| 90.224.185.117/ |  90.224.185.117 | | 342 B |
IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeHTML document, ASCII text Hash029d8e2ff8b9ed7ec614e8da276c2219 f2d94e737fa58db7804913185f44ce6e1ac810ae c527f32888c23f9c67cfd0fbffef3ae308fd77c56036a44eb82c3dea513f4041
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:28 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 342
|
|
| 90.224.185.117/js/.js_check.html | 90.224.185.117 | | 411 B |
URL 90.224.185.117/js/.js_check.html IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeHTML document, ASCII text Hash7e15a43a5969ef9992076c7c643bbf2c 72420d53be3ee743acda64d6ed534ba1f9d46976 f10b3b77f7df511e48354cf490368393c77498b176f788cd870d148c7aa5e90e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/.js_check.html HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:28 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 411
|
|
| 90.224.185.117/login.html | 90.224.185.117 | | 5.9 kB |
URL 90.224.185.117/login.html IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeHTML document, ASCII text, with CRLF line terminators Hashb6e32ad521f03112a234c74f2c4b6857 e4f8225065b1ac5a407a2d937886ceee8a7c0a68 13084fe8489138122175079c57dc8eca5688da28014c88e098149512d8708bca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /login.html HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://90.224.185.117/js/.js_check.html
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 5891
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/ui.js | 90.224.185.117 | 200 OK | 27 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (692), with CRLF line terminators Hash3e805b921b7f6178726acb9db191a18d a82c527de671816e64143de8d4042c6ee5a60419 ef0631782ad44686f9fd775ab8ceaab492950b80b2a6ba98cc2200705f79b3f9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 27291
|
|
| 90.224.185.117/js/jquery.js | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/js/product.js?_=1715375009354 | 90.224.185.117 | | 994 B |
URL 90.224.185.117/js/product.js?_=1715375009354 IP90.224.185.117:0 ASN#3301 Telia Company AB
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375009354 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 178 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178304 bytes) Hasheb57e0cbb0743df3d1f604d7023da8b9 20258398337cc7e69ff5359bb2a7b3922870c233 f518f49f7e482bd7588f480493cd220b9fe0e6421696f2846fc439ceae65c54f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/top.html?page=login | 90.224.185.117 | | 5.0 kB |
URL 90.224.185.117/top.html?page=login IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash7bcbbe97e082a348695523cc77ddd876 2e423b34706f816cc3ec5288460af869f99fb0e8 c3a81e8658fb8f9755de6f767c6bc466d923568a7c38f0116a73a511b33942ca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /top.html?page=login HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 5018
|
|
| 90.224.185.117/style/blueprint/screen.css | 90.224.185.117 | 200 OK | 12 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/screen.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with very long lines (855) Hash56dfd0d98c3fd271f1a9857d2fa807dc 1b3d88ad423a45f6622830f04c23e97e073dd901 07f1b3a8bfe03f0f824829b0506b2fe66e3cb11c0d3780b3d7969929d130761c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/screen.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 12423
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/style/style_top.css | 90.224.185.117 | 200 OK | 508 B |
URL GET HTTP/1.090.224.185.117/style/style_top.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Hash18a346b90a04fa3997a012b3665a05e7 d27075e768feaf5bf3760b5f14a2bbf016e8bff7 538c0c9f0517d67f6ae7a2527f2a4c6dfed67ecd483adc2b4876815fc1e31e68
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/style_top.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 508
|
|
| 90.224.185.117/js/ui.js | 90.224.185.117 | 200 OK | 27 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (692), with CRLF line terminators Hash3e805b921b7f6178726acb9db191a18d a82c527de671816e64143de8d4042c6ee5a60419 ef0631782ad44686f9fd775ab8ceaab492950b80b2a6ba98cc2200705f79b3f9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 27291
|
|
| 90.224.185.117/js/airtiespatterns.js | 90.224.185.117 | 200 OK | 81 kB |
URL GET HTTP/1.090.224.185.117/js/airtiespatterns.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hasheab5e4c51b2aa922d0996979c25d42ba b151809982c3ad18d8469a4da2cf298a84c003c4 905d4e161a9034cf0913f3df9c4d8b092ee8f48bc45cd89d3f7ee4e6e4b57284
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airtiespatterns.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 81210
|
|
