Report - 217.26.61.115/

Report Overview

Submitted URL
217.26.61.115/
IP
217.26.61.115
ASN
#29097 Hostpoint AG
Submitted
2024-05-09 02:49:10
Access
public
Website Title
Seite nicht verfügbar
Final URL
217.26.61.115/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
217.26.61.115	unknown	unknown	No data	No data	2.1 kB	112 kB	217.26.61.115
hostpoint-static.ch	unknown	unknown	2020-11-28	2024-03-16	461 B	2.3 kB	217.26.54.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	217.26.61.115	Sinkholed
2024-05-09	medium	217.26.61.115	Sinkholed
2024-05-09	medium	217.26.61.115	Sinkholed
2024-05-09	medium	217.26.61.115	Sinkholed
2024-05-09	medium	217.26.61.115	Sinkholed
2024-05-09	medium	217.26.61.115	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	217.26.61.115/modernizr.js	3.6 kB	2023-03-26	2024-05-09
Pretty URL 217.26.61.115/modernizr.js IP 217.26.61.115 ASN #29097 Hostpoint AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:54:52 Last Seen2024-05-09 04:49:16 Times Seen32 Hash a75375fd8057819d67750b1285380df0 2f4c1b4212233851e0a6af4267e002a52eb4bbb3 c911ba1185b13b16be90859737598bb9112550b680d4fbb439b3b02a35de030a Loading...

	217.26.61.115/	674 B	2023-03-26	2024-05-09
Pretty URL 217.26.61.115/ IP 217.26.61.115 ASN #29097 Hostpoint AG Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:54:52 Last Seen2024-05-09 04:49:16 Times Seen15 Hash bf972e51fe8b7fe7f8d9c5c2819a4a14 69164899edacb297ddd518831509c76eee4554fd 1f587da63177a8e3b4f176c14477f7f8bf6174d5348efed122c19260a7e35581 Loading...

	217.26.61.115/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-20
Pretty URL 217.26.61.115/jquery-3.6.0.min.js IP 217.26.61.115 ASN #29097 Hostpoint AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-20 07:20:03 Times Seen275301 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

HTTP Transactions (7)

URL IP Response Size

217.26.61.115/

217.26.61.115

500 Internal Server Error

48 kB

URL User Request GET HTTP/1.1
217.26.61.115/
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

File type
HTML document, Unicode text, UTF-8 text, with very long lines (39127)
Size
48 kB (47881 bytes)
Hash
6d25a865e24db4dee8e13a56d0494813
7fe32dba52aa5bb232286bbcd68a14e02a24e232
5355b5b43e889daf170c0b647f8520c88d69e50db08e959aa5f5d0f3f0b23183

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 500 Internal Server Error
Date: Thu, 09 May 2024 02:48:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

217.26.61.115/modernizr.js

217.26.61.115

200 OK

1.6 kB

URL GET HTTP/1.1
217.26.61.115/modernizr.js
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/

File type
JavaScript source, ASCII text, with very long lines (3539)
Size
1.6 kB (1608 bytes)
Hash
a75375fd8057819d67750b1285380df0
2f4c1b4212233851e0a6af4267e002a52eb4bbb3
c911ba1185b13b16be90859737598bb9112550b680d4fbb439b3b02a35de030a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /modernizr.js HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:48:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 05 Dec 2023 17:58:33 GMT
ETag: "e3d-60bc6fba08f62-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1608
Keep-Alive: timeout=5, max=100
Content-Type: text/javascript

217.26.61.115/jquery-3.6.0.min.js

217.26.61.115

200 OK

31 kB

URL GET HTTP/1.1
217.26.61.115/jquery-3.6.0.min.js
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30902 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:48:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 05 Dec 2023 17:58:32 GMT
ETag: "15d9d-60bc6fb959096-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30902
Keep-Alive: timeout=5, max=100
Content-Type: text/javascript

217.26.61.115/open-sans-v17-latin-regular.woff2

217.26.61.115

200 OK

14 kB

URL GET HTTP/1.1
217.26.61.115/open-sans-v17-latin-regular.woff2
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/

File type
Web Open Font Format (Version 2), TrueType, length 14380, version 1.0
Size
14 kB (14380 bytes)
Hash
33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /open-sans-v17-latin-regular.woff2 HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:48:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 05 Dec 2023 17:58:33 GMT
ETag: "382c-60bc6fb9e53e0"
Accept-Ranges: bytes
Content-Length: 14380
Keep-Alive: timeout=5, max=100
Content-Type: font/woff2

217.26.61.115/open-sans-v17-latin-600.woff2

217.26.61.115

200 OK

15 kB

URL GET HTTP/1.1
217.26.61.115/open-sans-v17-latin-600.woff2
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/

File type
Web Open Font Format (Version 2), TrueType, length 14880, version 1.0
Size
15 kB (14880 bytes)
Hash
819af3d3abdc9f135d49b80a91e2ff4c
0fd9f29faa386a9c8de328f799d2698948ed3d25
1491de1b31182d38593bcf660c99bc6018af8e192d91663f67ec9d045a3b5ccc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /open-sans-v17-latin-600.woff2 HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:48:46 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2023 17:58:32 GMT
ETag: "3a20-60bc6fb90aad5"
Accept-Ranges: bytes
Content-Length: 14880
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

hostpoint-static.ch/status-pages/configerror/konfigurationsfehler.svg

217.26.54.57

200 OK

2.0 kB

URL GET HTTP/2
hostpoint-static.ch/status-pages/configerror/konfigurationsfehler.svg
IP
217.26.54.57:443
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/
Certificate
IssuerLet's Encrypt
Subjecthostpoint-static.ch
FingerprintD7:15:9E:92:A3:A4:B2:D5:18:66:4A:20:FA:9A:22:8F:82:50:39:30
ValidityFri, 19 Apr 2024 20:11:48 GMT - Thu, 18 Jul 2024 20:11:47 GMT

File type
gzip compressed data, max speed, from Unix
Size
2.0 kB (2038 bytes)
Hash
1b1617ac36a0f1b094326dbad77122c6
60369ecc01b2dc589ee189f4be62190e73538a62
ab9cb0b723ffe6eb962cb55f244b339cee7172aabf00faa3ad642c0ee7e79d8a

HTTP Headers

GET /status-pages/configerror/konfigurationsfehler.svg HTTP/1.1
Host: hostpoint-static.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:48:46 GMT
content-type: image/svg+xml
last-modified: Wed, 01 Mar 2023 14:53:41 GMT
vary: Accept-Encoding
etag: W/"63ff66f5-118f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

217.26.61.115/favicon.ico

217.26.61.115

200 OK

272 B

URL GET HTTP/1.1
217.26.61.115/favicon.ico
IP
217.26.61.115:80
ASN
#29097 Hostpoint AG

Requested by
http://217.26.61.115/

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
272 B (272 bytes)
Hash
19b66d8fbf46b74d9ade280ec8d7e8e2
a768d5eb0056dc8bbcbd4b01e324fa62f783b613
35485466ee0e29e18d25cae7c4fb15c0d8c3627b52a08928d8f3fdf2f3c9cbf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 217.26.61.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.26.61.115/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:48:46 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2023 17:58:31 GMT
ETag: "110-60bc6fb862e48"
Accept-Ranges: bytes
Content-Length: 272
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size