URL User Request GET HTTP/2IP31.13.69.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint47:5B:7E:48:B4:57:13:A5:03:87:26:46:96:BC:16:CD:AD:43:D4:A9 ValiditySat, 27 Jan 2024 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 31.13.69.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://31.13.69.35/
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 18 Apr 2024 21:06:59 GMT
Connection: keep-alive
Content-Length: 0
|
URL User Request GET HTTP/2IP31.13.69.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint47:5B:7E:48:B4:57:13:A5:03:87:26:46:96:BC:16:CD:AD:43:D4:A9 ValiditySat, 27 Jan 2024 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 31.13.69.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: PeX0/ulo/s8xc68cUmRkya5dlHy5o2F45fzs8Yq6JmaCpZXla3XGGAfe1qwKNTCIC82V7s/OuRzh6et96rWQEg==
content-length: 742
date: Thu, 18 Apr 2024 21:07:00 GMT
proxy-status: http_request_error; e_fb_configversion="AcL_cviGYGOgr8ZfcgBATWXBRa0dkuOTZOoP9WwJj3B5WP5fpXoJmhBPUap7iQ"; e_clientaddr="AcIZRjh0IoPqWn8eysrJgARqHAkb74s65uf1sVycCrM2hXl2v6HYwsRB0ssPufeYGTWEKv7fmuvGwSXVwm9NyHYQ-iPRVWwZ80A57ivICXlA95AVrw"; e_fb_vipport="AcKf6e6KpADK4jO4M6-_bpT3KbwJ9QjA4QJziB8uRmFGnrrCGQ0TWxKKOYpv"; e_upip="AcL-yD_ZTy1HlJyLcevL4m4ZWnBaVL_-dpyq2Sccjgsu2ZiDLv5rl7OCeYlerFB_PhF_rUL6v2M57xTW1goesj6oRcIwsRu2E6E"; e_fb_requestsequencenumber="AcK-KnY_KT14XUO3Wac6k2-biHnLKNglC07FRZsnHw0X59VRYR0qZkEm5jyB"; e_fb_hostheader="AcI_AsIHbFLYMNXlCo3VjVe2my7cGW2MILrioMUm1acCG0OMRyieK2obryIjilV5bFFronE"; e_fb_vipaddr="AcLLt6hmLs19qshXtkmBHqU70RQnojVpWiI_zrD6gI33xwM7QiitBv4MMiiL97cixQ4C8NnBhx7g6ytIM9IpG_gHTk7FVeHkbQ"; e_fb_requesthandler="AcLHplAEKm5CyeORJ-DY8cSdBJK8nc6fD2JrxyNz7gpTQUsfkQchvYwHa8JMb8sJkgTOuucMeqg"; e_fb_requesttime="AcK6ExTvv7hK5taH0wj_N1Ku4GN82oognli-71TFoLUf2e0A6iZZ4RfiSkv5BuYGmrfIlrIDEg"; e_fb_builduser="AcLtKdEa0nwsq4uzoOwxQv9pSuKLWcb6wexj7KkbNrh08ysbSHkvOc4fee2SEauEWmU"; e_fb_httpversion="AcI_kj01qdWN8TVnbp6lh7-4zZnxK8IFm5SoGVPgoQDcpwZJPmJZtFEMMxKc"; e_fb_binaryversion="AcI5CUgB3wpacPeO51dCIpSBcAhv344cCimN-l7r8dKYEeIJbmlxJDwfVbYDJfnolWQV7sUXKWVQAIOTdvtjJuaMD9ufGt8yk5o"; e_proxy="AcIuMITugT7AKYLbfNXQYEpoWVD7H3-EGuCuy8oyr8ZrJ3YvFKGz3WSUo9n2aW7CC7Fw1l84rcM9Lb9HSjuP", http_request_error; e_fb_configversion="AcJ6bJ69VJdSnIhey1kjpbsVtZNrvgSjq13VQcG-k05EWlrw5ZM7xOlvIinriw"; e_clientaddr="AcLcjWoy0VvzX1V5kMeEKv2qu5EHglLsj1iI8rSzhvWNBMfr-7G0stBrSdMfHhDpS2CwmP77y43CChkz"; e_fb_vipport="AcKudoqrBqbQ_YcIO3_vON4IeKa_KQIC5XV7IiT4qFCqiVM9xGIgswWUqrPZ"; e_upip="AcIZy6MpubqIn1g45x5P2ZmZu3yrE6Mv065Pnd-hoqcQSmC-MvSGmDdFedxhGV_Jx_uQ19Tz1fAuxMaPxv2Kwp84mW3NWGh4PA"; e_fb_requestsequencenumber="AcJwnF1e0iPUMiPSGn0eeshGh4X2SSH7btLG-z39hnH1j-kdR2eawN8gow"; e_fb_hostheader="AcIewvwWxni2FdxgTOOhmNP9EslFg_6uPwCv-NnmvZv31rmSNis9KSBqtkrIZfyRJdrviOI"; e_fb_vipaddr="AcLAft8eGmA1lYPZZtPRpvgvmGPKHKQ9u7buJmZAvWv_7-RHXX82-2YqlSA_E35nhdFdMTg"; e_fb_requesthandler="AcISS2GNawDaoPp1poJfi02uojJj82Qrk6mMdnu0YZ_JtCF1CUQXAcprIb-iMil3ubO5nLTIinwicX4-75-fLIXp"; e_fb_requesttime="AcJH0eg3BXd9sH2CC93NNf2mKIgby8crDUolOe3DDwTh5xCvzweJmtqL8aDSeWq6Cw48eAX8kw"; e_fb_builduser="AcLcIzODF2QXfScW4hRm_4PukbzJMBGIgANSDtNEmxIoAryOwEIU_X5mauP5GP06YKs"; e_fb_httpversion="AcKeVy3nJmvrO2x7TWYY_0N1Wl33AhW_ffMufFxA1kDcCPMIyfR6HCvCHSpc"; e_fb_binaryversion="AcI_S0t4dsN13H-oyos9_yQD8zVNDBKCG_zgGwr8vthKiGRyFIUm3m5B476jeOpRA1-RydDa4ixYl_pZ6MMKrqaF4DUHG5HHYbo"; e_proxy="AcJG5HdUFucPeWDNjv3_NFmjl6LZm3NQPOuWmlzhjFKwnhLZnXWgUWgax97Wk8V24ppGsnVlI1URcNw"
x-fb-connection-quality: GOOD; q=0.7, rtt=56, rtx=0, c=10, mss=1380, tbw=3385, tp=-1, tpl=-1, uplat=45, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
IP31.13.69.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint47:5B:7E:48:B4:57:13:A5:03:87:26:46:96:BC:16:CD:AD:43:D4:A9 ValiditySat, 27 Jan 2024 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 31.13.69.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://31.13.69.35/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: Ezri3hpkNpzYa8RoPyRlsLq+utvQO1kJLtVaoa7KNuFEJYb4XtKdCO9YNFICO7o/6++DXd6uN8EYzHtdbkUSDg==
content-length: 742
date: Thu, 18 Apr 2024 21:07:01 GMT
proxy-status: http_request_error; e_fb_configversion="AcKcG0BovGduvTW_vVZRmK5qvX3mohmiuevzlNlOoiD7XhBSQi1ZHPvuKeKM3A"; e_clientaddr="AcJp-lkfFG49q_HXp9RV1Z_-kUbfEPEiWO1W4pvvJSuJbMSJzCOCAFcZUOE-Yo3C5kx4H7IMQdgdIKC9s2E4JWIRiLLRgCBPjSAnAuszkx0KYx4vew"; e_fb_vipport="AcJHdAB9gLIG5SaCIQ72qVVVA6vNYf4patHXDvBE9SdilUNrXuiWJVCy9sX8"; e_upip="AcK-holwddh2Tx7g8yxihQq0b-pPRKDQkRIGb3vfE0wQzpYOz0nKnM6r4qjgiuG0QHPqhI8JdalNaht3mHzAHZ-2aPIW-IKjJfI"; e_fb_requestsequencenumber="AcJ6Www5HV6SqjBCxFAw_sePlAtx4jotVNdwQvzwp4rVtFpeclgnhEHWVpLH2A"; e_fb_hostheader="AcJXPWDauu0oPeEmxTFq5Oq5LzdgKhwu0Fw5SRvLa9noO1JmSKc1JzFlBoaON23fZhPIPhQ"; e_fb_vipaddr="AcK1tEVIYigw2P-IFE0cSFYNHdmu5cYR9fXrRos04QvzpZH4a-AWrzKWa2IpK-SiJ95iCiLotIDOUGiSOucb1m2E7Nr1rXYEVg"; e_fb_requesthandler="AcLr2g-I1g2TOoaPsMVtaB5ZT9swlb6dWKEZgDcM3pMPl1MlHkmgHZAyXql5otKZZ1WVyRDm4Mc"; e_fb_requesttime="AcI6fkVDi9e-5MBXCvORJFK1ImAYPhqZFrvn2HvdnFV-vkHL1jS_i2bRUqpChK5g08nSe27cJw"; e_fb_builduser="AcJnKzSuqmN1FnY2SUnWeXeTRK-2rQCPDhxxYiOnv9-ZZAh2NRmRYzRsBKoYRtZN3ss"; e_fb_httpversion="AcKI43NLrYrK77hw-axzYoQ_il3D1SSZR-colCSNDYIin1MqWZuuyCcosIs4"; e_fb_binaryversion="AcK1Q3RGSQgG98X0O9tJUqy-nLSSOqOcw1YHKFXmTj3tnLAFMTDSaQXg3-QGT4iMQO6iMI8UrdNTlOWp9DiVg-p0eUXHcmChv0w"; e_proxy="AcIUAf7NZuuE7KXKR2SSaqmnOsvgg6gxd1UncMVWHwlFmnxDMAorJy0aXgw2zFmxVITKD-7V0Zk4RfjVT3de", http_request_error; e_fb_configversion="AcL5U8vt-O3jAZr2tyYJzuArFicLYCbxacZJZadAU-n5p1v3gHoN8cf9arKsdg"; e_clientaddr="AcL_hu5ksmIASmzgAzeDmPfYdowK87eMa5_vt6W8OIZy3EwBvxSkI07QnlxIAJWGkuJtBYv7WLVEMRkl"; e_fb_vipport="AcLB4w0bIRYitCtztGOxjxULGJ49QZ7sJqpRSEIILvlfSHkhYcuZ4fsgr2YK"; e_upip="AcLJM67_CXMRuBtXARxBv_ORnUFjhCqmXFLGChY1afBpqRY_cU1DVIrVpucr1i6cJa8e4jYT24HlEi7ESzS609UDIRoLhPAmpA"; e_fb_requestsequencenumber="AcIaw_j0wWAULyJOlnKDpO0bG7N1G2ct3-RrXc3cPaphg_lZOiOltT_msA"; e_fb_hostheader="AcL6nVpl72ycnbB2aroHDaB6Td0w4v4e2XNBO21kHABGC3tZublPKyWC53e4-38Sq614DaA"; e_fb_vipaddr="AcKd1fK2lTYj_cegA85yEdOLN15d9zNs2ZLkCxYNlIt6KTUhQx_NcGZ1TwGg3r4NHlxXGX8"; e_fb_requesthandler="AcJRQ76jC9c8LHCKPfb0JikgAXNUbmdKEIU3AkaGUrw5J389DXEW9DL1D7IYvc9SRVUhcOVZ9L_Fno5PbE7a50ZB"; e_fb_requesttime="AcK5uRcErbds1sRAgAjpN8bzjYsWq8Xsta_WFUyC665ctykA4uGS6uzGsI4GZRBdfbB1HpJGwA"; e_fb_builduser="AcI8Rau6lTpGPmmKiwuM4gx7EhHNUxSQ9AZmtxXbAAdI2QTV8mJL3-R8ROT5rEytrHo"; e_fb_httpversion="AcL3PU7hd0p9mQbSbfrmHDw_dDBuzkFQAukunoniUOUmZXbVmaIkx5bIA-lS"; e_fb_binaryversion="AcKAbM-JydytDWxJLZFmKUKQvxWx2um-Gioiecyw3atduH5wlJCJBuvnujq6zm2OV4AM-3bUOeD1yaeS1GgIDaD9YF1MUVtCUa4"; e_proxy="AcJly6uh0n5jpNwjK-j84sKrYg2BzEIUcZAVfluNGEIJISoYvK0P0XpLuUbmBIpYBR7JKK2HqSFM1fI"
x-fb-connection-quality: GOOD; q=0.7, rtt=56, rtx=0, c=10, mss=1380, tbw=6511, tp=-1, tpl=-1, uplat=45, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|