| 164.115.23.70/ | 164.115.23.70 | | 68 B |
IP164.115.23.70:0 ASN#9835 Government Information Technology Services
File typeHTML document, ASCII text, with CRLF line terminators Hash7037a5308b2b1b0908a858f061002b25 94f590e25902d8276df28bd48d8c8f73ce0a4b22 71d46d99b3dfe453849d52c6b8c09e90fa3310375dd4bdde18a3e178c2322b5d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:10 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
X-Powered-By: PHP/5.4.31
Content-Length: 68
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
|
|
| 164.115.23.70/twdf/login.php | 164.115.23.70 | | 4.6 kB |
URL User Request GET 164.115.23.70/twdf/login.php IP164.115.23.70:0 ASN#9835 Government Information Technology Services
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hash2ebd5f82a00c8bbe813d67d17ae42b23 1fd4a5f082e12af5b481e5a4a76fa93202b339ba 7d08727fcff816ffc5ed300ef9d39faf70fe78d370ce1ca9593734fbf541ef2e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/login.php HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:10 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
X-Powered-By: PHP/5.4.31
Set-Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 4589
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
|
|
| 164.115.23.70/twdf/css/style-responsive.css | 164.115.23.70 | 200 OK | 6.0 kB |
URL GET HTTP/1.1164.115.23.70/twdf/css/style-responsive.css IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
Hash14219eae392083ce433876887e5e76f3 60cf09e978dc94a715aa0227f8b5c0bc8a5169a7 80db676878766beb55fc0c4266368296e5f3f948c903a8a943b88ccc43323a6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/css/style-responsive.css HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Sat, 22 Mar 2014 08:14:40 GMT
ETag: "173e-4f52d980a7c00"
Accept-Ranges: bytes
Content-Length: 5950
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 164.115.23.70/twdf/css/bootstrap-reset.css | 164.115.23.70 | 200 OK | 7.1 kB |
URL GET HTTP/1.1164.115.23.70/twdf/css/bootstrap-reset.css IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeassembler source, ASCII text Hash2115d78d2cfeb74ba0a0952dec822fb7 3e9c62b63df7c5eb1b08eda055a81dd82c4b215b 14530cad7dc9b93d511018cf2d2939841d12deac75fb1b433f7c532fe26aacc7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/css/bootstrap-reset.css HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Mon, 03 Mar 2014 11:15:58 GMT
ETag: "1ba0-4f3b1e96f7780"
Accept-Ranges: bytes
Content-Length: 7072
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 164.115.23.70/twdf/font-awesome/css/font-awesome.css | 164.115.23.70 | 200 OK | 22 kB |
URL GET HTTP/1.1164.115.23.70/twdf/font-awesome/css/font-awesome.css IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typetroff or preprocessor input, ASCII text, with very long lines (305) Hash1f9e9d1a5a1d347d945ef4b7727f2ea0 2a8eccf4ac288eb99979b62dcc1cc1036d8ff8fa 3083e8d3b21ddc3f0e6d65ec3580aa6edfaadca5d9737d9caa27e6a233e1ccf3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/font-awesome/css/font-awesome.css HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Sat, 14 Dec 2013 09:23:48 GMT
ETag: "549a-4ed7b22d53100"
Accept-Ranges: bytes
Content-Length: 21658
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 164.115.23.70/twdf/js/jquery.js | 164.115.23.70 | 200 OK | 93 kB |
URL GET HTTP/1.1164.115.23.70/twdf/js/jquery.js IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeJavaScript source, ASCII text, with very long lines (32072) Hash841dc30647f93349b7d8ef61deebe411 e0f962936599a6cd266f004b9d04b29d46811483 c3a7b608ebfa8d1dfe658bc119e6236a6aaf878a779e7c560aa11dd30881a56a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/js/jquery.js HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Sat, 28 Dec 2013 08:04:42 GMT
ETag: "16bb2-4ee93a9ba3a80"
Accept-Ranges: bytes
Content-Length: 93106
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 164.115.23.70/twdf/bs3/js/bootstrap.min.js | 164.115.23.70 | 200 OK | 29 kB |
URL GET HTTP/1.1164.115.23.70/twdf/bs3/js/bootstrap.min.js IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeJavaScript source, ASCII text, with very long lines (28928) Hashe1d08589ec26bec3a81625ce274d76d9 c6a8a0f02ee0ecd975226ae4b38e9660750d1f93 03bf371e3ca4739cfe6bea61f0126b7cbb94e4713e970651f9acd5acb3d9e399
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/bs3/js/bootstrap.min.js HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Sun, 09 Feb 2014 10:07:50 GMT
ETag: "71a9-4f1f665434980"
Accept-Ranges: bytes
Content-Length: 29097
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 164.115.23.70/twdf/bs3/css/bootstrap.min.css | 164.115.23.70 | 200 OK | 102 kB |
URL GET HTTP/1.1164.115.23.70/twdf/bs3/css/bootstrap.min.css IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeASCII text, with very long lines (65366) Size102 kB (101595 bytes) Hasha4be87a298489046c75f2148db15f5db d541b064341d927dc48611a9149a2782bd4ba8de 884eb1dafe090c691790563afd0497612b1d229929bf548f97c720a7b9844c98
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/bs3/css/bootstrap.min.css HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Wed, 27 Apr 2016 10:56:12 GMT
ETag: "18cdb-5317542034b00"
Accept-Ranges: bytes
Content-Length: 101595
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 164.115.23.70/twdf/css/style.css | 164.115.23.70 | 200 OK | 121 kB |
URL GET HTTP/1.1164.115.23.70/twdf/css/style.css IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeASCII text, with CRLF line terminators Size121 kB (120691 bytes) Hashf19861a82aa037f2f5b2852b5b5d8ceb e4aaecb5ed9008c93c16567e85d6921e9f7f23f8 55fa09f0bc38d74b1bc67727906a6d6dcbaf1e45694dcd1877e0163e47186047
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/css/style.css HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:11 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Fri, 08 Dec 2017 02:13:30 GMT
ETag: "1d773-55fcabb13197d"
Accept-Ranges: bytes
Content-Length: 120691
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 164.115.23.70/twdf/images/lock-screen.jpg | 164.115.23.70 | 200 OK | 61 kB |
URL GET HTTP/1.1164.115.23.70/twdf/images/lock-screen.jpg IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 764x258, components 3 Hashb3874a2491bfd229736ce917d15e6358 4f62fa9062db1f0c7906ba0c13025749e4b2effe d39fc5d42a6ed79a85d3f034f7e3209852883cfdf38548fa2c79a6672f8af53f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/images/lock-screen.jpg HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/css/style.css
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:12 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Tue, 04 Feb 2014 09:18:22 GMT
ETag: "ef1c-4f1911f265380"
Accept-Ranges: bytes
Content-Length: 61212
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 164.115.23.70/twdf/images/favicon.png | 164.115.23.70 | 200 OK | 1.4 kB |
URL GET HTTP/1.1164.115.23.70/twdf/images/favicon.png IP164.115.23.70:80 ASN#9835 Government Information Technology Services
Requested byhttp://164.115.23.70/twdf/login.php
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash90226b4e78b3379181721af2c50bdf48 1d74a4a9b2a54726ff70770e5bf1c5a66a76ac7e 193681cad38b0fc41ce9a8abebafe8d8b62275078494685836c5d01519752bec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /twdf/images/favicon.png HTTP/1.1
Host: 164.115.23.70
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://164.115.23.70/twdf/login.php
Cookie: PHPSESSID=ijvvidi9a86b3c39mmkces25v4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 09:40:12 GMT
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1h PHP/5.4.31
Last-Modified: Sat, 20 Feb 2021 17:21:00 GMT
ETag: "548-5bbc7cade3700"
Accept-Ranges: bytes
Content-Length: 1352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|