| 117.252.250.163/ | 117.252.250.163 | | 26 kB |
IP117.252.250.163:0 ASN#9829 National Internet Backbone
File typeHTML document, ASCII text, with very long lines (356), with CRLF line terminators Hashebc0806376f855263c24f426e7b6a23a 1e23a1c8f7c379a9e27b34308b9c45eacd6eb23e f4f4a55fcfbd678459ca8723599dab2963460845490686d1effeb6397820c114
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:16 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
X-Powered-By: PHP/5.4.12
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
|
|
| 117.252.250.163/eHRMIS_latest/login.php | 117.252.250.163 | 200 OK | 9.2 kB |
URL User Request GET HTTP/1.1117.252.250.163/eHRMIS_latest/login.php IP117.252.250.163:80 ASN#9829 National Internet Backbone
File typeHTML document, ASCII text, with very long lines (418), with CRLF line terminators Hashe8354ec46d5be55aaa934b836fdafb28 4eff7ea5cdf2fa34271bd1895b3267b0faa06f7e 26871829e0fbc283eef3c689d9840d5528373a6edffc09070b6a6e724251eed9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/login.php HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
X-Powered-By: PHP/5.4.12
Set-Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
|
|
| 117.252.250.163/eHRMIS_latest/js/bootstrap.js | 117.252.250.163 | 404 Not Found | 227 B |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/js/bootstrap.js IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeHTML document, ASCII text Hash97a8d0b243578b4ded733f3dca92e84b 0de38d7ab27351e6a6582a0504c3e78d781e307f 828fdc4bb98cd0dafd5391f626614c0f8bd7ac67eaa86cc1e7f9280330b6da15
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/js/bootstrap.js HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Content-Length: 227
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| 117.252.250.163/eHRMIS_latest/js/md5-min.js | 117.252.250.163 | 200 OK | 5.3 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/js/md5-min.js IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeASCII text, with very long lines (4938), with CRLF line terminators Hashdedd633663392ea1cd04f0c3f30d46cf 3734d0d0f8635fac3adba33b585c35faaa09ec40 e7230b7640e22922ce1207485001cc2969655ea3082913e3700406c8b3d4312b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/js/md5-min.js HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Wed, 20 Sep 2017 08:53:53 GMT
ETag: "14a3-5599b1d7ea4b8"
Accept-Ranges: bytes
Content-Length: 5283
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 117.252.250.163/eHRMIS_latest/css/login.css | 117.252.250.163 | 200 OK | 6.4 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/css/login.css IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeASCII text, with very long lines (1319), with CRLF line terminators Hash13207f125ebc03e4aae214399fc292d3 3cc008dbe7c5d8c0baa6c6f2632a832cc5a16f75 58f9c6f303bb6426de61c9cbf5f95e4f94c39472bab32497dda9b4d55246610b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/css/login.css HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Fri, 04 Sep 2020 09:44:42 GMT
ETag: "1909-5ae79b7da1b60"
Accept-Ranges: bytes
Content-Length: 6409
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 117.252.250.163/eHRMIS_latest/css/bootstrap-responsive.css | 117.252.250.163 | 200 OK | 22 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/css/bootstrap-responsive.css IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
Hashd2c30d07a98d50e945570bf32c56435f 0b7adc5ce9d453658386201bfbd91b5879e167a3 128d23ba0a7aeb733b0ffc2e1e0f0b42626e686b500ca4ba7cfeda3bb1185a91
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/css/bootstrap-responsive.css HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Sat, 19 Sep 2020 07:08:57 GMT
ETag: "5656-5afa54a721789"
Accept-Ranges: bytes
Content-Length: 22102
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| 117.252.250.163/eHRMIS_latest/js/jquery-2.1.3.min.js | 117.252.250.163 | 200 OK | 84 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/js/jquery-2.1.3.min.js IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/js/jquery-2.1.3.min.js HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Fri, 04 Sep 2020 08:04:27 GMT
ETag: "14960-5ae7851565d65"
Accept-Ranges: bytes
Content-Length: 84320
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 117.252.250.163/eHRMIS_latest/css/bootstrap.css | 117.252.250.163 | 200 OK | 127 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/css/bootstrap.css IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
