lysyfyj.com/RnNOZ/login.php/
95.211.219.65200 OK 488 B URL User Request GET HTTP/1.1 lysyfyj.com/RnNOZ/login.php/
IP 95.211.219.65:80
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (488), with no line terminators
Hash 88431477aa0d733877eeac65bf996815
be74c9e89d4eccc08a48bbb8e1130c8f8ca07ea6
0ea82020bce37d8bb4f830bd520c625be94f8a2a27186aa77b0838cdc28b1b77
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RnNOZ/login.php/ HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 488
content-type: text/html; charset=utf-8
date: Sun, 04 Jun 2023 01:05:56 GMT
server: nginx
set-cookie: sid=f604958c-0273-11ee-bd71-311e6c5222ca; path=/; domain=.lysyfyj.com; expires=Fri, 22 Jun 2091 04:20:03 GMT; max-age=2147483647; HttpOnly
lysyfyj.com/RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca
0.0.0.0 0 B URL User Request GET lysyfyj.com/RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lysyfyj.com/RnNOZ/login.php/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: sid=f604958c-0273-11ee-bd71-311e6c5222ca
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
IP 0.0.0.0:0
Requested by http://lysyfyj.com/RnNOZ/login.php/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lysyfyj.com/RnNOZ/login.php/
Cookie: sid=f604958c-0273-11ee-bd71-311e6c5222ca
Pragma: no-cache
Cache-Control: no-cache
lysyfyj.com/RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca
0.0.0.0 0 B URL User Request GET lysyfyj.com/RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /RnNOZ/login.php/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4NTg0Nzk1NiwiaWF0IjoxNjg1ODQwNzU2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGlrdWYzcmxsaDVhbTR1bGcwanJsaTgiLCJuYmYiOjE2ODU4NDA3NTYsInRzIjoxNjg1ODQwNzU2NzExNjUwfQ.Q8iAe85HPa8Sua5WmbJW1pYmaPJU0BQKUiVw5HSg5PU&sid=f604958c-0273-11ee-bd71-311e6c5222ca HTTP/1.1
Host: lysyfyj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://lysyfyj.com/RnNOZ/login.php/
DNT: 1
Connection: keep-alive
Cookie: sid=f604958c-0273-11ee-bd71-311e6c5222ca
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache