URL User Request GET HTTP/2IP92.61.36.12:443 ASN#43811 Telia Lietuva, AB
CertificateIssuerLet's Encrypt Subject17082276311220.sritis.lt Fingerprint06:76:47:27:A3:E5:A6:47:E7:0A:F5:99:67:FB:40:09:B4:DE:1B:94 ValidityFri, 19 Apr 2024 06:52:22 GMT - Thu, 18 Jul 2024 06:52:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 92.61.36.12
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 10 May 2024 04:45:17 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://92.61.36.12/
|
IP92.61.36.12:443 ASN#43811 Telia Lietuva, AB
CertificateIssuerLet's Encrypt Subject17082276311220.sritis.lt Fingerprint06:76:47:27:A3:E5:A6:47:E7:0A:F5:99:67:FB:40:09:B4:DE:1B:94 ValidityFri, 19 Apr 2024 06:52:22 GMT - Thu, 18 Jul 2024 06:52:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 92.61.36.12
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://92.61.36.12/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 10 May 2024 04:45:19 GMT
content-type: text/html
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-encoding: br
X-Firefox-Spdy: h2
|
URL User Request GET HTTP/2IP92.61.36.12:443 ASN#43811 Telia Lietuva, AB
CertificateIssuerLet's Encrypt Subject17082276311220.sritis.lt Fingerprint06:76:47:27:A3:E5:A6:47:E7:0A:F5:99:67:FB:40:09:B4:DE:1B:94 ValidityFri, 19 Apr 2024 06:52:22 GMT - Thu, 18 Jul 2024 06:52:21 GMT
File typeHTML document, Unicode text, UTF-8 text Hasha247ba3cd7a69902798f0bf6a9fbf6f1 a7112eb803c89e61898befd0afbaae968acb98c9 b4c4d6e89b29172c1976dab5b57057b856a390c75a311ded3419de6268dc1f6d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 92.61.36.12
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 04:45:19 GMT
content-type: text/html
last-modified: Mon, 19 Feb 2024 06:57:04 GMT
vary: Accept-Encoding
etag: W/"65d2fbc0-11c3"
content-security-policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self';
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
content-encoding: br
X-Firefox-Spdy: h2
|