| icaxiw.com/ | 185.176.220.59 | | 346 B |
IP185.176.220.59:0
File typeHTML document, ASCII text Hash039de4730e507248ff20ff7290dfbcc2 28be2039b8e08f98473c3010e41f1c0db1a1f4ae ffea7ebc407fe393ae32571da33e804f101c2ef0308d0b8bf6148ba543cdfd47
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: icaxiw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 07:57:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Location: http://icaxiw.com/opt/out
|
|
| icaxiw.com/opt/out | 185.176.220.59 | | 3.6 kB |
IP185.176.220.59:0
File typeHTML document, ASCII text, with very long lines (3986) Hasha591a5074616ff0fa204c2310737ddde 5c968322401836c59ac661fbceecf070e6c2d946 34271e4cb35efbf54d0474a20b18fe9ef8e0411159e9c489a7c2d3f7115a4e54
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /opt/out HTTP/1.1
Host: icaxiw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 07:57:03 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3595
Connection: keep-alive
Cache-Control: max-age=0, must-revalidate, private
pragma: no-cache
Expires: Thu, 18 Apr 2024 07:57:03 GMT
Set-Cookie: PHPSESSID=37jcn948ntf7vv86loqgmai23m; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| icaxiw.com/build/css/opt_out.css | 185.176.220.59 | | 3.8 kB |
URL icaxiw.com/build/css/opt_out.css IP185.176.220.59:0
File typeASCII text, with very long lines (23352), with no line terminators Hash661e66c0c3e76d3eb957f5d1dc58df15 c74d4d4fe7aa038fc81b658f231432ae9b6bc102 72b78573841119b6e3fe3f7ee0845e126fb525a6d7f05c7268306a458a726fdc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /build/css/opt_out.css HTTP/1.1
Host: icaxiw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://icaxiw.com/opt/out
Cookie: PHPSESSID=37jcn948ntf7vv86loqgmai23m
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 07:57:03 GMT
Content-Type: text/css
Content-Length: 3835
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 08:29:49 GMT
ETag: "5b38-61646a869ec63-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| fonts.googleapis.com/css?family=Source+Sans+Pro | 142.250.74.106 | | 1.1 kB |
URL fonts.googleapis.com/css?family=Source+Sans+Pro IP142.250.74.106:0
File typegzip compressed data, max compression Hash1fbe908df10a5107ac4d82952777b7c8 52fea6a4764e629967331f79d90480c25cff6b94 189e900df93e4e212de7274d5b13cf2b564ea685aeaf98919de4266ea1351c10
GET /css?family=Source+Sans+Pro HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://icaxiw.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 07:57:04 GMT
date: Thu, 18 Apr 2024 07:57:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| icaxiw.com/build/opt_out.js | 185.176.220.59 | | 105 kB |
URL icaxiw.com/build/opt_out.js IP185.176.220.59:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (59378) Size105 kB (104951 bytes) Hash3db398d82bcf5cfa1835f7f4c5331c3f ba1f8c6aad32dd56e020ec69fadc83eba61c0ae1 623388f11311de0fd5347d31bd906b6891e23a49d096202a44ffbe4379b94eee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /build/opt_out.js HTTP/1.1
Host: icaxiw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://icaxiw.com/opt/out
Cookie: PHPSESSID=37jcn948ntf7vv86loqgmai23m
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 07:57:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 08:29:49 GMT
ETag: "5fe51-61646a869ec63-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| icaxiw.com/build/images/flags.007b2705.png | 185.176.220.59 | | 71 kB |
URL icaxiw.com/build/images/flags.007b2705.png IP185.176.220.59:0
File typePNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced Hash416250f60d785a2e02f17e054d2e4e44 21572c9751e5a3dc20395befa0fcb349c32c4811 0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /build/images/flags.007b2705.png HTTP/1.1
Host: icaxiw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://icaxiw.com/build/css/opt_out.css
Cookie: PHPSESSID=37jcn948ntf7vv86loqgmai23m
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 07:57:04 GMT
Content-Type: image/png
Content-Length: 70857
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 08:29:49 GMT
ETag: "114c9-61646a869ec63"
Accept-Ranges: bytes
|
|