URL User Request GET HTTP/1.1IP18.172.242.92:80
File typeHTML document, ASCII text Hashd989480f34c98c2ac14d9b9c50933108 1a0de59c165269ebf243a80e490da39019034f75 a7f826ec044efd19d3ca21708edec752ae00a4d930db98d1bb2f15b0d7ea609c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 18.172.242.92
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Mon, 29 Apr 2024 03:27:37 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 afefc2e0cad8cff764251b2e1abbdfba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: r45eA_c2RMF31U0AN_IjUbirenjO4_62AmwD2fSfl-PakkMjuBRUMQ==
|
| 18.172.242.92/favicon.ico | 18.172.242.92 | 403 Forbidden | 915 B |
URL GET HTTP/1.118.172.242.92/favicon.ico IP18.172.242.92:80
File typeHTML document, ASCII text Hash4b0c1dfed2d524b6f16a97f9031bd49d 76324641fbda6c90774aad6ef8a7d20be516db8d ab6985242802c470bb0272b66e33b64c0ea0741eea9fa6d9484a526d93ca89f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 18.172.242.92
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://18.172.242.92/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Mon, 29 Apr 2024 03:27:37 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 afefc2e0cad8cff764251b2e1abbdfba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: IncKrNzNuL6a7lsOP4B1yDcX2dBdTDWnRa7xF03RyMzxGuiheyUULA==
|