| www.ll-software.com/Football/program/FootballSquaresShare.zip | 185.18.204.26 | 301 Moved Permanently | 1.6 kB |
URL User Request GET HTTP/1.1www.ll-software.com/Football/program/FootballSquaresShare.zip IP185.18.204.26:80 ASN#61102 Interhost Communication Solutions Ltd.
File typeJavaScript source, ASCII text Hash094bf8aa36564dae6a1a09785784c2f1 e4d669b2a7bbac6ff80110d60a841cfb5121c7d2 734395f7840872c0b2f35765d1766a877b72dfc6912f94fbe788023bfd73baab
GET /Football/program/FootballSquaresShare.zip HTTP/1.1
Host: www.ll-software.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 11 May 2024 03:58:14 GMT
Content-Length: 1554
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, no-store, max-age=0
Server: imunify360-webshield/1.21
|
|
| www.ll-software.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15990402 | 185.18.204.26 | 302 Moved Temporarily | 0 B |
URL User Request GET HTTP/1.1www.ll-software.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15990402 IP185.18.204.26:80 ASN#61102 Interhost Communication Solutions Ltd.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15990402 HTTP/1.1
Host: www.ll-software.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.ll-software.com/Football/program/FootballSquaresShare.zip
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Sat, 11 May 2024 03:58:14 GMT
Content-Length: 0
Connection: keep-alive
X-Forwarded-For: 91.90.42.154
X-Real-IP: 91.90.42.154
X-Remote-IP: 91.90.42.154
Location: http://www.ll-software.com/Football/program/FootballSquaresShare.zip
Set-Cookie: wssplashuid=23df4b8cdecba688ff86a0d7e6d54cd6d75d91aa.1715403494.1; Path=/; Domain=www.ll-software.com; Max-Age=2592000; HttpOnly; SameSite=Lax
Server: imunify360-webshield/1.21
|
|
| www.ll-software.com/Football/program/FootballSquaresShare.zip | 185.18.204.26 | 301 Moved Permanently | 272 B |
URL User Request GET HTTP/1.1www.ll-software.com/Football/program/FootballSquaresShare.zip IP185.18.204.26:80 ASN#61102 Interhost Communication Solutions Ltd.
File typeHTML document, ASCII text Hash763bf469721dddb92bc7b48506c9b158 b4e49293b2991e89f6cf737620c24886f2ab1b44 70508b847b0a133535252e8c40ba48b67197980a775a6e44e21878f5f3bb0e36
GET /Football/program/FootballSquaresShare.zip HTTP/1.1
Host: www.ll-software.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.ll-software.com/Football/program/FootballSquaresShare.zip
DNT: 1
Connection: keep-alive
Cookie: wssplashuid=23df4b8cdecba688ff86a0d7e6d54cd6d75d91aa.1715403494.1
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 11 May 2024 03:58:14 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 272
Connection: keep-alive
Location: https://www.lls-ltd.comFootball/program/FootballSquaresShare.zip
Server: imunify360-webshield/1.21
|
|
| www.ll-software.com/ | 185.18.204.26 | | 231 B |
IP185.18.204.26:0 ASN#61102 Interhost Communication Solutions Ltd.
File typeHTML document, ASCII text Hashe3bc42b63b16e4dc57fc4377bf5db1d1 84f8294f5184bc32431081ac71d35c4018d404f0 36559bb1bc70313b6685f87f6aedf21db0711ae6eb2de8c716ef41aaceb37a0b
GET / HTTP/1.1
Host: www.ll-software.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 11 May 2024 03:58:17 GMT
Server: Apache/2
Location: https://www.lls-ltd.com
Content-Length: 231
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| www.lls-ltd.com/ | 104.21.82.166 | | 167 B |
IP104.21.82.166:0
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET / HTTP/1.1
Host: www.lls-ltd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 11 May 2024 03:58:17 GMT
content-type: text/html
content-length: 167
location: https://frontline.io
cache-control: max-age=3600
expires: Sat, 11 May 2024 04:58:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r1RDz9ZSUuJndOEwJviL1X%2F%2FOXmEx1gcH%2FgW%2FrTDzBjVpKw6wG5cXUOb96VeSwzSfkZhDaaSor3hJfILDqyJMUFt2F7JAJkvIB6VoCU1Pk4gfWyV7Hfx7Vx%2FsrcDz%2B0O%2B58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 881f3fefbf39b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.lls-ltd.comfootball/program/FootballSquaresShare.zip | 0.0.0.0 | | 0 B |
URL User Request GET www.lls-ltd.comfootball/program/FootballSquaresShare.zip IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /program/FootballSquaresShare.zip HTTP/1.1
Host: www.lls-ltd.comfootball
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ll-software.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|