| | 45.54.28.11 | 200 OK | 496 B |
URL User Request GET HTTP/1.1IP45.54.28.11:80 ASN#64089 DNSFilter, Inc.
File typeHTML document, ASCII text Hash7c1fcd143ad4b3d589f9cf8a6ee01a9e 8b8d174492241a84aac5c4a642b778f1e3ace032 4b9f653c59357636012b7a055af1e7f53771a00db422e5b77645f19d1adf7de7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 45.54.28.11
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Content-Length: 496
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 06:11:35 GMT
Etag: W/"1f0-i40XRJIkGoSqxcSmQrd48eOs4DI"
Expires: 0
Host: 45.54.28.11
Pragma: no-cache
Server: nginx
Strict-Transport-Security: max-age=15724800; includeSubdomains
Surrogate-Control: no-store
X-Api-Url: https://api.dnsfilter.com
X-App-Url: https://blockedv2.dnsfilter.com
X-Deployment-Type: undefined
X-Ip-Address: 91.90.42.154
X-Page-Type: blocked
|
|
| | 45.54.28.11 | 200 OK | 496 B |
URL User Request GET HTTP/1.1IP45.54.28.11:80 ASN#64089 DNSFilter, Inc.
File typeHTML document, ASCII text Hash7c1fcd143ad4b3d589f9cf8a6ee01a9e 8b8d174492241a84aac5c4a642b778f1e3ace032 4b9f653c59357636012b7a055af1e7f53771a00db422e5b77645f19d1adf7de7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 45.54.28.11
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://45.54.28.11/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Content-Length: 496
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 06:11:35 GMT
Etag: W/"1f0-i40XRJIkGoSqxcSmQrd48eOs4DI"
Expires: 0
Host: 45.54.28.11
Pragma: no-cache
Server: nginx
Strict-Transport-Security: max-age=15724800; includeSubdomains
Surrogate-Control: no-store
X-Api-Url: https://api.dnsfilter.com
X-App-Url: https://blockedv2.dnsfilter.com
X-Deployment-Type: undefined
X-Ip-Address: 91.90.42.154
X-Page-Type: blocked
|
|
| blockedv2.dnsfilter.com/97493d3f11c0a3bd5cbd959f5d19b699.woff2 | 45.54.28.10 | 200 OK | 57 kB |
URL GET HTTP/2blockedv2.dnsfilter.com/97493d3f11c0a3bd5cbd959f5d19b699.woff2 IP45.54.28.10:443 ASN#64089 DNSFilter, Inc.
CertificateIssuerLet's Encrypt Subjectblockedv2.dnsfilter.com FingerprintB1:04:3C:F2:64:AE:F8:AC:73:80:3B:2E:86:A4:EB:D5:D9:2D:60:6B ValiditySat, 16 Mar 2024 02:11:38 GMT - Fri, 14 Jun 2024 02:11:37 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 56780, version 4.197 Hash97493d3f11c0a3bd5cbd959f5d19b699 1075231650f579955905bb2f6527148a8e2b4b16 aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /97493d3f11c0a3bd5cbd959f5d19b699.woff2 HTTP/1.1
Host: blockedv2.dnsfilter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://45.54.28.11
DNT: 1
Connection: keep-alive
Referer: https://blockedv2.dnsfilter.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:11:36 GMT
content-type: text/css; charset=utf-8
content-length: 56780
vary: Accept-Encoding
access-control-allow-origin: *
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
accept-ranges: bytes
last-modified: Tue, 10 Oct 2023 13:08:34 GMT
etag: W/"ddcc-18b19b416f9"
strict-transport-security: max-age=15724800; includeSubdomains
X-Firefox-Spdy: h2
|
|
| 45.54.28.11/favicon.ico | 45.54.28.11 | 200 OK | 496 B |
IP45.54.28.11:80 ASN#64089 DNSFilter, Inc.
File typeHTML document, ASCII text Hash7c1fcd143ad4b3d589f9cf8a6ee01a9e 8b8d174492241a84aac5c4a642b778f1e3ace032 4b9f653c59357636012b7a055af1e7f53771a00db422e5b77645f19d1adf7de7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 45.54.28.11
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.54.28.11/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Content-Length: 496
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 06:11:36 GMT
Etag: W/"1f0-i40XRJIkGoSqxcSmQrd48eOs4DI"
Expires: 0
Host: 45.54.28.11
Pragma: no-cache
Server: nginx
Strict-Transport-Security: max-age=15724800; includeSubdomains
Surrogate-Control: no-store
X-Api-Url: https://api.dnsfilter.com
X-App-Url: https://blockedv2.dnsfilter.com
X-Deployment-Type: undefined
X-Ip-Address: 91.90.42.154
X-Page-Type: blocked
|
|
| blockedv2.dnsfilter.com/index.js | 45.54.28.10 | 200 OK | 243 kB |
URL GET HTTP/2blockedv2.dnsfilter.com/index.js IP45.54.28.10:443 ASN#64089 DNSFilter, Inc.
CertificateIssuerLet's Encrypt Subjectblockedv2.dnsfilter.com FingerprintB1:04:3C:F2:64:AE:F8:AC:73:80:3B:2E:86:A4:EB:D5:D9:2D:60:6B ValiditySat, 16 Mar 2024 02:11:38 GMT - Fri, 14 Jun 2024 02:11:37 GMT
File typegzip compressed data, from Unix Size243 kB (242881 bytes) Hash2c367b9dbf3fac1108b3f1191e881016 d8f2560a414608baa9189d781aba60c01116dbbf 098ab3ef42b58734a7e9b07a63fd7269543859516be068c8732d2fef568a95b6
GET /index.js HTTP/1.1
Host: blockedv2.dnsfilter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.54.28.11/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:11:35 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
last-modified: Tue, 10 Oct 2023 13:08:34 GMT
etag: W/"d7ef3-18b19b416f9"
strict-transport-security: max-age=15724800; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| blockedv2.dnsfilter.com/main.css | 45.54.28.10 | 200 OK | 38 kB |
URL GET HTTP/2blockedv2.dnsfilter.com/main.css IP45.54.28.10:443 ASN#64089 DNSFilter, Inc.
CertificateIssuerLet's Encrypt Subjectblockedv2.dnsfilter.com FingerprintB1:04:3C:F2:64:AE:F8:AC:73:80:3B:2E:86:A4:EB:D5:D9:2D:60:6B ValiditySat, 16 Mar 2024 02:11:38 GMT - Fri, 14 Jun 2024 02:11:37 GMT
File typegzip compressed data, from Unix Hashb275bc1e6177a3d943889f374be9d7e0 7bd5032582bae11677f6ed8088bfe6bb12459494 c864a102a47065341defaab1b0083facf11e9555a3ab8d73363ba22946c569da
GET /main.css HTTP/1.1
Host: blockedv2.dnsfilter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.54.28.11/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:11:35 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
last-modified: Tue, 10 Oct 2023 13:08:34 GMT
etag: W/"30e1b-18b19b416f9"
strict-transport-security: max-age=15724800; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 45.54.28.11/lookup?fqdn=45.54.28.11&block_date_time=2024-05-07T06:11:36.016Z&default_locale=true | 45.54.28.11 | 200 OK | 29 B |
URL GET HTTP/1.145.54.28.11/lookup?fqdn=45.54.28.11&block_date_time=2024-05-07T06:11:36.016Z&default_locale=true IP45.54.28.11:80 ASN#64089 DNSFilter, Inc.
Hasha126d361104725258d1e001dea35f715 dfa1deb516fd99174d5c8ee961eaaf0b2bf2a0c8 4e02999759fd7db51930c8e976d6836859d7831ec0d703557b43d011398c1031
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /lookup?fqdn=45.54.28.11&block_date_time=2024-05-07T06:11:36.016Z&default_locale=true HTTP/1.1
Host: 45.54.28.11
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.54.28.11/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Content-Length: 29
Content-Type: application/json; charset=utf-8
Date: Tue, 07 May 2024 06:11:36 GMT
Etag: W/"1d-36HetRb9mRdNXI7pYeqvCyvyoMg"
Expires: 0
Pragma: no-cache
Server: nginx
Strict-Transport-Security: max-age=15724800; includeSubdomains
Surrogate-Control: no-store
|
|