URL User Request GET HTTP/2IP141.138.168.148:443
CertificateIssuerSectigo Limited Subject*.webhostingserver.nl FingerprintAB:94:34:57:01:6F:8D:0E:7E:0A:20:60:CE:C4:81:77:03:83:C3:3E ValidityMon, 22 Jan 2024 00:00:00 GMT - Fri, 21 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash86d9ce6d9509ef84600581180deb97ea e3a0e55a317fc85de11de8abc540db4880793b17 5ab4a6580dff2f010f3840c50b3899963cc47d095b8abbff7c4faabbc4fc44f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 141.138.168.148
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 04 May 2024 21:58:30 GMT
Server: Apache
Location: https://141.138.168.148/
Content-Length: 208
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
URL User Request GET HTTP/2IP141.138.168.148:443
CertificateIssuerSectigo Limited Subject*.webhostingserver.nl FingerprintAB:94:34:57:01:6F:8D:0E:7E:0A:20:60:CE:C4:81:77:03:83:C3:3E ValidityMon, 22 Jan 2024 00:00:00 GMT - Fri, 21 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text Hashc78c4f8ff1f796fb5e84fc8340f3d559 d53ea72a24374450ef479256f88dc5ecaa7b6733 06022986788d923c327872a0dddd8cc6b740be64032c7fd838cc605e7fdc8ab4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 141.138.168.148
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:58:32 GMT
server: Apache
last-modified: Thu, 16 Feb 2023 11:12:16 GMT
etag: "65f-5f4cf44fb3dd9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 819
content-type: text/html
X-Firefox-Spdy: h2
|
| www.antagonist.nl/static/icons/nothing-found.svg | 195.211.75.97 | 200 OK | 1.2 kB |
URL GET HTTP/2www.antagonist.nl/static/icons/nothing-found.svg IP195.211.75.97:443
CertificateIssuerSectigo Limited Subject*.antagonist.nl Fingerprint05:E6:40:C2:77:F7:01:9F:21:40:C4:D0:CC:AD:0C:60:8F:C9:E6:90 ValidityThu, 07 Dec 2023 00:00:00 GMT - Mon, 06 Jan 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashb880c874b69d8331e8f3706760211065 71c190bb51456c5396745da77534009f0a6a27b9 42191b7d391a942a6688746f4184666ed71f93e345480d5aa6320ce7ae9f0437
GET /static/icons/nothing-found.svg HTTP/1.1
Host: www.antagonist.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://141.138.168.148/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 21:58:32 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Apr 2024 09:00:50 GMT
etag: W/"66262742-54c"
expires: Sat, 11 May 2024 21:58:32 GMT
cache-control: max-age=604800
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
| 141.138.168.148/favicon.ico | 141.138.168.148 | 404 Not Found | 8.1 kB |
URL GET HTTP/2141.138.168.148/favicon.ico IP141.138.168.148:443
CertificateIssuerSectigo Limited Subject*.webhostingserver.nl FingerprintAB:94:34:57:01:6F:8D:0E:7E:0A:20:60:CE:C4:81:77:03:83:C3:3E ValidityMon, 22 Jan 2024 00:00:00 GMT - Fri, 21 Feb 2025 23:59:59 GMT
Hash34274e843c9accd6071d1fd4cb647522 8faf8a5fe242aaaec547d56a88c25367a6e304af 9e819eef40a9873d1197617b30ebc49ed1df2d549fdec2495a0854eb9b41f642
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 141.138.168.148
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://141.138.168.148/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Sat, 04 May 2024 21:58:32 GMT
server: Apache
accept-ranges: bytes
content-type: text/html
X-Firefox-Spdy: h2
|