Report - 89.165.11.162/

Report Overview

Submitted URL
89.165.11.162/
IP
89.165.11.162
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock
Submitted
2024-04-24 22:08:09
Access
public
Website Title
کنترل تصویری آروین
Final URL
89.165.11.162/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
108

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
89.165.11.162	unknown	unknown	2020-08-29	2024-02-12	19 kB	1.6 MB	89.165.11.162
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	443 B	2.5 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed
2024-04-24	medium	89.165.11.162	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	89.165.11.162/assets/js/pages/crypto.js	1.9 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/pages/crypto.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen3 Hash 97a0ba011282530652954ac48fada26a 764e22c58da5a4fa829f4f437ded85b881f31633 7404bc60565d7b79bc253ed71c8caf26de3baae51642bb848b07bf36f3f015cc Loading...

	89.165.11.162/assets/js/jquery-3.5.0.js	304 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/jquery-3.5.0.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:15 Last Seen2024-04-25 00:08:16 Times Seen7 Hash 1f1956099ba0c57316f374f1552c1292 cccd082d26e93cf8ee088ca2e6398e0eba5c740c 5a828791b52e474ab517b688054566c62c4241a9036c41a5a8a2d108a226b3e0 Loading...

	89.165.11.162/assets/js/vendor/particles.min.js	23 kB	2023-03-07	2024-05-03
Pretty URL 89.165.11.162/assets/js/vendor/particles.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:44 Last Seen2024-05-03 14:49:13 Times Seen1700 Hash 00debcf6cf0789a19cee2278011afcd4 8017f8b1869077db728573f1ca4684a00af69462 faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6 Loading...

	89.165.11.162/assets/js/vendor/waypoints.min.js	8.1 kB	2023-03-07	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/waypoints.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:28 Last Seen2024-04-25 00:08:16 Times Seen45 Hash 11096be84461dadca1f2aa83d8e02633 fe8e3cb38db85482c8a6472ff02c774500fbb8f3 1f0a1ea7459665fc1b4f4513a3eaaed4e7c09ac371475a6e143fb2e849032b2c Loading...

	89.165.11.162/assets/js/vendor/charming.min.js	527 B	2023-03-07	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/charming.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:32 Last Seen2024-04-25 00:08:16 Times Seen150 Hash 1b2c3d21f8770c7a6bd1e63b09dabbf9 2e98b20c6c39eb7b8fc26f3aa433410d60196fff 9399b34e78691ba16cd2b74b4a5da602373904e4a5bfa824212841a5e509f9a0 Loading...

	89.165.11.162/assets/js/vendor/jquery.bxslider.min.js	19 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/jquery.bxslider.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:15 Last Seen2024-04-25 00:08:16 Times Seen9 Hash 18074f4d857a8c4d914cdaee80bdafa8 8ab77c068f5f53f6a4d84759f5fa90bccb15f043 e9b72f861597b79c1b542a7259485dc94f2b63b608ca10db1ee23d116a683e1f Loading...

	89.165.11.162/assets/js/vendor/aos.js	16 kB	2023-03-08	2024-05-01
Pretty URL 89.165.11.162/assets/js/vendor/aos.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-05-01 15:28:57 Times Seen48 Hash b2796cc548f0cc01f8750deee9d7e1d2 acd76e0d813b6206cb230128edb8d917d1c1b98b f0000bf505fe88a47b03520b3d8785fa97d5d466da3d621fa3831d341f5d8dca Loading...

	89.165.11.162/assets/js/jquery-migrate.min.js	12 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/jquery-migrate.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen7 Hash dcc9d3fa175bd4a6ad1b14be4e303b6b abd4278c692abddf102e3ff414728ab395cccf2f f6c486663e0278f588db30169ed4397e5d99ac4ed67776883e122fce1b0a675d Loading...

	89.165.11.162/assets/js/vendor/animation.gsap.js	12 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/animation.gsap.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen13 Hash 1649b66a94f401f82d19a6764edb779f f9895d9192a8abfe2c153e8927c32fb3f4512512 74eb8863cf4a5e4691a4852c2fcee1a91d0fda9c59ec66c6e111cf3b601f3870 Loading...

	89.165.11.162/assets/js/vendor/jquery.counterup.min.js	1.1 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/jquery.counterup.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen67 Hash b6aa7ddcfe37fd7be71a5d34e61a293e ae383c5d72476bf2413e548b374637f7dfa64a47 bc039ab4c48588cf427de0384b0b330e4c7c4470f8ca57cb94ff990645b98eab Loading...

	89.165.11.162/assets/js/vendor/imagesloaded.pkgd.min.js	5.4 kB	2023-03-07	2024-04-28
Pretty URL 89.165.11.162/assets/js/vendor/imagesloaded.pkgd.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:10 Last Seen2024-04-28 12:45:33 Times Seen733 Hash 1a4b132632e8444a9d67a33668e195a5 82cde155ddab45d7475754357e3874b1e3ccf911 cc0761f78d43a0b157b46506641105ff8ea4601efa6aa56adda0938dac1c4b0b Loading...

