| ocsp.globalsign.com/gsrsaovsslca2018 | 104.18.20.226 | | 1.4 kB |
URL ocsp.globalsign.com/gsrsaovsslca2018 IP104.18.20.226:0
Hash57d46f264a1326e940501557f95f694e 7e8070fab2cb7c975a3d18b539b872296d9c22bd 36e16e66be666b4fb4e5f2741eb67147082f64302fe561ee900a05cc46a79108
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 02:56:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Jun 2023 01:29:09 GMT
ETag: "7e8070fab2cb7c975a3d18b539b872296d9c22bd"
Last-Modified: Thu, 01 Jun 2023 01:29:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 692
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d042f35ee40b51b-OSL
|
IP182.61.201.92:0 ASN#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash4845f01eaa8068384625e302e9a4eb05 fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: aacardnsen.fnumrs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Thu, 01 Jun 2023 02:56:38 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx/1.8.0
Set-Cookie: BAIDUID=8FD33C2A63921DF06ECB13B8C1866ED2:FG=1; expires=Fri, 31-May-24 02:56:38 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 33980346912650203146060110
Vary: Accept-Encoding
X-Protected-By: OpenRASP
X-Request-Id: 801ae37af87e96f501857fab2c12150d
Content-Length: 36
|
| aacardnsen.fnumrs.top/favicon.ico | 182.61.201.92 | 404 Not Found | 36 B |
URL GET HTTP/1.1aacardnsen.fnumrs.top/favicon.ico IP182.61.201.92:80 ASN#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested byhttp://aacardnsen.fnumrs.top/
Hash4845f01eaa8068384625e302e9a4eb05 fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
GET /favicon.ico HTTP/1.1
Host: aacardnsen.fnumrs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aacardnsen.fnumrs.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Thu, 01 Jun 2023 02:56:38 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx/1.8.0
Set-Cookie: BAIDUID=8FD33C2A63921DF02B2AF0BFE453B333:FG=1; expires=Fri, 31-May-24 02:56:38 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 33984928642824922122060110
Vary: Accept-Encoding
X-Protected-By: OpenRASP
X-Request-Id: 801aded1d9a2440b0069704333780a95
Content-Length: 36
|