URL User Request GET HTTP/2IP157.240.221.16:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintEA:B7:EA:36:FD:19:2A:6B:AF:26:79:EA:6B:EF:BA:8A:62:15:94:52 ValiditySun, 11 Feb 2024 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.221.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://157.240.221.16/
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 04 May 2024 08:38:06 GMT
Connection: keep-alive
Content-Length: 0
|
URL User Request GET HTTP/2IP157.240.221.16:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintEA:B7:EA:36:FD:19:2A:6B:AF:26:79:EA:6B:EF:BA:8A:62:15:94:52 ValiditySun, 11 Feb 2024 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashac6ef2e5d224b851875b18cd4983b577 d00bb35dd01f4efe2072d6d45468c19d13fb20da f0dfefd6f17ff85387d82969c4234bbcec6a177dafef54d6756e274371a55b6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.221.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-length: 2959
content-type: text/html; charset=utf-8
access-control-allow-origin: *
proxy-status: proxy_internal_response; e_fb_configversion="AcL-9BKbJ2XiIZrrVK4RGPyD4LU1vpjyKjLMk-cvyrGbSwjF5kxeH5u-4pqQxQ"; e_isproxyerr="AcJzASGlFn6aVI8C0ZvMKyWY3Q1t7ulokLOJADO13zbKYG5Y7QCiK-WxguXk3w"; e_clientaddr="AcK_KRpsv8hc81QRVLW1EjTRcV0EXijS3PoZFvgWXxwVNhJY8SuimP1cPyl0uwZcf-mgnWqnm6a9uFQh"; e_fb_vipport="AcIVhYWzT55SOSF4EntGnIk1Jp0XIqDP7QwD8xVmpZ9Zj6iDF5OPXHqcdWyM"; e_fb_vipaddr="AcLKPYb6yYPoxCpuIKx4j28hLAnbkLw6U7pBm4g7OLVxRVoGqBmEZGOmdiuYu6h0nD4vTuf_hdk"; e_fb_requestsequencenumber="AcIxjeRe7hDMFN0v-d9hgeCjWIEl_Rm8xhPoj_qGrb4Q7lZ_DSSnuXavDg"; e_fb_hostheader="AcLpUksT5tVL1MP6mNaLEZgHw-4ZIeJN-5EwuzmNwurG9oFH1tidF5N-N246O2eb4KhDgXTtTqE"; e_fb_requesttime="AcJbUeOEAkE2pTsg0k3OJH-Lo-2XiCJN5wGjwrkvp1WfHB8WKxtChpzzdXJQU59CnIdRzl-JSw"; e_fb_builduser="AcIae-gIIexPMgRNPWzccnI_HhFkHMGB45p5cUNbtbUN-JDEGuTc2lCOkldyPHgB4SA"; e_fb_httpversion="AcJ6vr_3Ioj3FUQwJlcnAVnfi3tCqbA4Gu1xEYQl-AS6zPmYgHSzGb5AfPj_"; e_fb_binaryversion="AcIOiVpxrw3zlkM8uil6xdyZmfpyw489o15LhqoVNruI4T38UK8nEdXGLG8FpjRMg9j5kvJ-vlZEQD83M6yOcipHC8oPDMuNx_c"; e_proxy="AcJiMUntyr_ucpkoPjC-8xFNNpcVHiZV0LjxCR8khZtzvlQ04uLNDbuB0JvFtZy05hS25fkrqRO8i44"
date: Sat, 04 May 2024 08:38:07 GMT
X-Firefox-Spdy: h2
|
| 157.240.221.16/favicon.ico | 157.240.221.16 | 400 Bad Request | 3.0 kB |
URL GET HTTP/2157.240.221.16/favicon.ico IP157.240.221.16:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintEA:B7:EA:36:FD:19:2A:6B:AF:26:79:EA:6B:EF:BA:8A:62:15:94:52 ValiditySun, 11 Feb 2024 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashac6ef2e5d224b851875b18cd4983b577 d00bb35dd01f4efe2072d6d45468c19d13fb20da f0dfefd6f17ff85387d82969c4234bbcec6a177dafef54d6756e274371a55b6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 157.240.221.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://157.240.221.16/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
content-length: 2959
content-type: text/html; charset=utf-8
access-control-allow-origin: *
proxy-status: proxy_internal_response; e_fb_configversion="AcKwarRROimdIYXwd-Sz_a3Y-0Sio6zWNV5Fswb_w23yaKlFcWKhsMnwYhKIew"; e_isproxyerr="AcJ6xRj9KUXd2C_UDVrpj6dh_85roRY32GZYtII8dVzABaqKjWlavthNa9E5Hg"; e_clientaddr="AcKJoUXAygG7MOQAIXfMqjJx-E_sjVFgYf9TrcEH5dHHRVlCMvZYzRX-PSBaX3JL0Irec1g7NK6qvgBI"; e_fb_vipport="AcJOWfPhJ860uUKgwRbEUSNy9muGRCdA0EbGhAJy-23SJ97uW6m96r-Ll_k6"; e_fb_vipaddr="AcJeBhJcIu6Ule7j0yeRHJLX1faEe0HwCRE_sC60Q-G-s7aO0aBmHmUDn9Ak5zgT-fCWWQVNE0w"; e_fb_requestsequencenumber="AcJb379CcMHBa8-8KukoDw9tDO6MiOnsv_5AUd6EMF5wl2P4n9b_jv8NhA"; e_fb_hostheader="AcKOpB20fA2veg5Uzjl51sg5fqguwsNyJqG4L7dutz35nCc_sVQ2yVtYfddzJAF93OMZtp7u1a4"; e_fb_requesttime="AcKu7ufMPzDcmMO85M1YReh0oSG1dhmDitER-ADDQIAXNWQkgDV3h7kitgA5iMs0gJxVBC2cWw"; e_fb_builduser="AcIp4is5R8ipDUh0Yf1Y5rVlzYTCu0rGZrySqKtHmPc5kmrKvlk3167y1P92YxRbv5M"; e_fb_httpversion="AcKVmwzQRAmC1s2tsjn6Qjf5qq4yBhndaVbw1A1rqYP8YrUMteTy_7lCcsbi"; e_fb_binaryversion="AcK6EnfdcM4eduuBeKkpicMknWDKwOtn_3eN308QByDbkVvHU4UJrWH3zVRflRd5APTWy1hybjEHv-ca511KsUz-YR6fAMdg3Ns"; e_proxy="AcI6HeBtYZ9SmNUp4niS3u-Pn6JSl-eRqecR8rHqkFbCzwaixLhRzU_Uyme8J53DcRFqgGLtvwv_4Jw"
date: Sat, 04 May 2024 08:38:07 GMT
X-Firefox-Spdy: h2
|