	89.165.11.162/assets/js/vendor/sharer.js	21 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/sharer.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen7 Hash bed8919dc2cfaf08db623a24d1688520 e0efdb1c6af40844a538ae8b50e3ff519af394b6 35eecb2c94fc3e2d7105fe21e7f41da63fc4a7ae6e8a918eeea50ad8be7be961 Loading...

	89.165.11.162/assets/js/bootstrap.min.js	60 kB	2023-03-07	2024-05-03
Pretty URL 89.165.11.162/assets/js/bootstrap.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-03 16:41:47 Times Seen6393 Hash 6bea60c34c5db6797150610dacdc6bce 544afefd148715da7dd52d368a414703390ca0e0 38544024da1a0fc2f706be6582557b5722d17f48ad9a8073594a0cf928e2e3ff Loading...

	89.165.11.162/assets/js/vendor/ScrollMagic.js	107 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/ScrollMagic.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen8 Hash 1cca49320f430a7274790c61813acb16 d6ea4a02916c1803ddc53757f5cefdc7e60a5703 7bdbe5a9a12253b244f9b5450aa4a9a41203113fe943f8107b17237ffb65cbce Loading...

	89.165.11.162/assets/js/vendor/debug.addIndicators.min.js	30 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/debug.addIndicators.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen8 Hash da5572db93d3ff405948e73a3c3c9c56 03e398d17a4e67fc2c1c28548a972b05b021a34c fa0da945935727c97115690e7da4c599e53f8c762ca4b1b9e22e5b6efddb0b53 Loading...

	89.165.11.162/assets/js/vendor/simpleParallax.min.js	9.4 kB	2023-03-08	2024-05-01
Pretty URL 89.165.11.162/assets/js/vendor/simpleParallax.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:15 Last Seen2024-05-01 15:28:57 Times Seen38 Hash 5e3f64d7d2b142860eb63a73b87b0c27 39f26de957c3e1f3a032f4ad27bf175778e684ea 5c659b80a39a476ac5d82c7c7816a1f48cb893add4133c4bcd8a8de93cc764c6 Loading...

	89.165.11.162/assets/js/main.js	20 kB	2024-04-25	2024-04-25
Pretty URL 89.165.11.162/assets/js/main.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 00:08:16 Last Seen2024-04-25 00:08:16 Times Seen2 Hash 53694658d879e55d6b5b85b19be9a1a0 b4a0aa7892c0ce86d9651c27ea9a8c60d7685a8c 4c203e08e5bfcd21b2206915b89be2bbc91b58194aca21f6d1539d8f71af9685 Loading...

	89.165.11.162/assets/js/popper.min.js	21 kB	2023-03-07	2024-05-03
Pretty URL 89.165.11.162/assets/js/popper.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:57 Last Seen2024-05-03 12:21:13 Times Seen586 Hash 07c3b4cdb94a0d798766707684e13ab2 f36207302e2884b7a983da18e40fa7834bb8a995 bdb2e9deef68ae1f1263363f7a7bae58a913cc1b2cee2e3cd2c46bcd181ebf75 Loading...

	89.165.11.162/assets/js/vendor/TweenMax.min.js	108 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/TweenMax.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen9 Hash 4383f3059c51ae7fab95bf7abbd40aba 78b833a933a05eacc4be39b24b90e945f9658a23 c4d5640c54331dd195ad32807e637eab69dd47f69cb4cd945be50a1a76d1cdea Loading...

	89.165.11.162/assets/js/vendor/swiper.min.js	140 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/swiper.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen7 Hash 6167b6a43f33b5da3e14fd0436bf4a98 44a86d2a5e984333ea819df89e9c4d1c3417e948 577d67a244aa838982547dea649504bb047f4939a1ce78731eb9ea3781198e84 Loading...

	89.165.11.162/assets/js/vendor/countdown.js	7.8 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/countdown.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen7 Hash 4178e7f4442b758afb2aa27f15b3655a 09b05dab5c74feeffc6de99c9c913c05635f623c 9ac0791831afadb72727a806f68d0ba6f9eacb978cbec5bd284048fb9254fc91 Loading...

	89.165.11.162/assets/js/vendor/sticky.min.js	6.9 kB	2023-03-08	2024-04-25
Pretty URL 89.165.11.162/assets/js/vendor/sticky.min.js IP 89.165.11.162 ASN #39501 Parvaresh Dadeha Co. Private Joint Stock Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:06:14 Last Seen2024-04-25 00:08:16 Times Seen16 Hash cf9cf27d88cc01fd9fe22976aaa57159 83441c22447dbb8b2a04ea6b69c943fc14af44ce 98e905071dd917789ed866d0226a5f4bea6151f084ef643f5148ff6d2caa97ac Loading...

