URL User Request GET HTTP/1.1IP35.86.67.196:443
CertificateIssuerAmazon Subjectsq-tungsten-ts-fe.amazon-adsystem.com Fingerprint19:B1:29:D0:93:B6:2D:29:4D:5D:A2:88:E1:14:57:6B:7B:B4:87:EE ValidityThu, 09 Nov 2023 00:00:00 GMT - Sat, 12 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashc4bede7d6b8e56951ae0c0e194153af0 f11f69eaee4f3cd0c75d0f41f1f1d213a359d5b7 b691e78554674f4bb12223fcd4d40aa99c80a83f96d7c251eb116afb33c5fe8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 35.86.67.196
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: Server
Date: Fri, 26 Apr 2024 14:19:22 GMT
Content-Type: text/html
Content-Length: 163
Connection: keep-alive
Location: https://35.86.67.196/
|
URL User Request GET HTTP/1.1IP35.86.67.196:443
CertificateIssuerAmazon Subjectsq-tungsten-ts-fe.amazon-adsystem.com Fingerprint19:B1:29:D0:93:B6:2D:29:4D:5D:A2:88:E1:14:57:6B:7B:B4:87:EE ValidityThu, 09 Nov 2023 00:00:00 GMT - Sat, 12 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash6035e956fa35b95e2e3dc5a8b5a88526 90b76b6776fb1629973ed20b11602b5f6637709f 28c7eeef040bae9a597ba9cac1d3c283c044949595e493cf375435010439ac55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 35.86.67.196
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Server
Date: Fri, 26 Apr 2024 14:19:24 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-rid: 7GMJ57XGPT4DYGZSJ78A
Vary: Content-Type,Accept-Encoding,User-Agent
Last-Modified: Fri, 12 Apr 2024 17:24:59 GMT
ETag: "f2-615e98d1830c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
|
IP35.86.67.196:443
CertificateIssuerAmazon Subjectsq-tungsten-ts-fe.amazon-adsystem.com Fingerprint19:B1:29:D0:93:B6:2D:29:4D:5D:A2:88:E1:14:57:6B:7B:B4:87:EE ValidityThu, 09 Nov 2023 00:00:00 GMT - Sat, 12 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash6035e956fa35b95e2e3dc5a8b5a88526 90b76b6776fb1629973ed20b11602b5f6637709f 28c7eeef040bae9a597ba9cac1d3c283c044949595e493cf375435010439ac55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 35.86.67.196
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://35.86.67.196/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Server
Date: Fri, 26 Apr 2024 14:19:24 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-rid: TY1ZW1T35TKK8QX48MRM
Vary: Content-Type,Accept-Encoding,User-Agent
Last-Modified: Fri, 12 Apr 2024 17:24:59 GMT
ETag: "f2-615e98d1830c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
|