| api2.check-data.xyz/api/get_stat_options_b/2C6A44CB_AD42_4731_A544_3FBD3D83AB5B/wrtzr_ytab_a_1?0.7603559207850297 | 44.231.33.228 | 200 OK | 240 B |
URL User Request GET HTTP/1.1api2.check-data.xyz/api/get_stat_options_b/2C6A44CB_AD42_4731_A544_3FBD3D83AB5B/wrtzr_ytab_a_1?0.7603559207850297 IP44.231.33.228:443
CertificateIssuerAmazon Subject*.tracemonitors.com FingerprintEC:EE:D4:25:81:1B:4F:9D:46:E3:B7:7C:91:91:0C:C5:E7:61:C1:0F ValidityTue, 06 Feb 2024 00:00:00 GMT - Thu, 06 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash59ec77fdb7db13d86371875ca615540c 38b534b8e7ce668e6eb67859b9b6ba77805081fe a3093006b06aac8e93648a1669f6fccdac0ce0096ef65f81a7e09e2dc52772c3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /api/get_stat_options_b/2C6A44CB_AD42_4731_A544_3FBD3D83AB5B/wrtzr_ytab_a_1?0.7603559207850297 HTTP/1.1
Host: api2.check-data.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-control: no-cache="set-cookie"
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Wed, 08 May 2024 07:55:44 GMT
Server: nginx
Set-Cookie: AWSELB=9327DF5F0AF3D375CDC9DE0AFF98FDC82A9589C9824CDF98F06272B58281A369C0E7C7AE6EC5781D948882C8767BA08E2574E7340BD1AEA80ADD88F1586867317B7C62D227;PATH=/;MAX-AGE=43200
AWSELBCORS=9327DF5F0AF3D375CDC9DE0AFF98FDC82A9589C9824CDF98F06272B58281A369C0E7C7AE6EC5781D948882C8767BA08E2574E7340BD1AEA80ADD88F1586867317B7C62D227;PATH=/;MAX-AGE=43200;SECURE;SAMESITE=None
Content-Length: 240
Connection: keep-alive
|
| api2.check-data.xyz/favicon.ico | 44.231.33.228 | 200 OK | 372 B |
URL GET HTTP/1.1api2.check-data.xyz/favicon.ico IP44.231.33.228:443
Requested byhttps://api2.check-data.xyz/api/get_stat_options_b/2C6A44CB_AD42_4731_A544_3FBD3D83AB5B/wrtzr_ytab_a_1?0.7603559207850297 CertificateIssuerAmazon Subject*.tracemonitors.com FingerprintEC:EE:D4:25:81:1B:4F:9D:46:E3:B7:7C:91:91:0C:C5:E7:61:C1:0F ValidityTue, 06 Feb 2024 00:00:00 GMT - Thu, 06 Mar 2025 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash66b3119d379aee26ba668fef49188dd3 4569014add6981f25b53898dcf491a314c4418bb 2414211797f445e0d8286f799e2af9b4fa8efc8207e8c17d204323b0cf0b0d90
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: api2.check-data.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api2.check-data.xyz/api/get_stat_options_b/2C6A44CB_AD42_4731_A544_3FBD3D83AB5B/wrtzr_ytab_a_1?0.7603559207850297
Cookie: AWSELB=9327DF5F0AF3D375CDC9DE0AFF98FDC82A9589C9824CDF98F06272B58281A369C0E7C7AE6EC5781D948882C8767BA08E2574E7340BD1AEA80ADD88F1586867317B7C62D227; AWSELBCORS=9327DF5F0AF3D375CDC9DE0AFF98FDC82A9589C9824CDF98F06272B58281A369C0E7C7AE6EC5781D948882C8767BA08E2574E7340BD1AEA80ADD88F1586867317B7C62D227
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/x-icon
Date: Wed, 08 May 2024 07:55:44 GMT
ETag: "663b29fa-174"
Last-Modified: Wed, 08 May 2024 07:30:02 GMT
Server: nginx
Content-Length: 372
Connection: keep-alive
|