| |  150.191.80.15 | | 8.7 kB |
IP150.191.80.15:0 ASN#132321 NORTHERN TERRITORY OF AUSTRALIA
Hash258163367df9b8734f337dd80d8731a5 7ac45b419f8e4ab244ce5ccec0e23f22e02d9127 7aa238597f539c00761c0bb8d6e636801b5de5e8d870ab41ab229c81c4805f55
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 150.191.80.15
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved temporarily
Date: Thu, 25 Apr 2024 14:17:53 GMT
Server: EZproxy
Expires: Mon, 02 Aug 1999 00:00:00 GMT
Last-Modified: Thu, 25 Apr 2024 14:17:53 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://www.ezpdhcs.nt.gov.au/
Connection: close
|
|
| login.www.ezpdhcs.nt.gov.au/public/logo.jpg | 150.191.80.15 | 200 OK | 5.8 kB |
URL GET HTTP/1.1login.www.ezpdhcs.nt.gov.au/public/logo.jpg IP150.191.80.15:443 ASN#132321 NORTHERN TERRITORY OF AUSTRALIA
Requested byhttps://login.www.ezpdhcs.nt.gov.au/login CertificateIssuerDigiCert Inc Subject*.www.ezpdhcs.nt.gov.au Fingerprint97:BE:6D:5D:03:92:C7:47:84:4C:BB:34:BC:02:2C:EE:90:45:92:5F ValidityFri, 05 Jan 2024 00:00:00 GMT - Tue, 04 Feb 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 124x115, components 3 Hashf118e2bc0f2a2180f63592914075019f 525f3058be2d2e6853d1a16cf311e8309b825c91 17fcdef1ed74e5f008213f8ee77a37c00a63efd366331f6c744cf1beacc03e0a
GET /public/logo.jpg HTTP/1.1
Host: login.www.ezpdhcs.nt.gov.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.www.ezpdhcs.nt.gov.au/login
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 14:17:57 GMT
Server: EZproxy
Last-Modified: Wed, 24 Apr 2024 05:05:52 GMT
Content-Type: image/jpeg
Content-Length: 5791
Connection: close
|
|
| login.www.ezpdhcs.nt.gov.au/favicon.ico | 150.191.80.15 | 404 Not found | 4.6 kB |
URL GET HTTP/1.1login.www.ezpdhcs.nt.gov.au/favicon.ico IP150.191.80.15:443 ASN#132321 NORTHERN TERRITORY OF AUSTRALIA
Requested byhttps://login.www.ezpdhcs.nt.gov.au/login CertificateIssuerDigiCert Inc Subject*.www.ezpdhcs.nt.gov.au Fingerprint97:BE:6D:5D:03:92:C7:47:84:4C:BB:34:BC:02:2C:EE:90:45:92:5F ValidityFri, 05 Jan 2024 00:00:00 GMT - Tue, 04 Feb 2025 23:59:59 GMT
Hashecc874911ebe6256f43c218b0043d093 71e27769c597c9c3ffbf129f85b7d31648fc8ad0 eae72bd07a04ef05fe3460967289db88d6af8b323f927bce04205ec4591134bc
GET /favicon.ico HTTP/1.1
Host: login.www.ezpdhcs.nt.gov.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.www.ezpdhcs.nt.gov.au/login
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not found
Date: Thu, 25 Apr 2024 14:17:58 GMT
Server: EZproxy
Content-Type: text/html
Connection: close
|
|
| | 150.191.80.15 | 302 Moved temporarily | 2.9 kB |
URL User Request GET HTTP/1.1IP150.191.80.15:443 ASN#132321 NORTHERN TERRITORY OF AUSTRALIA
CertificateIssuerDigiCert Inc Subject*.www.ezpdhcs.nt.gov.au Fingerprint97:BE:6D:5D:03:92:C7:47:84:4C:BB:34:BC:02:2C:EE:90:45:92:5F ValidityFri, 05 Jan 2024 00:00:00 GMT - Tue, 04 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.ezpdhcs.nt.gov.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved temporarily
Date: Thu, 25 Apr 2024 14:17:54 GMT
Server: EZproxy
Expires: Mon, 02 Aug 1999 00:00:00 GMT
Last-Modified: Thu, 25 Apr 2024 14:17:54 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: https://login.www.ezpdhcs.nt.gov.au/login
Connection: close
|
|
| login.www.ezpdhcs.nt.gov.au/login | 150.191.80.15 | 200 OK | 2.9 kB |
URL User Request GET HTTP/1.1login.www.ezpdhcs.nt.gov.au/login IP150.191.80.15:443 ASN#132321 NORTHERN TERRITORY OF AUSTRALIA
CertificateIssuerDigiCert Inc Subject*.www.ezpdhcs.nt.gov.au Fingerprint97:BE:6D:5D:03:92:C7:47:84:4C:BB:34:BC:02:2C:EE:90:45:92:5F ValidityFri, 05 Jan 2024 00:00:00 GMT - Tue, 04 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (3036), with no line terminators Hash778e327b661c395a747419f6c379e88f 5a1e9a53dadf225a0693d4c91b0902873b83f542 b92157ff352c803af26f58af0e4384ad77ff40fbf764594af26696a1a81a3113
GET /login HTTP/1.1
Host: login.www.ezpdhcs.nt.gov.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 14:17:56 GMT
Server: EZproxy
Content-Type: text/html
Content-Encoding: gzip
Connection: close
|
|