Domain www.code.shebahost.com
Bangladesh
Software information
LiteSpeed
tcp/443 tcp/80
-
Open service 14.128.14.2:443 · www.code.shebahost.com
2026-01-10 00:49
HTTP/1.1 200 OK Connection: close X-Powered-By: PHP/8.2.29 Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 2369 Date: Sat, 10 Jan 2026 00:49:14 GMT Server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" Page title: ShebaHost Security Console <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>ShebaHost Security Console</title> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <style> body{margin:0;padding:5vh 5vw;background:#000;overflow:hidden}*{box-sizing:border-box}p{font-family:monospace;font-weight:700;font-size:4.1vh;margin:0;padding:0;line-height:1;color:limegreen;text-shadow:0 0 10px limegreen}.msg{font-family:monospace;font-weight:700;text-transform:uppercase;font-size:5vh;padding-top:5vh;background:red;box-shadow:0 0 30px red;text-shadow:0 0 20px #fff;color:#fff;width:30vw;height:15vh;position:absolute;left:50%;margin-left:-10vw;top:50%;margin-top:-5vh;text-align:center;min-width:200px;animation:blink .6s linear infinite alternate}@keyframes blink{0%{opacity:0}100%{opacity:1}} </style> </head> <body> <div class="msg"> <a href="https://www.shebahost.com" target="_blank" style="text-decoration:none; color:#FFF"> shebahost </a> </div> <div id="console"></div> <script> // Disable right click & dev keys document.addEventListener('contextmenu', e => e.preventDefault()); document.addEventListener('keydown', e => { if (e.ctrlKey && ['u', 's', 'c', 'i'].includes(e.key.toLowerCase())) e.preventDefault(); }); // Obfuscated console messages (function(){ var t=["FORCE: XX0022. ENCYPT://000.222.2345","TRYPASS: ********* AUTH CODE: ALPHA GAMMA: 1___ PRIORITY 1","RETRY: REINDEER FLOTILLA","Z:> /FALKEN/GAMES/TICTACTOE/ EXECUTE -PLAYERS 0","================================================","Priority 1 // local / scanning...","scanning ports...","BACKDOOR FOUND (23.45.23.12.00000000)","BACKDOOR FOUND (13.66.23.12.00110000)","BACKDOOR FOUND (13.66.23.12.00110044)","...","...","BRUTE.EXE -r -z","...locating vulnerabilities...","...vulnerabilities found...","MCP/> DEPLOY CLU","SCAN: __ 0100.0000.0554.0080","SCAN: __ 0020.0000.0553.0080","SCAN: __ 0001.0000.0554.0550","SCAN: __ 0012.0000.0553.0030","SCAN: __ 0100.0000.0554.0080","SCAN: __ 0020.0000.0553.0080"],d=document.getElementById("console"),f=document.createDocumentFragment(); function u(){t.push(t.shift());t.forEach(function(e){var p=document.createElement("p");p.textContent=e;f.appendChild(p)});while(d.firstChild){d.removeChild(d.firstChild)}d.appendChild(f)} setInterval(u,200); })(); </script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 14.128.14.2:80 · www.code.shebahost.com
2026-01-10 00:49
HTTP/1.1 200 OK Connection: close X-Powered-By: PHP/8.2.29 Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 2369 Date: Sat, 10 Jan 2026 00:49:14 GMT Server: LiteSpeed Page title: ShebaHost Security Console <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>ShebaHost Security Console</title> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <style> body{margin:0;padding:5vh 5vw;background:#000;overflow:hidden}*{box-sizing:border-box}p{font-family:monospace;font-weight:700;font-size:4.1vh;margin:0;padding:0;line-height:1;color:limegreen;text-shadow:0 0 10px limegreen}.msg{font-family:monospace;font-weight:700;text-transform:uppercase;font-size:5vh;padding-top:5vh;background:red;box-shadow:0 0 30px red;text-shadow:0 0 20px #fff;color:#fff;width:30vw;height:15vh;position:absolute;left:50%;margin-left:-10vw;top:50%;margin-top:-5vh;text-align:center;min-width:200px;animation:blink .6s linear infinite alternate}@keyframes blink{0%{opacity:0}100%{opacity:1}} </style> </head> <body> <div class="msg"> <a href="https://www.shebahost.com" target="_blank" style="text-decoration:none; color:#FFF"> shebahost </a> </div> <div id="console"></div> <script> // Disable right click & dev keys document.addEventListener('contextmenu', e => e.preventDefault()); document.addEventListener('keydown', e => { if (e.ctrlKey && ['u', 's', 'c', 'i'].includes(e.key.toLowerCase())) e.preventDefault(); }); // Obfuscated console messages (function(){ var t=["FORCE: XX0022. ENCYPT://000.222.2345","TRYPASS: ********* AUTH CODE: ALPHA GAMMA: 1___ PRIORITY 1","RETRY: REINDEER FLOTILLA","Z:> /FALKEN/GAMES/TICTACTOE/ EXECUTE -PLAYERS 0","================================================","Priority 1 // local / scanning...","scanning ports...","BACKDOOR FOUND (23.45.23.12.00000000)","BACKDOOR FOUND (13.66.23.12.00110000)","BACKDOOR FOUND (13.66.23.12.00110044)","...","...","BRUTE.EXE -r -z","...locating vulnerabilities...","...vulnerabilities found...","MCP/> DEPLOY CLU","SCAN: __ 0100.0000.0554.0080","SCAN: __ 0020.0000.0553.0080","SCAN: __ 0001.0000.0554.0550","SCAN: __ 0012.0000.0553.0030","SCAN: __ 0100.0000.0554.0080","SCAN: __ 0020.0000.0553.0080"],d=document.getElementById("console"),f=document.createDocumentFragment(); function u(){t.push(t.shift());t.forEach(function(e){var p=document.createElement("p");p.textContent=e;f.appendChild(p)});while(d.firstChild){d.removeChild(d.firstChild)}d.appendChild(f)} setInterval(u,200); })(); </script> </body> </html>Found 2026-01-10 by HttpPluginCreate report