| 90.224.185.117/js/jquery.js | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/style/blueprint/print.css | 90.224.185.117 | 200 OK | 1.3 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/print.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash3ab3a812b4d1f904e78d666a94e088cd e64c08ae33e1ca31ea7e430ffe28cb4dad26ab2d c2241a13ed38d3af6ab3e1c9dd391fe55703d5455e8f2e8e44e83e67fbdcc8fe
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/print.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1286
|
|
| 90.224.185.117/favicon.ico | 90.224.185.117 | 404 Not Found | 6.9 kB |
URL GET HTTP/1.090.224.185.117/favicon.ico IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hashcf9057e689b2d0e31d139565812b55bc 430348cc3b22d92d2915749edaaa97f4bed22f35 525e5772a4e76ad47d96ab3e2c46512e958bcbaab9c120613aae2d680c694674
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Content-type: text/html
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
|
|
| 90.224.185.117/cgi-bin/select_lang?lang=en | 90.224.185.117 | | 178 kB |
URL 90.224.185.117/cgi-bin/select_lang?lang=en IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeXML 1.0 document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178433 bytes) Hasha576b3e75e2bc83296cc6945b4d60d37 d1e648d796fd7983519a8e72c3f1efd95e2af1c7 e690f968e5aa7682099ce1a073e50b2158414bc512ddfbb8416b3b45a296e059
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cgi-bin/select_lang?lang=en HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/xml; Charset=UTF-8
Pragma: no-cache
Cache-Control: no-cache
Expires: -1
|
|
| | 90.224.185.117 | 200 OK | 6.3 kB |
URL User Request GET HTTP/1.0IP90.224.185.117:80 ASN#3301 Telia Company AB
File typeHTML document, ASCII text Hashff4a6fbfde61d1e850cb97c433eeb2ee 1af13093a093dc4448df8b34ab23216aaa251831 0873cfcd1eecf5c66a9c2800b0e4590a7f47f4e68b68042f2e3d061e09b7d7f6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /main.html HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://90.224.185.117/login.html
DNT: 1
Connection: keep-alive
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 6286
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/ui.js | 90.224.185.117 | 200 OK | 27 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (692), with CRLF line terminators Hash3e805b921b7f6178726acb9db191a18d a82c527de671816e64143de8d4042c6ee5a60419 ef0631782ad44686f9fd775ab8ceaab492950b80b2a6ba98cc2200705f79b3f9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 27291
|
|
| 90.224.185.117/js/airlib.js | 90.224.185.117 | 200 OK | 33 kB |
URL GET HTTP/1.090.224.185.117/js/airlib.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash9c9e635c8e3cf5a649ca569400a43c02 6e879c4756582ac42394709c3e05fe69d50847a0 dcc52d9d45d75b73bc570e722db91cd2b4035cad65a97f4cddf2df4aae6cdaeb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airlib.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 33421
|
|
| 90.224.185.117/js/underscore.js | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/underscore.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeJavaScript source, ASCII text, with very long lines (14427) Hashdd9663be9a71f3570bc35f0edba28712 08092373bfbdb7924dd01795779e171e66f038cd 163189ef69a3c210a04bb4cac2c336119d78b576fb84b4231977514419eb0faf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/underscore.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 14682
|
|
| 90.224.185.117/js/airtiespatterns.js | 90.224.185.117 | 200 OK | 81 kB |
URL GET HTTP/1.090.224.185.117/js/airtiespatterns.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hasheab5e4c51b2aa922d0996979c25d42ba b151809982c3ad18d8469a4da2cf298a84c003c4 905d4e161a9034cf0913f3df9c4d8b092ee8f48bc45cd89d3f7ee4e6e4b57284
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airtiespatterns.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 81210
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 178 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178304 bytes) Hasheb57e0cbb0743df3d1f604d7023da8b9 20258398337cc7e69ff5359bb2a7b3922870c233 f518f49f7e482bd7588f480493cd220b9fe0e6421696f2846fc439ceae65c54f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 280 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (564) Size280 kB (279965 bytes) Hash27d39832bd2bbca9477afef3b2107a36 0c37fe798f7de1d1daf3bf36da099be167cbe0fe 7c658efdf59e8459f63fdaa27affdd92e4c231c3da1ff56ac0b0153138853296
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:29 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/js/product.js?_=1715375010343 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375010343 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375010343 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/product.js?_=1715375010344 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375010344 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375010344 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 178 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178304 bytes) Hasheb57e0cbb0743df3d1f604d7023da8b9 20258398337cc7e69ff5359bb2a7b3922870c233 f518f49f7e482bd7588f480493cd220b9fe0e6421696f2846fc439ceae65c54f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/cgi-bin/skip_login | 90.224.185.117 | | 12 kB |
