| 202.139.216.245/ | 202.139.216.245 | | 4.0 kB |
IP202.139.216.245:0 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
File typeHTML document, ASCII text, with very long lines (302), with CRLF line terminators Hash3f3a23faf520b57c02cec1a414b3400d f6a931858e328b6cc96b8906d0a11fff7fbf5561 7f25147373f8cd35820a4ec4f2e0623eac74c40fb350b9f1b8341f48ccb46de9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:06 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
X-Powered-By: PHP/5.6.30
Content-Length: 4034
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| 202.139.216.245/myoffice/index.php | 202.139.216.245 | 200 OK | 20 kB |
URL User Request GET HTTP/1.1202.139.216.245/myoffice/index.php IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
File typeHTML document, Non-ISO extended-ASCII text, with very long lines (527), with CRLF, LF line terminators Hash804c084691c69c3e0988186f59eef19e 29b1fdb158b3698e852960bdf0ee219284d66039 159206a82cf2c183b5166a988cf56b6a38ac7942bf67abcda3464b46d81a7a7f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/index.php HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:06 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
X-Powered-By: PHP/5.6.30
Set-Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| 202.139.216.245/myoffice/style.css | 202.139.216.245 | 200 OK | 7.0 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/style.css IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeASCII text, with CRLF line terminators Hash71258196a5b385d0a0d1225f79d9dbd8 4894792afb26e026d40c5146e07d02296ad61239 62a45f0ff340c651bbb85fd7d29eb6ac1cddc9dbb6f4890f8f8a7852ddbaa73a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/style.css HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Tue, 17 Aug 2021 02:16:16 GMT
ETag: "1b3f-5c9b7e70adc00"
Accept-Ranges: bytes
Content-Length: 6975
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| 202.139.216.245/myoffice/highslide/highslide-html.js | 202.139.216.245 | 200 OK | 14 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/highslide/highslide-html.js IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
Hashf8896ba77b7fe365e40bfa4aaa8ef11d 2ef2acfdb9fce638fb4f132466ba047673798fe0 7b4e8924158d3707c919a323feea4096892feed6394fbade934bf90b55584614
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/highslide/highslide-html.js HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 10 Sep 2007 06:02:24 GMT
ETag: "3584-439c1bb7f5c00"
Accept-Ranges: bytes
Content-Length: 13700
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 202.139.216.245/myoffice/java.js | 202.139.216.245 | 200 OK | 756 B |
URL GET HTTP/1.1202.139.216.245/myoffice/java.js IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
Hashc453853f1209ab7175aa6172cc1f23af c69da79c4b2b378773a925df915e67e859467ce5 0aca0069b9a7f8b4b4c7264ae6f3a08e6113193df7bbb39173f7b14b352e94a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/java.js HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sun, 17 Mar 2019 08:33:58 GMT
ETag: "2f4-5844622160980"
Accept-Ranges: bytes
Content-Length: 756
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 202.139.216.245/myoffice/styles.css | 202.139.216.245 | 200 OK | 1.4 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/styles.css IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeASCII text, with CRLF line terminators Hash9fc73097fc89af7e2f20be5fc1d47227 f745de07679cd1593c5b3a9716230586f6387d53 9669397c2b8213388a4356e8799f8007193ea31250f72cab89d475c9bfa8ada8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/styles.css HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Thu, 11 Oct 2018 01:09:20 GMT
ETag: "5a3-577e99ede3000"
Accept-Ranges: bytes
Content-Length: 1443
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 202.139.216.245/myoffice/fonts/thsarabunnew.css | 202.139.216.245 | 200 OK | 2.0 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/fonts/thsarabunnew.css IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
Hashb1a8d48784c41c0aed10ec58e8861835 b9dbab5d86f1c34088886c5c657a288ec733dfe9 9f6cea69e73103e62c2970140b8e2f77b3fee63dd587336df9ba442b301fb67e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/fonts/thsarabunnew.css HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/style.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sun, 17 Mar 2019 04:46:18 GMT
ETag: "7da-58442f3e2fa80"
Accept-Ranges: bytes
Content-Length: 2010
