| | 216.9.224.179 | | 2.2 kB |
IP216.9.224.179:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcad51727c1a02d24463f7e902d6f3b36 e67a62a45210400d3d915d2e12984c1199cd9fc0 c6a25c606e7246e64dd0e4a78b0aa0cc452d73b09bcedcc7d8fef5ecdccac275
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "8ac-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 2220
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| fonts.googleapis.com/css?family=Open+Sans:300,400,600,700 | 142.250.74.106 | 200 OK | 1.7 kB |
URL GET HTTP/1.1fonts.googleapis.com/css?family=Open+Sans:300,400,600,700 IP142.250.74.106:80
File typeASCII text, with very long lines (1572) Hashe4f35f80d57def39b9abd32cd05dd0fc d703852ed7be3febf32c05ae1add5ee3980cc11c 1a958da30b693b6e8e27cb5b9f03824a34d87a7afac241e8278e396936749d71
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 26 Apr 2024 13:45:15 GMT
Date: Fri, 26 Apr 2024 13:45:15 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
|
| 216.9.224.179/css/style.css | 216.9.224.179 | 200 OK | 2.1 kB |
URL GET HTTP/1.1216.9.224.179/css/style.css IP216.9.224.179:80
File typeASCII text, with CRLF line terminators Hashef957d2761473c4c20c122bf57457646 9493b9f16ecbfce05ed1fb4e5de6cf85e0dc32f1 9cc0140026bf1b13f8b4dc4e4770dc4cd979550624eb307129a3596c50ab6c91
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/style.css HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:42 GMT
ETag: "856-5cac603f0c780"
Accept-Ranges: bytes
Content-Length: 2134
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 216.9.224.179/css/font-awesome.min.css | 216.9.224.179 | 404 Not Found | 222 B |
URL GET HTTP/1.1216.9.224.179/css/font-awesome.min.css IP216.9.224.179:80
File typeHTML document, ASCII text Hash8141a2cfd8e5bbfa92e947562c942374 0f62361e45107d3d147ca39ec3545c61deb30774 4555508a2ac643a0ee50287165b2637a9187ff47f18f464bb88b774ac7c35582
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/font-awesome.min.css HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Content-Length: 222
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| 216.9.224.179/fonts/font-awesome/css/font-awesome.css | 216.9.224.179 | 200 OK | 29 kB |
URL GET HTTP/1.1216.9.224.179/fonts/font-awesome/css/font-awesome.css IP216.9.224.179:80
File typetroff or preprocessor input, ASCII text, with very long lines (372) Hash3f05a51a1e5260f4179db8ca65307a6a 2148b3dddca54f413e8ba50aa48b53b400bd99b8 c374efba54279628793f04e10ebf5d0c1b4dbc36b3f4132d9235f01d64ca5c8e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:42 GMT
ETag: "704b-5cac603f0c780"
Accept-Ranges: bytes
Content-Length: 28747
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 216.9.224.179/js/jquery.countdown.js | 216.9.224.179 | 200 OK | 8.3 kB |
URL GET HTTP/1.1216.9.224.179/js/jquery.countdown.js IP216.9.224.179:80
File typeJavaScript source, ASCII text Hasha0a92ce1ee82415f7423e8dd997f1764 84e5eaac9a4b559681bfb806eeed1eb02ae5d796 afffb2588b8e4c235de0bc9ec92fb7c5a14ce3a298675955c5b7eff4289ed4dc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.countdown.js HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "2074-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 8308
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 216.9.224.179/js/custom.js | 216.9.224.179 | 200 OK | 920 B |
URL GET HTTP/1.1216.9.224.179/js/custom.js IP216.9.224.179:80
File typeJavaScript source, ASCII text, with CRLF line terminators Hashbec64163ee1884905f4c99d4466b8ef5 ae8f477b5d3c198deec38731b6e9ec2eb6d1d219 53a33bb45ff2771b9b0765d9760c70d09514190cd3315f6ae598baae176f07a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/custom.js HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "398-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 920
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 216.9.224.179/js/bootstrap.min.js | 216.9.224.179 | 200 OK | 36 kB |
URL GET HTTP/1.1216.9.224.179/js/bootstrap.min.js IP216.9.224.179:80
File typeJavaScript source, ASCII text, with very long lines (32025) Hash8c237312864d2e4c4f03544cd4f9b195 253711c6d825de55a8360552573be950da180614 d5fd173d00d9733900834e0e1083de86b532e048b15c0420ba5c2db0623644b8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/bootstrap.min.js HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "8c6f-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 35951
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 216.9.224.179/css/bootstrap.min.css | 216.9.224.179 | 200 OK | 117 kB |
URL GET HTTP/1.1216.9.224.179/css/bootstrap.min.css IP216.9.224.179:80
File typeASCII text, with very long lines (65371) Size117 kB (117305 bytes) Hasheedf9ee80c2faa4e1b9ab9017cdfcb88 ed29315e0ffb3f14382431f2724235bf67f44eb3 f04b517ba5d6a0510485689a3e42dac000f51640fd71b986804cba178eae42a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/bootstrap.min.css HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:42 GMT
ETag: "1ca39-5cac603f0c780"
Accept-Ranges: bytes
Content-Length: 117305
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| 216.9.224.179/js/jquery.1.11.1.js | 216.9.224.179 | 200 OK | 96 kB |
URL GET HTTP/1.1216.9.224.179/js/jquery.1.11.1.js IP216.9.224.179:80
File typeJavaScript source, ASCII text, with very long lines (32086) Hash3c9137d88a00b1ae0b41ff6a70571615 1797d73e9da4287351f6fbec1b183c19be217c2a 24262baafef17092927c3dafe764aaa52a2a371b83ed2249cca7e414df99fac1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.1.11.1.js HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "17629-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 95785
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.67 | 200 OK | 48 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.67:80
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://216.9.224.179
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 48236
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 25 Apr 2024 02:53:24 GMT
Expires: Fri, 25 Apr 2025 02:53:24 GMT
Cache-Control: public, max-age=31536000
Age: 125511
Last-Modified: Thu, 14 Dec 2023 02:08:40 GMT
Content-Type: font/woff2
|
|
| 216.9.224.179/img/preloader.gif | 216.9.224.179 | 200 OK | 23 kB |
URL GET HTTP/1.1216.9.224.179/img/preloader.gif IP216.9.224.179:80
File typeGIF image data, version 89a, 64 x 64 Hash18233e1dd6c403cab03573a03444288c a99251778574db89048882c5ba96112a0e1ba812 07fdd2aeff7549312d7587806cf82ff4198d1d50b0fe244acab264edf720cf70
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/preloader.gif HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:44 GMT
ETag: "59a8-5cac6040f4c00"
Accept-Ranges: bytes
Content-Length: 22952
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.67 | 200 OK | 48 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.67:80
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://216.9.224.179
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 48236
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 25 Apr 2024 02:53:24 GMT
Expires: Fri, 25 Apr 2025 02:53:24 GMT
Cache-Control: public, max-age=31536000
Age: 125511
Last-Modified: Thu, 14 Dec 2023 02:08:40 GMT
Content-Type: font/woff2
|
|
| 216.9.224.179/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0 | 216.9.224.179 | 200 OK | 57 kB |
URL GET HTTP/1.1216.9.224.179/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0 IP216.9.224.179:80
File typeWeb Open Font Format (Version 2), TrueType, length 56780, version 4.197 Hash97493d3f11c0a3bd5cbd959f5d19b699 1075231650f579955905bb2f6527148a8e2b4b16 aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/fonts/font-awesome/css/font-awesome.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:42 GMT
ETag: "ddcc-5cac603f0c780"
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
|
|
| 216.9.224.179/img/bg1.jpg | 216.9.224.179 | 200 OK | 90 kB |
URL GET HTTP/1.1216.9.224.179/img/bg1.jpg IP216.9.224.179:80
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3 Hashdf00bf478dcc5664829d7c28b0ff7bc4 f030a91c2b39761106aa8ec01ca19d470562cdb2 30a8de9d1739fad52289a5771975d89ee3e308e4f43328795e3b7300a5173452
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/bg1.jpg HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Last-Modified: Mon, 30 Aug 2021 12:31:42 GMT
ETag: "16142-5cac603f0c780"
Accept-Ranges: bytes
Content-Length: 90434
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| 216.9.224.179/favicon.ico | 216.9.224.179 | 404 Not Found | 209 B |
URL GET HTTP/1.1216.9.224.179/favicon.ico IP216.9.224.179:80
File typeHTML document, ASCII text Hash18ffb59b61525f781cf9251045be575d bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 216.9.224.179
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://216.9.224.179/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 26 Apr 2024 13:45:15 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
Content-Length: 209
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|