URL 90.224.185.117/cgi-bin/skip_login IP90.224.185.117:0 ASN#3301 Telia Company AB
File typeXML 1.0 document, ASCII text, with very long lines (4927) Hash699dc8d40b25b5119e177556f7e47b60 43d26ac848df40e3d3bcba92fc2fd5fd288aac61 2805e68313be6c3eaf181fdf254baef7cf80fd3011a8afe1ad2717b106ca2731
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cgi-bin/skip_login HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/login.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/xml; Charset=UTF-8
Pragma: no-cache
Cache-Control: no-cache
Expires: -1
|
|
| 90.224.185.117/top.html?page=main&productboardtype=Extender1600 | 90.224.185.117 | 200 OK | 5.0 kB |
URL GET HTTP/1.090.224.185.117/top.html?page=main&productboardtype=Extender1600 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash7bcbbe97e082a348695523cc77ddd876 2e423b34706f816cc3ec5288460af869f99fb0e8 c3a81e8658fb8f9755de6f767c6bc466d923568a7c38f0116a73a511b33942ca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /top.html?page=main&productboardtype=Extender1600 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 5018
|
|
| 90.224.185.117/homepage.html?PassCheck=1 | 90.224.185.117 | 200 OK | 38 kB |
URL GET HTTP/1.090.224.185.117/homepage.html?PassCheck=1 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeHTML document, ASCII text, with very long lines (402), with CRLF, CR, LF line terminators Hash0c9b69ef1090e87f8db6e13b295b21a5 5023195faab21f2908a049a5703a76738e8f1483 b833dd3e7fd02e226d97b00c897938af5537b8792ed11373ebcfeabbe19e8db3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /homepage.html?PassCheck=1 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 37977
|
|
| 90.224.185.117/style/global_style.css | 90.224.185.117 | 200 OK | 2.1 kB |
URL GET HTTP/1.090.224.185.117/style/global_style.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeassembler source, ASCII text Hash828e1bcaedcf0a11977d92e0dde91ff6 fb96c996d82ecb0ba579127b98b2f8be38605709 0c309792427fa0c667ca9b1e892a54af51fcfe8d4f11144486e4b9727cbba4e7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/global_style.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 2063
|
|
| 90.224.185.117/style/style_homepage.css | 90.224.185.117 | 200 OK | 250 B |
URL GET HTTP/1.090.224.185.117/style/style_homepage.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hashd7e54c1262eeabd1cce65be717eb691a 1fbaaba0b478f7ec1ae02dfd64c36e2a68011013 d1441d507369c0b7b06c7bdd3ace0b9b630683d5edf3092cbb4c46ef97d853b2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/style_homepage.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 250
|
|
| 90.224.185.117/style/blueprint/screen.css | 90.224.185.117 | 200 OK | 12 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/screen.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with very long lines (855) Hash56dfd0d98c3fd271f1a9857d2fa807dc 1b3d88ad423a45f6622830f04c23e97e073dd901 07f1b3a8bfe03f0f824829b0506b2fe66e3cb11c0d3780b3d7969929d130761c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/screen.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 12423
|
|
| 90.224.185.117/global/global_view.js | 90.224.185.117 | 200 OK | 4.0 kB |
URL GET HTTP/1.090.224.185.117/global/global_view.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text Hashc9d49370053ea2c2e6d3570b09569ebc 333e7a31c89b050da3f226684366ba4e19e3cd2b 884cb009ba59a391f30033e1751c420358f9be88bce95dae58ee00cbd4770f2d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /global/global_view.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 3986
|
|
| 90.224.185.117/js/ui.js | 90.224.185.117 | 200 OK | 27 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (692), with CRLF line terminators Hash3e805b921b7f6178726acb9db191a18d a82c527de671816e64143de8d4042c6ee5a60419 ef0631782ad44686f9fd775ab8ceaab492950b80b2a6ba98cc2200705f79b3f9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 27291
|
|
| 90.224.185.117/style/jqueryui/jquery-ui.css | 90.224.185.117 | 200 OK | 34 kB |
URL GET HTTP/1.090.224.185.117/style/jqueryui/jquery-ui.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with very long lines (361) Hashf1de7b7ddd9c29ac77dcd328ecd3ff4d 3a7f149dd52b5c4b0c0e43d8daeae56a80886190 30395733d7f41e0132a71578f0cf2674f7c57160bfe917105865f08f6cba09ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/jqueryui/jquery-ui.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 33914
|
|
| 90.224.185.117/js/airlib.js | 90.224.185.117 | 200 OK | 33 kB |
