| maxwellconst.com/cdn-cgi/styles/cf.errors.css | 172.67.134.213 | 200 OK | 4.7 kB |
URL GET HTTP/2maxwellconst.com/cdn-cgi/styles/cf.errors.css IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typegzip compressed data, from Unix Hash42c41483dce76aede7e2fc2ea682ed7f 9bc9b3174c18a6111d7c4eb7842d5c2cd1278e54 6b9ca3587856ad66be8b91226bf38af36682a045a77d84f48b00b58f203d16d4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maxwellconst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 18:04:18 GMT
etag: W/"66352722-5df3"
server: cloudflare
cf-ray: 8806b79558f1712d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Wed, 08 May 2024 06:30:54 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 172.67.134.213 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2IP172.67.134.213:443
CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typegzip compressed data, from Unix Hashc4ddc3bc64435f50d540f77352a71cc7 b4882fc514c829bbd4cb37f190c39187cb8ab8f3 e9ae5d4225caf912b052a1ca695899ad8cd9a839f03e02488126c6bc3f22b978
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 04:30:53 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W2GMEcpPiYt14GVvPdhs800CSrioK%2Fa7fH9brmx%2FO3f6BbmmhgtXnnbE6ZcyE6iRmsEUFb0vY%2Fsji1HfjhXkg11t5CtRuIl8nitnNtjjIHg68G6AfHWskNSykEIgJhFoJk6H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7937fbb712d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=axWvaPQDSwn5Fef26TOrd4p1%2ByZFVSUe2XW2r0VEb5NtCrGd5ug4Vqtk0zzpKVnW7J8hiLiYaNUUprj57JCXNqUN2VGecXbFakTweLCjnOELu65T7FzPiGVKuf3yNIHw4r6M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b795e94e712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BsSW%2FsvSGyzwe0XHqH8PogThTAdSu7bwR8kBiCmD7gTQ1q9LiCdMuLo9e2vI2WjPNhPJ6%2B68fspFNrSLvq1Hfq2iV2n9C4VNDUcO1TvmN8jp4zia8OSGMB3EKWNuKmFZRTAr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7962975712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0SiIUc9KNhoaQ3mnzvQMG4iVkvEXB58Ks%2FyD4oZpxpaRq0f5k0cQo9RK5RnwVyH0eQcLMAuaKPSh21IF39%2BSD5%2FQCZEfkKQpg9F%2B3MC3Bw1p%2BQEmnodFUczD8gX3vloKWg1m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7966997712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=72BQMGB%2FyIjYryJek3GQeiegxgEj81UoJ0ASoxr4U4IkXSRdYWsB68RZNKDdJx9hZbvo%2FZyHJZZkFyG%2Fqno%2B6ohJWo487A9UYlOtunqeyMwvFB289ziuOCGENlEbOxz6nCTO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b79699b3712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DHNiHXTDJHTT0%2B8e%2BZVZAiC5I%2BNo1XUefU4rh4p77RBAt5m5bipO3MNyVbT3msT9z%2FyRBOMTymoc1Dt53BW2K6jcA2lH%2Ftg5CZeYrHk6E%2FgOYEen4fKSMAUPdl2si8rMzIXy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b796b9c4712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tSQQx4r%2BKpvx5I0WxrPiGppQh67%2BVH2qVfxWEOgYn0d6vzI%2FcRvO0r5AE3bwZJxweYuuvLtOjXtfqyJHdhQkCtJaKZ7F75XM1zlQlDhS9qAAqInAJioz36ssOd%2FhCn9mYtnv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b796d9f3712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=35QmpqxlPe1dbmOeTJye3vC%2BwZg8Uawh3AHSc4CAV0y9UAU926Tf4YEpMkkJ%2FCGWisouCFEIAa0CnM2zPn2Hm44SiR2VCUDBD67FRekqxhQLWXSJuQmQhWGUWZK6F4ZF%2Fbwz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b796fa0b712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UxPsQpNAU9Eyg%2BGrKWX3g2yPxa6PYXsDe%2Buz4C6jh2EMgIIfaRIQzHn5ZxvTQyoOFTWHTodNsQe8ry12AAUB9EEZL%2BoITVCeoyC6d0%2FV4yZfHjUPMkkd21M1oDpLSXh3tY0l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7970a21712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XcESV5PwaGS8NHNYEx8WafAA6cptfQttpli%2BYZxQvXqRDgFLQ1iUUfV2B%2BAy%2FpUmxRFxbSrwTeUHyRj%2BkucJjMh8kMNFJSFTbtnJpJkQ9OSu1KCmz%2FQxHsHbMVUdrztxtWlf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7972a36712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/favicon.ico | 172.67.134.213 | 301 Moved Permanently | 167 B |
URL GET HTTP/2maxwellconst.com/favicon.ico IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 04:30:54 GMT
content-type: text/html
content-length: 167
location: http://maxwellconst.com/favicon.ico
cache-control: max-age=3600
expires: Wed, 08 May 2024 05:30:54 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CqqQArPBivDbM%2Bdvtvqp7EnIAnrFXPlYERuSaIY%2Fj2s84xaZmAwTD2WRcYY%2FMmvjRRo5egyyicbUam%2F2tfb0tnxCn6XohS4BAS2gUH2RxI%2FrIiKMyyb3a9ry3M5%2F4SdkjqZ0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806b7973a44712d-OSL
X-Firefox-Spdy: h2
|
|
| maxwellconst.com/cdn-cgi/images/icon-exclamation.png?1376755637 | 172.67.134.213 | 200 OK | 452 B |
URL GET HTTP/2maxwellconst.com/cdn-cgi/images/icon-exclamation.png?1376755637 IP172.67.134.213:443
Requested byhttps://maxwellconst.com/ CertificateIssuerGoogle Trust Services LLC Subjectmaxwellconst.com FingerprintED:1A:53:73:79:64:6A:BD:AA:2C:86:42:9C:84:5F:2F:93:F3:14:77 ValiditySat, 13 Apr 2024 07:24:37 GMT - Fri, 12 Jul 2024 07:24:36 GMT
File typePNG image data, 54 x 54, 8-bit colormap, non-interlaced Hashc33de66281e933259772399d10a6afe8 b9f9d500f8814381451011d4dcf59cd2d90ad94f f1591a5221136c49438642155691ae6c68e25b7241f3d7ebe975b09a77662016
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Sinkholed / Blocked | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1
Host: maxwellconst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maxwellconst.com/cdn-cgi/styles/cf.errors.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 04:30:54 GMT
content-type: image/png
content-length: 452
last-modified: Fri, 03 May 2024 18:04:18 GMT
etag: "66352722-1c4"
server: cloudflare
cf-ray: 8806b795991e712d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Wed, 08 May 2024 06:30:54 GMT
cache-control: max-age=7200, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|