200 OK

638 B

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Switch.js?_dc=1674598520883
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (638), with no line terminators
Size
638 B (638 bytes)
Hash
6d396e81ada7d1776064e60946963435
6ad7ea3a282c6c9178f98408fd51319493cad3e7
72831a29f7d192b2a136caecfa40e03c81d64630d48a2d2319005523834caaba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Switch.js?_dc=1674598520883 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:27e"
CONTENT-LENGTH: 638
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/Button.js?_dc=1674598520884

109.104.198.139

200 OK

829 B

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/Button.js?_dc=1674598520884
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (829), with no line terminators
Size
829 B (829 bytes)
Hash
00e5d0cb76bb09303e9da87d7185f4ac
864d708ba2cdb17f24dd6b2a7c4852bf855434db
a1630219c06a29977bbf18b9b8f7f6e8f1393bc783394acbb1160a4ec5ecaa5a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/Button.js?_dc=1674598520884 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:33d"
CONTENT-LENGTH: 829
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/ShutdownMenu.js?_dc=1674598520936

109.104.198.139

200 OK

3.0 kB

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/ShutdownMenu.js?_dc=1674598520936
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (3029), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
bcc109debca6453b259c81ee0c09fe08
21f7c0dc3db6560101ce37cdeb0a8309c2758196
319dadd8f9afb40f96e7755e1eee1d6dd69e6ffcff549bc607cb8063443ed12f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/ShutdownMenu.js?_dc=1674598520936 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:bd5"
CONTENT-LENGTH: 3029
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/StartMenu.js?_dc=1674598520935

109.104.198.139

200 OK

309 B

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/StartMenu.js?_dc=1674598520935
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (309), with no line terminators
Size
309 B (309 bytes)
Hash
211780f7450e7bc9bbeac1304be76144
fee5b848c1de8e47bb1fa9e5181c5f9eb6285a98
7a8e1d689a8676c3c1840b59bf59b89c28d9fdc35d5b5642e073ce45100da42f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/StartMenu.js?_dc=1674598520935 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:135"
CONTENT-LENGTH: 309
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj//js/desktop/QrCodeWin.js?_dc=1674598520936

109.104.198.139

200 OK

2.0 kB

URL HTTP/1.1
109.104.198.139/baseProj//js/desktop/QrCodeWin.js?_dc=1674598520936
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1977), with no line terminators
Size
2.0 kB (1977 bytes)
Hash
699ef27594fc7a62928710a9c8be89dc
72a0f6baf691719de1cd44d73266f91c9e9b9f6c
e53c7bcd15c248bd6460dbc9597fb7d6a6478cf247f678b6c4e9332676323a07

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj//js/desktop/QrCodeWin.js?_dc=1674598520936 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:7b9"
CONTENT-LENGTH: 1977
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/plugin/platForm/Ocx.js?_dc=1674598520958

109.104.198.139

200 OK

1.5 kB

URL HTTP/1.1
109.104.198.139/app/plugin/platForm/Ocx.js?_dc=1674598520958
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1537), with no line terminators
Size
1.5 kB (1537 bytes)
Hash
b381753157a02f7d86e2775223846235
de33f19ed5c5c5fe1697ebd4f04faf409cfae85c
94649973b4aa2a7de970b953402feac7518ef2e22943d0c9cb28fc3c6d8b4904

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/plugin/platForm/Ocx.js?_dc=1674598520958 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:601"
CONTENT-LENGTH: 1537
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/component/Calendar.js?_dc=1674598521023

109.104.198.139

200 OK

5.8 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/component/Calendar.js?_dc=1674598521023
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (5770), with no line terminators
Size
5.8 kB (5770 bytes)
Hash
609f798205cc6cee52d12c4c3781c37c
e8ee659d396ceac93fc0c0fbbf45b39c98c161ec
37d29457769031d3eb4211d19cd0ccd3fabfea3dd5d0f40e454b8dec8a1cdba5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/component/Calendar.js?_dc=1674598521023 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:168a"
CONTENT-LENGTH: 5770
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/multipleInput.js?_dc=1674598521149

109.104.198.139

200 OK

3.3 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/multipleInput.js?_dc=1674598521149
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (3343), with no line terminators
Size
3.3 kB (3343 bytes)
Hash
f4d4556a28afd59cc88e2e7563c8a1f5
d8a82716b648474d1afe9535a3e1ed55f114d7df
b4bba8570c87b0ff742625c7c27193d2c81bc22cd1e4e056108a93e3cfe0e8a8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/multipleInput.js?_dc=1674598521149 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:d0f"
CONTENT-LENGTH: 3343
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/baseProj/js/widget/SetupWinow.js?_dc=1674598521280

