URL User Request GET HTTP/2IP157.240.252.10:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintA8:DE:E8:08:F6:7A:12:95:AD:A8:6D:C6:05:99:F8:25:1F:6D:1E:1A ValidityThu, 15 Feb 2024 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.252.10
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://157.240.252.10/
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 08 May 2024 19:12:30 GMT
Connection: keep-alive
Content-Length: 0
|
URL User Request GET HTTP/2IP157.240.252.10:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintA8:DE:E8:08:F6:7A:12:95:AD:A8:6D:C6:05:99:F8:25:1F:6D:1E:1A ValidityThu, 15 Feb 2024 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.252.10
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: xtmP+l2d64m9hEAdGaI93mjDdgm60cJSJOJZ74jguz1gNinShZJ1U+aC7caGdQRgJwSCzWP7GvsFy1/SsiGCbA==
content-length: 742
date: Wed, 08 May 2024 19:12:31 GMT
proxy-status: http_request_error; e_fb_configversion="AcLltn3D_xrM0K4kcmoq5-mkhQDJgEID6mI7svgRWE5SIOIpzHscFihlhSjzpQ"; e_clientaddr="AcJ9AdA69yAVg2NJmvrUCRxX_V4yC1nZUOYF_MHG0psL94oS0ComeoTmJVLA_GN2p_-VeCSRan0JoPhJ6ELaonUP0y46yZBiu98d_MoLNi93E-50jw"; e_fb_vipport="AcLXwD3_U6BiMNL79ZemuyDhy-ihkn7ReYpu-qiQRkDAk27ZxK9d_8DjDphs"; e_upip="AcKRHl8pgP-8Lov6FngeW7gL_NGKRMwY5o5SdG9YCb_Xfh1-BtJTeona5Ni-PF3oUMWWpRm5hHZ4bUkgBc1hQljpwYL4z4R1Fzc"; e_fb_requestsequencenumber="AcJpfz2jiwyQ6A7pFJ7FyHjodhHe0Ov2fmjYsNU5XoKBDgDDjNh1LQtu1MsZ"; e_fb_hostheader="AcJPBRk6wNnS9bb9Kd9xrZVLTscxez_R1LPfqhB-IFe-pkoOZTaA4TQvEUZNXP9-Hjf-ztkAyMw"; e_fb_vipaddr="AcInG3cJUeEoE1HsSddZM7t353t9saoA7cuGc4gchpRdV4Q614SzD75RYcMfeHnvqCXec21mip2c8WCJjEKSeSfWKvXemV5DqA"; e_fb_requesthandler="AcKJxGGrV0Ahmjs9g8xeB8o_B8T_NcDfURB-GMWd5WFZ6W0Cu_XbDbTa7zsfVCiv3FZs8MmjZRA"; e_fb_requesttime="AcK6RHPVotfpdS7ZoIwN9f_R2ICye200ubumvbTjTNBxPprYvrzSP0TwV_Ink82SK73t29MO6A"; e_fb_builduser="AcLC13fByiIx0NVFUD0W8KGhME6w1KT1c7_fF13HflFDgTPz7M7SCnYS4LIq8vAseCY"; e_fb_httpversion="AcLc9IlWRCktyKdpvp75DlfoSdN3prRGhpYSyqHwuie_OZWSMw4K3V5hK10Y"; e_fb_binaryversion="AcIWNqBLNag0bXT1zHGcuIdaZ2U8q_eJs78fQufRmTiLvVnbLs-Mlip_cZiMEsFU00sS0AUrUTh3kL6z8goB8Dbw1lltnq4Wfhc"; e_proxy="AcIe3jXYzpmAJwvb1Cngev7HP26h9sA36hKggdVwWmLWni6lqDHxQ_gXNfhqdmAksmZhXg95BghnzsOHhpzV", http_request_error; e_fb_configversion="AcJhqZSWuAd3EsWhGjK5N3J0OVNXMA2zby5zHkcMDPIZny5abOkl3261CS8c1Q"; e_clientaddr="AcJdeH-GpyFoL1tCSHz1XA05E-b03ZGD45vwewS5Jywppjw3LtmB98L8GcKi6KzJAvhCK_p1v1QsrMY"; e_fb_vipport="AcKlmXX-fDPipRto2nss8PS0JB9Pb6EAfSFkUkmHGHGX_vx73JoAHG-5CHTA"; e_upip="AcJVnO5p9O5znVvuedltSSSzCL-ttzR1l5MHyTL8uI0Q9d145KB7_fm_wKG0hLgm4aljaeE8JgBIvJOCkIYCxfLudEOuJk17fw"; e_fb_requestsequencenumber="AcKEiML5W3AgrOVUesJl6_UKBAMWdhL9JYUv4Pa321d2rppKaM_WXoSsdA"; e_fb_hostheader="AcILA-f36bQeFLH4fCZvio0FrqXYFz6lsW0BYXAkRVChtlpjuQbdkTJG2cnJPdIArVGod7WGf9k"; e_fb_vipaddr="AcJxrGj8LnDaMNS_yIsyEGG3R3530H5U0ifSEcwQjdagrtphhONH7fPD8GCUCVBwf9XzcHxilxM"; e_fb_requesthandler="AcJloflLdc9aFZ9i5x9ldWF3b48aXHF6JXH9t2MwOIIxB9FCNHEHC4ml8vxKx9YLXHxpJiMoLY1P4jIooOu_9HR8"; e_fb_requesttime="AcI1vXKWbQ1A7JlDoUZdhIR2KIp2iybTsc0Ety1lkfMFe5SKIX8RBjYwlDDtSpsRKvcDJsH3Mw"; e_fb_builduser="AcJ9fw-wafn-ROygzXY1AW_4AK3Y6Ik5MYisEpO4AQQnYDlLHV16uf3n3jT_i5KAZss"; e_fb_httpversion="AcIR5vvZzur0P02W4DDuIXXrXcZG175P31ai1xy_6ibc9AZDIddsXNNbDRGv"; e_fb_binaryversion="AcKvpqtUgaP-pdBti2oc_0PUc9q5c7TOUTfOWwHVZ9J7-vIhzCjnY9e0FW3K8L0mNWufKHfdxjHpeaKTnoyR1m0U1TBYgAlCZVs"; e_proxy="AcK0-upZuncON48b94p2SbFg-thaO10lNzNrc8txtMaT8czEZBPnkyJgFJ1iGJpWOl0lxti0swyxXVI"
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=20, rtx=0, c=10, mss=1380, tbw=3381, tp=-1, tpl=-1, uplat=17, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| 157.240.252.10/favicon.ico | 157.240.252.10 | 400 Bad Request | 742 B |
URL GET HTTP/2157.240.252.10/favicon.ico IP157.240.252.10:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintA8:DE:E8:08:F6:7A:12:95:AD:A8:6D:C6:05:99:F8:25:1F:6D:1E:1A ValidityThu, 15 Feb 2024 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 157.240.252.10
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://157.240.252.10/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: v3WOTe2cvDWZkjVyPrZksfkriGBK64BQFHScuERmu/aCB3R6b0dBAlPBc9JVW93z+cgdcaUf9AmYhBn6Yhetnw==
content-length: 742
date: Wed, 08 May 2024 19:12:31 GMT
proxy-status: http_request_error; e_fb_configversion="AcL7e0_QdlH6YqoBVtZcu82atDJZb-W-Eszk7AS8CImVHzkYIKLLLfOBXzGZfQ"; e_clientaddr="AcJzNUwUbDQhuxJgmav-hfbbOs-_O7W55ZYlTe7fLa6y0rC_H9qKgljmnI1QxMah3dptK3GweCbrz84HyfuWiiwR_yZ1ToY9vGNZTKQ6WCWRqurRkA"; e_fb_vipport="AcLoShSSe5r1U_B8UzEIkATdrctUxLYof9ZV-e4mCn596ADfFDporDVM-ayh"; e_upip="AcIzi4E8pxBNGIKVZbxFbKMDlPi_HdFExDmpGsDZEtxIZ8KecCs1AJwz-XTFdCwql7lyh5emvQwOFFRvgrMcBHwRNPWRDMY8LA"; e_fb_requestsequencenumber="AcJ4aQNbKBw3RKTLM0UGqTd1uwcWNzoIoH9bjWNFeZK2vRgQ3GefootRMhZE"; e_fb_hostheader="AcIDaFI8h_eL1edUwLlf-doPQu9htRr265jot7-3gzeP1tbNdRnZWOpi7hn7k18MIMiY1CAGieA"; e_fb_vipaddr="AcIZBGmcTanHILePM-l9WR4UYRfjp-SZJSStmYBMSLwfOsyFWrMEL3Lz4O0Udotb84t6nUKEd4cusOB-0eNJTHmXkJZCAStM2g"; e_fb_requesthandler="AcJmSTK4uxInFHMupJBLyyafLh3AtAwDiIoZ8-7XJkR6Mx0zbeMdeoQ5BxkArbaFZKLKjWlGe1Q"; e_fb_requesttime="AcKvbi0H3-fPYx3jv_ZzKTiu1C8th1MD8tG8t-HsMlT94sz0WxxziNCnEJth6fpcsW31737CRQ"; e_fb_builduser="AcKMlikBQGpUXmfUXOp5Ek9X2_bzzV1CegeFHwU6MeYFV3iPRu6GvC7EtH7KdDfuvm0"; e_fb_httpversion="AcI96VcSTrN2A8pg_-1IhXafcBI2IPjAyX6QchLKqSAamWWDDs9HfSGz-_Dl"; e_fb_binaryversion="AcKe1ZjkDo6DaHr1kVuduwj6dhRo2tkmkLeo1gPEvSkYQJkmx267aXQuRIwcBQS0jCfYZ7bThYfZfHIwdW8xaQebonV4VGvwByw"; e_proxy="AcLj6oqYxvhXu2ktmqiWfANO5cs77oUPogqmBnte43cHhpD0bRvfQhEr6djN6r30ZbdruKZ2zyKI3Zhvfr1H", http_request_error; e_fb_configversion="AcLF1BeUEtWWFLRD5LZP1ntMVDuh3SQUVyyDHAkCLah2IIhQnfDva8E6DGbyrg"; e_clientaddr="AcIZU3XZGvx8r2zq4-crkPrPss63BJjHA_y6925GPn558bUmV4kKrA3hCBOOl98K9bZ0whz_wIiC5fs"; e_fb_vipport="AcL9wSLUvU-V6YjPvqu-kx1aQbXjuqSjHfSuDVOYNWwNBSz8VeleVtX86fNb"; e_upip="AcI7pXjWro-OoZopSdz9MJ2R3DS7H9efLSsNVlsn_xOfjsRs3XlGs6_SPVCjegPaKKp4n6JaT8lOajceNJQy5SwTPp6-yfUxHw"; e_fb_requestsequencenumber="AcKbMwnXPj4WVn7sAj33emXLHdhsw2EkTpuVbn0-hit09LJDLXgLefWvmA"; e_fb_hostheader="AcJw8HIkP5sGCW6m1DbsdsM4Jt0UA5HTynGXaX7aMBo_43BnWHeubudgLvfnfUKIRiY-B-oWCNg"; e_fb_vipaddr="AcK0cCS8KF92LOpWC_egPSucIJqf-VVz-kxSvF8QTWctV2UHTSRvF2_EGeTW_Ro9T0CtYK4kyF0"; e_fb_requesthandler="AcI_gRIvHx_FN4kLW-CXRgdO6y3bDuINmgTdx5jUKdfVg63eKgA0qYqY3bFuX8SobST_Q8_bbxfIrb3SlmoGiOh3"; e_fb_requesttime="AcJ7VN39ofayJO0kW1u1mCS-Zp3IavKb_MXjBq9Wy4pn7t0b5us6ytREoDtH8WkJyor8KkYE7g"; e_fb_builduser="AcITXHQCCfnLHuuqto4A9pAF6QRR5EZTFxXp6uwoRkrWmKWq68khtVye9nNkYQ7K-k8"; e_fb_httpversion="AcIaolea-WR8FqIVGaVioYBcVOZU-REI1HPP3kTPE9BF0ZNMg94gTPdjVUSW"; e_fb_binaryversion="AcLt4cjfb4PKY1hm4NcPksVWvPwrIwcLiCsR4hByudzR3zHzyah09aMVy-1qgbgkNGA_EUGL8qhZgEL922uyD3jbN5LCia_n3v4"; e_proxy="AcLWQEvhKAKuYn20XdYk93QUyc4xAxsgxNkVzTz-kM0oEABr02AyMQMG6gNlEaW4XLYyY7EWD_oK6IY"
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=20, rtx=0, c=13, mss=1380, tbw=6518, tp=-1, tpl=-1, uplat=18, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|