HTTP Transactions (55)

URL IP Response Size

89.165.11.162/

89.165.11.162

13 kB

URL User Request GET
89.165.11.162/
IP
89.165.11.162:0
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
13 kB (13108 bytes)
Hash
9dc83ff6706a8f87d0671d0cb892991c
0cfde87319798f31ff4f457fc1eed2ce7a20cc70
ddb90d446c8f30d6102d2140f9185ffe162f2bfbef63c10a9f2bfbbe6484d823

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:43 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 30 Aug 2023 09:52:00 GMT
ETag: "17b8b-60420e0f6d000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13108
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

89.165.11.162/

89.165.11.162

13 kB

URL User Request GET
89.165.11.162/
IP
89.165.11.162:0
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
13 kB (13108 bytes)
Hash
9dc83ff6706a8f87d0671d0cb892991c
0cfde87319798f31ff4f457fc1eed2ce7a20cc70
ddb90d446c8f30d6102d2140f9185ffe162f2bfbef63c10a9f2bfbbe6484d823

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 30 Aug 2023 09:52:00 GMT
ETag: "17b8b-60420e0f6d000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13108
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

89.165.11.162/assets/css/bootstrap-rtl.min.css

89.165.11.162

200 OK

23 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/bootstrap-rtl.min.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with very long lines (65324)
Size
23 kB (23011 bytes)
Hash
57599b600d1ef7724d812b40bc355df7
c43d0f5e1e7cd24c29d1a10be0393a312b4b197a
dad0a979249350ca35c673d24e1a054046cfa85d146fe36ecdf4f77bfb59a454

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/bootstrap-rtl.min.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 19 Jun 2020 18:30:24 GMT
ETag: "256e0-5a87416199000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23011
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/css/swiper.min.css

89.165.11.162

200 OK

4.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/swiper.min.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with very long lines (13411), with CRLF line terminators
Size
4.1 kB (4133 bytes)
Hash
1f48cfc808cb59630e2d9fc158346802
6e331a969d48ae4f9fb703f10aee7b8a45169181
049989b64819c072c8dc4f2ff5230ae5a9c4a37e415cb9e9e85df147d9ba9266

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/swiper.min.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 18 Apr 2020 12:59:30 GMT
ETag: "356e-5a3903c8c5080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4133
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/css/animate.css

89.165.11.162

200 OK

4.8 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/animate.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with CRLF line terminators
Size
4.8 kB (4818 bytes)
Hash
57de9eee77d1ad6bddcdbd74d7fe6126
773d406c486bf652ea9c7ca499917de82e6b81f4
281b8bc5d277fa7176fdf239f8288f5684c47485a2e809976090f74f87d3a21c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/animate.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 14 Apr 2020 16:51:38 GMT
ETag: "13e7c-5a343035b3a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4818
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/css/icons.css

89.165.11.162

200 OK

8.9 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/icons.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
assembler source, ASCII text
Size
8.9 kB (8913 bytes)
Hash
2fc43b9d1b8a9e96256f39d5f5467906
d9079250c98bd670bb792b407b06772b9ef50835
c164f2ca26ecd872384c60c9fa1885a604f56be4d5c5918842899eddcbe40b75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/icons.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 14 Apr 2020 16:01:42 GMT
ETag: "ca4f-5a34250c7e580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8913
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/fonts/iranSans/css/fontiran.css

89.165.11.162

200 OK

368 B

URL GET HTTP/1.1
89.165.11.162/assets/fonts/iranSans/css/fontiran.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Unicode text, UTF-8 (with BOM) text
Size
368 B (368 bytes)
Hash
4e2ad0cd463d0f0a5aef2d0a2afe8201
61b39ad203dd771ee5866a267be9d18f0269b923
5eb4235722fcfa9e7ed377331c19454782d9d2a5dff6384e24ead7338b234f34

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/iranSans/css/fontiran.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 26 Dec 2020 15:14:53 GMT
ETag: "98a-5b75f80b9f540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 368
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/css/normalize.css

89.165.11.162

200 OK

2.8 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/normalize.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
2.8 kB (2849 bytes)
Hash
58cb3e9def0a8a856c8349d93685d52e
cb7744c7052c1d0500cb2634c4ee9e13caacb98c
911574b90685631c1a38abdbe423b289bd603557512a15b33b513e27c75adae2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/normalize.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 26 Jul 2023 11:58:19 GMT
ETag: "2947-6016290430cc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2849
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/js/jquery-migrate.min.js

89.165.11.162

200 OK

3.5 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/jquery-migrate.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.5 kB (3489 bytes)
Hash
dcc9d3fa175bd4a6ad1b14be4e303b6b
abd4278c692abddf102e3ff414728ab395cccf2f
f6c486663e0278f588db30169ed4397e5d99ac4ed67776883e122fce1b0a675d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/jquery-migrate.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 23 Feb 2020 09:54:08 GMT
ETag: "2d5d-59f3b3c5a7000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3489
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/popper.min.js

89.165.11.162

200 OK

7.5 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/popper.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (20831), with CRLF line terminators
Size
7.5 kB (7463 bytes)
Hash
07c3b4cdb94a0d798766707684e13ab2
f36207302e2884b7a983da18e40fa7834bb8a995
bdb2e9deef68ae1f1263363f7a7bae58a913cc1b2cee2e3cd2c46bcd181ebf75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/popper.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 23 Feb 2020 09:54:08 GMT
ETag: "5211-59f3b3c5a7000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7463
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/particles.min.js

