Report - 81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

Report Overview

Submitted URL
81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
IP
81.21.59.231
ASN
#39228 Integrated Networks Co.
Submitted
2023-06-05 18:11:05
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
81.21.59.231	unknown	unknown	No data	No data	6.9 kB	335 kB	81.21.59.231

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231
2023-06-05	medium	81.21.59.231

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	81.21.59.231/English/GenScripts94/jQuerycontextMenu/jquery-1.8.2.min.js	93 kB	2023-06-05	2023-06-05
Pretty URL 81.21.59.231/English/GenScripts94/jQuerycontextMenu/jquery-1.8.2.min.js IP 81.21.59.231 ASN #39228 Integrated Networks Co. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen1 Hash 61400ee8b67e905f13336232bf8d056f 74fe4857ad2c7f9f2480d1e9d87a83582c6df4b4 7c055cc40a057b8a2f88c6e14229541256c7d40e5bef7b405a7babac9cabc433 Loading...

	81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR	19 kB	2023-06-05	2023-06-05
Pretty URL 81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR IP 81.21.59.231 ASN #39228 Integrated Networks Co. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen1 Hash a72b6bcc63449111261945fc22ad58f1 68b4992965d59817910fcdd8c4a59ed4c5f3148f ab60cbe1d2e13437ab7647f01891d4bd072defd8442e1b50ca64ca034e3daadd Loading...

	unknown	9 B	2023-06-05	2023-06-05
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen1 Hash c611c2f21bd9f5091c451b947310d3f3 26ca277652de20ee8706c5e49f00087da00121e9 031dd9536ec5b1ab566df0427837d4d72eed6d03d5893b4bb474aaf08778a93b Loading...

	81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR	45 B	2023-06-05	2023-06-05
Pretty URL 81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR IP 81.21.59.231 ASN #39228 Integrated Networks Co. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen1 Hash 908c572962d407615857f5f1a41c6616 4d3efe3288ab960e5e84de56403314a9d7ec343b d781e2e3a1f5ad047947371390812769aceaa4a50662cff0687d58ff0db1e879 Loading...

	81.21.59.231/English/GenScripts94/calendar.js	5.8 kB	2023-06-05	2023-06-05
Pretty URL 81.21.59.231/English/GenScripts94/calendar.js IP 81.21.59.231 ASN #39228 Integrated Networks Co. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen2 Hash f201ed96226a5e98b32c5cd27c67c8dd e107bc5db66e042406943947b6a42f057305b79f 5238ed8cd7ff433187446066b6d767bb36bce2fffe937f965a224f9376f8ce6b Loading...

	81.21.59.231/English/GenScripts94/GenFunctions.js	68 kB	2023-06-05	2023-06-05
Pretty URL 81.21.59.231/English/GenScripts94/GenFunctions.js IP 81.21.59.231 ASN #39228 Integrated Networks Co. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 20:11:11 Last Seen2023-06-05 20:11:11 Times Seen1 Hash d8068331972d995ddfcadd0eab3d12f7 9bc3a92ea0cb13d0146397bfbad231bf8eaedad6 fb1ea618ae1efc576e99659cc7337d1e5918843432cb81d1a74c9faa8036d65b Loading...

HTTP Transactions (16)

URL IP Response Size

81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

81.21.59.231

200 OK

35 kB

URL User Request GET HTTP/1.1
81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (435), with CRLF line terminators
Size
35 kB (35359 bytes)
Hash
72032a335df1313cbbe991679400ea26
c7fcbfafa3a29490fdc2c7581697bdaa6d2a4bb6
941af76e84824166949a9cc0db80b49ce221aad8394315adaaa9d2527e377794

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:10:59 GMT
Content-Length: 35359

81.21.59.231/English/GenScripts94/calendar.js

81.21.59.231

200 OK

5.8 kB

URL GET HTTP/1.1
81.21.59.231/English/GenScripts94/calendar.js
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
ASCII text, with CRLF line terminators
Size
5.8 kB (5819 bytes)
Hash
f201ed96226a5e98b32c5cd27c67c8dd
e107bc5db66e042406943947b6a42f057305b79f
5238ed8cd7ff433187446066b6d767bb36bce2fffe937f965a224f9376f8ce6b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/GenScripts94/calendar.js HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 13 Oct 2016 22:05:43 GMT
Accept-Ranges: bytes
ETag: "7c556f19d25d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:10:59 GMT
Content-Length: 5819

81.21.59.231/English/GenScripts94/Def.css

81.21.59.231

200 OK

36 kB

URL GET HTTP/1.1
81.21.59.231/English/GenScripts94/Def.css
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
HTML document text\012- assembler source, ASCII text, with CRLF line terminators
Size
36 kB (35905 bytes)
Hash
d1c9c21db5202666bc0177cf4df83572
d9ec51b1c2573d8b1a8580a746e94b3bb7fd4923
9a86e13b9830ef72c32db8b3e5efce27de543df2227311782d6445a7997dbc7e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/GenScripts94/Def.css HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 05 Nov 2016 10:14:01 GMT
Accept-Ranges: bytes
ETag: "353d24544d37d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:10:59 GMT
Content-Length: 35905

81.21.59.231/English/GenScripts94/GenFunctions.js

81.21.59.231

200 OK

68 kB

URL GET HTTP/1.1
81.21.59.231/English/GenScripts94/GenFunctions.js
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
ISO-8859 text, with CRLF line terminators
Size
68 kB (67645 bytes)
Hash
0a5f9315f1dd214dd88539b254a732ef
1cfeacdd5606e921724940a34c55e0d6d13b58a4
42e827f87b4b991178b76de47b8f5c8b4d882c14f0edfcbccc5f86ade986a1b8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/GenScripts94/GenFunctions.js HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 05 Nov 2019 10:07:26 GMT
Accept-Ranges: bytes
ETag: "571423d3c093d51:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:10:59 GMT
Content-Length: 67645

81.21.59.231/English/GenScripts94/jQuerycontextMenu/jquery-1.8.2.min.js

81.21.59.231

200 OK

93 kB

URL GET HTTP/1.1
81.21.59.231/English/GenScripts94/jQuerycontextMenu/jquery-1.8.2.min.js
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
Unicode text, UTF-8 text, with very long lines (65481)
Size
93 kB (93434 bytes)
Hash
1d14cd3798bc4d6aaf65dd625870723f
0809f9f5caa2642b9dea8bf59133180bfd7c1d6f
04bebecfb9f7ce92cf947ce283fccf067cf6870f65af3456dd22b6c102447c83

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/GenScripts94/jQuerycontextMenu/jquery-1.8.2.min.js HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 02 Nov 2016 09:59:38 GMT
Accept-Ranges: bytes
ETag: "8123fcd2ef34d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:10:59 GMT
Content-Length: 93434

81.21.59.231/English/Images94/QuickAccess/qa_details_button.jpg

81.21.59.231

200 OK

15 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/QuickAccess/qa_details_button.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=20, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=20], baseline, precision 8, 20x20, components 3\012- data
Size
15 kB (15242 bytes)
Hash
03741678c49174710271b7caa9dd7283
e09139ad7f8f93296471460c79a5f36b4d7fd8f5
ee30359193ea16b4b6aa7fb150fd2917d5a052b441a21aa9a3808fe49221e2d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/QuickAccess/qa_details_button.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Thu, 27 Oct 2016 10:07:12 GMT
Accept-Ranges: bytes
ETag: "04897e23930d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 15242

81.21.59.231/English/Images94/QuickAccess/qa_calendar_button.jpg

81.21.59.231

200 OK

8.6 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/QuickAccess/qa_calendar_button.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=20, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=20], baseline, precision 8, 20x20, components 3\012- data
Size
8.6 kB (8577 bytes)
Hash
3b4a7cea935422c53d82d0c976636c14
573eba98da0a841151f57f6c1067a6e827bb5a73
c3990d4196bee37b38ab3407fa58bbaf79bc7698c0c9bd3a8df4848b1ffd5587

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/QuickAccess/qa_calendar_button.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Thu, 27 Oct 2016 09:42:58 GMT
Accept-Ranges: bytes
ETag: "07df07f3630d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8577

81.21.59.231/English/Images94/mainWindow/window_header_bg.jpg

81.21.59.231

200 OK

9.5 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_header_bg.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 125x125, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2016:10:25 12:43:48], progressive, precision 8, 3x39, components 3\012- data
Size
9.5 kB (9510 bytes)
Hash
34755e4c04d90eb93d36be6a24c44662
3bc25bd6494e484a6ff8f550603977b61c05526e
b99a33f4a49ca323423371baa8247c8dcb6850fca337054307d71bf72fa1fb1b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_header_bg.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Tue, 25 Oct 2016 09:43:50 GMT
Accept-Ranges: bytes
ETag: "08f1b4aa42ed21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 9510

81.21.59.231/English/Images94/mainWindow/window_top_left_corner.jpg

81.21.59.231

200 OK

8.7 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_top_left_corner.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=39, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=18], progressive, precision 8, 18x38, components 3\012- data
Size
8.7 kB (8676 bytes)
Hash
7f3323c6fb3937fbc78eb357b475392e
eb14ffd10b6ebfad8f93b43f4b41e9407cb16d1f
9633da5c9aef7bf794691d149c0dbb6e44aa20003d6aed1a0be5bc2788ab8e74

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_top_left_corner.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Tue, 25 Oct 2016 14:01:48 GMT
Accept-Ranges: bytes
ETag: "0eeb653c82ed21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8676

81.21.59.231/English/Images94/mainWindow/window_left_border.jpg

81.21.59.231

200 OK

8.1 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_left_border.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=18], progressive, precision 8, 18x2, components 3\012- data
Size
8.1 kB (8079 bytes)
Hash
e011ba0384df56c91839972e39755254
6d2f58e74ff6bfda8c19a2bdf191afe87f3741be
b9501789f334cc50d467932fd71f18793728ed1d05f41f93c8a9a4313aded7e5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_left_border.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 04 Nov 2016 08:50:06 GMT
Accept-Ranges: bytes
ETag: "0b395707836d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8079

81.21.59.231/English/Images94/mainWindow/window_right_border.jpg

81.21.59.231

200 OK

8.3 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_right_border.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=18], progressive, precision 8, 18x2, components 3\012- data
Size
8.3 kB (8280 bytes)
Hash
52fb9dbb233cc46be3af534b87877e77
327aa199127198780eb38e7f3911ef66930056d8
7dbe741b24fc8ce028a71b64ecdcd1538e0b4c21a1e8afcbb012f224d7b3c504

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_right_border.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 04 Nov 2016 08:55:00 GMT
Accept-Ranges: bytes
ETag: "08ad21f7936d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8280

81.21.59.231/English/Images94/mainWindow/window_bottom_left_corner.jpg

81.21.59.231

200 OK

8.5 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_bottom_left_corner.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=18, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=18], progressive, precision 8, 18x18, components 3\012- data
Size
8.5 kB (8498 bytes)
Hash
a36e2e9f75030edc6267a8cfa1f0cb99
3d18e4114e92ab082b9e668dda2d29cd17bddac8
92d98c0f400d173769c8e1699eda8f7b8f70da64b9779019e9f4c245863e4243

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_bottom_left_corner.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 04 Nov 2016 11:22:16 GMT
Accept-Ranges: bytes
ETag: "0247db28d36d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8498

81.21.59.231/English/Images94/Dashboard/tab_header.jpg

81.21.59.231

200 OK

8.5 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/Dashboard/tab_header.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=29, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=171], baseline, precision 8, 171x29, components 3\012- data
Size
8.5 kB (8477 bytes)
Hash
737aca86c24507de24b22a321f77cca8
3a159e6040cf89000e0cb1992f2500f37ad4025b
6d8b56c22d4f4194ba40c16d79918a265577b4e31bdcb0b1a2b28cd8ac1321c0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/Dashboard/tab_header.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Thu, 27 Oct 2016 15:12:46 GMT
Accept-Ranges: bytes
ETag: "0ab81926430d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8477

81.21.59.231/English/Images94/mainWindow/window_bottom_border.jpg

81.21.59.231

200 OK

8.0 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_bottom_border.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=18, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=3], progressive, precision 8, 3x18, components 3\012- data
Size
8.0 kB (8030 bytes)
Hash
7884f981a0869974b47b903d81710aca
6c85ab415acee6379efb421658984c32d0de886b
28bfa7c3fbf1cc49395b919a96ba40d0b3f1e23974573c449c981170552fcec6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_bottom_border.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Tue, 25 Oct 2016 15:21:28 GMT
Accept-Ranges: bytes
ETag: "0cd174d32ed21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8030

81.21.59.231/English/Images94/mainWindow/window_bottom_right_corner.jpg

81.21.59.231

200 OK

8.5 kB

URL GET HTTP/1.1
81.21.59.231/English/Images94/mainWindow/window_bottom_right_corner.jpg
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=18, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=18], progressive, precision 8, 18x17, components 3\012- data
Size
8.5 kB (8549 bytes)
Hash
eb0ad182f7572106a1015f1c61b7f46c
f0e39190b857d2dc80349331cb007c2aca61a152
18e48c5ac888ffbc66ff805778eedc7e9dc02d71988cd64edb74e8b5a7dd66e4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /English/Images94/mainWindow/window_bottom_right_corner.jpg HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/English/GenScripts94/Def.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 04 Nov 2016 15:33:46 GMT
Accept-Ranges: bytes
ETag: "069d4d4b036d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 8549

81.21.59.231/favicon.ico

81.21.59.231

404 Not Found

1.2 kB

URL GET HTTP/1.1
81.21.59.231/favicon.ico
IP
81.21.59.231:80
ASN
#39228 Integrated Networks Co.

Requested by
http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 81.21.59.231
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.21.59.231/Magic94Scripts/mgrqispi94.dll?appname=RentProWeb&prgName=FleetQAProceed&Arguments=-ANRT,-A1907XXR,-AR
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 18:11:01 GMT
Content-Length: 1245

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size