{"report_id":"c0ce88b4-b38f-45b9-b1f2-9f5e1532bbca","version":6,"status":"done","tags":[],"date":"2025-03-26T01:10:02Z","url":{"schema":"http","addr":"85.154.88.226:8088/login/","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":0,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"final":{"url":{"schema":"http","addr":"85.154.88.226:8088/login/","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"title":"BioTime 8.5"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-04T01:10:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"85.154.88.226","ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":20,"request_count":20,"received_data":564675,"sent_data":9299,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layui/layui.js?v=2.4.3","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"d9328fba9720a5a8444146e458ec6d1a","sha1":"c70b26c4fbaaf89c8ceed3df16baa2aadc1a26e3","sha256":"a25d71fd2f5fc0c05e62dbdabd1a1fe3191ec0a90a03d546a9527355fc8e2ac6","sha512":"65271016f1a6cf6fef6d42940399aa6155d67cd4e46789f3b2e18655dbe72bad69ff41a59f8b8f2cade733e2c6f832ca5a2fa4b6a56f9ccde1174bcdf2938d31","ssdeep":"96:s3y+aD48Dsp21ORbCkShS60OGeRr7UHL+XsqUuN8x70Acgc:yytDXo6VRKKXjU+8x7SR","tlshash":"5ad1c69cfab27092477f3165766f801ea7bb40ad285c4490e1cad8e52c72cad4377f58","size":6667,"data":"","first_seen":"2023-03-07T12:58:51Z","last_seen":"2026-05-13T08:46:33.51907Z","times_seen":366,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/jquery/jquery-2.2.4.js?v=2.2.4","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"888d4551b8db7c41cda28d95e494f998","sha1":"26e6b63b81813d8ad942c90d369df2673602b812","sha256":"893e90f6230962e42231635df650f20544ad22affc3ee396df768eaa6bc5a6a2","sha512":"38ab8bda4a62f337de5dca925e719b2fab4a73d2715a6a69258e263929f512c9e045bedfc75379fbbc0e4c6aaed9b23938060bdce83bfc17a0ec4b161b638128","ssdeep":"6144:yeLfh6nxcr8uVgTdp2YmD1BFEFy41vL/2VX82KLHIPf2hADD1+RH:yGxYmDTmFyHsDMPfOADD8RH","tlshash":"a044a4d8f78d112e423231aa9d2f52cdbb7cd1b1560458aebd4d597c24a083c42faf7a","size":257551,"data":"","first_seen":"2023-03-07T01:10:13Z","last_seen":"2026-05-14T11:38:31.510679Z","times_seen":1611,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/locale/i18n.js?v=1.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"51ecb8edf7d1a83f03fc7106e124f1dc","sha1":"06df96865ab693d25a6a9d93344f033a57671132","sha256":"f918fe8d3b8bd5259142e683d1e1ee9b8a498246a875f64240adc83d58a68f6d","sha512":"05c8209d1afbcf04314d29f78e385902b92f14fb7e4e92130adb19ce167ebb6654636cbfbec19c93d04f50dd97c8173ff1be726cce01f1254abfd2b4e6d6824e","ssdeep":"","tlshash":"b4f0288cbdcf20494f7967b433265000fa6a58336358d2d4f9e804e17b7067553a2edc","size":604,"data":"","first_seen":"2023-05-22T04:39:04Z","last_seen":"2026-05-01T05:42:16.204256Z","times_seen":210,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/locale/i18n_en.js?v=1.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"45b104df64fa27bf6a05eb1bf4acd18d","sha1":"fd735b8c3b26fda6e85c758e192e1943e81ad8de","sha256":"a5317e1e1da3ff6a384b40f0daedd72eb8a918fa3ed0ae4abc3db88e2f2fd2bc","sha512":"adc08c0582f8b7c1d6e95c8c783b0c6b324edca169e8361c5b5524e784a1d96c05e5ca3ff27e09f081e06dcc57d811649965dee93df40c91802feae9d6e04617","ssdeep":"384:4tn+cArFe9PjDhj+3QfxtWV/fDDnXzDvtQZkKz3:4tn+35e9Pjl+32xMQZDz3","tlshash":"4e724d1b522fa6a3c5fb0a96d6c87e0261810477710fa532b8ded15831d3887ffa2b75","size":16799,"data":"","first_seen":"2023-06-29T13:07:12Z","last_seen":"2025-03-26T01:10:06.919183Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/jquery/jquery.form.js?v=4.2.