| | 45.76.230.217 | | 2.7 kB |
IP45.76.230.217:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (444) Hash6e95b75f742d99eff1117fb0479078e6 a71dc16e04b2bdf765c20c7a1d28b7ec80f8bd75 519dd11a4d1f141fb7de58bbb0e959855881ee7f29af9c605a100d398edb937d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-encoding: gzip
content-type: text/html
content-length: 2684
connection: keep-alive
|
|
| code.jquery.com/jquery-3.6.0.slim.min.js | 151.101.130.137 | 200 OK | 25 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.slim.min.js IP151.101.130.137:443
CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65241) Hash1276065911521c5c22037a31365d179d d1c6704e94efe2d465fc161b6381e127d35acd81 bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512
GET /jquery-3.6.0.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://45.76.230.217
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-11ab4"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 15:48:04 GMT
age: 20381084
x-served-by: cache-lga13624-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 83686
x-timer: S1715183284.364978,VS0,VE0
vary: Accept-Encoding
content-length: 24587
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-3PHYBTVD4Z | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-3PHYBTVD4Z IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Size100 kB (100045 bytes) Hash79e688a4d8d387c3f0b4b2e5e010e9a5 57938ce0a7affbf1b37f4bf28d6ea108762e54a5 3df271556647887cdbffebbb31b678ec5bd9b3223619fd94d17b00f20129386f
GET /gtag/js?id=G-3PHYBTVD4Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 15:48:04 GMT
expires: Wed, 08 May 2024 15:48:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100045
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 45.76.230.217/js/jquery-3.4.0.min.js | 45.76.230.217 | 200 OK | 31 kB |
URL GET HTTP/1.045.76.230.217/js/jquery-3.4.0.min.js IP45.76.230.217:80
File typeJavaScript source, ASCII text, with very long lines (65451) Hashbbcf3bf05fa6cb58a67cfd0498f00d23 e4925196f6f444fa58915420fbcd80f909c68d28 0497a8d2a9bde7db8c0466fae73e347a3258192811ed1108e3e096d5f34ac0e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-3.4.0.min.js HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
cache-control: private, max-age=3600
content-length: 30711
connection: keep-alive
|
|
| 45.76.230.217/js/scrolling.js | 45.76.230.217 | 200 OK | 1.0 kB |
URL GET HTTP/1.045.76.230.217/js/scrolling.js IP45.76.230.217:80
File typeJavaScript source, ASCII text Hash948aa66f43ba3b8c276c1ba0864cd21b 847ea5c88ea731ed3dc2a74c94bfb51659e8651e a693a75593c51927e23e0a837061f1b44f845fecec07f4df7fb677f7a35c205a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/scrolling.js HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
cache-control: private, max-age=3600
content-length: 1007
connection: keep-alive
|
|
| 45.76.230.217/css/style.css | 45.76.230.217 | 200 OK | 3.2 kB |
URL GET HTTP/1.045.76.230.217/css/style.css IP45.76.230.217:80
File typeassembler source, ASCII text Hashe625b772aed77ed20077d1e3a5b390c8 6e1773203d392e1feda13f500d4b5339a7aef2cf ec81025fb855907852637bbcc80ad7f1c6895debd2c5781a62eaf676fb6431d9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/style.css HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-encoding: gzip
content-type: text/css
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
cache-control: private, max-age=3600
content-length: 3226
connection: keep-alive
|
|
| 45.76.230.217/css/eqneditor_1.css | 45.76.230.217 | 200 OK | 777 B |
URL GET HTTP/1.045.76.230.217/css/eqneditor_1.css IP45.76.230.217:80
Hash2cbe7eb3594b589a61d4f8c0d7cf3613 7d5b8bd31563277b8eaff604ae37d1444e8c6d9d 66c38ba694264ccf97f20498fe37547e8d2a4b33b4abf38068cc5835cb173526
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/eqneditor_1.css HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-encoding: gzip
content-type: text/css
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
cache-control: private, max-age=3600
content-length: 777
connection: keep-alive
|
|
| latex.codecogs.com/gif.image?\dpi{200}\alpha&space;+&space;\frac{2\beta}{\gamma} | 45.76.230.217 | 200 OK | 736 B |
URL GET HTTP/2latex.codecogs.com/gif.image?\dpi{200}\alpha&space;+&space;\frac{2\beta}{\gamma} IP45.76.230.217:443
CertificateIssuerSectigo Limited Subject*.codecogs.com Fingerprint8F:6E:78:8D:3A:96:E5:0F:40:13:E4:39:1A:63:ED:30:43:8C:A6:B7 ValidityThu, 18 Jan 2024 00:00:00 GMT - Mon, 17 Feb 2025 23:59:59 GMT
File typeGIF image data, version 89a, 100 x 75 Hash6c0b9ed7c9c71d26aa6c9fb22960c301 dfa8b83947522ccf222029bef297ea2774082fa5 32703167989fbde65d93be15919da3e9f4efb416c9fc180e17a3db74f8b0c476
GET /gif.image?\dpi{200}\alpha&space;+&space;\frac{2\beta}{\gamma} HTTP/1.1
Host: latex.codecogs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 10
date: Wed, 08 May 2024 15:48:04 GMT
etag: "d1ed66accd4bd71971aa0e4ba4e9e7d3"
last-modified: Mon, 29 Mar 2021 02:52:29 GMT
cache-control: maxage=2592000
expires: Wed, 08 Jun 2024 15:48:04 GMT
content-type: image/gif
content-length: 736
X-Firefox-Spdy: h2
|
|
| latex.codecogs.com/svg.image?\lim_{x%20\to%200}%20f(x)%20=%208 | 45.76.230.217 | 200 OK | 4.4 kB |
URL GET HTTP/2latex.codecogs.com/svg.image?\lim_{x%20\to%200}%20f(x)%20=%208 IP45.76.230.217:443
CertificateIssuerSectigo Limited Subject*.codecogs.com Fingerprint8F:6E:78:8D:3A:96:E5:0F:40:13:E4:39:1A:63:ED:30:43:8C:A6:B7 ValidityThu, 18 Jan 2024 00:00:00 GMT - Mon, 17 Feb 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash27dfa7637f7f876579504bfdcde4e3f1 191d291b423909ea7c3cb0477b3a7fa72f970a49 742b7c13d05ac183e9878566888b234f775be1556de68ab7fab37d4d1ee9cca9
GET /svg.image?\lim_{x%20\to%200}%20f(x)%20=%208 HTTP/1.1
Host: latex.codecogs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 10
date: Wed, 08 May 2024 15:48:04 GMT
etag: "49061d7f14148071cc42393c0292d1d3"
last-modified: Thu, 14 Jul 2022 22:59:12 GMT
cache-control: maxage=2592000
expires: Wed, 08 Jun 2024 15:48:04 GMT
content-type: image/svg+xml
content-length: 4390
X-Firefox-Spdy: h2
|
|
| 45.76.230.217/images/EqnEditor.png | 45.76.230.217 | 200 OK | 17 kB |
URL GET HTTP/1.045.76.230.217/images/EqnEditor.png IP45.76.230.217:80
File typePNG image data, 100 x 98, 8-bit/color RGBA, non-interlaced Hash672940a0d95e7ab9d1e5d9fadababe72 087c4b2732f81cba0feb65f2b07540cee67bc39c 7b148dc1a95a6085d98c6cc29c768b5e961ece6085616dd9bfc5dab6bdda2a0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/EqnEditor.png HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-type: image/png
content-length: 16699
connection: keep-alive
|
|
| latex.codecogs.com/png.image?\dpi{200}\int%20\frac{1}{x}%20dx%20=%20\ln%20\left|%20x%20\right|%20+%20C | 45.76.230.217 | 200 OK | 1.8 kB |
URL GET HTTP/2latex.codecogs.com/png.image?\dpi{200}\int%20\frac{1}{x}%20dx%20=%20\ln%20\left|%20x%20\right|%20+%20C IP45.76.230.217:443
CertificateIssuerSectigo Limited Subject*.codecogs.com Fingerprint8F:6E:78:8D:3A:96:E5:0F:40:13:E4:39:1A:63:ED:30:43:8C:A6:B7 ValidityThu, 18 Jan 2024 00:00:00 GMT - Mon, 17 Feb 2025 23:59:59 GMT
File typePNG image data, 276 x 74, 8-bit colormap, non-interlaced Hash941df08546425b6d05d7bdebb99df2a2 849650ca65c3e1744aa7cd3067be863ab1cd5ffc 7310d2c73397cf3d306573a9ef7400b05f0360e937abe7229f5459b79b7b636c
GET /png.image?\dpi{200}\int%20\frac{1}{x}%20dx%20=%20\ln%20\left|%20x%20\right|%20+%20C HTTP/1.1
Host: latex.codecogs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 10
date: Wed, 08 May 2024 15:48:04 GMT
etag: "ebab3f0351557978ef59dd3b3b5ce631"
last-modified: Mon, 12 Apr 2021 19:23:55 GMT
cache-control: maxage=2592000
expires: Wed, 08 Jun 2024 15:48:04 GMT
content-type: image/png
content-length: 1771
X-Firefox-Spdy: h2
|
|
| 45.76.230.217/images/Codecogs_mini.png | 45.76.230.217 | 200 OK | 6.2 kB |
URL GET HTTP/1.045.76.230.217/images/Codecogs_mini.png IP45.76.230.217:80
File typePNG image data, 40 x 66, 8-bit/color RGBA, non-interlaced Hash5d57813aa17367dd1cca570a30e54694 0844bf0065255cc35d3a5d7fcd7c504203ed8806 9779b866b7fdcf4e08d1031ba96528b1a3a9df6aa843d9c5d5ef7184dd843dec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/Codecogs_mini.png HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-type: image/png
content-length: 6195
connection: keep-alive
|
|
| 45.76.230.217/favicon.ico | 45.76.230.217 | 200 OK | 374 B |
URL GET HTTP/1.045.76.230.217/favicon.ico IP45.76.230.217:80
File typePC bitmap, Windows 3.x format, 16 x 16 x 8, resolution 3780 x 3780 px/m, 16 important colors, cbSize 374, bits offset 118 Hasha3b9d53ebdc258c3d2aaeb7a4fc4f4a1 f4dfc40151b7e8f5ed4a2479f4fec9ec04cf7bd4 4a071b5b2ba4042ce0e8d8fad4582f13c8699ec3ec1826b6d9ea43911662e591
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 45.76.230.217
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45.76.230.217/
Cookie: _ga_3PHYBTVD4Z=GS1.1.1715183284.1.0.1715183284.0.0.0; _ga=GA1.1.490774806.1715183285
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
content-type: image/vnd.microsoft.icon
content-length: 374
connection: keep-alive
|
|