URL User Request GET HTTP/1.1IP18.172.248.98:80
File typeHTML document, ASCII text Hash0bed5eb1cbdc97146f7f2595b900aee6 7b78c33da27bbc373a7e7ab7d0e7be082e774845 b01ba47a196be67566c3ba3e0797e1a0fe726ba825c79225a2aab17bf7114f8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 18.172.248.98
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 18 Apr 2024 07:55:58 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 f37834b71dcaa17cc08f5c67189869e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: _hfr5an337lbwqsMKrtEW2DaAmStvy6Sx6_J0KK2Rti1xdZXIL7-FA==
|
| 18.172.248.98/favicon.ico | 18.172.248.98 | 403 Forbidden | 915 B |
URL GET HTTP/1.118.172.248.98/favicon.ico IP18.172.248.98:80
File typeHTML document, ASCII text Hashf144638f52b4a37a62b1513525eb5e97 2ad051cd6b7b0c6a2498bdff177760bcca0df085 e44461454f3c999ef04621978a05c80a7558f297c972503672fae28a3382f952
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 18.172.248.98
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://18.172.248.98/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 18 Apr 2024 07:55:58 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 f37834b71dcaa17cc08f5c67189869e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BUD50-P1
X-Amz-Cf-Id: G5V2MiXJC5y-XdRc6fDJsZN_-TU3l0JdvSlarzexZFm7CjeAO6NGDQ==
|