15 kB IP
ASN #10029 SHYAM SPECTRA PVT LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12645), with CRLF, LF line terminators
Hash 2c79130cf7193331e896185135d781ab
fa56d7d6923a571aa39f827bcde953d6d2cb11d2
8b054d25aa0776fa9e9b6c3a73ac142abeb70662076948264e21f27fe535a1ba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 02 Sep 2023 13:59:53 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
X-Powered-By: PHP/7.4.7
Set-Cookie: PHPSESSID=jadve5fno9rn5obqs0akj90goo; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: login.php
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET 119.82.65.141/login.php
200 OK 1.3 kB URL User Request GET HTTP/1.1 IP
ASN #10029 SHYAM SPECTRA PVT LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a820a35d559934c3173b23ba1bc4d787
ce0909afcfab62ffbaab75774d318bb76af6a69a
18562e9b8254139bfb120f69f009e9a737659acd07089ea5ccf190edecc5ddca
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /login.php HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Sep 2023 13:59:54 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
X-Powered-By: PHP/7.4.7
Content-Length: 1343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET 119.82.65.141/tools/jquery.min.js
404 Not Found 1.2 kB URL GET HTTP/1.1 119.82.65.141/tools/jquery.min.js
IP
ASN #10029 SHYAM SPECTRA PVT LTD
Requested by http://119.82.65.141/login.php
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5717ec3178bfaa6037410b59594edb82
bdaff8518ba130e1b6f1756b392793535070aba7
b18c87c127537edfd6760a7f4d048396eee59b326c2ad2bccd96e008db42f416
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tools/jquery.min.js HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://119.82.65.141/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Sat, 02 Sep 2023 13:59:54 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Language: en
GET 119.82.65.141/tools/css/style.css
200 OK 5.1 kB URL GET HTTP/1.1 119.82.65.141/tools/css/style.css
IP
ASN #10029 SHYAM SPECTRA PVT LTD
Requested by http://119.82.65.141/login.php
File type HTML document, ASCII text, with CRLF line terminators
Hash e7ac6c77a02380c55ef80397eeebd6e2
4c777b5c7bbda283c9063af344475eaa32784531
b16acff294961bad67daac14115c970735ea884b751c2f0719badd914ed763a9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tools/css/style.css HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://119.82.65.141/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Sep 2023 13:59:54 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
Last-Modified: Fri, 04 Jun 2021 16:28:34 GMT
ETag: "13c7-5c3f32ee2738e"
Accept-Ranges: bytes
Content-Length: 5063
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
GET 119.82.65.141/tools/js/login.js
200 OK 2.0 kB URL GET HTTP/1.1 119.82.65.141/tools/js/login.js
IP
ASN #10029 SHYAM SPECTRA PVT LTD
Requested by http://119.82.65.141/login.php
File type ASCII text, with CRLF line terminators
Hash c0db073ba673dedf4e7e28da35fcd499
3fc8e8fef84f3ceb96d12e510354c849d91b9a0c
f551540c298a9e0994510887451bf97ad3d401ba68651e3b9ed9d07264e532fa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tools/js/login.js HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://119.82.65.141/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Sep 2023 13:59:54 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
Last-Modified: Thu, 17 Oct 2019 04:49:04 GMT
ETag: "7c2-59513efd23000"
Accept-Ranges: bytes
Content-Length: 1986
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
GET 119.82.65.141/images/logo.png
200 OK 21 kB URL GET HTTP/1.1 119.82.65.141/images/logo.png
IP
ASN #10029 SHYAM SPECTRA PVT LTD
Requested by http://119.82.65.141/login.php
File type PNG image data, 252 x 131, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c83ce880d0e972f9174e05de0d341f0
5753092e3ab205fbf8da30aeca13fc9e02c87690
af68df5d1ca91e8b18fefab3bb32a73929fa903b999c0425f72846641fc54486
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/logo.png HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://119.82.65.141/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Sep 2023 13:59:55 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
Last-Modified: Fri, 04 Jun 2021 13:32:37 GMT
ETag: "5321-5c3f0b9a771bd"
Accept-Ranges: bytes
Content-Length: 21281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
GET 119.82.65.141/favicon.ico
200 OK 31 kB URL GET HTTP/1.1 119.82.65.141/favicon.ico
IP
ASN #10029 SHYAM SPECTRA PVT LTD
Requested by http://119.82.65.141/login.php
File type MS Windows icon resource - 3 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel\012- data
Hash 6eb4a43cb64c97f76562af703893c8fd
c50c4273b9d2433c6069454f971ed6653e07c126
1d7c95c5eea00a8083a95810f902682f9e26e7fbb7876b022a403642d776d0c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: 119.82.65.141
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://119.82.65.141/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Sep 2023 13:59:55 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
Last-Modified: Thu, 16 Jul 2015 15:32:32 GMT
ETag: "78ae-51affc7a4c400"
Accept-Ranges: bytes
Content-Length: 30894
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon
119.82.65.141