Size127 kB (127343 bytes) Hash08f2256002f66a415dbc2e8afb722d70 7966f25392b856d946e86e6c935e1d3391231437 8ef80d2fcefad0e18cd164e7e87b2539ab82fc54b068eb0bbde160663b0a5769
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/css/bootstrap.css HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:17 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Fri, 04 Sep 2020 08:02:43 GMT
ETag: "1f16f-5ae784b26d04f"
Accept-Ranges: bytes
Content-Length: 127343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 117.252.250.163/eHRMIS_latest/js/bootstrap.js | 117.252.250.163 | 404 Not Found | 227 B |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/js/bootstrap.js IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeHTML document, ASCII text Hash97a8d0b243578b4ded733f3dca92e84b 0de38d7ab27351e6a6582a0504c3e78d781e307f 828fdc4bb98cd0dafd5391f626614c0f8bd7ac67eaa86cc1e7f9280330b6da15
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/js/bootstrap.js HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 10:34:19 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Content-Length: 227
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| 117.252.250.163/eHRMIS_latest/images/header.png | 117.252.250.163 | 200 OK | 99 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/images/header.png IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typePNG image data, 1200 x 90, 8-bit/color RGB, non-interlaced Hash707c805ee8bc54b0ebf5131ec60ef63a ef9c87dde3ca22530bc82416a3922e4b99e39eee 4ffd7b014d9522bed9c4ce9562bcb9cec6ccba9afe68998f4f7acb401f2e6558
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/images/header.png HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:19 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Fri, 04 Sep 2020 08:05:03 GMT
ETag: "182b3-5ae78537af91e"
Accept-Ranges: bytes
Content-Length: 98995
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| 117.252.250.163/eHRMIS_latest/images/captcha_bg.jpg | 117.252.250.163 | 200 OK | 14 kB |
URL GET HTTP/1.1117.252.250.163/eHRMIS_latest/images/captcha_bg.jpg IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:05:20 10:25:28], baseline, precision 8, 300x108, components 3 Hash7cb1231f77eaceec3a1285c96a5f6370 19ff8acc080f8e258f1925894638b12ec8abba20 7c232b34d5c4830513929f096902a34406c708bcedeef29d64d9f482379b7a84
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /eHRMIS_latest/images/captcha_bg.jpg HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:19 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Sat, 19 Sep 2020 07:08:15 GMT
ETag: "34ac-5afa547f7a2b6"
Accept-Ranges: bytes
Content-Length: 13484
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 117.252.250.163/favicon.ico | 117.252.250.163 | 200 OK | 2.2 kB |
URL GET HTTP/1.1117.252.250.163/favicon.ico IP117.252.250.163:80 ASN#9829 National Internet Backbone
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php
File typePNG image data, 16 x 16, 16-bit/color RGBA, non-interlaced Hash0de48b3df9ffcca8d27e96b623c8965d 1ef3719d9a42f66e0d8836d1ac8f3f19623779d4 7274cd87dfb8eb2c961193e166c3ba723710bcaf2c372d39b2ed7fea3e4180a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 117.252.250.163
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/eHRMIS_latest/login.php
Cookie: PHPSESSID=nbmfhmi3rntnuc9e2c7d8pqnj4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 10:34:19 GMT
Server: Apache/2.4.4 (Win64) PHP/5.4.12
Last-Modified: Mon, 14 Dec 2015 06:30:46 GMT
ETag: "89b-526d5d02dd043"
Accept-Ranges: bytes
Content-Length: 2203
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| fonts.googleapis.com/css?family=Open+Sans | 142.250.74.106 | 200 OK | 5.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans IP142.250.74.106:443
Requested byhttp://117.252.250.163/eHRMIS_latest/login.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (5866), with no line terminators Hash9a9a7fec0410c78b8c7601306b9fa182 7d736470060c2cbab18d2a59c043202c2d3dbaac 6a2126bd16491c04d2f664d8acb3a7ad24ec144e02bffd62db7254bee91567f0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://117.252.250.163/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 10:34:36 GMT
date: Wed, 24 Apr 2024 10:34:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|