URL User Request GET HTTP/2IP157.240.212.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint30:6E:42:8B:57:D7:F7:77:60:B5:68:4A:3E:C6:B3:42:59:12:C8:45 ValiditySun, 04 Feb 2024 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.212.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://157.240.212.35/
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 26 Apr 2024 18:05:51 GMT
Connection: keep-alive
Content-Length: 0
|
URL User Request GET HTTP/2IP157.240.212.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint30:6E:42:8B:57:D7:F7:77:60:B5:68:4A:3E:C6:B3:42:59:12:C8:45 ValiditySun, 04 Feb 2024 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.240.212.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: M4ye9ni5aVHH20hZ656Uw8SRZ/MwD9dUIYaSOHa12UiQsRjpHy+PTJlsC1RUkO6xmaOn4TLpZk+59p8Pa+vGng==
content-length: 742
date: Fri, 26 Apr 2024 18:05:52 GMT
proxy-status: http_request_error; e_fb_configversion="AcJKr5aI65-EOD8ii1_4lpBNwobKklKvWSpXYjESLlVDJ3ZxASRItrw4zwGRrA"; e_clientaddr="AcJoErpMDmdcLAApUIyS7NnLUxuntd590bgXXs9eTM9q_6Ws89PdYxLITTIS6EY0F-LG6lL6yMhzQORcQA3UcJuOSx5-SzM6uthCmX7NfWt9imKG"; e_fb_vipport="AcK1nVWlhCIshtoQageQAVzWMZB8jwDXVKTYSwVmzgXIGy9CAmrhlTzrEKZq"; e_upip="AcIp-OVOK0WOj2clQKKlRKC06keGcrP8UKnyKOsy6o50ViOmli5uB6VqRuiITBdcNOkFYl9TyP5yVk1gWN0jwrKlrjiSzGS_CD0"; e_fb_requestsequencenumber="AcKWEHwX4cB3_tSIJbpq_YNhzs6V2W9-GkZCu-3IrxqJb7snqS4IvtWoJamn2w"; e_fb_hostheader="AcLHbQUZ0wrIfE8Gr0NW7PTmoNxRRDxIgfCHosihGuqmCEiHS9wMgL4fz28mIbzp5UfGT-Fd0Fk"; e_fb_vipaddr="AcIKkmgYxfW5Ub0RKKtugOlULXUg-7NGnYSAjT_keTeE-6DBlZdJt-J2V1oskVA15SMVQX1390wWUqbL566ddToWgH1BCZx4sA"; e_fb_requesthandler="AcKNEbHKFtpkYdv8q8E4ZiY-jD-PsNsSJx8DwsnxR3qFuqB0uVElg8xoNLyFa_FYoBCLmFgqFUU"; e_fb_requesttime="AcJE3zRV8xo_HrfmmZ-jwqW8bAv8wzPEyXGYl6aS6DaMBuak6sZyLRMQdRww6ULElBB_A8K9iw"; e_fb_builduser="AcIBRw3d-LqBUWlvgaJeT30THEp86daEu54uNPvMoHpnn8VB4oMmarJcyjmu0IdiwW4"; e_fb_httpversion="AcJv8yrW43RQaFjuXm5TwG9RlbLS0Nsjx28UiFJSnHeuAOvkXnHcAoFD5LNq"; e_fb_binaryversion="AcJsHtJD7aHFJwY-WifUaliG_iMpg8w9dfsBU6lMJPIBqwiU381AnaMCrgwLEKewahK3EHyMknf014jOqitTdEeg17TO0-tazNg"; e_proxy="AcIKhP_1gmxpp9CIYEUkhG0rpHmoGnVt5WXt6Ibc1qLk6RsZWtQKCthrSJD8F-bDliXNcyISFiswP7VL0s2V", http_request_error; e_fb_configversion="AcI83XKJ6SicyeL8PDAg2Ztm3YVhmOb1NfHZzFxVI-UybQR48J4GtFz2aTdbxw"; e_clientaddr="AcJFlWQ2vJyOgWucawSkUl4DHp0b4KvOhHholLXrAY3_c44uzOf4CDEp6W3ZizjJUv3wbDaxLelL_q1-"; e_fb_vipport="AcL21-OBD6q4uU0v2UUv-YQ11JTXXgPtpBlpc3Vx3rdyniRsRYKdnXjn1OMA"; e_upip="AcJfuCLhD3GxZ2-GzfEqV5NxvInWSw1C7sEEstmxIm1qMJ5DxydcoPnW5oHkWzGA9BKiyKFq33clI4cgMsYia2T82HM6B3Wi_g"; e_fb_requestsequencenumber="AcJrg-7E_dhBTFaYfleR_wpqQrHrTneMkEkWAxDT6IfKDzoizuKKX0ZQmw"; e_fb_hostheader="AcIrIv80e3LdyIFPETr9x2oW_8F09jwx4OePz7HC9qPDo-k6QgqTzocLk6nV_2yS6CHg_J792F8"; e_fb_vipaddr="AcIt5cgYJml6dykqrb_D7NlFG3TWySxdGxBehxFUJP9aD6CXSGUuiePbstYY8dA13vEHDGvaufc"; e_fb_requesthandler="AcIbfZIAR6tBz897XuA9SDz3l9gRnalWuZ7TRkXnCJ3Xr3dK14LDaTtpAIXVGgubiOB_V7FBdcj0JzpgHnvHRhvQ"; e_fb_requesttime="AcIzsXw5mlyPB-xmiHN_r-r2WQgVDBwxqi3aQyFR3SO1ymPvUHUAZMAjdSfdvA6Qz34ZsqL7qQ"; e_fb_builduser="AcLD3uYS8E7hpD_dbXfxw3VL1QmLFY3BlC0R4DfLfai42yxu4QExO-lyatJfwEpbaXw"; e_fb_httpversion="AcJojOpPWEBv2j9Z-6epTqNDp__qIlcLuCQOrzlrAnGlReketnXLygdVPhBE"; e_fb_binaryversion="AcLWdnZ7IAkhmodndbO03LAoHeYUG9YfClAM7ktEoYKlQkcOtaJYEi40fBOJRTLDtl8v1i5ZWsswMLrSW1ZtEJcfb_0xF8JY2_0"; e_proxy="AcI4HNMu07_AvAyT5jfL5tWl6M00ZiC0Gaov2haIkh47gmUwCiFyUe07WqaUWrLiqEjDuTVF2_1CzRM"
x-fb-connection-quality: GOOD; q=0.7, rtt=69, rtx=0, c=10, mss=1380, tbw=3461, tp=-1, tpl=-1, uplat=49, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| 157.240.212.35/favicon.ico | 157.240.212.35 | 400 Bad Request | 742 B |
URL GET HTTP/2157.240.212.35/favicon.ico IP157.240.212.35:443
CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint30:6E:42:8B:57:D7:F7:77:60:B5:68:4A:3E:C6:B3:42:59:12:C8:45 ValiditySun, 04 Feb 2024 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (587) Hashc9594678cd9dd5669dd3f027a8241091 e698267d0000f77e9d6657ceabddc9603dde31b8 3964f242c3df8e6325b9b0a3098f774ce0f4b8736253c6b53598ff3532fdb56f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 157.240.212.35
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://157.240.212.35/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: 0G9rum3wBKTP1x41kcRVoaO1/y/LWOtekbDuE2dTwS8OsEb3J72CQ7MjhKXaCVPPuxziljIYYbYnhFNicYFmZw==
content-length: 742
date: Fri, 26 Apr 2024 18:05:53 GMT
proxy-status: http_request_error; e_fb_configversion="AcIBuEYDaIyiDLVW1Fnng-qL5hG6jT0nDLWvEgrSDosxHen-9z8dq_xRNi2cZg"; e_clientaddr="AcLjAukhdKNXPrihmWeO65eDs5O0B7EUGAoEi3wBESBQzOZMmig5Lc13aOjVYrhlwTOkwMNBRc4oWIp3RajG1Xg8Va7uJ6upXtTF4MGCGT8zTQxG"; e_fb_vipport="AcJUJVDb7Nvuj3Exw9jnmZSJESNZpAO1ojDNo94iUjfjOU8sykw8oMYeqtwb"; e_upip="AcJBp_4z0RZ3fky5YoSD35d2SK7I45YZour9-QvbyAeN4O9eCsfbE5DO896vcxYLYMIUrVHZf-jhreeqLXjUGr-amgqtEU0"; e_fb_requestsequencenumber="AcJ8czto7CMG-4Hw03yiF2iaa8SWBM04WkfdnKrlbhFbMK-eRrwQhbt4M3hBqw"; e_fb_hostheader="AcLI_7lYEkvpFj62m7XALcmSqfqf1uqgu0rH2QLZHV5TiCqyYADumBcbwcGdLzaw_wlFNZ4Or_0"; e_fb_vipaddr="AcKBD_zQijd048v76QQm88zBqs0fc0OH-av_i4au4Jd9M4MDwKiCIf15MaDn7oydIc6RqGNQqbZJP0cRbLGpU3JuLJwRI124TQ"; e_fb_requesthandler="AcIIc-UVADF9k5VBkuKjpHPZGjLDEZqx7nN5GUh_gU6c-iHrKuM94YPvhyULsZDnOs9NSyXUEkE"; e_fb_requesttime="AcJ9d4NdaIusSRvnXHwgFCRlMtmBFdnQGxkLGkyt6JuIi3UTeRM0F4GWNV06hrv_SqkZPSdTFA"; e_fb_builduser="AcJI5VMpYmlwIL2V4VfY7EsuF_O5ts7ZM1EJa573yvhj4Z8lY8hD_4c0fpLwwuCWeGA"; e_fb_httpversion="AcI6slWqubABpCL2kgp1TX3ja-dkfp2-X3tf56OwVgBYxEn-4nZB3IgJZy27"; e_fb_binaryversion="AcIQBYDovJapcagOwUI5blaWovrm1mWTjfZZ5zUx3AT2d9HEvXzIB0gEn_t7o02RtWhrUKKLweFFPc3FL6iCNbnTKowm6JJ7Pgg"; e_proxy="AcLWhvWS8XMrtrVB0YfCbB5ZK9X6A8ZMDuqqau9FJ-mtjSk2gqU_3ecUHEiWhwDzfc6YL24UYf7PzmEdOQC6", http_request_error; e_fb_configversion="AcLlJxwEenZ-G71Ough_DFtTky7PnXbGBKvds2HOIAPnLP-ySPXgvWiSPK2uug"; e_clientaddr="AcIl_veztUH3BxEsdbfpfp2_b3Jpm6QsCuAxUHbMCgQyI5A16wqLB1THZzZyUo_qdn6m7-79SnDUjmHO"; e_fb_vipport="AcLOM9PvCvLfdqHc-sq6Fpt3m6jDu_nGcs9qkzYPTPNz36o4EX-zpukSIgBq"; e_upip="AcIuQiRVsGoLmFg9MeKqPQ6FtIjvmq5wuw7d4DwPu1vv2-fhYs1WZdbFumt5XnHgWNczROjvOMF43ybEWI7hP0uZ_VgeN1M05w"; e_fb_requestsequencenumber="AcIX_y4mwzI5KhfjRjRqOc7mchuf7VBiDfa2a11D7poBkOUq3rnEcblFww"; e_fb_hostheader="AcL_0QLfnGMwB5p4-NmxoAsfkujGw8o2pMeih_OYXebuji24sVpPoFZQKTR1pSDTVWozCqp0154"; e_fb_vipaddr="AcII4pT-EFSZ8S5bX08bbyHiu5RvM3koMaV8dt-lqzzVZ0--HPCi-yCynHc0F9SqLNhMseUBgFU"; e_fb_requesthandler="AcIaxFjK8OrNOMnIQIG73gqiFjT8l8KrtzKXhpK21dXv_0jmeDpsNVr7Zk95oUMFMSULKhOs00s3cTIUoRm1K-IL"; e_fb_requesttime="AcIZJ0jTBQ3by236EtbOkD_g3LHwjK_Tokgz6cS7kJlsZoopZ931TirrrPN45CNZJlDWkgsJgA"; e_fb_builduser="AcIE5Pd04UuMpV5Mq2RkRjt_0uvDron43uRHnUjHuEb-YFahWk1CTANXT0t1J8ro1qw"; e_fb_httpversion="AcLnKnVur_1ZvxxgT4Z2SgX7LIjlutwglyDdynPTbSnBLTuoj6iVMZG427eJ"; e_fb_binaryversion="AcLr72SE0q_v-Hz8LbfSfYiTojl5pJM1jiJRpMQ8XLP29Yvf6w2qX2GpV-LYpckglOiNzwkjd_7lxK8mV3H8e1WNcX8r79VF_GM"; e_proxy="AcI5M1wfkQ68EyTjUKej_1SO6wpoEoY4k0u8U1-Q4bs-4_nBPw8OV0Gx86cFCpbGcEazA07550JsmIc"
x-fb-connection-quality: GOOD; q=0.7, rtt=69, rtx=0, c=10, mss=1380, tbw=6605, tp=-1, tpl=-1, uplat=46, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|