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"e47754b6386bb56847ec9452f45e8d7e","sha1":"add7fb03598a1023af700f1c034367c2a6c35f80","sha256":"2dd743447ea250fa9ba77c7d0a53151a4544bd94eb21e9ab63ad77b2127f260c","sha512":"11ba27cf9c0a9cb8708a8da676a35c74b0956fff8edd78bd59ee470583c67c06f1da3b5bd3955c1da06d59ad07db5ab289df6e914f5bd21cd7803dfbc68a26c9","ssdeep":"768:rugCnIOZcqPnlHt8xvg+n+1bofXr2cTFxutMny4h3i2YsORYrGKeOMiz1MoVVxXN:r3VqPnlHt8xvg+n+tir2cWtMnyUS2fOC","tlshash":"1613b6c5fbdd12ab463230a54c9e60cd763cd071195098b7fcac66a424d0c7da3aafb9","size":41543,"data":"","first_seen":"2023-03-07T23:16:23Z","last_seen":"2026-05-12T00:23:47.305909Z","times_seen":295,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layer/layer.js?v=1.0.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"d0c975e34297f3e44e99c9d83555ffc1","sha1":"7e465bd79e65428cf07e5991196cff512ce44a4b","sha256":"691aad750624d84b17f2fbb73a4982860edd18837f3000c5b660ac82bf408e82","sha512":"1d9dcd7e1afe695e5716ea55f9a5a3e3aa45852722b4e1a2653ebd3f3a85c8b7a34b15264751f5ee26ea56ee49c8683a00d771197d8b32d9ea53d842d6db3b79","ssdeep":"384:41xCih92A3igrLXSt/SdMrXqE6tGLxzAOTElH0jjhtjfs8:41EiV3i+WtXItqF13k8","tlshash":"56a2b66a754034976323906ad11fba0b31f21d24d7078128f22bb4ae1dbcd95a2b7f5f","size":22104,"data":"","first_seen":"2023-04-05T06:05:22Z","last_seen":"2026-05-14T08:18:34.468053Z","times_seen":5413,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/user.login.js?v=1.0.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":false,"md5":"6b32259e9674d632d168fb89fc112703","sha1":"ec679d41d649c2ebacf09e5577479be815eeee8e","sha256":"c1caa2281c2b88b537542edfbb54d73a5ce88499d3d70eaa90414c5d018cfd03","sha512":"d58af916e95b008b2e91806df2a5d9aafb5080b250be7a71e778ed8ac366087df084037468e05c20dd78d2f868fd9694524083b6733401bd37886e04e0235e66","ssdeep":"192:trUCPUCZLy2ODGHrTonng/iFUGEzSCb9ivCyeBgqKk4lz/2QgPr+lys/OMCXKQDw:trUCPUC9iGYg96H/hUG","tlshash":"9182830994e35913d57370b94b6f560878a680139609ce00bebca6d86f89e798f31ffd","size":19079,"data":"","first_seen":"2023-06-29T13:07:12Z","last_seen":"2025-03-26T01:10:06.893051Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/login/","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"introduction_type":"scriptElement","is_inline":true,"md5":"32c4bfcec683611c38caa0924b1dc1d5","sha1":"62244121c5b24b18e7bafc7d49737be99ad9e22c","sha256":"9d0a532491de3de0aedc5743de7d7c0edc3eb760fb4e764636bd460f256fe3f0","sha512":"4e09f9637f48eaf4d219b6054c6146efb761018ed49d906892b767b352115e09cb0e583c4dad6897c656d5005936d0a3294e87d92e62c097410089b7b07559a1","ssdeep":"","tlshash":"fef0a93e08643ac2eafdd05409420ac1c48e0682e10cee0dbba8544daf1bee10a4197e","size":438,"data":"","first_seen":"2025-03-26T01:10:06.922168Z","last_seen":"2025-03-26T01:10:06.922168Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"85.154.88.226:8088/login/","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-03-26T01:09:40.612Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /login/ HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:40 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nContent-Length: 5688\r\nContent-Language: en\r\nExpires: Wed, 26 Mar 2025 01:09:40 GMT\r\nVary: Cookie,Accept-Language\r\nPragma: no-cache\r\nCache-Control: no-store\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Type: text/html; charset=utf-8\r\nSet-Cookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w; expires=Wed, 25-Mar-2026 01:09:40 GMT; httponly; Max-Age=31449600; Path=/\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5688,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (6124), with no line terminators","md5":"1eb7fd6e33910dd63bd762ae2701eac4","sha1":"909f09ae57308320a3f315dc33b15a8650ef135f","sha256":"b89b31b25d8abb0293e566724aa4a5f03568690744f62f5893a859d21e82c5cc","sha512":"e2984efcadb784bc8765afa2883b14b8a6e36db2f6a71be77e29435d617bd1b923849fb9f890f1eb547f84be3f33a68cdd99dbbbfdc794fbbe5e19610b2b13cf","ssdeep":"48:v2ts2IqF3S4/NvuyrqPEDav6NfW0EUcJqGUghmmSRvrcEYJUJ45hrd5ss4czOuee:vp2Ijurqd3rYcBVeuXcYPZnH9TmQg7O","tlshash":"76c1551628e8d037090189d12c762b3d7c8df1b44b60de0c7bfc0a9e875ae615f77a95","first_seen":"2025-03-26T01:10:06.849928Z","last_seen":"2025-03-26T01:10:06.849928Z","times_seen":1,"resource_available":false,"data":null}},"time_used":504,"timings":{"blocked":148,"dns":0,"connect":162,"send":0,"wait":193,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layui/css/layui.css?v=1.0.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.114Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/layui/css/layui.css?v=1.0.1 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:18 GMT\r\nETag: \"1477e-5c520574f6680\"\r\nAccept-Ranges: bytes\r\nContent-Length: 83838\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":83838,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (780)","md5":"3295c872276a306222b2a3c53433ade7","sha1":"3d3435fb5a657c17566a47c4363dc5eb364cfba8","sha256":"afe62b0c5f73c7c7e7a7e4c61d54d54e1b49e72ee1c464a83c941d7af38c7db8","sha512":"d6b5ad5c8db0e3d213e34d71c35879e1a83ef9411f740bc56cabdaf21d8a4f7da342033ca6524661089efbe6e02ee5013eb7ed3e4b90a52cc571990d0b82fb85","ssdeep":"1536:Icuijd+jygCtVEIXMD7POv6UIw+n38ikZBBB6FwcudW88mikRsVJ:qyRtVvXMD7POv6UDas5B6yWRmXsz","tlshash":"978310a6abb72904380ee1a8349d1ab9b3354481a61fcc78f7e1341f9f4559644b3f8f","first_seen":"2023-06-23T13:32:01Z","last_seen":"2026-05-01T05:42:16.257653Z","times_seen":83,"resource_available":false,"data":null}},"time_used":754,"timings":{"blocked":140,"dns":0,"connect":151,"send":0,"wait":154,"receive":309,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/expiredDays/","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.221Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /expiredDays/ HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nContent-Length: 25\r\nContent-Language: en\r\nExpires: Wed, 26 Mar 2025 01:09:42 GMT\r\nVary: Accept-Language,Cookie\r\nPragma: no-cache\r\nCache-Control: no-store\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Type: text/html; charset=utf-8\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"8c895efebeac92bf88c278aa87d3b4d2","sha1":"762210a4a82558a597dcb4fd6011645e4e75b792","sha256":"2e6285ec5187a1e4dd86879cf447b8e73c0731685b4caca91f1abeb8e34d2150","sha512":"f030ebb56c5b4a72f91faf43130522ac5167d8de11674fb883401f8a4bd166bbf974fa635ee96592340ae3eaa55cef15aa2fd2778f233db0dd1fd1f9430fcc06","ssdeep":"","tlshash":"33800082eb080e820a8223c0808fea3a0a8c0c222832030a2c08e8ac080e8882008e08","first_seen":"2025-03-17T16:46:50.237814Z","last_seen":"2025-03-26T01:10:06.854778Z","times_seen":3,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":148,"dns":0,"connect":150,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/css/base.css?v=1.0.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.116Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/css/base.css?v=1.0.1 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"392e-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 14638\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14638,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"8076fdd7f6f4dc8ac0387182fc72770e","sha1":"3681a1526149b5418b9d927d327fe4146fe2cbc4","sha256":"1d1805522d292f60b7f43ae088e25df70d5529c24dbcb0fa588cb7c37b6fbb14","sha512":"3c3337575e197726a32ba102191a94bd1b7d3eae30bef92eeefce84dfc5d7c4d9cddfa81aa3a433480f6c34844358050fb5cb7f9368a588c5b8479b26f2e94c0","ssdeep":"192:18/Gi4sao3tOFRhiseELY9qoNwdyLaAHssa3yA0CYEO0wOvRiseWCser3J:1854saStOFRAnRfx3J","tlshash":"af626562aaf400053227c094fac2f7a4773e6232650ecdbcbed624eede427c8516a755","first_seen":"2023-06-29T13:07:12Z","last_seen":"2025-09-06T00:08:15.789271Z","times_seen":37,"resource_available":false,"data":null}},"time_used":592,"timings":{"blocked":140,"dns":0,"connect":150,"send":0,"wait":152,"receive":150,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/css/rtl.css?v=1.1.3","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.119Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/css/rtl.css?v=1.1.3 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"1a18-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 6680\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6680,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (6925), with no line terminators","md5":"62bc2c23396bf9cc2cb740b95a7b35fc","sha1":"00c13e0671145f23d6836f514781d989da08ca79","sha256":"d2fd55f2b33d8746a8d8b0e9397a03b7fadb559fa2afd596bd97317425634ece","sha512":"627fc951eb15ade76409f8bfdf4e7dc1626853db79229f0513ff7c2e764a63dae0f9e9e56402e3e9bc2afbed92ef99c240a6551f1e8851e9d8b73285e4103030","ssdeep":"48:YbeUtUOy7lFtwA4U2D5AUVauUEmFfElKTUNfk9Oc8cA47RjgXRIMosOxqJo1zUrz:oZC3iVapl5gNg91joInHqLhb8Fc/rzcI","tlshash":"54e143da686310002fa1e9bae4cf27356ae506cc766e71176ed1f5379d2d40e60a0f3b","first_seen":"2025-03-26T01:10:06.861009Z","last_seen":"2025-03-26T01:10:06.861009Z","times_seen":1,"resource_available":false,"data":null}},"time_used":448,"timings":{"blocked":138,"dns":0,"connect":153,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/css/user.login.css?v=1.0.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.120Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/css/user.login.css?v=1.0.1 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"16a2-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 5794\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5794,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6438), with no line terminators","md5":"183ee52876bda4d17ab70e538eb6dc05","sha1":"a7246e83e00a9574aa6af96c347cb1cd80441fec","sha256":"2f6822a35a192b15db0d5d0789e875e13e69bce115ec4f82a87a24d739209421","sha512":"240fef559a6f82e9e1480a28512fa0c32f213ac6953d15f35a796c5054b7485c57376569ca7c1729ecf467753a48c2eeb11024b924113c3ff983d627c2907588","ssdeep":"192:152/Ivkael1NECm4n1/AASTm5M4MdMbMHNMMY7MGMT:152/TaA0Hm6xWYHGMY4LT","tlshash":"e9d1a0289e1f330e3c42a47e7cd79262012fa8975501cf6e5fb42590ead70cc6a72e76","first_seen":"2025-03-26T01:10:06.864962Z","last_seen":"2025-03-26T01:10:06.864962Z","times_seen":1,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":137,"dns":0,"connect":151,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/locale/i18n.js?v=1.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.126Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/locale/i18n.js?v=1.2 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"25c-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 604\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":604,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (666), with no line terminators","md5":"2e3efc4d207a04897bcc1e4fa64f3db9","sha1":"757bcd4106d29e54b44bfad787d09d236df28b11","sha256":"e977f618fd232615119659a6e840eb1b2c3f03c6138f7442f541fe707ce54667","sha512":"d7aa3dccfa172898b1e510254a9bc9f4024c00e1bb20a36e13e4372cfed16c2f026da3f5ccb253564f5488b5ac3369d4a673932028d7ad4da7432ae8c65d19c1","ssdeep":"","tlshash":"7f012b9c7dcf30180f5560653966d041a2ab78332124d791dcd40064eff05bd9362ef8","first_seen":"2025-03-03T23:11:11.308685Z","last_seen":"2025-03-26T01:10:06.86873Z","times_seen":6,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":287,"dns":1,"connect":162,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/locale/i18n_en.js?v=1.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.128Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/locale/i18n_en.js?v=1.2 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"419f-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 16799\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16799,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T14:59:10.506438Z","times_seen":15171651,"resource_available":true,"data":null}},"time_used":753,"timings":{"blocked":286,"dns":0,"connect":154,"send":0,"wait":156,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/jquery/jquery.form.js?v=4.2.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.130Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/js/jquery/jquery.form.js?v=4.2.2 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:14 GMT\r\nETag: \"a247-5c52057125d80\"\r\nAccept-Ranges: bytes\r\nContent-Length: 41543\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":41543,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"e47754b6386bb56847ec9452f45e8d7e","sha1":"add7fb03598a1023af700f1c034367c2a6c35f80","sha256":"2dd743447ea250fa9ba77c7d0a53151a4544bd94eb21e9ab63ad77b2127f260c","sha512":"11ba27cf9c0a9cb8708a8da676a35c74b0956fff8edd78bd59ee470583c67c06f1da3b5bd3955c1da06d59ad07db5ab289df6e914f5bd21cd7803dfbc68a26c9","ssdeep":"768:rugCnIOZcqPnlHt8xvg+n+1bofXr2cTFxutMny4h3i2YsORYrGKeOMiz1MoVVxXN:r3VqPnlHt8xvg+n+tir2cWtMnyUS2fOC","tlshash":"1613b6c5fbdd12ab463230a54c9e60cd763cd071195098b7fcac66a424d0c7da3aafb9","first_seen":"2023-03-07T23:16:23Z","last_seen":"2026-05-12T00:23:47.305909Z","times_seen":295,"resource_available":true,"data":null}},"time_used":1044,"timings":{"blocked":428,"dns":0,"connect":153,"send":0,"wait":155,"receive":308,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layui/layui.js?v=2.4.3","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.134Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/layui/layui.js?v=2.4.3 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:18 GMT\r\nETag: \"1a0b-5c520574f6680\"\r\nAccept-Ranges: bytes\r\nContent-Length: 6667\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6667,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (6895), with no line terminators","md5":"7a036588584fedf9504d970753394780","sha1":"f269a3648e8507024551d6355a501a6d38d06789","sha256":"815a91e22325f2b98096c8c7bc412b8a9a660ed3f66c36384f5e786baf5b2b43","sha512":"3073fa1c7319e846943716aa44284c3d5c49fc5e44feb845e1edbeb33a4b7d7c7cfae08e2ea3e61b8dc2c99fc8572fbb5e5edb717cd7e73346938ced90fd8e1f","ssdeep":"96:Ju3/uBZmeH0Xy549pCgS17ks9AyqSVrjgHzK6opJgqU7284hEb2wR21v:Jcm3mAUcXVmu6opVU7284d04","tlshash":"b8e1b59cf4b27093476b3126727f502d63bb84ad181c04a0f1cad9e968328bd4373f99","first_seen":"2023-04-11T08:34:42Z","last_seen":"2025-03-26T01:10:06.875424Z","times_seen":15,"resource_available":false,"data":null}},"time_used":903,"timings":{"blocked":584,"dns":0,"connect":157,"send":0,"wait":159,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/media/img/login/logo_zk.png","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.137Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /media/img/login/logo_zk.png HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Thu, 30 Mar 2023 08:40:12 GMT\r\nETag: \"22bb-5f81a0a803cd8\"\r\nAccept-Ranges: bytes\r\nContent-Length: 8891\r\nContent-Type: image/png\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8891,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 169 x 68, 8-bit/color RGB, non-interlaced","md5":"2f92b022edbcefdda48d5f15b57dc4d4","sha1":"05a6de1c7bf4f7447de4bcef6729f1eb0a9d40d1","sha256":"dba80467bbb36d1daeec1c498972cb3f7d66b3f563a8d7ff20972b0a55482a27","sha512":"de4974b98a230530bd869bda8f8f5a74319a673f46f13c38f45d6a4293132ffaa7b3b07468c6ccd112bb6be3626b42d7c0d704e0f23223d8f2a54220052f5dea","ssdeep":"192:WSDS0tKg9E05TwM948qHOh2PdDOOFZihNzUQMygtN82IG9:5JXE05b4dOhq40kAQMb9","tlshash":"da02cf97c448e41d72b434416d9e939bb028539cc39d23284ac653ee57a880baf7e0f1","first_seen":"2024-05-16T12:41:15Z","last_seen":"2025-03-26T01:10:06.884705Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1860,"timings":{"blocked":1531,"dns":0,"connect":163,"send":0,"wait":165,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/user.login.js?v=1.0.2","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.135Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/js/user.login.js?v=1.0.2 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:14 GMT\r\nETag: \"4a87-5c52057125d80\"\r\nAccept-Ranges: bytes\r\nContent-Length: 19079\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19079,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"6b32259e9674d632d168fb89fc112703","sha1":"ec679d41d649c2ebacf09e5577479be815eeee8e","sha256":"c1caa2281c2b88b537542edfbb54d73a5ce88499d3d70eaa90414c5d018cfd03","sha512":"d58af916e95b008b2e91806df2a5d9aafb5080b250be7a71e778ed8ac366087df084037468e05c20dd78d2f868fd9694524083b6733401bd37886e04e0235e66","ssdeep":"192:trUCPUCZLy2ODGHrTonng/iFUGEzSCb9ivCyeBgqKk4lz/2QgPr+lys/OMCXKQDw:trUCPUC9iGYg96H/hUG","tlshash":"9182830994e35913d57370b94b6f560878a680139609ce00bebca6d86f89e798f31ffd","first_seen":"2023-06-29T13:07:12Z","last_seen":"2025-03-26T01:10:06.893051Z","times_seen":21,"resource_available":true,"data":null}},"time_used":1065,"timings":{"blocked":604,"dns":1,"connect":153,"send":0,"wait":156,"receive":150,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/media/img/login/logo_BioTime.png","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.232Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /media/img/login/logo_BioTime.png HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/static/css/user.login.css?v=1.0.1\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Wed, 29 Mar 2023 16:39:41 GMT\r\nETag: \"1f85-5f80c9f711008\"\r\nAccept-Ranges: bytes\r\nContent-Length: 8069\r\nContent-Type: image/png\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8069,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 291 x 65, 8-bit/color RGB, non-interlaced","md5":"70e85a2eb06ed5dac42f9eb1b31302db","sha1":"01eb7edc7993de965313889cf423180e6aec7512","sha256":"8cefbfa2a90d0000ec5b7da494deb1d2e09f90c8c21bc5dd61d3d322bee87996","sha512":"d6081b650ef3bcf3c8e435b4383ec3185aa0a7d1e4e3fd8b5a183ae278b9186fda43a87d70d0ecc91c97c8b078aa2d535aa1c9540e1e200f24bb4ea8ba63a024","ssdeep":"192:4SDS0tKg9E05TDTF34GDDJ883xZSD4GoLCVxgOFYji648:/JXE05FZ88j0ZMSYji6t","tlshash":"99f1b07c68b48996a8df7a800abd1196f3a8f03c838338657ed675ef5118c4b7b51c25","first_seen":"2024-05-16T12:41:15Z","last_seen":"2025-03-26T01:10:06.899211Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1031,"timings":{"blocked":436,"dns":0,"connect":153,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/img/login/fing_disabled.png","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.237Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/img/login/fing_disabled.png HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/static/css/user.login.css?v=1.0.1\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nContent-Length: 232\r\nContent-Type: text/html; charset=iso-8859-1\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":232,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text, with no line terminators","md5":"e4957887b6434ab17737d4e63f4f08f9","sha1":"362c5e432ec397fa182f907422e48a4fd0cef627","sha256":"6082be1638ab412f4c43209194c191f79a0d8dd4df0b4fd68d5734c14a090a57","sha512":"f7797c79bf7df3721cbaa9219cff6ca680fa655c56ced6d97d76dee1e74309ca068fb5e277bf8c53166f25af9233daa33f3f54855f60980df6bced1b9c5b23ea","ssdeep":"","tlshash":"34d0979da503a34a006268d02fc200e1894ec3a2b93907f57d81540cb81e03cc8e69dc","first_seen":"2025-03-17T16:46:50.216594Z","last_seen":"2025-03-26T01:10:06.905266Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1027,"timings":{"blocked":431,"dns":0,"connect":153,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/img/login/button2.png","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.234Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/img/login/button2.png HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/static/css/user.login.css?v=1.0.1\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nContent-Length: 226\r\nContent-Type: text/html; charset=iso-8859-1\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":226,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text, with no line terminators","md5":"904557154dec96681d0fbecbdc6a4ec7","sha1":"66bc054a765bfd8aa463f721d670b3b36a27f5b5","sha256":"48ce6b101bc6a63fc643f2e78ee54404dd74b5ba191d671eb26b71f07dd91530","sha512":"c8f5be322a6b546db21acabd9e57258a16372affe7c68733ebea9eb8d520984d00930230ad7af51841a077a3d8d42585c623ee47de31f99ce3eace82e15738a0","ssdeep":"","tlshash":"6dd0978da403934a002208c02fc200e0884e83a2b92a06f57d816448b80c23d89ea9c8","first_seen":"2025-03-17T16:46:50.239027Z","last_seen":"2025-03-26T01:10:06.908609Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1027,"timings":{"blocked":433,"dns":0,"connect":154,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/media/images/BioTime.ico","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.930Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /media/images/BioTime.ico HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:43 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:28 GMT\r\nETag: \"3aee-5c52057e7fd00\"\r\nAccept-Ranges: bytes\r\nContent-Length: 15086\r\nContent-Type: image/x-icon\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"86462c2adb466b4557785a893c847446","sha1":"cfc64e740420fcf9c627b1b5f12763396fed1d60","sha256":"95f59ecf920fa224acf675e69273bba95d636392462bf7a1a596c4d396b97cd6","sha512":"94542d4b7c9712d6873807675aae7869bddf1cd1b9b6909da637a3c83586fdfbe130fb319aab116ab5311f76df043739febe11aa8fea428d56c830a8c942114d","ssdeep":"48:2wLWO5HNRagg+fVRb8OjYSK5DB983Hlaq4lj7ncIq2M9LNXwn0pM:LtR/g+9lALCaRlnzq99hAt","tlshash":"0c62c4087004f519e5f3faf3695cc2e6e725bc975966d32b38b13a0aba7001bcd4626c","first_seen":"2023-05-22T04:39:05Z","last_seen":"2026-05-01T05:42:16.255217Z","times_seen":182,"resource_available":false,"data":null}},"time_used":464,"timings":{"blocked":0,"dns":0,"connect":153,"send":0,"wait":156,"receive":155,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/font-awesome/css/font-awesome.min.css","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.122Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/font-awesome/css/font-awesome.min.css HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:16 GMT\r\nETag: \"7900-5c5205730e200\"\r\nAccept-Ranges: bytes\r\nContent-Length: 30976\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30976,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (30814)","md5":"9ba15a416f338fa19c0cd8c94ab35aa2","sha1":"1e011b89c5f0773f86e5f3acbdffd32c9f1a72f4","sha256":"b2f2ded918e931c551685dfded6558c8a31db408b8c4ecb2a39a54ba11632327","sha512":"36a683f16f30d6a5ddabe20585cc7c333b38f1ef3ee9155666c9a98b6acaad6ba68f98972eae7ab1ec3f4cbc3c8c2a6ef3028c03df0d3c11e75c42433cb24101","ssdeep":"384:wHs5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaUX:wClr+Klk3Yi+fwYUf2l8yQ/e9vX","tlshash":"30d242e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-05-08T02:05:15Z","last_seen":"2026-05-14T01:35:49.71565Z","times_seen":300,"resource_available":false,"data":null}},"time_used":607,"timings":{"blocked":138,"dns":0,"connect":154,"send":0,"wait":157,"receive":158,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layer/theme/default/layer.css?v=3.1.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:42.200Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/layer/theme/default/layer.css?v=3.1.1 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:42 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:18 GMT\r\nETag: \"381f-5c520574f6680\"\r\nAccept-Ranges: bytes\r\nContent-Length: 14367\r\nContent-Type: text/css\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14367,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14367), with no line terminators","md5":"3d2e0d91c5c0b96abb8dbdc2234aba77","sha1":"9d55e153b30fd7414fada5718e20918e9c7f65e7","sha256":"e3144d018a6a24f733c6fc2a2ee603fb583f0030585e9d4b71bec471b78e31fc","sha512":"42bf3eff281998d088ce012b9a5910f72951c91715595572bb968fbfc5fa2b1cddacef3ca683a1734eb41114b302b6a4dad8b7432c5877b3563a080a2547ae05","ssdeep":"96:mp+Ntha8qNEp+wRY1vUPXiK6nMLPD2OtLzXyPHL/LztJDzyv2OQ7KGx1jyd2/SWz:1WmLr2OtSrzzt42OQ7KGx1jCWR2b+RcU","tlshash":"2e5221e144811299b0278721d6dc7eba32f88d43e5630daef257381f874c6dba2b6647","first_seen":"2023-04-05T06:05:22Z","last_seen":"2026-05-14T10:24:38.462534Z","times_seen":6271,"resource_available":false,"data":null}},"time_used":624,"timings":{"blocked":154,"dns":0,"connect":155,"send":0,"wait":157,"receive":157,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/js/jquery/jquery-2.2.4.js?v=2.2.4","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.125Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/js/jquery/jquery-2.2.4.js?v=2.2.4 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:14 GMT\r\nETag: \"3ee0f-5c52057125d80\"\r\nAccept-Ranges: bytes\r\nContent-Length: 257551\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":257551,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"888d4551b8db7c41cda28d95e494f998","sha1":"26e6b63b81813d8ad942c90d369df2673602b812","sha256":"893e90f6230962e42231635df650f20544ad22affc3ee396df768eaa6bc5a6a2","sha512":"38ab8bda4a62f337de5dca925e719b2fab4a73d2715a6a69258e263929f512c9e045bedfc75379fbbc0e4c6aaed9b23938060bdce83bfc17a0ec4b161b638128","ssdeep":"6144:yeLfh6nxcr8uVgTdp2YmD1BFEFy41vL/2VX82KLHIPf2hADD1+RH:yGxYmDTmFyHsDMPfOADD8RH","tlshash":"a044a4d8f78d112e423231aa9d2f52cdbb7cd1b1560458aebd4d597c24a083c42faf7a","first_seen":"2023-03-07T01:10:13Z","last_seen":"2026-05-14T11:38:31.510679Z","times_seen":1611,"resource_available":true,"data":null}},"time_used":1154,"timings":{"blocked":142,"dns":0,"connect":159,"send":0,"wait":165,"receive":687,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"85.154.88.226:8088/static/layer/layer.js?v=1.0.1","fqdn":"85.154.88.226","domain":"85.154.88.226","tld":""},"ip":{"addr":"85.154.88.226","port":8088,"asn":28885,"as":"Oman Telecommunications Company (S.A.O.G)","country":"Oman","country_code":"OM"},"is_navigation_request":false,"resource_type":"","requested_by":"http://85.154.88.226:8088/login/","date":"2025-03-26T01:09:41.131Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/layer/layer.js?v=1.0.1 HTTP/1.1\r\nHost: 85.154.88.226:8088\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://85.154.88.226:8088/login/\r\nCookie: csrftoken=HQKQ4Q7gDxhpXVqLfiBHYJBuCy7lKptw2XyXH6EGnFUdPFvlEczeiBgay9gFiV2w\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 26 Mar 2025 01:09:41 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nLast-Modified: Sat, 19 Jun 2021 15:46:18 GMT\r\nETag: \"5664-5c520574f6680\"\r\nAccept-Ranges: bytes\r\nContent-Length: 22116\r\nContent-Type: application/javascript\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22116,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T14:59:10.506438Z","times_seen":15171651,"resource_available":true,"data":null}},"time_used":938,"timings":{"blocked":444,"dns":0,"connect":163,"send":0,"wait":166,"receive":164,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-03-26","alert":"Sinkholed","trigger":"85.154.88.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}