URL User Request GET HTTP/1.1IP18.172.248.58:80
File typeHTML document, ASCII text Hash3dadef2cc7b65c0963ab71cc08ad3562 9705c3914d7b2ee9b9ff0465acc98e0deb68faf8 845f0022918faebfb4146d30d1a59f5b2a37600d259beb1717f36cb772cba1ad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 18.172.248.58
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Sat, 04 May 2024 07:46:25 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 b414c1a5c68a99d254cfa9a4dac6eab0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: tvHi8pA0Jpdd9k2qH1XtzlkgntTBQM0bOGzYbkZ5z5dazGqMeEi9Iw==
|
| 18.172.248.58/favicon.ico | 18.172.248.58 | 403 Forbidden | 915 B |
URL GET HTTP/1.118.172.248.58/favicon.ico IP18.172.248.58:80
File typeHTML document, ASCII text Hash8b5d21caab036bdb9523bc0e59b77640 78d60ca157d42e15da59ee01fc62e9926ff1bc8d 4fac7da7c93e878296f87bb7021fb21f092f0f2b3d2bd115b646fb8741497a11
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 18.172.248.58
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://18.172.248.58/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Sat, 04 May 2024 07:46:25 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 b414c1a5c68a99d254cfa9a4dac6eab0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: MVo2xV8Ab6hivGY5xTSfGOjmOYGwiXws2CxiiPQvYkUlJ6q1h043Bw==
|