URL User Request GET HTTP/1.1IP13.111.18.12:80
File typeHTML document, ASCII text, with CRLF line terminators Hash11ca4578cb026a23713aea6781b8ece3 a05ae51b4a3e2e0076222cbcbe9c58833cdef108 c55f527e536de44c7980fecece7428ae5a765647495e47008a8a54fa1e434736
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 13.111.18.12
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Content-Type: text/html
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict
Date: Wed, 08 May 2024 22:17:36 GMT
X-Cnection: close
Content-Length: 1233
|
IP13.111.18.12:80
File typeHTML document, ASCII text, with CRLF line terminators Hash5343c1a8b203c162a3bf3870d9f50fd4 04b5b886c20d88b57eea6d8ff882624a4ac1e51d dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 13.111.18.12
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13.111.18.12/
DNT: 1
Connection: keep-alive
Cookie: strict
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 08 May 2024 22:17:37 GMT
X-Cnection: close
Content-Length: 1245
|