89.165.11.162

200 OK

6.0 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/particles.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with very long lines (23002)
Size
6.0 kB (5959 bytes)
Hash
00debcf6cf0789a19cee2278011afcd4
8017f8b1869077db728573f1ca4684a00af69462
faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/particles.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 25 Mar 2017 20:46:20 GMT
ETag: "5b44-54b9433ceff00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5959
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/bootstrap.min.js

89.165.11.162

200 OK

15 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/bootstrap.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (59893)
Size
15 kB (14890 bytes)
Hash
6bea60c34c5db6797150610dacdc6bce
544afefd148715da7dd52d368a414703390ca0e0
38544024da1a0fc2f706be6582557b5722d17f48ad9a8073594a0cf928e2e3ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/bootstrap.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 12 May 2020 18:52:00 GMT
ETag: "eb0e-5a577f560b400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14890
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/jquery-3.5.0.js

89.165.11.162

200 OK

86 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/jquery-3.5.0.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
86 kB (86010 bytes)
Hash
1f1956099ba0c57316f374f1552c1292
cccd082d26e93cf8ee088ca2e6398e0eba5c740c
5a828791b52e474ab517b688054566c62c4241a9036c41a5a8a2d108a226b3e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/jquery-3.5.0.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Jul 2020 07:11:56 GMT
ETag: "4a253-5ab2ab028e700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/animation.gsap.js

89.165.11.162

200 OK

4.3 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/animation.gsap.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
4.3 kB (4281 bytes)
Hash
1649b66a94f401f82d19a6764edb779f
f9895d9192a8abfe2c153e8927c32fb3f4512512
74eb8863cf4a5e4691a4852c2fcee1a91d0fda9c59ec66c6e111cf3b601f3870

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/animation.gsap.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 15 Apr 2020 22:52:34 GMT
ETag: "2fa0-5a35c2bfef080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4281
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/debug.addIndicators.min.js

89.165.11.162

200 OK

6.4 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/debug.addIndicators.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
6.4 kB (6434 bytes)
Hash
da5572db93d3ff405948e73a3c3c9c56
03e398d17a4e67fc2c1c28548a972b05b021a34c
fa0da945935727c97115690e7da4c599e53f8c762ca4b1b9e22e5b6efddb0b53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/debug.addIndicators.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 15 Apr 2020 23:04:22 GMT
ETag: "754e-5a35c56322980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6434
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/countdown.js

89.165.11.162

200 OK

1.7 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/countdown.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
1.7 kB (1714 bytes)
Hash
4178e7f4442b758afb2aa27f15b3655a
09b05dab5c74feeffc6de99c9c913c05635f623c
9ac0791831afadb72727a806f68d0ba6f9eacb978cbec5bd284048fb9254fc91

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/countdown.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 20:52:14 GMT
ETag: "1e68-5a40f8a38db80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1714
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/TweenMax.min.js

89.165.11.162

200 OK

36 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/TweenMax.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (32066), with CRLF line terminators
Size
36 kB (35955 bytes)
Hash
4383f3059c51ae7fab95bf7abbd40aba
78b833a933a05eacc4be39b24b90e945f9658a23
c4d5640c54331dd195ad32807e637eab69dd47f69cb4cd945be50a1a76d1cdea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/TweenMax.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 15 Apr 2020 22:51:58 GMT
ETag: "1a5c9-5a35c29d99f80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35955
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/ScrollMagic.js

89.165.11.162

200 OK

25 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/ScrollMagic.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (330), with CRLF line terminators
Size
25 kB (25290 bytes)
Hash
1cca49320f430a7274790c61813acb16
d6ea4a02916c1803ddc53757f5cefdc7e60a5703
7bdbe5a9a12253b244f9b5450aa4a9a41203113fe943f8107b17237ffb65cbce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/ScrollMagic.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 15 Apr 2020 22:52:20 GMT
ETag: "1a12c-5a35c2b295100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 25290
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/simpleParallax.min.js

89.165.11.162

200 OK

2.9 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/simpleParallax.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (9181), with CRLF line terminators
Size
2.9 kB (2891 bytes)
Hash
5e3f64d7d2b142860eb63a73b87b0c27
39f26de957c3e1f3a032f4ad27bf175778e684ea
5c659b80a39a476ac5d82c7c7816a1f48cb893add4133c4bcd8a8de93cc764c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/simpleParallax.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Thu, 30 Apr 2020 00:11:00 GMT
ETag: "24c7-5a476e6460d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2891
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/jquery.counterup.min.js

89.165.11.162

200 OK

577 B

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/jquery.counterup.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (917)
Size
577 B (577 bytes)
Hash
b6aa7ddcfe37fd7be71a5d34e61a293e
ae383c5d72476bf2413e548b374637f7dfa64a47
bc039ab4c48588cf427de0384b0b330e4c7c4470f8ca57cb94ff990645b98eab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/jquery.counterup.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 01 May 2020 22:54:06 GMT
ETag: "42c-5a49e0ef0bf80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 577
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/swiper.min.js

89.165.11.162

200 OK

36 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/swiper.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (65271), with CRLF line terminators
Size
36 kB (35607 bytes)
Hash
6167b6a43f33b5da3e14fd0436bf4a98
44a86d2a5e984333ea819df89e9c4d1c3417e948
577d67a244aa838982547dea649504bb047f4939a1ce78731eb9ea3781198e84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/swiper.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:44 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 18 Apr 2020 12:59:14 GMT
ETag: "22132-5a3903b982c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35607
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/waypoints.min.js

89.165.11.162

200 OK

2.6 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/waypoints.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (7808), with CRLF line terminators
Size
2.6 kB (2628 bytes)
Hash
11096be84461dadca1f2aa83d8e02633
fe8e3cb38db85482c8a6472ff02c774500fbb8f3
1f0a1ea7459665fc1b4f4513a3eaaed4e7c09ac371475a6e143fb2e849032b2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/waypoints.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 01 May 2020 22:54:52 GMT
ETag: "1f75-5a49e11aea700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2628
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/charming.min.js

89.165.11.162

200 OK

354 B

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/charming.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (527), with no line terminators
Size
354 B (354 bytes)
Hash
1b2c3d21f8770c7a6bd1e63b09dabbf9
2e98b20c6c39eb7b8fc26f3aa433410d60196fff
9399b34e78691ba16cd2b74b4a5da602373904e4a5bfa824212841a5e509f9a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/charming.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 13 May 2019 11:45:46 GMT
ETag: "20f-588c374f88e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 354
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/imagesloaded.pkgd.min.js

89.165.11.162

200 OK

1.8 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/imagesloaded.pkgd.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (5324)
Size
1.8 kB (1765 bytes)
Hash
1a4b132632e8444a9d67a33668e195a5
82cde155ddab45d7475754357e3874b1e3ccf911
cc0761f78d43a0b157b46506641105ff8ea4601efa6aa56adda0938dac1c4b0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/imagesloaded.pkgd.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 13 May 2019 11:45:46 GMT
ETag: "1541-588c374f88e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1765
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/jquery.bxslider.min.js

89.165.11.162

200 OK

5.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/jquery.bxslider.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (18804), with CRLF line terminators
Size
5.1 kB (5131 bytes)
Hash
18074f4d857a8c4d914cdaee80bdafa8
8ab77c068f5f53f6a4d84759f5fa90bccb15f043
e9b72f861597b79c1b542a7259485dc94f2b63b608ca10db1ee23d116a683e1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/jquery.bxslider.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 27 Jun 2020 12:50:46 GMT
ETag: "4abe-5a9104634f580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5131
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/sharer.js

89.165.11.162

200 OK

3.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/sharer.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.1 kB (3123 bytes)
Hash
bed8919dc2cfaf08db623a24d1688520
e0efdb1c6af40844a538ae8b50e3ff519af394b6
35eecb2c94fc3e2d7105fe21e7f41da63fc4a7ae6e8a918eeea50ad8be7be961

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/sharer.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 25 Sep 2020 12:45:42 GMT
ETag: "5191-5b022b1ce0980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3123
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/sticky.min.js

89.165.11.162

200 OK

1.8 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/sticky.min.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (6944), with no line terminators
Size
1.8 kB (1790 bytes)
Hash
cf9cf27d88cc01fd9fe22976aaa57159
83441c22447dbb8b2a04ea6b69c943fc14af44ce
98e905071dd917789ed866d0226a5f4bea6151f084ef643f5148ff6d2caa97ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/sticky.min.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 25 Sep 2020 13:03:04 GMT
ETag: "1b20-5b022efe9b200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1790
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/vendor/aos.js

89.165.11.162

200 OK

5.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/vendor/aos.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with very long lines (15756), with no line terminators
Size
5.1 kB (5122 bytes)
Hash
b2796cc548f0cc01f8750deee9d7e1d2
acd76e0d813b6206cb230128edb8d917d1c1b98b
f0000bf505fe88a47b03520b3d8785fa97d5d466da3d621fa3831d341f5d8dca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/vendor/aos.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 17 Aug 2020 19:10:24 GMT
ETag: "3d8c-5ad1785c9c800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5122
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/main.js

89.165.11.162

200 OK

4.3 kB

URL GET HTTP/1.1
89.165.11.162/assets/js/main.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
4.3 kB (4347 bytes)
Hash
53694658d879e55d6b5b85b19be9a1a0
b4a0aa7892c0ce86d9651c27ea9a8c60d7685a8c
4c203e08e5bfcd21b2206915b89be2bbc91b58194aca21f6d1539d8f71af9685

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/main.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 25 Jul 2023 03:49:23 GMT
ETag: "4c73-601479ddbd6c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4347
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/js/pages/crypto.js

89.165.11.162

200 OK

517 B

URL GET HTTP/1.1
89.165.11.162/assets/js/pages/crypto.js
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
517 B (517 bytes)
Hash
97a0ba011282530652954ac48fada26a
764e22c58da5a4fa829f4f437ded85b881f31633
7404bc60565d7b79bc253ed71c8caf26de3baae51642bb848b07bf36f3f015cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/pages/crypto.js HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 29 Jul 2020 20:26:32 GMT
ETag: "746-5ab9a5f13ce00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 517
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

89.165.11.162/assets/css/aos.css

89.165.11.162

200 OK

2.5 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/aos.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2530 bytes)
Hash
aa03e4f38ae4b64b57e1f4f221a95db8
d9814fc2d252f70da0e86569e8046da82074216a
628b3847e6fd1d281bae6d2af3b3f33752634ec27af37a6f9d172b5e8dac0b7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/aos.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 17 Aug 2020 20:52:08 GMT
ETag: "8008-5ad18f19d6e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2530
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

89.165.11.162/assets/css/main-rtl.css

89.165.11.162

200 OK

71 kB

URL GET HTTP/1.1
89.165.11.162/assets/css/main-rtl.css
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
ASCII text, with very long lines (347), with CRLF line terminators
Size
71 kB (70727 bytes)
Hash
2131c6b21da748a957fd6cb5e73eb198
2bb9facee1d8223f700202c32deb633afb4dec26
8b99154468775e0a251779b413edd1572ca0e6570cb7fcf0a767b3a2f502683f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/main-rtl.css HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 24 Jul 2023 13:36:09 GMT
ETag: "96e74-6013bb2756440-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

89.165.11.162/assets/img/icons/energy.svg

89.165.11.162

200 OK

1.9 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/energy.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
1.9 kB (1911 bytes)
Hash
a3ffed35d7a42e17cc56bcda146fd2f6
022d8b5a2e1bf736c231eceb64d5f01a87cda775
79f587c3080a7087a7dc25094693ce0c2dbe1fcb12ede08cd1a48d58fb59b9e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/energy.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:02:56 GMT
ETag: "777-5a4115da44800"
Accept-Ranges: bytes
Content-Length: 1911
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/houses.svg

89.165.11.162

200 OK

3.2 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/houses.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
3.2 kB (3204 bytes)
Hash
c521b424cdc136d2b8c80ca78fe6c2c2
8280b2940e77ad71cbaeb33348a3d92475e72243
c2e49a0eb9e55d339be73e1bc9bd3d6d748165f688894240d7683e69797954fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/houses.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:01:52 GMT
ETag: "c84-5a41159d3b800"
Accept-Ranges: bytes
Content-Length: 3204
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/technology.svg

89.165.11.162

200 OK

2.2 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/technology.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2229 bytes)
Hash
63852110cf1c2d1d523612bc17b3740b
b63a3f4b489001f3c4da497b1f0461d48526b54a
e4427c862626b31a33631fe5a7aaa148dfcc04802b38b2d9c03cf64b0b59b0b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/technology.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:02:12 GMT
ETag: "8b5-5a4115b04e500"
Accept-Ranges: bytes
Content-Length: 2229
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/access.svg

89.165.11.162

200 OK

5.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/access.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5110 bytes)
Hash
73aad88d7c675d78043f363626c89dce
e06ea0a7c9dc9055942d7c0ed04ebc77d70f5073
0d0ca59e14a9b98966797fa6a4025495a495972d1836a537ce18227e91059297

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/access.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:00:46 GMT
ETag: "13f6-5a41155e4a380"
Accept-Ranges: bytes
Content-Length: 5110
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/leaves.svg

89.165.11.162

200 OK

2.1 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/leaves.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2124 bytes)
Hash
9e600d0085742aa5a916b63bee86b460
87d1b677f5f4b9ee2187f3ea5b55fdff2d431599
b1399bdd6ad7489001cdb0d49d40e87f16956bc4dfe05ca259dea9a057b3c568

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/leaves.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:03:12 GMT
ETag: "84c-5a4115e986c00"
Accept-Ranges: bytes
Content-Length: 2124
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/crypto/00415.png

89.165.11.162

200 OK

63 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/crypto/00415.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 622 x 1236, 8-bit colormap, non-interlaced
Size
63 kB (63400 bytes)
Hash
d413dad5f6988401ad26c24c1d14c983
889a697dd4c1f4edaaf144f077e9b0b4c99b1fa3
a18a3bd3de270b8930c06c8a76419096a169ec9494f097d148871ec3567008fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/crypto/00415.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 26 Jul 2023 01:11:32 GMT
ETag: "f7a8-60159872f3900"
Accept-Ranges: bytes
Content-Length: 63400
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

89.165.11.162/assets/img/arvin.svg

89.165.11.162

200 OK

30 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/arvin.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
30 kB (30442 bytes)
Hash
91f11bdcc251c4c8bc051d97da100c5c
e20a7f8d22c99d09c6417ff8d4065963befaf43d
3ef182b73e429d25a56901dc07760c15d5faa69d362d1e4205b1eeea144cfba6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/arvin.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 23 Jul 2023 10:28:58 GMT
ETag: "76ea-60124f7328e80"
Accept-Ranges: bytes
Content-Length: 30442
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/nvr.svg

89.165.11.162

200 OK

31 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/nvr.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
31 kB (30788 bytes)
Hash
fab01798f31833d26f4b690b0e245e81
7bf4af31f4b1b034a8936ba6c8707c5aca0db17a
b55897c80346c4350faf40c1dd986fc63301208fb0bc1abcd9a42e91f4cbd01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/nvr.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 23 Jul 2023 09:59:27 GMT
ETag: "7844-601248da33dc0"
Accept-Ranges: bytes
Content-Length: 30788
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/gif/avatar_01.jpg

89.165.11.162

200 OK

6.7 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/gif/avatar_01.jpg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 500x500, components 3
Size
6.7 kB (6702 bytes)
Hash
66c6d025bb651de6d8c89224838adac7
4498eeab30542fc890b83f7f121e0b805a267a7a
0f92a14b820894f5686616a360ca8b7310984414235300e8c8d8fa239db29e47

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/gif/avatar_01.jpg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 21 Oct 2020 18:29:50 GMT
ETag: "1a2e-5b23288654380"
Accept-Ranges: bytes
Content-Length: 6702
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

89.165.11.162/assets/img/Arvin.png

89.165.11.162

200 OK

27 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/Arvin.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
27 kB (27368 bytes)
Hash
1d4b2343242bfdef52b8c08dacedbb22
e0c13caf9ecfb301dc61aa45a17c8431b40472e2
10bc42521698912207b502a116dc6d6e08341c4e5dad618e626facc3733acb5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/Arvin.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 25 Jul 2023 12:11:54 GMT
ETag: "6ae8-6014ea2ff9680"
Accept-Ranges: bytes
Content-Length: 27368
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Medium.woff2

89.165.11.162

200 OK

26 kB

URL GET HTTP/1.1
89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Medium.woff2
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Web Open Font Format (Version 2), TrueType, length 25784, version 1.0
Size
26 kB (25784 bytes)
Hash
84518599d382334f09e67ade7fc530a0
e95d644039b43545e77abfee6e2336bbb30f2326
e23a67d18a82b7ecee1dd29de7647dfc1bf2b7b31cf39f75607536b6e688e5db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Medium.woff2 HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/assets/fonts/iranSans/css/fontiran.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 07:51:06 GMT
ETag: "64b8-5e9678e8c0e80"
Accept-Ranges: bytes
Content-Length: 25784
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb.woff2

89.165.11.162

200 OK

28 kB

URL GET HTTP/1.1
89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb.woff2
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Web Open Font Format (Version 2), TrueType, length 27944, version 1.0
Size
28 kB (27944 bytes)
Hash
38d4b5fba7a4955e035b5a3898a8cd5d
02e7c834235d35954d91689803afd6a7d5b6c04e
14db744ef91a99ba3adffe2a8a1fd3ad7f37d35fbb13499acb1efe2a73705f0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/iranSans/fonts/woff2/IRANSansWeb.woff2 HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/assets/fonts/iranSans/css/fontiran.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 07:51:06 GMT
ETag: "6d28-5e9678e8c0e80"
Accept-Ranges: bytes
Content-Length: 27944
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2

89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Bold.woff2

89.165.11.162

200 OK

27 kB

URL GET HTTP/1.1
89.165.11.162/assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Bold.woff2
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Web Open Font Format (Version 2), TrueType, length 27316, version 1.0
Size
27 kB (27316 bytes)
Hash
924be0f8e3cabca094307ecb48684f46
1bc4b70977459a1f8c936b61dc6cb6f9b7003d04
fa176d47f7d777700b3d87ed9717355da564f24ec757dc14f2a58d8de639c84a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/iranSans/fonts/woff2/IRANSansWeb_Bold.woff2 HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/assets/fonts/iranSans/css/fontiran.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 07:51:06 GMT
ETag: "6ab4-5e9678e8c0e80"
Accept-Ranges: bytes
Content-Length: 27316
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

89.165.11.162/assets/img/crypto/Privacy.png

89.165.11.162

200 OK

149 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/crypto/Privacy.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 1298 x 1146, 8-bit colormap, non-interlaced
Size
149 kB (149139 bytes)
Hash
e53832575489a83cc62816f66bdef2e2
d04a1c8cdd8c61436751b316e8bd2f2527b9a9dc
9c8362862579475ee582bfcc8001e26ce2a861c000dda394d6c1956596a8ac50

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/crypto/Privacy.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 26 Jul 2023 01:11:30 GMT
ETag: "24693-601598710b480"
Accept-Ranges: bytes
Content-Length: 149139
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

89.165.11.162/assets/img/Arvin-loading.png

89.165.11.162

200 OK

60 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/Arvin-loading.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 350 x 350, 8-bit/color RGBA, non-interlaced
Size
60 kB (59717 bytes)
Hash
ebe94eee1a2aa166fc3e9ea10265b3d6
6a11769e0ee754085776eda772c66fef3b97038d
a4941b43356e780a9281e6c6d8ca7fd292d92ac30b878d61638ca5ba2c9bacd1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/Arvin-loading.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 25 Jul 2023 12:15:35 GMT
ETag: "e945-6014eb02bc7c0"
Accept-Ranges: bytes
Content-Length: 59717
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

89.165.11.162/assets/img/icons/statistics.svg

89.165.11.162

200 OK

3.4 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/statistics.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
3.4 kB (3442 bytes)
Hash
42385f800be73da5c05ce461eb0a7f2f
b1f67f21d02e11113e9fa2b1fa1b5e010ec66ed7
9a49d5a80f1c8068508fe18b6af2863cb389a794a7d5155669f3b56762ee038c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/statistics.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 22:57:42 GMT
ETag: "d72-5a4114aed0580"
Accept-Ranges: bytes
Content-Length: 3442
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/networking.svg

89.165.11.162

200 OK

4.9 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/networking.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
4.9 kB (4875 bytes)
Hash
e643a889478c850a501662835f9e3cda
f4d976226e502b3cbf5a60f27203e5e8ca084232
793e8aa80998fbc28ad7c8df4a904727ba577a38bf37df670e396be4405b4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/networking.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:00:32 GMT
ETag: "130b-5a411550f0400"
Accept-Ranges: bytes
Content-Length: 4875
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/img/icons/Decentralized.svg

89.165.11.162

200 OK

2.9 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/icons/Decentralized.svg
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
SVG Scalable Vector Graphics image
Size
2.9 kB (2851 bytes)
Hash
892e54542b5ea9e6139fae460edb589b
ee5525a314edd17427cd542d44acb3698b2af067
1c6c79b50abded36b2df9911ac0c881a16d556b04954d884cd85ad494c3ddfc7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/icons/Decentralized.svg HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Fri, 24 Apr 2020 23:01:18 GMT
ETag: "b23-5a41157cceb80"
Accept-Ranges: bytes
Content-Length: 2851
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml

89.165.11.162/assets/fonts/The-Icon-of.woff2?w2v7hx

89.165.11.162

200 OK

99 kB

URL GET HTTP/1.1
89.165.11.162/assets/fonts/The-Icon-of.woff2?w2v7hx
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
Web Open Font Format (Version 2), TrueType, length 98796, version 1.0
Size
99 kB (98796 bytes)
Hash
ff7579c1e5fcf2fa19d78a24f2ab3fff
9e57d592a679cb74a8d26e209802446538563a4a
dee07a79727d7f9ef7e6a1a5877b97b4eb29aa47b371e7c01e6d146117b6e0f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/The-Icon-of.woff2?w2v7hx HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/assets/css/icons.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 22 Jan 2020 13:19:50 GMT
ETag: "181ec-59cba61126980"
Accept-Ranges: bytes
Content-Length: 98796
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2

89.165.11.162/assets/img/favicon.ico

89.165.11.162

200 OK

31 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/favicon.ico
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
Size
31 kB (31095 bytes)
Hash
fee3185f60d9752408fb4ab9e4d391e2
1124be98cc590847ba062d6c8e2db9a6c80dca43
2f8bd12e0a22e6c4cef5cd1bac32d0789e4b1e768914709d6774411d40a44582

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/favicon.ico HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:46 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 24 Jul 2023 13:25:17 GMT
ETag: "7977-6013b8b98a940"
Accept-Ranges: bytes
Content-Length: 31095
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

89.165.11.162/assets/img/crypto/footer_grid.png

89.165.11.162

200 OK

303 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/crypto/footer_grid.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 3000 x 972, 8-bit colormap, non-interlaced
Size
303 kB (303378 bytes)
Hash
70a86477177401c369b253baa7bede7f
df16ff3ae7b5544a0cf078242c7772f7b9e5d861
255710466fefc5ac5b7af956489d12f5e79d66b7a8666d4020260398f1862b33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/crypto/footer_grid.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:46 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 26 Jul 2023 01:11:32 GMT
ETag: "4a112-60159872f3900"
Accept-Ranges: bytes
Content-Length: 303378
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

89.165.11.162/assets/img/crypto/crypto-head02.png

89.165.11.162

200 OK

297 kB

URL GET HTTP/1.1
89.165.11.162/assets/img/crypto/crypto-head02.png
IP
89.165.11.162:80
ASN
#39501 Parvaresh Dadeha Co. Private Joint Stock

Requested by
http://89.165.11.162/

File type
PNG image data, 2184 x 1640, 8-bit colormap, non-interlaced
Size
297 kB (296978 bytes)
Hash
a9be54c0ccc41bb24630069340c064df
80c3f5eaee73fa86371bb7b047754101704dbcd4
b740afb88c1ebef7914dade1285bb93f8753f0787c66de234e4a110c27516fde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/crypto/crypto-head02.png HTTP/1.1
Host: 89.165.11.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:07:45 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 26 Jul 2023 01:11:32 GMT
ETag: "48812-60159872f3900"
Accept-Ranges: bytes
Content-Length: 296978
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

fonts.googleapis.com/css2?family=Yeseva+One&display=swap

142.250.74.106

200 OK

1.8 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Yeseva+One&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://89.165.11.162/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1870), with no line terminators
Size
1.8 kB (1825 bytes)
Hash
c0b48d248eafd458ce29d393fc5b35ad
81af9e0ca0b61d4fb7939c58c8a354acd3d397e8
e1d73e23767ff21f8af3d62945294b3bccf45c33236cebae02b32ad1696f149c

HTTP Headers

GET /css2?family=Yeseva+One&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://89.165.11.162/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 22:07:45 GMT
date: Wed, 24 Apr 2024 22:07:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML