URL User Request GET HTTP/1.1IP199.80.53.4:80
File typeHTML document, ASCII text, with very long lines (745) Hash1251ff87a0e52f120bdf542f51e0ee71 0af3acc04562317af84840868235e649e77f76d7 b773441c9619175d556db48ff3980e3ef7b1b5f310a49e3465162f1b19a317ae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 199.80.53.4
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 5438
content-encoding: gzip
vary: Accept-Encoding
date: Thu, 09 May 2024 18:55:22 GMT
server: LiteSpeed
|
| code.createjs.com/createjs-2015.11.26.min.js | 23.36.76.145 | 200 OK | 55 kB |
URL GET HTTP/2code.createjs.com/createjs-2015.11.26.min.js IP23.36.76.145:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjecttls.adobe.com Fingerprint5B:E4:91:BD:88:FC:1C:DC:4A:22:B6:37:45:53:7F:1A:9E:22:2D:08 ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32022) Hash0261ee6025d94fa2c0389df3f1f042f9 96cd4dd462fe9a9e4ac09665c9825d8febedfca2 50f6aa542d5224912c5c6e72c617dfcc9bbdb50ce6adc53ceccdf46b27652a82
GET /createjs-2015.11.26.min.js HTTP/1.1
Host: code.createjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://199.80.53.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
content-type: text/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
expires: Thu, 09 May 2024 19:10:23 GMT
date: Thu, 09 May 2024 18:55:23 GMT
x-n: S
X-Firefox-Spdy: h2
|
IP199.80.53.4:80
File typeHTML document, ASCII text, with very long lines (745) Hash1251ff87a0e52f120bdf542f51e0ee71 0af3acc04562317af84840868235e649e77f76d7 b773441c9619175d556db48ff3980e3ef7b1b5f310a49e3465162f1b19a317ae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 199.80.53.4
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://199.80.53.4/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 5438
content-encoding: gzip
vary: Accept-Encoding
date: Thu, 09 May 2024 18:55:23 GMT
server: LiteSpeed
|