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 202.139.216.245/myoffice/font/th_fahkwang.css | 202.139.216.245 | 200 OK | 1.4 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/font/th_fahkwang.css IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
Hash643408823d332635ea9979211e76204b 77907c4361e5e8d6ba09d881956b6544aaf25e67 15782a5f9b36de4ce0cbf9bd5301df93d9478be124512287b48414bd88624775
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/font/th_fahkwang.css HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/style.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sun, 17 Mar 2019 04:46:42 GMT
ETag: "593-58442f5513080"
Accept-Ranges: bytes
Content-Length: 1427
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| 202.139.216.245/myoffice/highslide/highslide.js | 202.139.216.245 | 200 OK | 45 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/highslide/highslide.js IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJavaScript source, ISO-8859 text, with CRLF line terminators Hash4b13e2afc251e4715a8261687bc5cf0a ef65b3ffd02ebc9b5baafb7655cfa1f8ab0abd2f 971ac0f24ae68a0828ac5561ad2a0f473ccbafa65a4b796c4f8c5101fe019587
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/highslide/highslide.js HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:07 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Fri, 24 Dec 2010 13:41:38 GMT
ETag: "b09a-4982825416880"
Accept-Ranges: bytes
Content-Length: 45210
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 202.139.216.245/myoffice/images/nextblue.gif | 202.139.216.245 | 200 OK | 110 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/nextblue.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 12 x 12 Hash3326a1aa9e73205fd1ede2c352bab7a0 11f7c855e33ef632efcfff05e2edcda5528d2c18 e11b95a03531d2373371ceb883aaa555a2b6259375444f44249d32dbf8388085
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/nextblue.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 06 Apr 2009 20:40:50 GMT
ETag: "6e-466e8e9ee5880"
Accept-Ranges: bytes
Content-Length: 110
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/logohead.jpg | 202.139.216.245 | 200 OK | 16 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/logohead.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=PhotoScape, datetime=2009:07:14 17:35:49], baseline, precision 8, 450x70, components 3 Hashe8ef4b579a92d8737447287fe6be4119 f476765c0b7eb7aeadd1f8ff2213c4933361256e a77ac23469daea00947cfb783a378864657d75c4c387de98b36974e862d05230
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/logohead.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 04 Mar 2023 02:45:29 GMT
ETag: "4043-5f60a0e0d28d5"
Accept-Ranges: bytes
Content-Length: 16451
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/images/news.gif | 202.139.216.245 | 200 OK | 1.1 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/news.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 16 x 16 Hash81ff471785c4651f91a49ff546ceec25 aa2de6525e2f385347a252ea1ed97b9e5c453cbb 1ac92d06fa5c89d46089c4105886eb8b981e2d6f60333ce8792bdc9cdde40188
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/news.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 10 Jan 2009 17:49:36 GMT
ETag: "429-460247f334c00"
Accept-Ranges: bytes
Content-Length: 1065
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/app.gif | 202.139.216.245 | 200 OK | 248 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/app.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 16 x 16 Hash4125f86f2a45767634306424b25d8283 a79657dc3d62c1bee633ad72292b76df9ad4bb56 6ba19060858b712f29a5423622a31b8d19fac09906ef14c3ccc19ed893c2731a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/app.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Thu, 07 Sep 2006 09:36:02 GMT
ETag: "f8-41cd9d1e88480"
Accept-Ranges: bytes
Content-Length: 248
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/login.png | 202.139.216.245 | 200 OK | 8.9 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/login.png IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typePNG image data, 674 x 83, 8-bit/color RGBA, non-interlaced Hash5a23ed73eb866dcdbcd8fd75234ab28c 9aaf391a5f8fad6b63d6a787ef60e2d353de6663 237a48c545a3c195c77265c518fe57abf455b89dec76e32bdc0f7ff3f74f4f4c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/login.png HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 10 Nov 2014 11:30:20 GMT
ETag: "22e0-5077f7cd30b00"
Accept-Ranges: bytes
Content-Length: 8928
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| 202.139.216.245/myoffice/images/my1.png | 202.139.216.245 | 200 OK | 26 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/my1.png IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typePNG image data, 336 x 325, 8-bit/color RGBA, non-interlaced Hash890620db729d5507b49b9f80781845d6 9b45e68660c20afa1b9cd317f0335caa891fcf24 57604675da17bbe3c7df99ed9fe376d127b7675c0e0df3f33ba558afbaeb122f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/my1.png HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 11 Nov 2017 07:50:50 GMT
ETag: "669a-55db04bbf2a80"
Accept-Ranges: bytes
Content-Length: 26266
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
|
|
| 202.139.216.245/myoffice/java.js | 202.139.216.245 | 200 OK | 756 B |
URL GET HTTP/1.1202.139.216.245/myoffice/java.js IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
Hashc453853f1209ab7175aa6172cc1f23af c69da79c4b2b378773a925df915e67e859467ce5 0aca0069b9a7f8b4b4c7264ae6f3a08e6113193df7bbb39173f7b14b352e94a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/java.js HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sun, 17 Mar 2019 08:33:58 GMT
ETag: "2f4-5844622160980"
Accept-Ranges: bytes
Content-Length: 756
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 202.139.216.245/myoffice/images/icon_new.gif | 202.139.216.245 | 200 OK | 407 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/icon_new.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 27 x 9 Hash27f18c3e74a79088ab6b2528c1904dd0 d7c70d1cdcf1c2c39c32cfbe1ad4049fafd94d41 57df687291068f40f91c2451ed18643838e087bd187d7e470b3a3a750811133f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/icon_new.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Wed, 19 Apr 2006 07:00:00 GMT
ETag: "197-411c33443dc00"
Accept-Ranges: bytes
Content-Length: 407
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/fonts/thsarabunnew-webfont.woff | 202.139.216.245 | 200 OK | 52 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/fonts/thsarabunnew-webfont.woff IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeWeb Open Font Format, TrueType, length 51956, version 1.0 Hash940b7d9976165f2795824c2dbd0de318 5077b570c4dcdc07137c64378dab87fc1258b9b3 a5f4eac957aecb8e896a19d6ba5e748133c99e74d3b620b41e81125d8a1c1fff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/fonts/thsarabunnew-webfont.woff HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/fonts/thsarabunnew.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 05 Nov 2011 05:40:04 GMT
ETag: "caf4-4b0f640e47500"
Accept-Ranges: bytes
Content-Length: 51956
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-font-woff
|
|
| 202.139.216.245/myoffice/images/icon_mailheader.gif | 202.139.216.245 | 200 OK | 371 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/icon_mailheader.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 16 x 16 Hashb8d1f88b41b002f42036da5a078d89a3 020fed27772dd0df6011f3c59509ccbd15664e15 4d05f388d7461f0565c3056a81f6abf35ca84c9ba62bec5df14a12a0fb4bbf98
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/icon_mailheader.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 10 Jan 2009 17:49:18 GMT
ETag: "173-460247e20a380"
Accept-Ranges: bytes
Content-Length: 371
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/textedit.gif | 202.139.216.245 | 200 OK | 200 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/textedit.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 16 x 16 Hashbdf9ab347c464b135b3db523cf1fc938 034b5fa3528c55356a0319e719616fc1ffb7d062 fffb418c348d989f6638911dfac827ec7400a3725f3654aa235dacb7572bdca4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/textedit.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 10 Jan 2009 17:49:40 GMT
ETag: "c8-460247f705500"
Accept-Ranges: bytes
Content-Length: 200
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/arrow2.gif | 202.139.216.245 | 200 OK | 64 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/arrow2.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeGIF image data, version 89a, 12 x 11 Hashb5756d41903a321eec782a2e131faf40 578b9e5b0265adf0ecbe3f3b88214af19229be9b 64fc0366e71b7c70e7f498eeab402f8db314324b8a35063550f6b2bf98a8b038
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/arrow2.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Fri, 17 Dec 2010 09:23:28 GMT
ETag: "40-49797b9172400"
Accept-Ranges: bytes
Content-Length: 64
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/07.gif | 202.139.216.245 | 200 OK | 13 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/07.gif IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hashd0904778d7607f472e82f99f8ef6805a 659efed734f0badfafdedce212a05abc50a1a68f 70e5bdb94bca9b13c17b9c675f93da1db365ecb867e0a14da6cce8454bfe492e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/07.gif HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sun, 12 Feb 2012 09:09:28 GMT
ETag: "3384-4b8c0b80e0200"
Accept-Ranges: bytes
Content-Length: 13188
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
|
|
| 202.139.216.245/myoffice/images/bg.jpg | 202.139.216.245 | 200 OK | 43 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/bg.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=PhotoScape, datetime=2014:01:22 09:20:11], baseline, precision 8, 1366x777, components 3 Hash5440449cd4d03da6d5bb526a0cb8dbd8 4f1f36704badd6172e30704625d8e3fa5692c0d8 5297061250b41b11d831d1b7ae9126c7a2891e7df047cf7483b3ce71e3d73885
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/bg.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Thu, 21 Aug 2014 12:28:28 GMT
ETag: "a71f-50122db945300"
Accept-Ranges: bytes
Content-Length: 42783
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/images/123.jpg | 202.139.216.245 | 200 OK | 677 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/123.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 57x42, components 3 Hashfea0a44d5524d978229a74803a277b2e 6266d3c32c41f338945083b2e654b49de149cf0b 9f2307e14c90af4455aa12a68976fe1214b5a89745a9f485d762898447b8794f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/123.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Fri, 10 May 2019 07:02:50 GMT
ETag: "2a5-5888327993a80"
Accept-Ranges: bytes
Content-Length: 677
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/images/124.jpg | 202.139.216.245 | 200 OK | 3.5 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/124.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x2500, components 3 Hash50a6bf9a106a028fc651dc77d03c2b19 20630791dcbdd280c875157cedcc1b508cd66945 c132949d13acab7c45f26d944f7070fe53a61e86ea975e3701dd84280a76f38b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/124.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Thu, 21 Aug 2014 13:44:04 GMT
ETag: "dba-50123e9f23100"
Accept-Ranges: bytes
Content-Length: 3514
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/images/1234.jpg | 202.139.216.245 | 200 OK | 677 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/1234.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 57x42, components 3 Hash9bc2e881369a4f93d26a9e2d0dcef88e 91026c87f5c101db1c88491f23f3645ad946795b a59bd9e2217576405b52f7c51ae134c5ffbce766f5a2bffe581ec7be3f3a7cf9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/1234.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Fri, 10 May 2019 06:59:22 GMT
ETag: "2a5-588831b336680"
Accept-Ranges: bytes
Content-Length: 677
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/images/003.png%20valign= | 202.139.216.245 | 404 Not Found | 229 B |
URL GET HTTP/1.1202.139.216.245/myoffice/images/003.png%20valign= IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeHTML document, ASCII text Hash798cdbf9d5767141c56f60090e5d0baf 5c8d3f919ebbfc16d3f1b360f17f5be1d59f8892 78451e8abb0d6f464f9cb48217659cd9dcb97db462b73f209cd6bf5060e359c2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/003.png%20valign= HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Content-Length: 229
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| 202.139.216.245/myoffice/fonts/thaisansneue-light-webfont.woff2 | 202.139.216.245 | 200 OK | 24 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/fonts/thaisansneue-light-webfont.woff2 IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeWeb Open Font Format (Version 2), TrueType, length 24132, version 1.0 Hashfb6e9a66d0d6626b6a07843a08c4ff34 8b9dd59c8b1f057d6e0aa39b065af49906233115 0a4866b65f8c4bca3fab4f5022794c8df6697f99e4985d770fd013f3308291ce
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/fonts/thaisansneue-light-webfont.woff2 HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/fonts/thsarabunnew.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Tue, 18 Nov 2014 09:04:20 GMT
ETag: "5e44-5081e616b0d00"
Accept-Ranges: bytes
Content-Length: 24132
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
|
|
| 202.139.216.245/myoffice/images/125.jpg | 202.139.216.245 | 200 OK | 5.9 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/images/125.jpg IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1004x65, components 3 Hashda949ab95764109d9eeaf0258efd6eae 747d1a4fde834fa430e65d50c7e52f75d025b2c9 613aa20a74b77cd8e9658f088a27f520c3b566e6d11023cec1b9c319ead2152e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/images/125.jpg HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Thu, 21 Aug 2014 11:22:32 GMT
