| | 13.248.158.7 | | 4.8 kB |
IP13.248.158.7:0
File typeHTML document, ASCII text, with very long lines (384) Hashce2470c03921e09867d868eac0d54777 a9c5f179e07a82b444ffe7a6a0b1fb7cc97a4a52 0c15ababd40669bab36ea5316a75d41a4cf3647fe432bd5d88f91308d4cf7cae
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Yahoo | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 13.248.158.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found on Accelerator
Date: Wed, 24 Apr 2024 03:39:59 GMT
Connection: keep-alive
Server: ATS
Cache-Control: no-store
Content-Type: text/html
Content-Language: en
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: sandbox allow-scripts; default-src 'self'; img-src https:; style-src 'unsafe-inline'; script-src 'unsafe-inline'; report-uri http://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 4777
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{d76f535b-369d-4709-ad98-4d7c57ea0015}?http://13.248.158.7
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 668
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 03:40:00 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{d76f535b-369d-4709-ad98-4d7c57ea0015}?http://13.248.158.7
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 473
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 03:40:00 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{d76f535b-369d-4709-ad98-4d7c57ea0015}?http://13.248.158.7
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 665
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 03:40:00 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| s.yimg.com/nn/img/sad-panda-201402200631.png | 87.248.119.252 | 200 OK | 60 kB |
URL GET HTTP/2s.yimg.com/nn/img/sad-panda-201402200631.png IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested bymoz-nullprincipal:{d76f535b-369d-4709-ad98-4d7c57ea0015}?http://13.248.158.7 CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 2673 x 1311, 8-bit/color RGB, non-interlaced Hash2751275289ee8a74f64e6bfec626034d be17d650aad1654f88ce397a454e05ba281eb6c3 20a453c98a759aa542ba2a07e1dcf31c82d545ef29377b3bcaad379ebbad66ac
GET /nn/img/sad-panda-201402200631.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://13.248.158.7/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: jLxQccxFqxC9M0x4b6hi87mExhnSItaEw0LTp6tJrE/ZYPi2jUcQwThg+lhy4YgwniAqmCNqH3ndjGiMENrxcA==
x-amz-request-id: 45TYF87T4NT3F7YK
date: Sun, 21 Apr 2024 02:53:38 GMT
last-modified: Fri, 06 Jul 2018 03:00:46 GMT
etag: "2751275289ee8a74f64e6bfec626034d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Thu, 20 Feb 2014 06:31:45 GMT
x-amz-meta-mbst-etag: "YM:1:21e2bf66-5b4e-48cf-b226-54be0c87b2230004f2d0a8cc8ed9"
x-amz-meta-x-ysws-mbst-vtime: 1392877905940185
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 59856
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png | 87.248.119.252 | 200 OK | 1.2 kB |
URL GET HTTP/2s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested bymoz-nullprincipal:{d76f535b-369d-4709-ad98-4d7c57ea0015}?http://13.248.158.7 CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 205 x 58, 8-bit colormap, non-interlaced Hash73bbf8bd47227f183455c2d4b5e3a8a8 17152df9ebfce3b03dfab35950a30209c3eb1e2e 8de1aec4728fb9e7dc92eba19506b89bde081f5555a8e3a963354a8f9c4afe2d
GET /rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://13.248.158.7/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: UtTZA+c/9MuxbCToAGBCXU2cWPhRgLqK87T3Yre3Fp+XNsLia+qnC7WQtsdHyhEi2dx0Td2+XBg=
x-amz-request-id: HFZSXT1X2JCHK8VT
date: Tue, 23 Apr 2024 17:37:38 GMT
last-modified: Mon, 22 Apr 2024 21:32:26 GMT
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 1154
referrer-policy: no-referrer-when-downgrade
vary: Origin
etag: "73bbf8bd47227f183455c2d4b5e3a8a8"
expires: Tue, 23 Apr 2024 23:00:00 GMT
age: 36144
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|