lysyfyj.com/RVdcZ/login.php/
95.211.219.67200 OK 488 B URL User Request GET HTTP/1.1 lysyfyj.com/RVdcZ/login.php/
IP 95.211.219.67:80
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (488), with no line terminators
Hash 8b6e408e081842435d9586e3adbbc0a3
f0ef7995542bd6e59347325abc46caffbc4d92b6
2db7aa502077ec1ba9f027a199f5be242ad24ff2cd3d7aabbe85993362e798f6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RVdcZ/login.php/ HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 488
content-type: text/html; charset=utf-8
date: Wed, 07 Jun 2023 00:11:37 GMT
server: nginx
set-cookie: sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5; path=/; domain=.lysyfyj.com; expires=Mon, 25 Jun 2091 03:25:45 GMT; max-age=2147483647; HttpOnly
IP 95.211.219.67:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (472), with no line terminators
Hash 434de43914848e9963e3e03f75d100dd
e052958d0debd42dbfe422b5619732e2c829b8ee
4e833f456ad6068a6ebb467b521b9ee226f135e2b5491b3af4df8416e26c86a6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 472
content-type: text/html; charset=utf-8
date: Wed, 07 Jun 2023 00:11:44 GMT
server: nginx
set-cookie: sid=e2c7149e-04c7-11ee-950d-f5f309d9d875; path=/; domain=.lysyfyj.com; expires=Mon, 25 Jun 2091 03:25:51 GMT; max-age=2147483647; HttpOnly
lysyfyj.com/RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
0.0.0.0 0 B URL User Request GET lysyfyj.com/RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5 HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lysyfyj.com/RVdcZ/login.php/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
IP 0.0.0.0:0
Requested by http://lysyfyj.com/RVdcZ/login.php/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lysyfyj.com/RVdcZ/login.php/
Cookie: sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
Pragma: no-cache
Cache-Control: no-cache
lysyfyj.com/RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
0.0.0.0 0 B URL User Request GET lysyfyj.com/RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RVdcZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NjEwMzg5OCwiaWF0IjoxNjg2MDk2Njk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGozZzBzMG85OWI4dmZycGswZzllMDIiLCJuYmYiOjE2ODYwOTY2OTgsInRzIjoxNjg2MDk2Njk4MTkzMDQ4fQ.otL0mMzGbjZlLQpodmg2NJodLuuMUN8SelvT1WzBZdM&sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5 HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://lysyfyj.com/RVdcZ/login.php/
DNT: 1
Connection: keep-alive
Cookie: sid=df06d7ae-04c7-11ee-9db3-f5f308e997f5
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache