Report - div65ag7x9.myz.info/

Report Overview

Submitted URL
div65ag7x9.myz.info/
IP
173.249.16.75
ASN
#51167 Contabo GmbH
Submitted
2023-05-20 22:27:58
Access
public
Website Title
Final URL
Tags
dyndns
urlquery detections
Suspicious - DynDNS domain

Detections

urlquery
17
Network Intrusion Detection
33
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
div65ag7x9.myz.info	unknown	2001-10-26	2022-10-27	2023-02-20	5.7 kB	729 kB	173.249.16.75

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-20 22:27:39	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain
2023-05-20 22:27:39	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:39	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:39	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.myz .info Domain
2023-05-20 22:27:40	medium	Client IP	173.249.16.75	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	div65ag7x9.myz.info/software/remoteapp2.js	16 kB	2023-03-10	2023-06-02
Pretty URL div65ag7x9.myz.info/software/remoteapp2.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:38:09 Last Seen2023-06-02 21:26:23 Times Seen5 Hash 4228fd6ee8ea82810f943de3f862ec2e 3b0d2c3ac110423ef26b0f8e553a82eb77004da9 06d4a4779545c0b8976b307c912201188a35ecb198b77ad4c0c92a24391b0b58 Loading...

	div65ag7x9.myz.info/software/lang.js	40 kB	2023-03-10	2023-06-02
Pretty URL div65ag7x9.myz.info/software/lang.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:57:28 Last Seen2023-06-02 21:26:23 Times Seen5 Hash 797466a1877c8409c3f73868b2ce92d1 c046fe4700d1dc38434d1612dc3a16ffef5e6749 8431f159bbbe3953ec2486c217aea0eda329c0b2bf6e1f136a6ee85da4c02dda Loading...

	div65ag7x9.myz.info/software/js/jquery.min.js	90 kB	2023-03-07	2024-04-19
Pretty URL div65ag7x9.myz.info/software/js/jquery.min.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-04-19 20:38:38 Times Seen3677 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	div65ag7x9.myz.info/custom.js	78 B	2023-03-07	2024-04-18
Pretty URL div65ag7x9.myz.info/custom.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:38 Last Seen2024-04-18 08:31:35 Times Seen30 Hash 176df97010ef832c30abef0cc5f9d2ef 13e7b93aff3720b9014905a0c4c1da4edce9e74a 8df5fa5bcf20863082c2444cb9dcdd3f48ea0114a0c244dbd7148ac559a43978 Loading...

	div65ag7x9.myz.info/software/java/third/jws.js	9.8 kB	2023-03-07	2024-04-18
Pretty URL div65ag7x9.myz.info/software/java/third/jws.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:38 Last Seen2024-04-18 08:31:35 Times Seen26 Hash 893403e0dd8ed934c23b338ac8b3b143 c1ebc34758929180fdcea11546297b3371c7bf18 1125ae6c3f0f533e658b90b4b2920ab9fb797457e55295bcb498430d1d31601f Loading...

	div65ag7x9.myz.info/	7.4 kB	2023-03-10	2023-06-02
Pretty URL div65ag7x9.myz.info/ IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 19:38:09 Last Seen2023-06-02 21:26:23 Times Seen3 Hash 2ccceafc19a1cd047e8016e3b6d2e234 91a7c4a805257fc1e736daae47e86afb9c7d0a77 f376f8e76330ffd4313a30dcdfabc673f0ec0b84272bea383fdab2dd9c62c4f6 Loading...

	div65ag7x9.myz.info/software/common.js	62 kB	2023-03-10	2023-06-02
Pretty URL div65ag7x9.myz.info/software/common.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:57:28 Last Seen2023-06-02 21:26:23 Times Seen5 Hash 8354657b12389e84386441ed472d38b9 8663ee74b8c2d0817773d33a51d2a4466e001c37 528a0f8280e0657bd3d8ec3279a29189f4118d84eeeffacc2c3dccc8b2315c7b Loading...

	unknown	9 B	2023-05-14	2024-04-18
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-05-14 01:04:31 Last Seen2024-04-18 08:31:35 Times Seen16 Hash c4fe3e36686c180154fece158dd4036f bf299d502964cfa7cbe0b2e50f456039c03f0790 97f8b5563a3ae5f50608a44362a6e976169a3982508c7c55d6949d4f27ca6681 Loading...

	div65ag7x9.myz.info/	822 B	2023-03-07	2024-04-18
Pretty URL div65ag7x9.myz.info/ IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10:38 Last Seen2024-04-18 08:31:35 Times Seen13 Hash 025a06c6dca7c2b2289373122115f593 f5349a5b6ff60b614f502caae89d5e045d01407f ff38065df0e119b92b0dc94d0390e204cb39712ce96e94537a28d51b3092fed9 Loading...

	div65ag7x9.myz.info/software/java/third/sha256.js	4.4 kB	2023-03-07	2024-04-18
Pretty URL div65ag7x9.myz.info/software/java/third/sha256.js IP 173.249.16.75 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:38 Last Seen2024-04-18 08:31:35 Times Seen26 Hash 9da176c7a1c6fe7f928ac056c4668ee5 014d2f8abd9c21670242d020b55b93de08b284a8 15acf0eaf56009f682b794231ddbecb14aa6cc4d7eccbcd7a925bedb86dd3b46 Loading...

HTTP Transactions (16)

URL IP Response Size

div65ag7x9.myz.info/

173.249.16.75

22 kB

URL User Request GET
div65ag7x9.myz.info/
IP
173.249.16.75:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (766), with CRLF line terminators
Size
22 kB (21942 bytes)
Hash
880cfd62464dc59066a13f2b82986698
f134430d3cc93ce37812f0f7d281403d8fcc99a7
7ea6369a42444195fcdecb0d82bd74d6d037b9fa691afc9e1bce9ece7ceba613

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET / HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 21942
Accept-Ranges: bytes
Content-Type: text/html; charset=UTF-8
X-XSS-Protection: 1; mode=block
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate, private, max-age=0
Last-Modified: Sun, 20 Feb 2022 13:17:38 GMT
Pragma: no-cache

div65ag7x9.myz.info/software/java/third/jws.js

173.249.16.75

200 OK

9.8 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/java/third/jws.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text
Size
9.8 kB (9832 bytes)
Hash
893403e0dd8ed934c23b338ac8b3b143
c1ebc34758929180fdcea11546297b3371c7bf18
1125ae6c3f0f533e658b90b4b2920ab9fb797457e55295bcb498430d1d31601f

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/java/third/jws.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 9832
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: a903c0051041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/software/java/third/sha256.js

173.249.16.75

200 OK

4.4 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/java/third/sha256.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text, with very long lines (536)
Size
4.4 kB (4420 bytes)
Hash
9da176c7a1c6fe7f928ac056c4668ee5
014d2f8abd9c21670242d020b55b93de08b284a8
15acf0eaf56009f682b794231ddbecb14aa6cc4d7eccbcd7a925bedb86dd3b46

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/java/third/sha256.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 4420
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: b44c139c1041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/popins.css

173.249.16.75

200 OK

6.7 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/popins.css
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text
Size
6.7 kB (6743 bytes)
Hash
c4283449d0b0fbff0abbdeb7c847dd59
7093257f8a40ca4da7b2f6202751d5788ff2349f
e3e59b383b01fe0ba85329758c4b2afa38a66aac3392b7277dfd93e5fac44891

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /popins.css HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 6743
Accept-Ranges: bytes
Content-Type: text/css
X-XSS-Protection: 1; mode=block
ETag: b143efa01041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/software/remoteapp2.js

173.249.16.75

200 OK

16 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/remoteapp2.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text, with very long lines (448), with CRLF line terminators
Size
16 kB (15791 bytes)
Hash
4228fd6ee8ea82810f943de3f862ec2e
3b0d2c3ac110423ef26b0f8e553a82eb77004da9
06d4a4779545c0b8976b307c912201188a35ecb198b77ad4c0c92a24391b0b58

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/remoteapp2.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 15791
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: 7b581eb91041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Sun, 20 Feb 2022 13:17:39 GMT

div65ag7x9.myz.info/software/lang.js

173.249.16.75

200 OK

40 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/lang.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
Unicode text, UTF-8 text, with very long lines (548)
Size
40 kB (40518 bytes)
Hash
797466a1877c8409c3f73868b2ce92d1
c046fe4700d1dc38434d1612dc3a16ffef5e6749
8431f159bbbe3953ec2486c217aea0eda329c0b2bf6e1f136a6ee85da4c02dda

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/lang.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 40518
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: 55f7ebba1041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Wed, 22 Dec 2021 18:37:48 GMT

div65ag7x9.myz.info/software/common.js

173.249.16.75

200 OK

62 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/common.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text, with very long lines (2010)
Size
62 kB (62341 bytes)
Hash
8354657b12389e84386441ed472d38b9
8663ee74b8c2d0817773d33a51d2a4466e001c37
528a0f8280e0657bd3d8ec3279a29189f4118d84eeeffacc2c3dccc8b2315c7b

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/common.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 62341
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: c44303991041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Thu, 02 Dec 2021 23:47:56 GMT

div65ag7x9.myz.info/software/js/jquery.min.js

173.249.16.75

200 OK

90 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/js/jquery.min.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text, with very long lines (65451)
Size
90 kB (89492 bytes)
Hash
561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/js/jquery.min.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 89492
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: a85df62f1041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/custom.js

173.249.16.75

200 OK

78 B

URL GET HTTP/1.1
div65ag7x9.myz.info/custom.js
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text
Size
78 B (78 bytes)
Hash
176df97010ef832c30abef0cc5f9d2ef
13e7b93aff3720b9014905a0c4c1da4edce9e74a
8df5fa5bcf20863082c2444cb9dcdd3f48ea0114a0c244dbd7148ac559a43978

