| | 52.230.83.74 | 200 OK | 1.2 kB |
URL User Request GET HTTP/1.1IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeHTML document, ASCII text, with very long lines (2683) Hash7728b708e3d3f421f68a821cb9acbf3d 23bba3aad117346551ac0a2e98f65708ca5f1327 91fd2565defa07a634ad348b06449d516cc489af64477135889f058feba5a776
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "07f6eb89f7eda1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:29 GMT
Content-Length: 1155
|
|
| 52.230.83.74:4200/runtime.5c524b3da29f18a5.js | 52.230.83.74 | 200 OK | 1.9 kB |
URL GET HTTP/1.152.230.83.74:4200/runtime.5c524b3da29f18a5.js IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeJavaScript source, ASCII text, with very long lines (3534), with no line terminators Hash8b2d5d05d88e0cc3e5aff13c3124090f 53b8b94db4dd1afba89a81b1b54c40f552443ab6 4e0df2f5e586312930dacb26b0ee9c54883ca3eac81ef513113ae580fc4abef0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /runtime.5c524b3da29f18a5.js HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "07f6eb89f7eda1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:31 GMT
Content-Length: 1875
|
|
| 52.230.83.74:4200/polyfills.ac8e9890031193ae.js | 52.230.83.74 | 200 OK | 19 kB |
URL GET HTTP/1.152.230.83.74:4200/polyfills.ac8e9890031193ae.js IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeJavaScript source, ASCII text, with very long lines (54464), with no line terminators Hashb2425176e18a1a9f09930cc227b86d8f 05783e39ed6046eaf8b6dd773fe7e5b7c39d1a51 576d96c6cb2d650c06eb0e113566450d89aa0c9c04c8afdc5214e4962fa8e7c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /polyfills.ac8e9890031193ae.js HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "07f6eb89f7eda1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:31 GMT
Content-Length: 19046
|
|
| 52.230.83.74:4200/styles.d824906a36b79e32.css | 52.230.83.74 | 200 OK | 406 kB |
URL GET HTTP/1.152.230.83.74:4200/styles.d824906a36b79e32.css IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeASCII text, with very long lines (65536), with no line terminators Size406 kB (405548 bytes) Hash48e070ac18ed4cdc56d4034152dee831 dbef9dfffbc862b2f9f0738f8095dae4eb4a33d6 796c727c56323c9846c2296188832ec0d0d04cce1e9cce2a842a41be6e259f83
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /styles.d824906a36b79e32.css HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "4a1b9b89f7eda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:31 GMT
Content-Length: 405548
|
|
| 52.230.83.74:4200/main.603611270a37fe00.js | 52.230.83.74 | 200 OK | 403 kB |
URL GET HTTP/1.152.230.83.74:4200/main.603611270a37fe00.js IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size403 kB (403270 bytes) Hashddc349ff6a89ac5ebbf07cbc5322bfea 055fbb5b8f95bb3ddf35c86c6021dc8469e895b3 10185fa43247b9eaaeb0020eeab2a70008e1dd5f2255a9d70b8deea07a3dbd86
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /main.603611270a37fe00.js HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "07f6eb89f7eda1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:31 GMT
Content-Length: 403270
|
|
| 52.230.83.74:4200/assets/img/logo-white.png | 52.230.83.74 | 200 OK | 56 kB |
URL GET HTTP/1.152.230.83.74:4200/assets/img/logo-white.png IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typePNG image data, 3450 x 1101, 8-bit/color RGBA, non-interlaced Hash6e39e406e9b4a6affe6c17c9840043e7 64648285a15b2206e8c370c5c52915a0e1ccef11 585f047307fbac41b788f8e1c3bdd5d0b769278aa131959c6e131a7f9960433e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/img/logo-white.png HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "75168eb89f7eda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:32 GMT
Content-Length: 55644
|
|
| 52.230.83.74:4200/mpcv2web/api/admin/buildDate | 52.230.83.74 | 200 OK | 13 B |
URL GET HTTP/1.152.230.83.74:4200/mpcv2web/api/admin/buildDate IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeASCII text, with no line terminators Hashbd50d865849cacb90927fc0ffff37aa3 f5d9724985f9f7b289403036909e5cb66f37c40d 99e9419098ebcbc507953843d72eb9fd56a8e3b7a08e9405c49bd9d039f000a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /mpcv2web/api/admin/buildDate HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/10.0
X-Powered-By: ARR/3.0, ASP.NET
Date: Fri, 29 Mar 2024 01:28:32 GMT
Content-Length: 13
|
|
| 52.230.83.74:4200/mpcv2web/api/admin/buildNumber | 52.230.83.74 | 200 OK | 9 B |
URL GET HTTP/1.152.230.83.74:4200/mpcv2web/api/admin/buildNumber IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeASCII text, with no line terminators Hash090cfae26a64b31db6135189c029604a 24aa26a4b52478314374ded24f45bb3b69ae2b5d bdc0556f55bb2e35742d6a7107fee01cb272cfdccced56ad9c2023e620ab3f7e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /mpcv2web/api/admin/buildNumber HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/10.0
X-Powered-By: ARR/3.0, ASP.NET
Date: Fri, 29 Mar 2024 01:28:32 GMT
Content-Length: 9
|
|
| 52.230.83.74:4200/assets/favicon.ico | 52.230.83.74 | 200 OK | 32 kB |
URL GET HTTP/1.152.230.83.74:4200/assets/favicon.ico IP52.230.83.74:4200 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttp://52.230.83.74:4200/login
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash41285715069003722fd863aef129892e 898b8baa782b841e9fca9644bd96c21822747025 ef06552b76ff0c691a6f66cea651538fb31eec95fde1191c31b81453f650687a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/favicon.ico HTTP/1.1
Host: 52.230.83.74:4200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://52.230.83.74:4200/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Mon, 25 Mar 2024 10:32:22 GMT
Accept-Ranges: bytes
ETag: "84649cb89f7eda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 29 Mar 2024 01:28:32 GMT
Content-Length: 32038
|
|