URL User Request GET HTTP/2IP157.240.212.14:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintBC:F3:32:77:35:B2:9D:D7:40:42:CD:86:26:C4:13:92:0E:AB:75:5B ValidityThu, 01 Feb 2024 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.212.14
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://157.240.212.14/
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 23 Apr 2024 21:14:09 GMT
Connection: keep-alive
Content-Length: 0
|
URL User Request GET HTTP/2IP157.240.212.14:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintBC:F3:32:77:35:B2:9D:D7:40:42:CD:86:26:C4:13:92:0E:AB:75:5B ValidityThu, 01 Feb 2024 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashac6ef2e5d224b851875b18cd4983b577 d00bb35dd01f4efe2072d6d45468c19d13fb20da f0dfefd6f17ff85387d82969c4234bbcec6a177dafef54d6756e274371a55b6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.212.14
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-length: 2959
content-type: text/html; charset=utf-8
access-control-allow-origin: *
proxy-status: proxy_internal_response; e_fb_configversion="AcLwhTKdz2XKmDvIfCe5BT_xTe-p7V9jVF6o4yHm6CmONItlk4CIjmPgWAsrmA"; e_isproxyerr="AcJkrzEpuaqY0LWqccHYTjp7IlGDR_JR_7tn-tLTpgqiaLR5Gce42b0y7-FmJA"; e_clientaddr="AcLtWuccmiYt4Yb2mj5APaqVItsOw_nHy-f4IYE_4CX4EtodiEbug3q8Hwf6a_-wC0q3-z5NE8x1GL9D"; e_fb_vipport="AcKs0JLYW8VzsKfv5BMidTlCmi0Ovmb8vHG3bgL5Z_el-3mMgBPQjM6-YRFb"; e_fb_vipaddr="AcIIc9dsEd43wLXMBeDkwzmRlPF5G_mcmLgzRLOoABTPtHonw91OA8oveJygi0MWwmv8jNtXmOM"; e_fb_requestsequencenumber="AcLMSpAwx2mr7Yp7ThuBgYXdJ1V_XFIbs1UcM3Ok1m7AG2I3Hyv-TIxkAQ"; e_fb_hostheader="AcIYxyoH6S12FrxyffXBq6hjLyEm_TLoY1T-u0APUrShOgE5OY7zVvqJql1eSF_r3QdCuQuj9BU"; e_fb_requesttime="AcJogCJVXfBIixlLtVYrbSbJ44umoJSshNYSxITKtE29AL2U36kXJ2cW6PG3prXC51S4RQILbA"; e_fb_builduser="AcKgne8tNsl9GP5NnZ1MWcQRSNfWlV_uyZAdeZ0cdV8Bc5QzauKVdyiKZidEulQRqDQ"; e_fb_httpversion="AcLc4SuRDT3KNBhEI6gUdTbNbPSs1PBtNKvHRHliZCRvb7PwLjYRVeErT-kD"; e_fb_binaryversion="AcKry77yloqpoQ6jA3ZfjvbA44FATrd2dFQZgCyU-IsbaLDgQBH_zg7uoBrT1GO-zbF56jFHBiDJEJRwsPxbT5KcfhGaSrrqPRk"; e_proxy="AcJ51_6f_53t1w1qkuYLOE5lmqSCSb_UUToHxN8SKITAIFxvcnF9KOgW7R-xzGwGfN104MYv-zcisZs"
date: Tue, 23 Apr 2024 21:14:10 GMT
X-Firefox-Spdy: h2
|
| 157.240.212.14/favicon.ico | 157.240.212.14 | 400 Bad Request | 3.0 kB |
URL GET HTTP/2157.240.212.14/favicon.ico IP157.240.212.14:443
CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintBC:F3:32:77:35:B2:9D:D7:40:42:CD:86:26:C4:13:92:0E:AB:75:5B ValidityThu, 01 Feb 2024 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashac6ef2e5d224b851875b18cd4983b577 d00bb35dd01f4efe2072d6d45468c19d13fb20da f0dfefd6f17ff85387d82969c4234bbcec6a177dafef54d6756e274371a55b6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 157.240.212.14
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://157.240.212.14/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
content-length: 2959
content-type: text/html; charset=utf-8
access-control-allow-origin: *
proxy-status: proxy_internal_response; e_fb_configversion="AcJcXIdtiChyfWgwHTlV_o0oogF-G9R0-47PqrT_eCoFeT5aMWYYiiA4lZ0EQg"; e_isproxyerr="AcI0WKPgF1wMSVDaAUfqjDopKrw6_xOr7_QIFrQTmRJbFdapiSO-O3Hx9-_rew"; e_clientaddr="AcJ4s6zrZ2IsI-05m8oo0hMTxgKG8F-eNvxzU4i-REjuvCoK8Fhs8Due333WTUGv0EPXAEbAn-fyZQN8"; e_fb_vipport="AcJE41uVBaF-TfYblina0D3Pr73OGfWh6OUeRokYaGpGQw90mSDG-LrruSJ1"; e_fb_vipaddr="AcLuoda0h945lfMFq17gPImoBFaosrSCkZcbPiTFOkz25kHLR7iaSgmA7kd2gKuO7alxx_XKmdU"; e_fb_requestsequencenumber="AcJvC8hOYt537IrQp2EvvQqWD1Vyb_ECPiuHEvfJpL-rNAsuvuXztVIYYQ"; e_fb_hostheader="AcIZkNiTLzb3g1si0rM5_y57FKwH0oOWCJS3yiVKY5IZchO-zl-fd5-I5GxCXsvSaf0A5erf2vI"; e_fb_requesttime="AcLckxN1A99223GspTOImU9q352rSfYgpkO5szxBfW-HaEOBF8I0HnUI901Iv1AZ3ER20dXhmA"; e_fb_builduser="AcJaXM4F8NOLOBRGARdvxWyyLcbPV_cI5sQM2YLKNHjeutBOLaPTLZDhGVfayb3ILvU"; e_fb_httpversion="AcLr-naIX-duGhcJ4cKdPtvAIeIVxsFjKkefbQk55KqGAEl3U8HwNwB3LrG8"; e_fb_binaryversion="AcLZJymjWGu-XbN8dxYX-S-wWjsf8TAc1flCqveLUevSl6p3kVv5slJ3vQJfCBQ45CzG8WjAXUGLIyqt06_rzgQkjoNYJWhp5PM"; e_proxy="AcKB--gCb_YnPbLWwpnpNrRyT-UF59ifwo7Xcnt5vkxhytRHgIfPRuh7vQnqTLSCWDaxQHYU5QKdWz8"
date: Tue, 23 Apr 2024 21:14:11 GMT
X-Firefox-Spdy: h2
|