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /custom.js HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 78
Accept-Ranges: bytes
Content-Type: text/javascript
X-XSS-Protection: 1; mode=block
ETag: 2d95286f1041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/custom.css

173.249.16.75

200 OK

74 B

URL GET HTTP/1.1
div65ag7x9.myz.info/custom.css
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
ASCII text
Size
74 B (74 bytes)
Hash
9bdf35e7f81301e3b1b4b4799c12893a
c83b8199953461182175ece81f9b55324922c47e
da93de0528f349ea334cd4909aed1cae76c6cfc7d51b00f1fa3065bb59b612b7

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /custom.css HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 74
Accept-Ranges: bytes
Content-Type: text/css
X-XSS-Protection: 1; mode=block
ETag: a074ed891041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/templates/photo/img/ko.png

173.249.16.75

200 OK

250 B

URL GET HTTP/1.1
div65ag7x9.myz.info/templates/photo/img/ko.png
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
PNG image data, 20 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
250 B (250 bytes)
Hash
a4b47ebf12614b41a5ccffaf66908323
3016a4e1842f4af358ea269775cf0275ca683c25
0bc4209aff572b61a7a18a756d676f46bc75771e0b375eef95bf34b0338851b2

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /templates/photo/img/ko.png HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 250
Accept-Ranges: bytes
Content-Type: image/png
ETag: bef31e201041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/software/js/exo-latin.woff2

173.249.16.75

200 OK

10 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/js/exo-latin.woff2
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
Web Open Font Format (Version 2), TrueType, length 10368, version 1.0\012- data
Size
10 kB (10368 bytes)
Hash
9f16e6ee1e3327b7db3aefb4783eb415
7dcb1768e368d7aee37a026a15a9debbeb33b94a
5374f3589e1b17bf8cb2cbd7d2b3a724be82872fa60bb9ae5f240a070dc52d74

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/js/exo-latin.woff2 HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 10368
Accept-Ranges: bytes
Content-Type: font/woff2
ETag: 923a63c31041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/templates/photo/img/ok.png

173.249.16.75

200 OK

226 B

URL GET HTTP/1.1
div65ag7x9.myz.info/templates/photo/img/ok.png
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
PNG image data, 20 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
226 B (226 bytes)
Hash
006524b7b4b1145ac80ba53c0a186311
57a85962237397a2f29e30dd0d24460ade8ce7ee
f8d8367e10a45c39f1060e3dd7df3a8e1c153000426451edad2ad2154eb950a8

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /templates/photo/img/ok.png HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 226
Accept-Ranges: bytes
Content-Type: image/png
ETag: a6a632411041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/software/java/img/header_web.png

173.249.16.75

200 OK

64 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/software/java/img/header_web.png
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
PNG image data, 3468 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
64 kB (63607 bytes)
Hash
f4e2b30877a3faea8ce9b3aef4b1df57
cbadcd5659fdb4826d27662f0e2b823aa2ce4e19
0ce7dbe864314c1848d4f04d6078518ebb0876b5bc9933fb2ea87720a90909f2

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /software/java/img/header_web.png HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 63607
Accept-Ranges: bytes
Content-Type: image/png
ETag: 4640458d1041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:44 GMT

div65ag7x9.myz.info/templates/photo/img/City.jpg

173.249.16.75

200 OK

398 kB

URL GET HTTP/1.1
div65ag7x9.myz.info/templates/photo/img/City.jpg
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1300, components 3\012- data
Size
398 kB (398170 bytes)
Hash
0923bd6e31a84826ed3c527d6c8c95ed
5753989aa5be31c75cd5e28aaa680c6cde809f6b
0a7f2679f35b762560b458bedc6bd4e04b72f899b1e0a719754e009d258c3f4d

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /templates/photo/img/City.jpg HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 398170
Accept-Ranges: bytes
Content-Type: image/jpeg
ETag: 783097461041109062
Date: Sat, 20 May 2023 22:27:40 GMT
Expires: Sun, 21 May 2023 22:27:40 GMT
Cache-Control: no-cache, must-revalidate, private, max-age=86400
Last-Modified: Tue, 08 Jun 2021 23:25:40 GMT

div65ag7x9.myz.info/favicon.ico

173.249.16.75

404 Not Found

405 B

URL GET HTTP/1.1
div65ag7x9.myz.info/favicon.ico
IP
173.249.16.75:80
ASN
#51167 Contabo GmbH

Requested by
http://div65ag7x9.myz.info/

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
405 B (405 bytes)
Hash
4dbe029d0e2f4b021e00c68f294f0b51
202bd271f67ec92c9007763b11dcd1fe5d0182b8
8f07962a91702c8a4ba4e82410a1d83f0b824a8f5090151283665117c70b6ead

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.myz .info Domain

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: div65ag7x9.myz.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://div65ag7x9.myz.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Content-Length: 405
Expires: 0

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL