Report - 189.127.173.52/

Report Overview

Submitted URL
189.127.173.52/
IP
189.127.173.52
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I
Submitted
2023-02-02 21:13:12
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
189.127.173.52	unknown			12 kB	1.6 MB	189.127.173.52
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.200.107.47
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	62 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.1 kB	6.3 kB	142.250.74.99
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.4 kB	107 kB	216.58.207.227
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	944 B	1.3 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-02 21:13:29	medium	189.127.173.52	Client IP	ET COMPROMISED Known Compromised or Hostile Host Traffic group 108

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed
2023-02-02	medium	189.127.173.52	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	189.127.173.52/assets/js/popper.min.js	21 kB	2023-03-07	2024-04-13
Pretty URL 189.127.173.52/assets/js/popper.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-13 06:17:21 Times Seen1127 Hash 36affe2ca6cb85233ee7362c5d8b7893 42e3ca1212d825150c0f57f97dea8d9c0b0ce2a1 71ef7c16d75da75a5d417df75ed72144bc5ec65a9c0429b7dee0988adc3e8d29 Loading...

	189.127.173.52/assets/js/form-validator.min.js	6.1 kB	2023-03-07	2024-04-12
Pretty URL 189.127.173.52/assets/js/form-validator.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-12 19:45:27 Times Seen915 Hash 81df0465f243a2e7b7b06b8ad6015173 996eb26bb4bdb44ed5257d048cedaf3ed0a6f90c c31a654938abf168fca328d9663ea83999b87ff36d18b016ea8aace1a9cb2cb1 Loading...

	189.127.173.52/assets/js/bootstrap.min.js	58 kB	2023-03-07	2024-02-10
Pretty URL 189.127.173.52/assets/js/bootstrap.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:26 Last Seen2024-02-10 20:16:21 Times Seen109 Hash 4786c9df2ef550f1bb1a1147198d8567 a27fff310d93669975961857d1845587336691bf 663edcdf06cfa7e9fe89ea449baf819323c843326b846a12035a145e5501f3f8 Loading...

	189.127.173.52/assets/js/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-04-18
Pretty URL 189.127.173.52/assets/js/jquery.magnific-popup.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-18 09:48:37 Times Seen19411 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	189.127.173.52/assets/js/jquery.min.js	84 kB	2023-03-07	2024-02-05
Pretty URL 189.127.173.52/assets/js/jquery.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:26 Last Seen2024-02-05 09:39:35 Times Seen54 Hash 95951fb04cda4f11c3305b2ee3904e50 2cbf958c74fe2bba54117cec1f0734c0911d71ed c404e4db208425d98edbe0b4a7865a21d805d38a896f20b11452c86008ae9ed6 Loading...

	189.127.173.52/assets/js/wow.min.js	8.2 kB	2023-03-07	2024-04-17
Pretty URL 189.127.173.52/assets/js/wow.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:38 Last Seen2024-04-17 12:49:29 Times Seen2078 Hash a26a117ff59c944bbb654bf506f69786 237c90127c99e91347536835096276b0add6d018 cfa1739ee346d63a3d3cfdff8c18cbe8fdedbcb32d4b0895028c193ce828e7a5 Loading...

	189.127.173.52/assets/js/jquery.ajaxchimp.min.js	2.4 kB	2023-03-07	2024-03-21
Pretty URL 189.127.173.52/assets/js/jquery.ajaxchimp.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:09 Last Seen2024-03-21 14:20:29 Times Seen1272 Hash 36d1b0e5a3a7397b267e704beb2f7272 86df23e41520d19dd0c6928e4a5de89c1ae172a2 2dcc9f6916671ee0ee4c5f7c7b6f13c519189b65d371a39309c0d95b79050c28 Loading...

	189.127.173.52/assets/js/bahama-map.js	887 B	2023-03-12	2023-08-03
Pretty URL 189.127.173.52/assets/js/bahama-map.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:17:10 Last Seen2023-08-03 10:41:57 Times Seen3 Hash 29158d12f4b35b050adcca0b4787b3dc cdc4c6394beacb02a5feb7f3760f11b8169ee787 3f545890b66477ce1c9e46f54a5617d4210566d3e491709579cef476da35db6b Loading...

	189.127.173.52/assets/js/jquery.meanmenu.js	5.9 kB	2023-03-12	2023-08-03
Pretty URL 189.127.173.52/assets/js/jquery.meanmenu.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:17:10 Last Seen2023-08-03 10:41:57 Times Seen3 Hash 2677a15a375b52ca482f034a5a6a1fb7 87da5be8c09f04000f92f3c6276b2192ac247897 d221fbbb6f70b0042d9b7e1f7b631e125193173cee47ae8d659ba1347ce5b6e0 Loading...

	189.127.173.52/assets/js/owl.carousel.min.js	44 kB	2023-03-07	2024-04-18
Pretty URL 189.127.173.52/assets/js/owl.carousel.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-18 09:50:36 Times Seen19817 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	189.127.173.52/assets/js/parallax.min.js	13 kB	2023-03-07	2024-03-28
Pretty URL 189.127.173.52/assets/js/parallax.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:42:44 Last Seen2024-03-28 15:39:55 Times Seen94 Hash 37ad6772979901ef03d3178e4ba88599 3203e412756150ee21c23d9040865012ea49880d 9370b6fa0a751bc3db9a8e25113eb28f0ff2e8067904bfb4e2f98c07a98cbb1a Loading...

	189.127.173.52/assets/js/main.js	11 kB	2023-03-12	2023-08-03
Pretty URL 189.127.173.52/assets/js/main.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:17:10 Last Seen2023-08-03 10:41:57 Times Seen3 Hash 3d430d988995f222432b58afaffaeeb8 f176d95b2db14b991103262a8b2f27444aa6263e c1a1ae7b61d5316116ca0780760a1e3ef0a44d116ed98ed6454acc33d86e36c0 Loading...

	189.127.173.52/assets/js/jquery.nice-select.min.js	2.9 kB	2023-03-07	2024-04-16
Pretty URL 189.127.173.52/assets/js/jquery.nice-select.min.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:39 Last Seen2024-04-16 22:06:45 Times Seen2176 Hash d13462ec489f9f0c309a811f85feb3d6 d9545f8b139eae5b387de1a60a84abe949c7e88f 66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a Loading...

	189.127.173.52/assets/js/contact-form-script.js	2.1 kB	2023-03-12	2023-08-03
Pretty URL 189.127.173.52/assets/js/contact-form-script.js IP 189.127.173.52 ASN #270712 TOTAL FIBRA INTERNET EIRELI I Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:17:10 Last Seen2023-08-03 10:41:57 Times Seen3 Hash 573fc10309f0b984ff101ab1ba96e5c2 300cbbb508db22097f9c5e35b8a569b3ea0faba3 0a0c842dadeb99e2401fb02540c293fbdb0e75c4cbd0210a5794e602c4ed334c Loading...

HTTP Transactions (71)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Fri, 03 Feb 2023 01:18:47 GMT
Date: Thu, 02 Feb 2023 21:13:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12682
Expires: Fri, 03 Feb 2023 00:44:23 GMT
Date: Thu, 02 Feb 2023 21:13:01 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 20:43:31 GMT
content-type: application/json
age: 1770
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15705
Expires: Fri, 03 Feb 2023 01:34:46 GMT
Date: Thu, 02 Feb 2023 21:13:01 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: QV2nqNXYMKFmCLse6b4ozT4VqsfLvrWtdJoapQYfES2qnKmW1j+KEwjLWISK3m1Orkwhft/xgNg=
x-amz-request-id: Z2WSH20ASV7YJ26R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 20:52:07 GMT
age: 1254
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

189.127.173.52/

189.127.173.52

200 OK

4.7 kB

URL HTTP/1.1
189.127.173.52/
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (311), with CRLF, LF line terminators
Size
4.7 kB (4688 bytes)
Hash
899b0dda5b92c8b0efb1cdf6bcf86567
c90350f40db653a6f249212d3c3f42a8e2bfb67a
d7a59b26dfb448996f98845e4a5a40cb681ff1d0dc7b863d957651b041a775d0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:01 GMT
Server: Apache/2.4.53 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4688
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 21:13:01 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

189.127.173.52/assets/css/animate.min.css

189.127.173.52

200 OK

4.3 kB

URL HTTP/1.1
189.127.173.52/assets/css/animate.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (57790)
Size
4.3 kB (4324 bytes)
Hash
ee777e634ba2463f5f4a161dde14dcbe
a4ecf77a2c47390e3aecb2b912130cbcc421733e
cd82447b75b27668be76ec8b86546aafabdc1ddf952e07bcf8f25ef7387fa21f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/animate.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:01 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:56 GMT
ETag: "e283-5e1989c3bda00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4324
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 20:49:05 GMT
age: 1437
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

189.127.173.52/assets/css/fontawesome.min.css

189.127.173.52

200 OK

12 kB

URL HTTP/1.1
189.127.173.52/assets/css/fontawesome.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (54872)
Size
12 kB (12057 bytes)
Hash
68bedd5eddfc48208f4524dc1a174edb
658c4c2a612b8e841f4cacff69c665d5cd2bd631
4208d828d5cf3fd7e5c9789cc8add4b71abd5613c2115ef2e8d7e69e2030fb0f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/fontawesome.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "d711-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12057
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/css/meanmenu.css

189.127.173.52

200 OK

971 B

URL HTTP/1.1
189.127.173.52/assets/css/meanmenu.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
971 B (971 bytes)
Hash
8a1ea21a06b9cbfedb3577470f4b9eae
5f61acf726d15c69481181d467447625b2e1d573
72f4b9b49e2c6eddf7f007975d5f1cb7c59a1baef32ab821f7dec898e99ff057

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/meanmenu.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "c0d-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 971
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/css/nice-select.min.css

189.127.173.52

200 OK

926 B

URL HTTP/1.1
189.127.173.52/assets/css/nice-select.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (3086), with no line terminators
Size
926 B (926 bytes)
Hash
e072d1fad0b125bf80db3c6039d3bdcd
5ed02224cb23a2e44d334208a673fdcceb9f27d6
aa0340e65901d580f457dadc6c561dee374c910e09d3da02055736b21a170c0e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/nice-select.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "c0e-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/css/bootstrap.min.css

189.127.173.52

200 OK

23 kB

URL HTTP/1.1
189.127.173.52/assets/css/bootstrap.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (65324)
Size
23 kB (23238 bytes)
Hash
3b5537dce96f57098998e410b0202920
7732b57e4e3bbc122d63f67078efa7cf5f975448
a1c54426705d6cef00e0ae98f5ad1615735a31a4e200c3a5835b44266a4a3f88

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/bootstrap.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:01 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "2606e-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23238
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/css/owl.carousel.min.css

189.127.173.52

200 OK

1.3 kB

URL HTTP/1.1
189.127.173.52/assets/css/owl.carousel.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (3185)
Size
1.3 kB (1284 bytes)
Hash
b03a894c10a584ef50a759ca747d108a
14d8bf21b7ce53ebe5c6b6a937bbc6101664411e
7bdce6f0d52177d3615e2b1a1798319d00dc05e1a4e019d0604ff812ce912865

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/owl.carousel.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "1068-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1284
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20027
Expires: Fri, 03 Feb 2023 02:46:49 GMT
Date: Thu, 02 Feb 2023 21:13:02 GMT
Connection: keep-alive

189.127.173.52/assets/css/responsive.css

189.127.173.52

200 OK

3.8 kB

URL HTTP/1.1
189.127.173.52/assets/css/responsive.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
3.8 kB (3838 bytes)
Hash
d1afa3d8984ec5f0f1cfda8fb0556fd8
e456570f075e2934a23f37cc40a436c635b58c6d
00627c319cc61b3a9cd1c7f2f784f1485c048f5de23aee5e5a8884f208cf7e33

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/responsive.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "6c14-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3838
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/js/popper.min.js

189.127.173.52

200 OK

7.5 kB

URL HTTP/1.1
189.127.173.52/assets/js/popper.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (20831)
Size
7.5 kB (7456 bytes)
Hash
7a9ebcec68d45170ea14d25d99b335b0
9aaab0fcbdab1e6461ef0ede92bb35e13928561f
41f429e4a748bf2e44693d3b8800d75b3e431b2ccf51cc83a7b71751d4af8ff1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/popper.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "520b-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7456
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/css/style.css

189.127.173.52

200 OK

14 kB

URL HTTP/1.1
189.127.173.52/assets/css/style.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (532)
Size
14 kB (14051 bytes)
Hash
250b36745372a307bf3763c236131a8b
647d85c8bdb2e09954d4498da98f6fc8ce63234b
1c996735b1f3f7e9b348da8468daf12a335b14a9aa71e7536516f6ea1fb29a33

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/style.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Wed, 22 Jun 2022 20:01:03 GMT
ETag: "1d0dc-5e20ecbf7fdc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14051
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/js/bootstrap.min.js

189.127.173.52

200 OK

15 kB

URL HTTP/1.1
189.127.173.52/assets/js/bootstrap.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (57792)
Size
15 kB (15438 bytes)
Hash
5b7b54f72077a8fbccc1ca1c7d28e9d6
3ca09512af480939c550ddc16b9b6ff841af5748
733693a44840948d0b014e3429d6b8d1e88f98aada321556c72a5d32b18a415d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/bootstrap.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:00 GMT
ETag: "e2da-5e1989c78e300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15438
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/jquery.meanmenu.js

189.127.173.52

200 OK

1.6 kB

URL HTTP/1.1
189.127.173.52/assets/js/jquery.meanmenu.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
HTML document, ASCII text, with very long lines (397)
Size
1.6 kB (1608 bytes)
Hash
2e0174334d0bd2210e2418d4d9dc7dbb
b8295253bcc0755fa9b4a9d1386a5a42493de783
34357b531e5341274d28d6a623cf8cca19ff8bb5e8afcf55892e0d58056b6636

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.meanmenu.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "1732-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1608
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.200.107.47

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.200.107.47:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 51l2b8Si5smNbmSkGfdTmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8RFLFVVL/ea4OOZMiCrhsqavmf4=

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

189.127.173.52/assets/js/jquery.magnific-popup.min.js

189.127.173.52

200 OK

7.3 kB

URL HTTP/1.1
189.127.173.52/assets/js/jquery.magnific-popup.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (20087)
Size
7.3 kB (7346 bytes)
Hash
efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "4ef8-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7346
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/jquery.min.js

189.127.173.52

200 OK

30 kB

URL HTTP/1.1
189.127.173.52/assets/js/jquery.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (32029)
Size
30 kB (29537 bytes)
Hash
9ecbb51e4fe15d7783b6815acc5f4e72
fbed8bc7a65e3497e9d9981a08102d79f4f837f0
3ee327a6113037f977a04b9b9e208f741895c67823f23ac5032153335a9fe1fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "14985-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29537
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/owl.carousel.min.js

189.127.173.52

200 OK

11 kB

URL HTTP/1.1
189.127.173.52/assets/js/owl.carousel.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (31997)
Size
11 kB (11412 bytes)
Hash
147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/owl.carousel.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "ad36-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11412
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/parallax.min.js

189.127.173.52

200 OK

4.0 kB

URL HTTP/1.1
189.127.173.52/assets/js/parallax.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (597)
Size
4.0 kB (4001 bytes)
Hash
10a3098cb8edbbacc13ac4094ffd9d3c
9726d120eba116022da7834b032fa97a0b125ca5
26f84de9ca575cc88332eeb78a014412682e1fc314bcc9d096521734e19a95d3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/parallax.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "33a5-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4001
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/jquery.nice-select.min.js

189.127.173.52

200 OK

1.0 kB

URL HTTP/1.1
189.127.173.52/assets/js/jquery.nice-select.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
Unicode text, UTF-8 text, with very long lines (2822)
Size
1.0 kB (1036 bytes)
Hash
45ae1605b17ed145576a973d6779e979
841a35142dceac20f894809ec068544413e03c30
80261cfa5544a8c0a6849419a0bc94e7b7bdd5625a046cde5b57691ff82346b1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.nice-select.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "b7e-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1036
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/wow.min.js

189.127.173.52

200 OK

2.7 kB

URL HTTP/1.1
189.127.173.52/assets/js/wow.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (8152)
Size
2.7 kB (2702 bytes)
Hash
78065f91523af060141b9abfb707107b
40a8615f9546bdc72a99284de32fcbf1073e1db8
7dc2c443deb9a15d8e3154397a0e5c15c56022147ef3d211b9147b566cd58d59

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/wow.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "1ff6-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2702
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/jquery.ajaxchimp.min.js

189.127.173.52

200 OK

939 B

URL HTTP/1.1
189.127.173.52/assets/js/jquery.ajaxchimp.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (2381), with no line terminators
Size
939 B (939 bytes)
Hash
1c157aa7cdf20ef979ba469afff5377b
64ae54010d36d749a6f9724040072841d2ff95e8
d0957fed84330d67f9e748e79ee29587d50a854fac4865c535872c407c0b6faa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "94d-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 939
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/form-validator.min.js

189.127.173.52

200 OK

2.1 kB

URL HTTP/1.1
189.127.173.52/assets/js/form-validator.min.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (5862)
Size
2.1 kB (2096 bytes)
Hash
daf326aa9fbde756f335fbc71417788e
be9640e9aae5d417ae507b49b30c302a16ea7873
b92f07acf3cf2db9877fa68276a1a31627eede240ce8f4f1911117ee61adbd40

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/form-validator.min.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:00 GMT
ETag: "17a7-5e1989c78e300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2096
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/contact-form-script.js

189.127.173.52

200 OK

741 B

URL HTTP/1.1
189.127.173.52/assets/js/contact-form-script.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
741 B (741 bytes)
Hash
fc185e4df5ac87b40400bc96ede6a058
d1f507a2791b83be82da44174477e3042fa82ca4
aefcc5355b2cb5e0c11b8bd55d6d10410fae9c8e910c41f9ff1f26fc8bbea693

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/contact-form-script.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:00 GMT
ETag: "823-5e1989c78e300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 741
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/bahama-map.js

189.127.173.52

200 OK

382 B

URL HTTP/1.1
189.127.173.52/assets/js/bahama-map.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
382 B (382 bytes)
Hash
9f65767febfe3fd7bcb29d07b2681031
0434b64879d14dc4f5ccf930a07057c58dc52bfd
fca5f3307f2e27be162edc292f06782b1e8b4abfa6653a1493a9794777fbc6c9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/bahama-map.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:59 GMT
ETag: "377-5e1989c69a0c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 382
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/js/main.js

189.127.173.52

200 OK

2.8 kB

URL HTTP/1.1
189.127.173.52/assets/js/main.js
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
2.8 kB (2778 bytes)
Hash
f004e4fa60a3ed48bd7f1bbddb843a00
1b1cc583a15b7524b51cdb7252084101496b2206
01fa38965b640e05eec17d8dc54442e1e5ca265330baa4b5b802939b7206da56

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/main.js HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:01:01 GMT
ETag: "2946-5e1989c882540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2778
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

189.127.173.52/assets/css/magnific-popup.min.css

189.127.173.52

200 OK

1.6 kB

URL HTTP/1.1
189.127.173.52/assets/css/magnific-popup.min.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text, with very long lines (5259), with no line terminators
Size
1.6 kB (1566 bytes)
Hash
5e3fb66f957e87adb1030748be39ec12
f947937864725452687d58a7546d5ca34843f4cb
123795002a63c52c46c8f57d0c23b0b46757b6f380c7d420388a304b7bf902cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/magnific-popup.min.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:02 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "148b-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1566
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

189.127.173.52/assets/css/flaticon.css

189.127.173.52

200 OK

635 B

URL HTTP/1.1
189.127.173.52/assets/css/flaticon.css
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
ASCII text
Size
635 B (635 bytes)
Hash
04f7cc77079bf66e6b8b2a3c5a7d0f8b
eea088571fc322e874320a2ed057387ac88ebed3
585cead621ec872de71840a6134691275384ed2259cea4085475e9826a96d0d9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/flaticon.css HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:57 GMT
ETag: "98e-5e1989c4b1c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 635
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://189.127.173.52
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 569094
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2

216.58.207.227

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Size
36 kB (35904 bytes)
Hash
c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357

HTTP Headers

GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://189.127.173.52
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 07:32:21 GMT
expires: Mon, 29 Jan 2024 07:32:21 GMT
cache-control: public, max-age=31536000
age: 394842
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37852, version 1.0\012- data
Size
38 kB (37852 bytes)
Hash
3e234fa0724b4b5b6c5f0bb405055d7d
508857a361080c23b3a3ea6c0c66c36525b7422d
fe7839e0dc27d5a668c79b399849d56bc542d9c5dbf2ce2b52c476c6a35a7803

HTTP Headers

GET /s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://189.127.173.52
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:06:13 GMT
expires: Sat, 27 Jan 2024 10:06:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:37:26 GMT
content-type: font/woff2
age: 558410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.99

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

189.127.173.52/assets/img/logo.png

189.127.173.52

200 OK

21 kB

URL HTTP/1.1
189.127.173.52/assets/img/logo.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 290 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21101 bytes)
Hash
5008d3bb46fedd3582042d034c2ee8a6
37d61fc606ca5b1ec39c039ab984c16f21b46db2
fc58b19210ccaa3721795cd7724ffa71857076b2021079262d8c1bae082c2392

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/logo.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Wed, 22 Jun 2022 16:12:11 GMT
ETag: "526d-5e20b997a4cc0"
Accept-Ranges: bytes
Content-Length: 21101
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/img/shape-image/2.png

189.127.173.52

200 OK

27 kB

URL HTTP/1.1
189.127.173.52/assets/img/shape-image/2.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 418 x 246, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26976 bytes)
Hash
c417d27fa0ce554c8d6199700a00bd53
a2ca44d9aa0bfb30410a83df2be1bc50906c0533
eb398562161cabb8520bbeae43117d1e1456a48b11f338614e40cfdeaf78bf3c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/shape-image/2.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:59 GMT
ETag: "6960-5e1989c69a0c0"
Accept-Ranges: bytes
Content-Length: 26976
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/img/shape-image/1.png

189.127.173.52

200 OK

28 kB

URL HTTP/1.1
189.127.173.52/assets/img/shape-image/1.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 815 x 634, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28409 bytes)
Hash
e951cd2df870dce35ab996b664b1c411
fbe9e4c7793a5aa79a20de870c5a9859c9482cbd
30020008c12fa6610d63c552fc9bbc22ed038dc4f9c46e4e5d87d710d8b8a763

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/shape-image/1.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:59 GMT
ETag: "6ef9-5e1989c69a0c0"
Accept-Ranges: bytes
Content-Length: 28409
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/fonts/Flaticon.woff2

189.127.173.52

200 OK

6.6 kB

URL HTTP/1.1
189.127.173.52/assets/fonts/Flaticon.woff2
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
Web Open Font Format (Version 2), TrueType, length 6608, version 1.0\012- data
Size
6.6 kB (6608 bytes)
Hash
719b8a5a558d43a3bee8fe4969df6900
44629bf5c78784e61bd04551c89e00cf3e889316
1546f1027303a3cb266e830fe0f6835f015755d4d9eda32a46754f61687455ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/fonts/Flaticon.woff2 HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/flaticon.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "19d0-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 6608
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2

189.127.173.52/assets/img/black-bg1.png

189.127.173.52

200 OK

36 kB

URL HTTP/1.1
189.127.173.52/assets/img/black-bg1.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 1920 x 1150, 8-bit/color RGBA, non-interlaced\012- data
Size
36 kB (35526 bytes)
Hash
ab6c803623edc5d358abf19bd555209d
1271738023644ff861514ac5485d763c88c96e6b
f9a6b9be270dcb197e8bf0d398f7f7d723c7250a005412f029a7f89b10e94cce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/black-bg1.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/style.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "8ac6-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 35526
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14007
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:13:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14007
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:13:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14007
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:13:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14007
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:13:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (15051 bytes)
Hash
6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 84397
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 82448
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 49466
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9221 bytes)
Hash
df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 82856
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faab963dd-ee21-4e6c-866b-f8ea6bb88bd9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4863 bytes)
Hash
df1930b96e7ab4f5d4cbf64e473cc957
b793c3b6ca95d09a88635aec9eef99d12a1afe42
e5062168e5c4e1c11ebc9c653990e01546c3c60fbb59e49635934bc98e931ce0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faab963dd-ee21-4e6c-866b-f8ea6bb88bd9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4863
x-amzn-requestid: 80518d3b-e049-429c-b67d-4f4897ded9c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foetPGPaIAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ab21-00e41ad75acd71267a490f52;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:58:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Unsu1YKTCfvXjH8mQQXa-yupSZhwKznXaWyaRYAlThq32JbR4OZ0fA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:14:53 GMT
age: 50290
etag: "b793c3b6ca95d09a88635aec9eef99d12a1afe42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4814 bytes)
Hash
86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 83605
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

189.127.173.52/assets/fonts/fa-regular-400.woff2

189.127.173.52

200 OK

14 kB

URL HTTP/1.1
189.127.173.52/assets/fonts/fa-regular-400.woff2
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
Web Open Font Format (Version 2), TrueType, length 13552, version 329.-17761\012- data
Size
14 kB (13552 bytes)
Hash
e6257a726a0cf6ec8c6fec22821c055f
8583a4f0dd12e15a48b3395593307a84d971cc33
ccf4db1eeb68c96e05e74f8ebfa75cc60c3a0fed862dae6b0ad85d4e1b5b4e4f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/fonts/fa-regular-400.woff2 HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/fontawesome.min.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "34f0-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 13552
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2

189.127.173.52/assets/img/color-bg1.png

189.127.173.52

200 OK

12 kB

URL HTTP/1.1
189.127.173.52/assets/img/color-bg1.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 1920 x 965, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12022 bytes)
Hash
621bce527606720e75833c42e16d58c9
00dff6608109a14c19d383fb6db8934f9afd80e8
d1c1a40eb324b27dc5030d3d3f054197a15b273f4553e00d97747eb6dde6b1a2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/color-bg1.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/style.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "2ef6-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 12022
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/fonts/fa-brands-400.woff2

189.127.173.52

200 OK

75 kB

URL HTTP/1.1
189.127.173.52/assets/fonts/fa-brands-400.woff2
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761\012- data
Size
75 kB (74768 bytes)
Hash
5e2f92123d241cabecf0b289b9b08d4a
7f6c682ade204e641aed8f471064c56b6eddc263
dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/fonts/fa-brands-400.woff2 HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/fontawesome.min.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "12410-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 74768
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2

189.127.173.52/assets/fonts/fa-solid-900.woff2

189.127.173.52

200 OK

74 kB

URL HTTP/1.1
189.127.173.52/assets/fonts/fa-solid-900.woff2
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/fontawesome.min.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "12210-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 74256
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2

189.127.173.52/assets/img/about-img1.png

189.127.173.52

200 OK

752 kB

URL HTTP/1.1
189.127.173.52/assets/img/about-img1.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 680 x 385, 8-bit/color RGBA, non-interlaced\012- data
Size
752 kB (752059 bytes)
Hash
29f52d159fb54cf0b309d3db4bf7d801
15a768e05e06cbaa687cb2958ca105d2109177c9
a29b1695ada21d5f5385c39472cca4b99f5111ecd1c8df0aae3e22a1c06af966

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/about-img1.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "b79bb-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 752059
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/img/black-bg3.png

189.127.173.52

200 OK

67 kB

URL HTTP/1.1
189.127.173.52/assets/img/black-bg3.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 1529 x 182, 8-bit/color RGB, non-interlaced\012- data
Size
67 kB (67140 bytes)
Hash
2bdb893e088979739751b103d8c7314f
cdee0a571d91538716675834355b53cfd1fec056
a35db523ac664fe32e8cc8f62a2f267768ea4738aba37c4b69a8ec204d5892ee

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/black-bg3.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/assets/css/style.css

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:04 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "10644-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 67140
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/img/banner-img1.png

189.127.173.52

200 OK

358 kB

URL HTTP/1.1
189.127.173.52/assets/img/banner-img1.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
PNG image data, 845 x 807, 8-bit/color RGBA, non-interlaced\012- data
Size
358 kB (357947 bytes)
Hash
89ca98b6468fcfefb5fd3aba91e865f1
77b34477005dd8f63c5c0ef84c30df78a93843ed
d7d0e21037c311f3b5922ca1692f46a3143832a006f75d0e4e79f6734dae0a97

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/banner-img1.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:13:03 GMT
Server: Apache/2.4.53 (Debian)
Last-Modified: Thu, 16 Jun 2022 23:00:58 GMT
ETag: "5763b-5e1989c5a5e80"
Accept-Ranges: bytes
Content-Length: 357947
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

189.127.173.52/assets/img/favicon.png

189.127.173.52

404 Not Found

276 B

URL HTTP/1.1
189.127.173.52/assets/img/favicon.png
IP
189.127.173.52:0
ASN
#270712 TOTAL FIBRA INTERNET EIRELI I

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
276 B (276 bytes)
Hash
bb5c91bdd5f8ed6a5cd3605a30edd933
440b3c139f0379d15d0d1387e231c2751e47d8c1
0e89c1aba391b50bcdedab074a29334e9c87cfc3ba45db8dfad7d60a7ae3c9b3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/favicon.png HTTP/1.1
Host: 189.127.173.52
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://189.127.173.52/

HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 21:13:04 GMT
Server: Apache/2.4.53 (Debian)
Content-Length: 276
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

fonts.googleapis.com/css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://189.127.173.52/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 21:13:02 GMT
date: Thu, 02 Feb 2023 21:13:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i&display=swap

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i&display=swap
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://189.127.173.52/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 21:13:02 GMT
date: Thu, 02 Feb 2023 21:13:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML