31.22.4.160 569 B IP 31.22.4.160:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (618)
Hash a74b0469089824d78ae66a9a15cb7e5d
8ba114dc2091578873ae0494f04a42781c055526
975a88ed70c9a132d93b3d1ef4359d56f46241e79f570f414f27f0ebb63da9e9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:34:16 GMT
ETag: "4e0-4e5ebe69d8200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 569
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=ISO-8859-1
31.22.4.160/home.html
31.22.4.160200 OK 4.6 kB IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text
Hash 11639c5ce13193f6c1fce4b375bbdf3a
893ef8d4a759d892926e0fdb9b8649cb20f66c66
4e2489b20110c2697f8d8c5d7775882bdf5d0d80ef419c89231db9f4e0d633ad
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /home.html HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Thu, 03 Jan 2019 01:17:58 GMT
ETag: "347f-57e838869bd80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4556
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=ISO-8859-1
31.22.4.160/favicon.ico
31.22.4.160500 Internal Server Error 542 B IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92a5afb906968a45a5a26b299f5a4fd3
220c2babb708801a76facde31784ad35e3793dd7
65f94d23b39e50aa1b290e93bd39c390f2742d2fa761b2dbb9d49a1870ec2c3d
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 500 Internal Server Error
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Content-Length: 542
Connection: close
Content-Type: text/html; charset=iso-8859-1
31.22.4.160/documents/textstyles_nf.css
31.22.4.160200 OK 2.5 kB URL GET HTTP/1.1 31.22.4.160/documents/textstyles_nf.css
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
Hash 1471e7ff554bbfc443e5e656af4f7743
91fa9b22747ae31e9151ef4e525e6a30f078bf18
fed3135a9eaf96238cffc95e1c67d259f39303568125279bbac8fb3d753888c2
Analyzer Verdict Alert quad9 Sinkholed
GET /documents/textstyles_nf.css HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 14 Sep 2015 14:32:26 GMT
ETag: "240c-51fb5ef301280-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2541
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
31.22.4.160/documents/scripts.js
31.22.4.160200 OK 2.8 kB URL GET HTTP/1.1 31.22.4.160/documents/scripts.js
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1417), with CRLF line terminators
Hash 6951987cadb5d1173bae0c94f5019339
5017f6c09e8461dfb6ecc6e106bb4f70d794ea54
3b5be493e83937d303b6bcc5b7dc9983917f032c74da1e2c8e6d60366f366c7d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /documents/scripts.js HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:35:42 GMT
ETag: "1de7-4e5ebebbdc380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2837
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
31.22.4.160/jquery.js
31.22.4.160200 OK 34 kB IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash 17003f59d0b1e794d6707c658491b1f3
2af12263af855fdcdd5d852e4ae07d9bdc75582c
2f00d50d5a88818dd5433d8f7ef5c130d08db7648071c1bfb926866eff73f027
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /jquery.js HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Fri, 20 Dec 2019 19:26:17 GMT
ETag: "17318-59a27a6dabc56-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33672
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
31.22.4.160/H_Inicio_23.gif
31.22.4.160200 OK 1.6 kB URL GET HTTP/1.1 31.22.4.160/H_Inicio_23.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 49 x 24\012- data
Hash 4a5e84a7817a9a625db5d30a2241be7a
067c3694fba73fd95483a6e59aa70511c2b1a44a
72f964e651be8d5ac293b0e8132c5102c24bb75c9ed9ee5614dff3d4e74e4954
Analyzer Verdict Alert quad9 Sinkholed
GET /H_Inicio_23.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:34:20 GMT
ETag: "60e-4e5ebe6da8b00"
Accept-Ranges: bytes
Content-Length: 1550
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2l.gif
31.22.4.160200 OK 60 B URL GET HTTP/1.1 31.22.4.160/images/t2l.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 10\012- data
Hash 86645e73957d485b03231680c0a665ec
df06b31122edffb4a7765e65e68426990644c0ca
65a13058b67485995b926b28eec2761d8c5da78ddddc8d48c70de0800dd85b50
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2l.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:12 GMT
ETag: "3c-4e5ec02fcb100"
Accept-Ranges: bytes
Content-Length: 60
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2tl.gif
31.22.4.160200 OK 204 B URL GET HTTP/1.1 31.22.4.160/images/t2tl.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 18\012- data
Hash 5d8ee5609af59ab3a88492a064a8bf55
7f7000ab9f13be930737643833b64a00af14030e
65b7998e231dfc30f7995fefafcd9e7115605e9f1bdd3378427fd0390849ab82
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2tl.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:16 GMT
ETag: "cc-4e5ec0339ba00"
Accept-Ranges: bytes
Content-Length: 204
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_1c79dc7b1.gif
31.22.4.160200 OK 1.9 kB URL GET HTTP/1.1 31.22.4.160/images/ca_1c79dc7b1.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash 42a61de90ce4bb99345108bae309a77d
7ebc8839344bad8c8559fbcfb3c2a8d82468a69b
859a3de098b4c966f74a7731d6a10380f4ae8b4a8b18850745319cd2d1f12297
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_1c79dc7b1.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:39:58 GMT
ETag: "775-4e5ebfb000380"
Accept-Ranges: bytes
Content-Length: 1909
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/documents/print.css
31.22.4.160200 OK 169 B URL GET HTTP/1.1 31.22.4.160/documents/print.css
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
Hash ae9fa7cdd72e71121fbc18dfdbd33cf6
010ff052db8365bbb6a105576c71233e5eb49ea1
52ccc783a8cb4703789d1b0f2020a11d0d1e657f85dec55925e4d43296f3c28d
Analyzer Verdict Alert quad9 Sinkholed
GET /documents/print.css HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:35:36 GMT
ETag: "fb-4e5ebeb623600-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
31.22.4.160/images/Spanish_headline.jpg
31.22.4.160200 OK 12 kB URL GET HTTP/1.1 31.22.4.160/images/Spanish_headline.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x50, components 3\012- data
Hash 614730d803c8533565712192a574daa4
930c8e7cd10c011ca1845939638d7e346882e891
559d78736206fa30f62aaca1234bd22d843f303eda2c2a240c909017718c8b32
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Spanish_headline.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Thu, 03 Jan 2019 01:18:00 GMT
ETag: "2d6f-57e8388884200"
Accept-Ranges: bytes
Content-Length: 11631
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/mi_23.gif
31.22.4.160200 OK 1.2 kB URL GET HTTP/1.1 31.22.4.160/images/mi_23.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 240 x 24\012- data
Hash c0e00492792c7b23ca893d6a58bea647
b38e2b530a979e47e0186ef67a90f3634948d121
b6e900835d0426120fd0d146815023fc6a364140f0d67142eeae1524a0d3f223
Analyzer Verdict Alert quad9 Sinkholed
GET /images/mi_23.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:41:20 GMT
ETag: "4b4-4e5ebffe33c00"
Accept-Ranges: bytes
Content-Length: 1204
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2tr.gif
31.22.4.160200 OK 74 B URL GET HTTP/1.1 31.22.4.160/images/t2tr.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 18\012- data
Hash c535a933e60033ed22f2ca169e2951c7
6169fe6c4185cd9978b47191efc33a4c5ef76d25
c53f227f249051948b26966f1dcd0d0fcd06d8c24881e9d7585422114d0c646c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2tr.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:18 GMT
ETag: "4a-4e5ec03583e80"
Accept-Ranges: bytes
Content-Length: 74
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/cti_1.jpg
31.22.4.160200 OK 53 kB URL GET HTTP/1.1 31.22.4.160/images/cti_1.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 458x172, components 3\012- data
Hash 243fb562a6b66ced04b413d28086eec0
606713eed4383a2d4aa9b919faf5f2dfb18bfd43
f3604354fc421863186079bccc994e524f392d733abce1fa5b55a6970485dbcb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cti_1.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:40:04 GMT
ETag: "cdbb-4e5ebfb5b9100"
Accept-Ranges: bytes
Content-Length: 52667
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/cti_2.jpg
31.22.4.160200 OK 41 kB URL GET HTTP/1.1 31.22.4.160/images/cti_2.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 302x172, components 3\012- data
Hash e94966fbcf85142040b22efd7cbea5ca
a643cfcaa526657cbaab802d89f1571edf21188c
0a21313525f2567f56337cee3a50f593bdc3451c7631eec2ed0b5d815eab69c6
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cti_2.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:12 GMT
ETag: "a0ed-4e5ec02fcb100"
Accept-Ranges: bytes
Content-Length: 41197
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/ca_133adc6ae.gif
31.22.4.160200 OK 1.9 kB URL GET HTTP/1.1 31.22.4.160/images/ca_133adc6ae.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash ee338845cd19816e992bff98ffdc39a3
d0b1f5f2c786f27b42c17a7f14228a52a000dc30
6efbccd2847e6ebfefa0e5a96dbd52edd62c8848feff95e4a203b7425de29b52
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_133adc6ae.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:30 GMT
ETag: "76d-4e5ec040f5980"
Accept-Ranges: bytes
Content-Length: 1901
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/cti_0.jpg
31.22.4.160200 OK 29 kB URL GET HTTP/1.1 31.22.4.160/images/cti_0.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 240x172, components 3\012- data
Hash 4564cdd6755beeed05e84c92bdee6f51
ecd0ecfef0d5501a0377cb2b7e43145e00cce143
c7646014cc65aa5e7d2476eabf6b691ee687017443e1b90ab1d09e0c23cc4811
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cti_0.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:40:16 GMT
ETag: "6fb3-4e5ebfc12ac00"
Accept-Ranges: bytes
Content-Length: 28595
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/ca_1412d4db9.gif
31.22.4.160200 OK 1.9 kB URL GET HTTP/1.1 31.22.4.160/images/ca_1412d4db9.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash 665523aa6667c825554b547cba361c7c
293d06512b13f04d2f60bd8bda3f953c1a43dbcb
ad17a85c4cf3a8184f09bd67852addb7adf7a2b01eab73e2376cc5977e9fb7bb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_1412d4db9.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:39:50 GMT
ETag: "745-4e5ebfa85f180"
Accept-Ranges: bytes
Content-Length: 1861
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/l_main.gif
31.22.4.160200 OK 706 B URL GET HTTP/1.1 31.22.4.160/images/l_main.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 13 x 50\012- data
Hash 60905f69e42b41879b4c6c558204d902
d80d69a6289060e95018f051ac9c1e0cd14e0146
f531dfbdce109a6eb0fb90bf2a13de666a0cda99689843b588fff2f550872166
Analyzer Verdict Alert quad9 Sinkholed
GET /images/l_main.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:41:14 GMT
ETag: "2c2-4e5ebff87ae80"
Accept-Ranges: bytes
Content-Length: 706
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2r.gif
31.22.4.160200 OK 60 B URL GET HTTP/1.1 31.22.4.160/images/t2r.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 10\012- data
Hash 821250213833cc50f21036963fa36747
f2b278ebe4df4c0987995fbd81f6de789f351db0
3a675b9a04fad092e3cfc1e9ad34bbef897c59ad2481dd8fc2c598b976b7a745
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2r.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:14 GMT
ETag: "3c-4e5ec031b3580"
Accept-Ranges: bytes
Content-Length: 60
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/bg.gif
31.22.4.160200 OK 4.7 kB URL GET HTTP/1.1 31.22.4.160/images/bg.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 100 x 76\012- data
Hash fe460f3998d4a54e5ff4761ca5d93ee9
f98918abefffd191d1bea9be8bb319970802e101
4385ccd7904fab5f121138586ea13f3fe8eaf85975ba7e34ef242697aaba8b63
Analyzer Verdict Alert quad9 Sinkholed
GET /images/bg.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:39:42 GMT
ETag: "1243-4e5ebfa0bdf80"
Accept-Ranges: bytes
Content-Length: 4675
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/leftbar.jpg
31.22.4.160200 OK 556 B URL GET HTTP/1.1 31.22.4.160/images/leftbar.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 240x10, components 3\012- data
Hash 462ee53c753c07f4dfd928f967f52dbf
d4f1ad33e1691198005e532193217d385ecf7c5e
9e776ac35ff1bec8dbd88c3ab8c60602f2d287c7f44311d34c4a61a63d4f8981
Analyzer Verdict Alert quad9 Sinkholed
GET /images/leftbar.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:41:16 GMT
ETag: "22c-4e5ebffa63300"
Accept-Ranges: bytes
Content-Length: 556
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/sidebar_top.gif
31.22.4.160200 OK 248 B URL GET HTTP/1.1 31.22.4.160/images/sidebar_top.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 240 x 45\012- data
Hash b591664fdb413403f815d05d72b7472a
27709267751e1583477d015b27ffd4b501a5c330
21fbf233e6b9fddee7874a044ae136a18f6deb0571df24eb716c7cf07bffd252
Analyzer Verdict Alert quad9 Sinkholed
GET /images/sidebar_top.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:41:44 GMT
ETag: "f8-4e5ec01517200"
Accept-Ranges: bytes
Content-Length: 248
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/topbar.jpg
31.22.4.160200 OK 645 B URL GET HTTP/1.1 31.22.4.160/images/topbar.jpg
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 10x50, components 3\012- data
Hash 36585283908b75025ed8763b67101d99
9a9981e6dbef8882857dd171470de9e620fbe97e
e5bc8274e0178f3f703958367b4653afae16c6135f0aee9b568c24b16443b79f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/topbar.jpg HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:30 GMT
ETag: "285-4e5ec040f5980"
Accept-Ranges: bytes
Content-Length: 645
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
31.22.4.160/images/t2t.gif
31.22.4.160200 OK 54 B URL GET HTTP/1.1 31.22.4.160/images/t2t.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 10 x 18\012- data
Hash da71dc2ee03e50c96eb565300637353a
940a01e76ccb1dda2835f736842a3800a80abfb2
aec9795870ca74c28d5451766b38a20ac569a96cfe694b17566d2c2c8889949d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2t.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:14 GMT
ETag: "36-4e5ec031b3580"
Accept-Ranges: bytes
Content-Length: 54
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2m.gif
31.22.4.160200 OK 49 B URL GET HTTP/1.1 31.22.4.160/images/t2m.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 10 x 10\012- data
Hash fd66005d7f371d57aa9c168ef887708c
8cd969dba595406b620a72f68781c7d2456ef6a0
a59a776560a05b312717f3a251601a86c1522a5d7e3bb6bf64845ffac2ba5a3d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2m.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:12 GMT
ETag: "31-4e5ec02fcb100"
Accept-Ranges: bytes
Content-Length: 49
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_234bf2e25.gif
31.22.4.160200 OK 2.2 kB URL GET HTTP/1.1 31.22.4.160/images/ca_234bf2e25.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash 6510cb53235c1db682aab13c1637213a
276b201c5e79ad2ef236c74d7fbf9a465e82eee0
5202cedd781e73d95231067efbbbd6bb3f20953dc5a25d20f254d7de3f10f454
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_234bf2e25.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:40:02 GMT
ETag: "867-4e5ebfb3d0c80"
Accept-Ranges: bytes
Content-Length: 2151
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2bl.gif
31.22.4.160200 OK 75 B URL GET HTTP/1.1 31.22.4.160/images/t2bl.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 18\012- data
Hash 6e6f3d698ce2f441d831b8d755190780
0f2e55a793f2d6a37b28dcec453e0ccb07dde80b
e7fdce8075bc3378d0fd36cf4ba36dfae69bd20081e8445ef3dc98e2c99143b4
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2bl.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:08 GMT
ETag: "4b-4e5ec02bfa800"
Accept-Ranges: bytes
Content-Length: 75
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2br.gif
31.22.4.160200 OK 73 B URL GET HTTP/1.1 31.22.4.160/images/t2br.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 18 x 18\012- data
Hash e6b4fc988bf0661b3779a24ff9775f2b
afcbb8255c9b66e89709413504b470026d69e0d4
cb770ff1ff8503181aef86d38385911b52f2f4d8631859e39a4350f9f581ad22
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2br.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:10 GMT
ETag: "49-4e5ec02de2c80"
Accept-Ranges: bytes
Content-Length: 73
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/t2b.gif
31.22.4.160200 OK 54 B URL GET HTTP/1.1 31.22.4.160/images/t2b.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 89a, 10 x 18\012- data
Hash 34febc4649901fa303e0d68f13750dc9
f7e5ee727c99bc3a22a525eed374c3553f856ceb
b29c1a5a54b145f51eec9362a3b2f5da1759484b8d911823ecbe37990f193749
Analyzer Verdict Alert quad9 Sinkholed
GET /images/t2b.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/documents/textstyles_nf.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:08 GMT
ETag: "36-4e5ec02bfa800"
Accept-Ranges: bytes
Content-Length: 54
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_1412d4db9_2.gif
31.22.4.160200 OK 1.9 kB URL GET HTTP/1.1 31.22.4.160/images/ca_1412d4db9_2.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash 16e787af11b042135fda9774f35f43a8
aa694efad5804ebded1f14f01cf520b6804246a5
2911651b581f16bd929e97ff9d9ed2a4b2f518bc1476f74a353fd60d113b8b23
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_1412d4db9_2.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:30 GMT
ETag: "78f-4e5ec040f5980"
Accept-Ranges: bytes
Content-Length: 1935
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_234bf2e25_2.gif
31.22.4.160200 OK 2.2 kB URL GET HTTP/1.1 31.22.4.160/images/ca_234bf2e25_2.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash ecc2401c33c488d35e9c209e01ad250d
6a8437b6a9ede99b14096c1a060e7f8f6aa2e49b
caa36dc5d7657a6c8def0eab0d5bedd948b63f3b533698444651403098fdaaa7
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_234bf2e25_2.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:40:04 GMT
ETag: "8b4-4e5ebfb5b9100"
Accept-Ranges: bytes
Content-Length: 2228
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_1c79dc7b1_2.gif
31.22.4.160200 OK 2.0 kB URL GET HTTP/1.1 31.22.4.160/images/ca_1c79dc7b1_2.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash 22666f4ba9d6fbdad1a335492430495f
bb4869d7206c2990419d719a2bde81fb3a987c7c
ae7d8bc5f61aa0a1e1a463fe4eef055be95e2fdf98badef07a3a71b0639c0f0a
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_1c79dc7b1_2.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:40:00 GMT
ETag: "7bf-4e5ebfb1e8800"
Accept-Ranges: bytes
Content-Length: 1983
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/ca_133adc6ae_2.gif
31.22.4.160200 OK 2.0 kB URL GET HTTP/1.1 31.22.4.160/images/ca_133adc6ae_2.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 122 x 50\012- data
Hash f6f8a046d0e7551bc22aea88880eebd4
e8ff758532fab09f6389ec217bdeb386c327b903
119653230ea6c3a86df1be08bd3ae96ccf426a260128f390db527b3b01c8813a
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ca_133adc6ae_2.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:42:14 GMT
ETag: "7b7-4e5ec031b3580"
Accept-Ranges: bytes
Content-Length: 1975
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/images/mi_23_2.gif
31.22.4.160200 OK 1.3 kB URL GET HTTP/1.1 31.22.4.160/images/mi_23_2.gif
IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
Requested by http://31.22.4.160/home.html
File type GIF image data, version 87a, 240 x 24\012- data
Hash 2398f11a0183ca97240ab2380c1cdeea
5dc116dc5ee6a74148a4499b42874399dbc5cb3c
afaa57e9e18861a638f1cecd9998e3a53991a275b352a132417096225665ae43
Analyzer Verdict Alert quad9 Sinkholed
GET /images/mi_23_2.gif HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://31.22.4.160/home.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:07:53 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Mon, 09 Sep 2013 04:41:20 GMT
ETag: "534-4e5ebffe33c00"
Accept-Ranges: bytes
Content-Length: 1332
Cache-Control: max-age=1296000
Expires: Mon, 05 Jun 2023 22:07:53 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
31.22.4.160/home.html
31.22.4.160200 OK 4.6 kB IP 31.22.4.160:80
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text
Hash 11639c5ce13193f6c1fce4b375bbdf3a
893ef8d4a759d892926e0fdb9b8649cb20f66c66
4e2489b20110c2697f8d8c5d7775882bdf5d0d80ef419c89231db9f4e0d633ad
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /home.html HTTP/1.1
Host: 31.22.4.160
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 21 May 2023 22:08:07 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9
Last-Modified: Thu, 03 Jan 2019 01:17:58 GMT
ETag: "347f-57e838869bd80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4556
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=ISO-8859-1