URL GET HTTP/1.090.224.185.117/js/airlib.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash9c9e635c8e3cf5a649ca569400a43c02 6e879c4756582ac42394709c3e05fe69d50847a0 dcc52d9d45d75b73bc570e722db91cd2b4035cad65a97f4cddf2df4aae6cdaeb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airlib.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 33421
|
|
| 90.224.185.117/js/OptionalFeatures.js | 90.224.185.117 | 200 OK | 2.5 kB |
URL GET HTTP/1.090.224.185.117/js/OptionalFeatures.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF line terminators Hashf97196594cb4482701a6584499516078 92dd0821483e9c5c205422936bcec0a4256e2538 95f87c49c546f68c62437fbaa94f1a4a74024e99e2e7aee5276883e5eb3cf82b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/OptionalFeatures.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 2526
|
|
| 90.224.185.117/js/airtiespatterns.js | 90.224.185.117 | 200 OK | 81 kB |
URL GET HTTP/1.090.224.185.117/js/airtiespatterns.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hasheab5e4c51b2aa922d0996979c25d42ba b151809982c3ad18d8469a4da2cf298a84c003c4 905d4e161a9034cf0913f3df9c4d8b092ee8f48bc45cd89d3f7ee4e6e4b57284
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airtiespatterns.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 81210
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/requireConfig.js | 90.224.185.117 | 200 OK | 577 B |
URL GET HTTP/1.090.224.185.117/js/requireConfig.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash36fa250781c8b111671e883f26304e4c 739184d7ce61dd876bbe1ad31d04eedc4887475b d47e92edafc9bd0b13786145ca11dfc5f52943d530173b468b8a2e125f420d00
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/requireConfig.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 577
|
|
| 90.224.185.117/js/require.js | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/require.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text, with very long lines (539) Hash6bd2f88aafdbf67d47f03d6eac64ddc7 71a68a88b181c75f9b4def241cc7fe59921065a2 43a6cb17de5b1213ab88aae87bc61849375c31b9b75013943c01b3ce2be6e3f7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/require.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 15234
|
|
| 90.224.185.117/style/style_top.css | 90.224.185.117 | 200 OK | 508 B |
URL GET HTTP/1.090.224.185.117/style/style_top.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Hash18a346b90a04fa3997a012b3665a05e7 d27075e768feaf5bf3760b5f14a2bbf016e8bff7 538c0c9f0517d67f6ae7a2527f2a4c6dfed67ecd483adc2b4876815fc1e31e68
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/style_top.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 508
|
|
| 90.224.185.117/style/blueprint/screen.css | 90.224.185.117 | 200 OK | 12 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/screen.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with very long lines (855) Hash56dfd0d98c3fd271f1a9857d2fa807dc 1b3d88ad423a45f6622830f04c23e97e073dd901 07f1b3a8bfe03f0f824829b0506b2fe66e3cb11c0d3780b3d7969929d130761c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/screen.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 12423
|
|
| 90.224.185.117/js/jquery-ui.js | 90.224.185.117 | 200 OK | 238 kB |
URL GET HTTP/1.090.224.185.117/js/jquery-ui.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (64562) Size238 kB (237734 bytes) Hashe436a692a06f26c45eca6061e44095ea f9a30c981cb03c5bfa2ecad82bd2e450e8b9491b 7846b5904b602bd64bea1eb4557c03b09dabc580b07f18b8d1567d1345f0a040
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 237734
|
|
| 90.224.185.117/js/jquery.js | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/ui.js | 90.224.185.117 | 200 OK | 27 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (692), with CRLF line terminators Hash3e805b921b7f6178726acb9db191a18d a82c527de671816e64143de8d4042c6ee5a60419 ef0631782ad44686f9fd775ab8ceaab492950b80b2a6ba98cc2200705f79b3f9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/ui.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 27291
|
|
| 90.224.185.117/style/style_menu.css | 90.224.185.117 | 200 OK | 1.5 kB |
URL GET HTTP/1.090.224.185.117/style/style_menu.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeASCII text, with CRLF, LF line terminators Hash6f3c130d9646b004209a5c3bcea7d319 8b43d6fa01fad2c0ed14920162cc8135b6b1e8c2 04de607510e182e27036c444bcac75ad154ee76af5973e29aa12a7e74d0cd57c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/style_menu.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1492
|
|
| 90.224.185.117/js/airtiespatterns.js | 90.224.185.117 | 200 OK | 81 kB |
URL GET HTTP/1.090.224.185.117/js/airtiespatterns.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hasheab5e4c51b2aa922d0996979c25d42ba b151809982c3ad18d8469a4da2cf298a84c003c4 905d4e161a9034cf0913f3df9c4d8b092ee8f48bc45cd89d3f7ee4e6e4b57284
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/airtiespatterns.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 81210
