IP108.61.203.22:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to *.rr.nu Domain (Sitelutions) | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to *.rr.nu Domain (Sitelutions) |
GET / HTTP/1.1
Host: tern29ation.rr.nu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.5
Date: Thu, 18 Apr 2024 13:33:31 GMT
Content-Type: httpd/unix-directory
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://domainpark.sitelutions.com/redir_not_found/redir_not_found.shtml?tern29ation.rr.nu
|
| domainpark.sitelutions.com/redir_not_found/redir_not_found.shtml?tern29ation.rr.nu | 45.77.74.193 | | 5.6 kB |
URL User Request GET domainpark.sitelutions.com/redir_not_found/redir_not_found.shtml?tern29ation.rr.nu IP45.77.74.193:0
File typeHTML document, ASCII text, with very long lines (535) Hashf0373389c873f2103e5a2dfeefebb44f 9bc11945a848f4270eb07da2b7e9e8340cac5b4c 593b1c5fcac5cecfe429ff2cbf98172e96734d6fe839f94c83531c66a21cbabc
GET /redir_not_found/redir_not_found.shtml?tern29ation.rr.nu HTTP/1.1
Host: domainpark.sitelutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.2
Date: Thu, 18 Apr 2024 13:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
|
IP108.61.203.22:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to *.rr.nu Domain (Sitelutions) | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to *.rr.nu Domain (Sitelutions) |
GET / HTTP/1.1
Host: tern29ation.rr.nu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.5
Date: Thu, 18 Apr 2024 13:33:32 GMT
Content-Type: httpd/unix-directory
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://domainpark.sitelutions.com/redir_not_found/redir_not_found.shtml?tern29ation.rr.nu
|