109.104.198.139

200 OK

1.2 kB

URL HTTP/1.1
109.104.198.139/baseProj/js/widget/SetupWinow.js?_dc=1674598521280
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (1170), with no line terminators
Size
1.2 kB (1170 bytes)
Hash
fda3064cce985566af376c60a8ec70f9
d4084840fd8aea1aff87c26745f2032ee7be43de
fd4c9155a6a7b933eb74c811aa37097ab1805399631d3bbfbb59cb337a75d6d7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/js/widget/SetupWinow.js?_dc=1674598521280 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:492"
CONTENT-LENGTH: 1170
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/app/plugin/platForm/Base.js?_dc=1674598521285

109.104.198.139

200 OK

19 kB

URL HTTP/1.1
109.104.198.139/app/plugin/platForm/Base.js?_dc=1674598521285
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text, with very long lines (19331), with no line terminators
Size
19 kB (19331 bytes)
Hash
d5043697f1b1de7097a74427e87853fe
f11115d30c00ec61a226d2d5bc3b9e8b0c36eb47
daff4e279415c30cc7d786f672ae8371bf6c1226c8db8acc16a6c327f43c2b32

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/plugin/platForm/Base.js?_dc=1674598521285 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:4b83"
CONTENT-LENGTH: 19331
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/x-javascript

109.104.198.139/custom_logo/web_logo.png?v=1674598521509&_dc=1674598521509

109.104.198.139

200 OK

4.9 kB

URL HTTP/1.1
109.104.198.139/custom_logo/web_logo.png?v=1674598521509&_dc=1674598521509
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 330 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4921 bytes)
Hash
77e117eb9b319906ab1bd1dcdba4b97e
59dc3ab2dbff9a974dc9c06aa3b4b7393f5faf49
5c5a60f07288ff8fa5d428f4f9593de60ea0b13a6912e6534b06e934891401b7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /custom_logo/web_logo.png?v=1674598521509&_dc=1674598521509 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Etag: "0:1339"
CONTENT-LENGTH: 4921
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/OutsideCmd

109.104.198.139

200 OK

80 B

URL HTTP/1.1
109.104.198.139/OutsideCmd
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
JSON data\012- , ASCII text
Size
80 B (80 bytes)
Hash
96402f390abdff2d4343994bcfe61fe2
a4e9084473469394421bd46178e48abb6c0940f7
7cd809a9f4500d4e2b5ad6cf3acb646b8ddbf9adefc1fab49f64889b02a87f5d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /OutsideCmd HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 63
Origin: http://109.104.198.139
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: Keep-Alive
CONTENT-LENGTH: 80

109.104.198.139/baseProj/images/username2.png

109.104.198.139

200 OK

315 B

URL HTTP/1.1
109.104.198.139/baseProj/images/username2.png
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
315 B (315 bytes)
Hash
23ffabccd22d557dd6c3809abfca618f
edb625a91db415d9d61591247a6220cf7a99c519
70216e48ed9cbec99dd5df2669f827c5407262aab1fd07d74ab56fbb4a9d9f1e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/username2.png HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/baseProj/css/loginui.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:13b"
CONTENT-LENGTH: 315
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/defaultCap.jsonp

109.104.198.139

200 OK

8.9 kB

URL HTTP/1.1
109.104.198.139/defaultCap.jsonp
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
8.9 kB (8915 bytes)
Hash
bddce26dffe4faa9977bb4bd63453943
7c7b1db932a83f4d4f94383600b7453adbdc27d1
3db4f08bf960c42e546ac6dca5db2b58e5d9bb6778d87892a44a4f40dd383d76

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /defaultCap.jsonp HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:22d3"
CONTENT-LENGTH: 8915
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

109.104.198.139/baseProj/images/login.png?20180815180247

109.104.198.139

200 OK

677 B

URL HTTP/1.1
109.104.198.139/baseProj/images/login.png?20180815180247
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 62 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
677 B (677 bytes)
Hash
9c9415e6b38b3be6a4dc9826cff2cf99
46cc5106e4b531625c658dd6353c35e0287a4d88
2dae9046f1966d0479b61ac4cc79fb199f19620365c5dd061e33215e992067d9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/login.png?20180815180247 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/baseProj/css/loginui.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:2a5"
CONTENT-LENGTH: 677
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/baseProj/images/password2.png

109.104.198.139

200 OK

289 B

URL HTTP/1.1
109.104.198.139/baseProj/images/password2.png
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
289 B (289 bytes)
Hash
09b1219364e683dee063e3e5314d43c8
2ddf9340b4f2e76b226589328fa5d9fb56930df4
75633bff12747df02c3d77710da58d80b16d96f2e3f0bdc3b56aa73265d01686

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/password2.png HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/baseProj/css/loginui.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:121"
CONTENT-LENGTH: 289
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/custom_logo/web_logo.png?v=1674598521641

109.104.198.139

200 OK

4.9 kB

URL HTTP/1.1
109.104.198.139/custom_logo/web_logo.png?v=1674598521641
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 330 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4921 bytes)
Hash
77e117eb9b319906ab1bd1dcdba4b97e
59dc3ab2dbff9a974dc9c06aa3b4b7393f5faf49
5c5a60f07288ff8fa5d428f4f9593de60ea0b13a6912e6534b06e934891401b7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /custom_logo/web_logo.png?v=1674598521641 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Etag: "0:1339"
CONTENT-LENGTH: 4921
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/ext/packages/ext-theme-neptune/build/resources/images/form/trigger.png

109.104.198.139

200 OK

1.1 kB

URL HTTP/1.1
109.104.198.139/ext/packages/ext-theme-neptune/build/resources/images/form/trigger.png
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 110 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1137 bytes)
Hash
fca4af5e2452f40a414f56b9b2c2470e
dfbf253048b082732ceea90ad04e9167ec819f79
11e57653c592be9601f0ce314967b2792dffb2fefc0ee34cb8a6f1de3a4c447c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ext/packages/ext-theme-neptune/build/resources/images/form/trigger.png HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/ext/packages/ext-theme-neptune/build/resources/ext-theme-neptune-all.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:471"
CONTENT-LENGTH: 1137
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/baseProj/images/bg.jpg

109.104.198.139

200 OK

91 kB

URL HTTP/1.1
109.104.198.139/baseProj/images/bg.jpg
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size
91 kB (90693 bytes)
Hash
d8f52a1713e4ec448e49c71acd7fc1b6
a14d5c78e165093418d71b5252888e478b7a18b5
1cf3ba63094d19fb1c4a6576d11d296787e847d74fd5c3998f7166ee5182ad2e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/bg.jpg HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:16245"
CONTENT-LENGTH: 90693
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/jpeg

109.104.198.139/current_config/WebCapConfig?v=1674598521816

109.104.198.139

200 OK

1.3 kB

URL HTTP/1.1
109.104.198.139/current_config/WebCapConfig?v=1674598521816
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
JSON data\012- , ASCII text, with very long lines (1328)
Size
1.3 kB (1329 bytes)
Hash
8e819630f7954c183719c93492046754
f99f43ee01359336a2ba45506f813c8053fca9a0
0cb3ee2adecc92ed0255b2d932b918cb0fd4667ba937e376eb1042ce1421751f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /current_config/WebCapConfig?v=1674598521816 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Mon, 19 Dec 2022 10:55:11 GMT
Etag: "1671447311:531"
CONTENT-LENGTH: 1329
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: application/octet-stream

109.104.198.139/ext/packages/ext-theme-neptune/build/resources/images/form/exclamation.png

109.104.198.139

200 OK

1.2 kB

URL HTTP/1.1
109.104.198.139/ext/packages/ext-theme-neptune/build/resources/images/form/exclamation.png
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1190 bytes)
Hash
bf74ccfa102bff05b125e6e22ca90270
e9b217f949c96f2f300919c71e34685b9662c53a
35b3fef1b7e3037df04c0d1c5b84a65559200d5897987b8e12330cb19d614af8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ext/packages/ext-theme-neptune/build/resources/images/form/exclamation.png HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/ext/packages/ext-theme-neptune/build/resources/ext-theme-neptune-all.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:4a6"
CONTENT-LENGTH: 1190
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/baseProj/images/widget.png?20180815180249

109.104.198.139

200 OK

25 kB

URL HTTP/1.1
109.104.198.139/baseProj/images/widget.png?20180815180249
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
PNG image data, 308 x 308, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24733 bytes)
Hash
0bd6380b07c1939d021152efcd914c18
2c660000b72f504a58d9cf3c2bb8a5b2c11bc108
443a3e1b5b79639e1e248da98d10b7821185dcd334cefd2d54aaabe29513dbfd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /baseProj/images/widget.png?20180815180249 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://109.104.198.139/baseProj/css/widgetui.css
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONNECTION: close
Date: Wed, 25 Jan 2023 00:15:13 GMT
Last-Modified: Thu, 23 Aug 2018 10:47:07 GMT
Etag: "1535021227:609d"
CONTENT-LENGTH: 24733
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
CONTENT-TYPE: image/png

109.104.198.139/cap.js?_=1674598519016

109.104.198.139

200 OK

199 B

URL HTTP/1.1
109.104.198.139/cap.js?_=1674598519016
IP
109.104.198.139:0
ASN
#12436 Bergon Internet Ltd.

File type
ASCII text
Size
199 B (199 bytes)
Hash
31626044b96af6bb0c8f498072cdd117
94e91bab68fc13daf4c75e19e122719d99ade445
8768dc58fbee3fb54c6bf95b42d39f1277c7617dce8ad7b75dc1af2f1afaa11a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /cap.js?_=1674598519016 HTTP/1.1
Host: 109.104.198.139
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://109.104.198.139/
Cookie: curLanguage=English

HTTP/1.1 200 OK
CONTENT-LENGTH: 199
CONNECTION: keep-alive
Content-type: application/x-javascript;charset=utf-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (72)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML