URL User Request GET HTTP/1.1IP13.249.216.93:80
File typeHTML document, ASCII text Hash1fa2532b49026d0872dae4db334d6abe b0dbd83578fa6b58677009a76486ee7e83b92960 f6de29abd031e3b1235bda4a68eed0f4b3fcafb09d34db9b8cee0ff4d44c5a8c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 13.249.216.93
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Tue, 07 May 2024 18:47:26 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 66bb7624c65bf142c90865dcc9a59108.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BLR50-C3
X-Amz-Cf-Id: PaozRXVIbTgTyoyRPt_DRxj_OsXlwerKeDQzqMANqj2QBj_KHqQL4Q==
|
| 13.249.216.93/favicon.ico | 13.249.216.93 | 403 Forbidden | 915 B |
URL GET HTTP/1.113.249.216.93/favicon.ico IP13.249.216.93:80
File typeHTML document, ASCII text Hash9fc44a9aaa94d584390c2e1623754b55 3437ccb9c223365c220b8c2bd3cd40b2dd7f5428 5f8d0b4dfb0cd04f60276cce6ac6ed95f1089afa3868486d067c63f7505261fc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 13.249.216.93
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://13.249.216.93/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Tue, 07 May 2024 18:47:26 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 d3580968a9fa37fa745d1e9d5543cbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BLR50-C3
X-Amz-Cf-Id: g7QSuM2mrFxzuL81ZuJGss2hwbTOearS5_WPAJCdGj4RhbuRzh-jPg==
|