ETag: "1723-50121efc88e00"
Accept-Ranges: bytes
Content-Length: 5923
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 202.139.216.245/myoffice/fonts/thsarabunnew_bold-webfont.woff | 202.139.216.245 | 200 OK | 52 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/fonts/thsarabunnew_bold-webfont.woff IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeWeb Open Font Format, TrueType, length 51744, version 1.0 Hash8d8146f04b5d6c7acd967c6bbc512cfe 8e567388f800dc1552ab488f6441572d42b80d3a 7792dfc28a9bc9559d391e8109a338a7546b04eab9f1896c7ed021b4563bc75c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/fonts/thsarabunnew_bold-webfont.woff HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/fonts/thsarabunnew.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Sat, 05 Nov 2011 05:40:34 GMT
ETag: "ca20-4b0f642ae3880"
Accept-Ranges: bytes
Content-Length: 51744
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-font-woff
|
|
| 202.139.216.245/myoffice/font/th_fahkwang-webfont.woff | 202.139.216.245 | 200 OK | 54 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/font/th_fahkwang-webfont.woff IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeWeb Open Font Format, TrueType, length 53476, version 1.0 Hash694a51efb6884b867bf4a08817491af1 b0caaa9e7f4dc046d44abed13c80f44b7d8194f8 0de12005cf2fa051ea169db77193216b942a33e6f5cfe4f42515a8a0190f801f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/font/th_fahkwang-webfont.woff HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/font/th_fahkwang.css
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:08 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Wed, 02 Nov 2011 20:24:36 GMT
ETag: "d0e4-4b0c642b4c900"
Accept-Ranges: bytes
Content-Length: 53476
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-font-woff
|
|
| 202.139.216.245/myoffice/favicon.ico | 202.139.216.245 | 200 OK | 1.2 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/favicon.ico IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash49f45dd07728a7cebf10f74e7adcce06 52826f32af7c1838a80a64faef48b21559876049 19d4178b9417564c6c598a03661453948a5df2fc09fa403e9711c7ae85eec3e3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/favicon.ico HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:09 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 11 May 2015 09:49:22 GMT
ETag: "47e-515cb4adb8c80"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| 202.139.216.245/myoffice/highslide/graphics/outlines/rounded-white.png | 202.139.216.245 | 200 OK | 2.1 kB |
URL GET HTTP/1.1202.139.216.245/myoffice/highslide/graphics/outlines/rounded-white.png IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typePNG image data, 40 x 3000, 8-bit gray+alpha, non-interlaced Hashff904e99a0ecb32a27642d389adb91ba c4ef235dcc34844e4050f845ff4ce22ce35fe0b8 e82d0547f662dc02f6d55c082758f5aac71937fee44bc0cb0f106f85b5fe2f81
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/highslide/graphics/outlines/rounded-white.png HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:09 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 06 Apr 2009 20:20:42 GMT
ETag: "802-466e8a1edba80"
Accept-Ranges: bytes
Content-Length: 2050
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
|
|
| 202.139.216.245/myoffice/highslide/graphics/zoomout.cur | 202.139.216.245 | 200 OK | 326 B |
URL GET HTTP/1.1202.139.216.245/myoffice/highslide/graphics/zoomout.cur IP202.139.216.245:80 ASN#135566 Thailand Government Data Center and Cloud service TGDCC
Requested byhttp://202.139.216.245/myoffice/index.php
File typeMS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @7x7 Hashe5f236bf2b60f8c8fc1867d70636a046 2d1695a011edd32a1abc5329dcf4b8ee196d5e7f 110a21ee3616bfa86b492bb237eeb946ee4a643d7bb77a7fd2b131311f5ccf72
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /myoffice/highslide/graphics/zoomout.cur HTTP/1.1
Host: 202.139.216.245
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://202.139.216.245/myoffice/index.php
Cookie: PHPSESSID=rbjeqo2nng2stkh9ncb3rf85r4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 10:55:09 GMT
Server: Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
Last-Modified: Mon, 06 Apr 2009 20:19:12 GMT
ETag: "146-466e89c907000"
Accept-Ranges: bytes
Content-Length: 326
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
|
|