URL User Request GET HTTP/1.1IP216.45.57.38:80 ASN#8100 ASN-QUADRANET-GLOBAL
File typeXML 1.0 document, ASCII text Hash48333b09d6a322538ba23cd8443ab268 1c615d755695a866397ce63f52f985bf8dd20ad1 426cdfbb25bd2278e6634dbdce1c3cf1e1c0e9a7fef1866b1bff9445e47d8f3d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 216.45.57.38
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 10 May 2024 12:38:07 GMT
Content-Type: text/html
Content-Length: 2266
Last-Modified: Tue, 03 May 2022 23:37:59 GMT
Connection: keep-alive
ETag: "6271bcd7-8da"
Accept-Ranges: bytes
|
URL User Request GET HTTP/1.1IP216.45.57.38:80 ASN#8100 ASN-QUADRANET-GLOBAL
File typeXML 1.0 document, ASCII text Hash48333b09d6a322538ba23cd8443ab268 1c615d755695a866397ce63f52f985bf8dd20ad1 426cdfbb25bd2278e6634dbdce1c3cf1e1c0e9a7fef1866b1bff9445e47d8f3d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 216.45.57.38
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 10 May 2024 12:38:07 GMT
Content-Type: text/html
Content-Length: 2266
Last-Modified: Tue, 03 May 2022 23:37:59 GMT
Connection: keep-alive
ETag: "6271bcd7-8da"
Accept-Ranges: bytes
|
IP216.45.57.38:80 ASN#8100 ASN-QUADRANET-GLOBAL
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash2f037fbcb28b2d4f63b46c240281d094 1e129b936d70f2c199892a9f0582d35431047900 4d15f3c881df984d975420e47e8e6fe90c84cd7a7e446ff2a7062ae6ad19a509
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 216.45.57.38
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.45.57.38/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 10 May 2024 12:38:08 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Feb 2013 08:00:00 GMT
Connection: keep-alive
ETag: "510b7600-47e"
Accept-Ranges: bytes
|
| 216.45.57.38/images/quadra.jpg | 216.45.57.38 | 200 OK | 16 kB |
URL GET HTTP/1.1216.45.57.38/images/quadra.jpg IP216.45.57.38:80 ASN#8100 ASN-QUADRANET-GLOBAL
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, software=Adobe ImageReady], baseline, precision 8, 549x81, components 3 Hash418ff648e338760edcf85b70550c57b4 2cf5a05c87f1c2ab7c7178cb0da17c49ba35b19e 68909926658827f748ef6bcca0b7803c5060deaaa31c902e38b6503ad169eb44
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/quadra.jpg HTTP/1.1
Host: 216.45.57.38
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.45.57.38/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 10 May 2024 12:38:07 GMT
Content-Type: image/jpeg
Content-Length: 16170
Last-Modified: Tue, 13 Mar 2018 21:32:05 GMT
Connection: keep-alive
ETag: "5aa84355-3f2a"
Accept-Ranges: bytes
|