|
|
| 90.224.185.117/js/underscore.js | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/underscore.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeJavaScript source, ASCII text, with very long lines (14427) Hashdd9663be9a71f3570bc35f0edba28712 08092373bfbdb7924dd01795779e171e66f038cd 163189ef69a3c210a04bb4cac2c336119d78b576fb84b4231977514419eb0faf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/underscore.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 14682
|
|
| 90.224.185.117/js/require.js | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/require.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text, with very long lines (539) Hash6bd2f88aafdbf67d47f03d6eac64ddc7 71a68a88b181c75f9b4def241cc7fe59921065a2 43a6cb17de5b1213ab88aae87bc61849375c31b9b75013943c01b3ce2be6e3f7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/require.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 15234
|
|
| 90.224.185.117/js/requireConfig.js | 90.224.185.117 | 200 OK | 577 B |
URL GET HTTP/1.090.224.185.117/js/requireConfig.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash36fa250781c8b111671e883f26304e4c 739184d7ce61dd876bbe1ad31d04eedc4887475b d47e92edafc9bd0b13786145ca11dfc5f52943d530173b468b8a2e125f420d00
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/requireConfig.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 577
|
|
| 90.224.185.117/images/menu_h_line.gif | 90.224.185.117 | 200 OK | 310 B |
URL GET HTTP/1.090.224.185.117/images/menu_h_line.gif IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeGIF image data, version 89a, 10000 x 4 Hash92159bd4014ef69ba12a1c84f9a2780a 684d19d84d18da050165b7a931cf052d67bea751 d67628e38cdf0258831fa259bd0090fd89770f44add0e1aec2f95cb9b2e9b027
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/menu_h_line.gif HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/style/style_menu.css
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/gif
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 310
|
|
| 90.224.185.117/style/blueprint/print.css | 90.224.185.117 | 200 OK | 1.3 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/print.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash3ab3a812b4d1f904e78d666a94e088cd e64c08ae33e1ca31ea7e430ffe28cb4dad26ab2d c2241a13ed38d3af6ab3e1c9dd391fe55703d5455e8f2e8e44e83e67fbdcc8fe
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/print.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1286
|
|
| 90.224.185.117/js/jquery.js | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/style/blueprint/print.css | 90.224.185.117 | 200 OK | 1.3 kB |
URL GET HTTP/1.090.224.185.117/style/blueprint/print.css IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hash3ab3a812b4d1f904e78d666a94e088cd e64c08ae33e1ca31ea7e430ffe28cb4dad26ab2d c2241a13ed38d3af6ab3e1c9dd391fe55703d5455e8f2e8e44e83e67fbdcc8fe
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /style/blueprint/print.css HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/css
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1286
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 178 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178304 bytes) Hasheb57e0cbb0743df3d1f604d7023da8b9 20258398337cc7e69ff5359bb2a7b3922870c233 f518f49f7e482bd7588f480493cd220b9fe0e6421696f2846fc439ceae65c54f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/js/product.js?_=1715375011345 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375011345 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375011345 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/menu/app.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 140 B |
URL GET HTTP/1.090.224.185.117/menu/app.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hasha2acf28d7bb7656be83e343714658f19 c8231365249d63fa8000d79c95b6c2415a5562cb 0b3b588a74ff85da0c0dec7b2df2994e115ed810250cb0b5b72d2d59883b445e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/app.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 140
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/lang.js | 90.224.185.117 | 200 OK | 178 kB |
IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1477) Size178 kB (178304 bytes) Hasheb57e0cbb0743df3d1f604d7023da8b9 20258398337cc7e69ff5359bb2a7b3922870c233 f518f49f7e482bd7588f480493cd220b9fe0e6421696f2846fc439ceae65c54f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /lang.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 178304
|
|
| 90.224.185.117/js/product.js?_=1715375011563 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375011563 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375011563 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/menu/menuPresenter.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 734 B |
URL GET HTTP/1.090.224.185.117/menu/menuPresenter.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hash263f3a5cc08e631cfb29980aa26cc838 054a193ec0ddaf98a1af82ab5481b9636bc22776 58950368fc291a8b9b9f795f4ecd8e5a88b489012664e41072c9318b28c9889a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/menuPresenter.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 734
|
|
| 90.224.185.117/js/product.js?_=1715375011346 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375011346 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375011346 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/js/product.js?_=1715375011505 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375011505 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375011505 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/menu/menuItemCollection.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 481 B |
URL GET HTTP/1.090.224.185.117/menu/menuItemCollection.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hasha9ccac71549ab0cd6a28e79bdfa5d092 9f2a54d9f79f27edf0569980455fff72e074ef42 4f4160ed77ec28d81b02f62d15e6593eacb1aa53a2ed4d20a9656266673cf2f8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/menuItemCollection.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 481
|
|
| 90.224.185.117/menu/view.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 706 B |
URL GET HTTP/1.090.224.185.117/menu/view.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hasha89e26de9c26ad36160780dad7e3d606 eb8dc0476180fdda0e11548c934471d365b5cfb0 1df2e65656e7dcaeec5a5b88c6b7502df284f23d7bbd68caa2b50632d8b24993
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/view.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 706
|
|
| 90.224.185.117/js/jquery.js | 90.224.185.117 | 200 OK | 1.5 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hashf52d0f7275a6be8a61d94d47e4cb4b7d 9558f544cfcd4ddb6ba5bc33e5faae0fe6c3947b 7d6fd7c4e9c0bdbf63e7eb3dffcdc97478460220159f1e2e845f1d99bf8c4d48
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/js/jquery.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/js/Definitions.js | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/images/ajax-loader.gif | 90.224.185.117 | 200 OK | 6.8 kB |
URL GET HTTP/1.090.224.185.117/images/ajax-loader.gif IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeGIF image data, version 89a, 66 x 66 Hash69f58b3c2cff5df8df289e59362c610e 17be848c010681533d948ed1600cbc79f1f69ef3 c6f6eb10a4472f02adf0f74f0805afb04a0bd0f4644a1eeff94d9b36d2ffeaf6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/ajax-loader.gif HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/gif
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 6820
|
|
| 90.224.185.117/js/product.js?_=1715375011506 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375011506 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375011506 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/cgi-bin/webapp | 90.224.185.117 | 200 OK | 4.6 kB |
URL POST HTTP/1.090.224.185.117/cgi-bin/webapp IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeXML 1.0 document, ASCII text Hashc4828d7008c8a38c4bd3d26a14f47d90 e52fd8d4556df96f4302d7d539f3884a5424bb8a e14958677b702be524617c862a7d7dd63f65b01c7ac0d5efe36c4cc9392c717a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /cgi-bin/webapp HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 1070
Origin: http://90.224.185.117
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/xml; Charset=UTF-8
Pragma: no-cache
Cache-Control: no-cache
Expires: -1
X-Frame-Options: SAMEORIGIN
|
|
| 90.224.185.117/js/Definitions.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 9.6 kB |
URL GET HTTP/1.090.224.185.117/js/Definitions.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeASCII text, with CRLF, LF line terminators Hashe577e46df461fbfb725b906b90f1a415 755146a0d85e014cf2a0a2fc7619412fdb6a3abf 780be43da784499ea088b6372fce3094a517497dc00d363318fe06e3344547ba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/Definitions.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 9633
|
|
| 90.224.185.117/js/underscore.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/underscore.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text, with very long lines (14427) Hashdd9663be9a71f3570bc35f0edba28712 08092373bfbdb7924dd01795779e171e66f038cd 163189ef69a3c210a04bb4cac2c336119d78b576fb84b4231977514419eb0faf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/underscore.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 14682
|
|
| 90.224.185.117/images/ajax-loader.gif | 90.224.185.117 | 200 OK | 6.8 kB |
URL GET HTTP/1.090.224.185.117/images/ajax-loader.gif IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeGIF image data, version 89a, 66 x 66 Hash69f58b3c2cff5df8df289e59362c610e 17be848c010681533d948ed1600cbc79f1f69ef3 c6f6eb10a4472f02adf0f74f0805afb04a0bd0f4644a1eeff94d9b36d2ffeaf6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/ajax-loader.gif HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/top.html?page=main&productboardtype=Extender1600
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/gif
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 6820
|
|
| 90.224.185.117/images/STRONG_logo.png | 90.224.185.117 | 200 OK | 2.0 kB |
URL GET HTTP/1.090.224.185.117/images/STRONG_logo.png IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typePNG image data, 228 x 40, 8-bit/color RGBA, non-interlaced Hash0358422dc65fe110e0cfd41801a9cba0 043a88bce36b04dc44ece489998c93bd132d7f23 64145fd10dbd81c6e66bb9c18a159e8004f0a479abb029d179b200ae681d8ef5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/STRONG_logo.png HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/style/style_top.css
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/png
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1951
|
|
| 90.224.185.117/images/v_line_bg.gif | 90.224.185.117 | 200 OK | 74 B |
URL GET HTTP/1.090.224.185.117/images/v_line_bg.gif IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/top.html?page=main&productboardtype=Extender1600
File typeGIF image data, version 89a, 6 x 112 Hashcff5c212dfb755a61b9cea25402d8019 f5a3dd6e72f0820cf803631e3ed75e7770afa98b 46150c992f6f65cf73217ce046fac46feef0b6d17a203c7dd5d47d360967d375
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/v_line_bg.gif HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/style/style_top.css
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/gif
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 74
|
|
| 90.224.185.117/js/models/lan.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 1.5 kB |
URL GET HTTP/1.090.224.185.117/js/models/lan.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text Hash5ab88156b2927e7907a32d7085128a51 2d22b5968c18dc7bb3996fed7eaad83c75fa3be3 7cf49970a3b3ea11a88965b87af467fdbddd2f33c50e7fcec375791383e5b8a7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/models/lan.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1465
|
|
| 90.224.185.117/js/product.js?_=1715375012123 | 90.224.185.117 | 200 OK | 994 B |
URL GET HTTP/1.090.224.185.117/js/product.js?_=1715375012123 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hashed7bcad589051fa26505bb44584329b5 f83ba5cd2f3bf6ed59ed2291e0e93a8821aef021 0bb92aa73d478c1ad54ce1899cf51477715604d325f327dda5eefe04a9a94390
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/product.js?_=1715375012123 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 994
|
|
| 90.224.185.117/js/backbone.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 20 kB |
URL GET HTTP/1.090.224.185.117/js/backbone.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text, with very long lines (19961) Hash9c3e3189b75efd56066402f80c3e781b 42ef07a70aa727cd721aec4112ed0bcc94801faa 75d28344b1b83b5fb153fc5939bdc10b404a754d93f78f7c1c8a8b81de376825
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/backbone.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 19999
|
|
| 90.224.185.117/js/webapp.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 8.5 kB |
URL GET HTTP/1.090.224.185.117/js/webapp.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeJavaScript source, ASCII text Hashd9b0842de030a3816ac070287a65710a 2b4291b69ed5bc94fe4cebc058be1cfd93ef3244 ec8aea053b2989d4462a12db68bf26597f600cda1e85e2fa1c2cf9708f341ffc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/webapp.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 8480
|
|
| 90.224.185.117/js/underscore.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 15 kB |
URL GET HTTP/1.090.224.185.117/js/underscore.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (14427) Hashdd9663be9a71f3570bc35f0edba28712 08092373bfbdb7924dd01795779e171e66f038cd 163189ef69a3c210a04bb4cac2c336119d78b576fb84b4231977514419eb0faf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/underscore.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 14682
|
|
| 90.224.185.117/menu/menu_items.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 6.7 kB |
URL GET HTTP/1.090.224.185.117/menu/menu_items.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Hash4f0e5ab97a0d49e1931e74a9df4fd057 e71027c2c97420d49e22b464a76a4e96f9222c57 1a37986a28aff5fa6a8aeb6daef2d745fca516e7c0169b43d856f2569835b658
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/menu_items.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 6672
|
|
| 90.224.185.117/js/jquery.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 268 kB |
URL GET HTTP/1.090.224.185.117/js/jquery.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text Size268 kB (268381 bytes) Hash08c235d357750c657ac1db7d1cf656a9 9257afd2d46c3a189ec0d40a45722701d47e9ca5 7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 268381
|
|
| 90.224.185.117/images/bullet_pasif.gif | 90.224.185.117 | 200 OK | 591 B |
URL GET HTTP/1.090.224.185.117/images/bullet_pasif.gif IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeGIF image data, version 89a, 17 x 17 Hashdec025e2fb7c1de6bdf2dae1f22007e1 f543bf6791ad1b6f213b3e5273e4c784d9720b39 7cf8b99ed699796e5ccb058a9e3394ab731a1ecd084aab452242cf5d61a58b13
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/bullet_pasif.gif HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/style/style_menu.css
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: image/gif
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 591
|
|
| 90.224.185.117/js/webapp.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 8.5 kB |
URL GET HTTP/1.090.224.185.117/js/webapp.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text Hashd9b0842de030a3816ac070287a65710a 2b4291b69ed5bc94fe4cebc058be1cfd93ef3244 ec8aea053b2989d4462a12db68bf26597f600cda1e85e2fa1c2cf9708f341ffc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/webapp.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 8480
|
|
| 90.224.185.117/js/backbone.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 20 kB |
URL GET HTTP/1.090.224.185.117/js/backbone.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeJavaScript source, ASCII text, with very long lines (19961) Hash9c3e3189b75efd56066402f80c3e781b 42ef07a70aa727cd721aec4112ed0bcc94801faa 75d28344b1b83b5fb153fc5939bdc10b404a754d93f78f7c1c8a8b81de376825
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /js/backbone.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 19999
|
|
| 90.224.185.117/cgi-bin/webapp | 90.224.185.117 | 200 OK | 9.4 kB |
URL POST HTTP/1.090.224.185.117/cgi-bin/webapp IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
Hash3638ff1c47c5d1a51d86f653cdbb2266 e29079ea5c29052af302e1432f3151b7edcc371e 5476ca532e9724d78a910f27bbcdd1077d788b536f5114625d191fc56976e77f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /cgi-bin/webapp HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 176
Origin: http://90.224.185.117
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/xml; Charset=UTF-8
Pragma: no-cache
Cache-Control: no-cache
Expires: -1
X-Frame-Options: SAMEORIGIN
|
|
| 90.224.185.117/menu/menuUsecase.js?bust=1715375011604 | 90.224.185.117 | 200 OK | 1.5 kB |
URL GET HTTP/1.090.224.185.117/menu/menuUsecase.js?bust=1715375011604 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
File typeASCII text, with very long lines (1801), with no line terminators Hashdd063283119497523f683521f612bd9c b7ca9af32712b3af9548514467ba493d4bb3d1ac be7fea85b1d6af7a693c10e9db24c1fc9bb4a4992bd9cab4841d5a72921b6093
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/menuUsecase.js?bust=1715375011604 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:31 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1539
|
|
| 90.224.185.117/app.js?bust=1715375011770 | 90.224.185.117 | 200 OK | 76 B |
URL GET HTTP/1.090.224.185.117/app.js?bust=1715375011770 IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/homepage.html?PassCheck=1
File typeASCII text, with no line terminators Hashb9ef991e59f30e783856f8778d6e07a0 14869255ce41f852f18fa30593e28703ad9595b4 6ef1bfe203d275755a2b7cff3f09b62a218aa27640e2d3ff76dcc559db15f682
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /app.js?bust=1715375011770 HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/homepage.html?PassCheck=1
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/javascript.wav
Date: Fri, 10 May 2024 21:03:32 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 76
|
|
| 90.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap | 90.224.185.117 | 200 OK | 1.9 kB |
URL GET HTTP/1.090.224.185.117/menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap IP90.224.185.117:80 ASN#3301 Telia Company AB
Requested byhttp://90.224.185.117/main.html
File typeHTML document, ASCII text, with very long lines (2232), with no line terminators Hashd69f59bd1c335505f5de1b30cba07a46 aedc22ec9721c60eedc45ef036118ef4a1dc5fa0 08ce4d30e25bc82acc14ce749a6136d7eabb7fb6dedb153a1082f472b3fbf5b4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /menu/menu.html?meshSupport=true&serviceSettingsEnabled=false&opmode=ap HTTP/1.1
Host: 90.224.185.117
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://90.224.185.117/main.html
Cookie: AIRTIESSESSION=038DE57AE777F74004D83CB2B3B9F1B6DC92263EE033C5CCCE; AT-TOKEN=F99BE460B6849D5F9B45D470A7791360FD1A9A974F183C06E2BC
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Content-type: text/html
Date: Fri, 10 May 2024 21:03:30 GMT
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-length: 1909
|
|