| resgateseuspontoslivelodescobra.in.ua/ | 172.67.199.2 | 302 Found | 1.6 kB |
URL User Request GET HTTP/2resgateseuspontoslivelodescobra.in.ua/ IP172.67.199.2:443
CertificateIssuerGoogle Trust Services LLC Subjectresgateseuspontoslivelodescobra.in.ua Fingerprint61:61:B0:EA:F8:12:D6:BE:F6:03:C3:5A:DB:20:68:93:E2:89:8B:C4 ValidityWed, 10 Apr 2024 16:25:30 GMT - Tue, 09 Jul 2024 16:25:29 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash65ea758ee19fed96aaff6759f5e57bc3 495ab1622e385e85f9e5c2364abf74bb26ae65d7 ca32facfd3d49f5c8e7eef2af6233977d9f7ba36beb28e3731e0827467c9662d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: resgateseuspontoslivelodescobra.in.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=o3ke3j57gc3m1va02rttcmfmu1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Wed, 24 Apr 2024 20:14:06 GMT
content-type: text/html; charset=UTF-8
location: https://www.google.com/erro
x-powered-by: PHP/8.0.0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v9FvkCb16bNaygAJ%2FPUSvJxmSlot4CJbWyoi89XjCRsJ49K4yZxLIEX5n6pLo0M%2Byir4Ps7p%2B8Yg9Ne4gFarTXoZ5sOpMPUrs2QXVs8cx3p0C40%2FApZI7qkamGlALILV%2Fs%2FvaGHG0W3dac68xnWa2OD%2Bw8b1GdZu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798c1f24a8e0afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| | 142.250.74.164 | 404 Not Found | 1.6 kB |
URL User Request GET HTTP/2IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash65ea758ee19fed96aaff6759f5e57bc3 495ab1622e385e85f9e5c2364abf74bb26ae65d7 ca32facfd3d49f5c8e7eef2af6233977d9f7ba36beb28e3731e0827467c9662d
GET /erro HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1565
Date: Wed, 24 Apr 2024 20:14:06 GMT
|
|
| www.google.com/images/errors/robot.png | 142.250.74.164 | 200 OK | 6.3 kB |
URL GET HTTP/1.1www.google.com/images/errors/robot.png IP142.250.74.164:80
Requested byhttp://www.google.com/erro
File typePNG image data, 171 x 213, 8-bit colormap, non-interlaced Hash4c9acf280b47cef7def3fc91a34c7ffe c32bb847daf52117ab93b723d7c57d8b1e75d36b 5f9fc5b3fbddf0e72c5c56cdcfc81c6e10c617d70b1b93fbe1e4679a8797bff7
GET /images/errors/robot.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 6327
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 18 Apr 2024 03:11:58 GMT
Expires: Fri, 18 Apr 2025 03:11:58 GMT
Cache-Control: public, max-age=31536000
Age: 579728
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
Content-Type: image/png
|
|
| www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png | 142.250.74.164 | 200 OK | 3.2 kB |
URL GET HTTP/1.1www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png IP142.250.74.164:80
Requested byhttp://www.google.com/erro
File typePNG image data, 150 x 54, 8-bit/color RGBA, non-interlaced Hash9d73b3aa30bce9d8f166de5178ae4338 d0cbc46850d8ed54625a3b2b01a2c31f37977e75 dbef5e5530003b7233e944856c23d1437902a2d3568cdfd2beaf2166e9ca9139
GET /images/branding/googlelogo/1x/googlelogo_color_150x54dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 3170
Date: Wed, 24 Apr 2024 20:14:06 GMT
Expires: Wed, 24 Apr 2024 20:14:06 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
|
|
| www.google.com/favicon.ico | 142.250.74.164 | 200 OK | 1.5 kB |
URL GET HTTP/1.1www.google.com/favicon.ico IP142.250.74.164:80
Requested byhttp://www.google.com/erro
File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hashf3418a443e7d841097c714d69ec4bcb8 49263695f6b0cdd72f45cf1b775e660fdc36c606 6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770
GET /favicon.ico HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 1494
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 23 Apr 2024 13:08:40 GMT
Expires: Wed, 01 May 2024 13:08:40 GMT
Cache-Control: public, max-age=691200
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
Content-Type: image/x-icon
Vary: Accept-Encoding
Age: 111926
|
|
| resgateseuspontoslivelodescobra.in.ua/resgateaqui/index2.php........ | 172.67.199.2 | 302 Found | 1.6 kB |
URL User Request GET HTTP/2resgateseuspontoslivelodescobra.in.ua/resgateaqui/index2.php........ IP172.67.199.2:443
CertificateIssuerGoogle Trust Services LLC Subjectresgateseuspontoslivelodescobra.in.ua Fingerprint61:61:B0:EA:F8:12:D6:BE:F6:03:C3:5A:DB:20:68:93:E2:89:8B:C4 ValidityWed, 10 Apr 2024 16:25:30 GMT - Tue, 09 Jul 2024 16:25:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /resgateaqui/index2.php........ HTTP/1.1
Host: resgateseuspontoslivelodescobra.in.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 20:14:05 GMT
content-type: text/html; charset=UTF-8
location: ../
x-powered-by: PHP/8.0.0
set-cookie: PHPSESSID=o3ke3j57gc3m1va02rttcmfmu1; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FRHG5wZn2TBc2S2u3Vk6%2BurkERz0FrkGrmjbKTU%2FnhDVJTMzAV1TYUgKirVhdRgVSXH3KXZ2noi6wxT%2FwZQRCgI6MiIiJM5xNs9r6j7E3p1jfjuWS1M4G0c%2FC8ix8PFVw7A1trR2RQ1aiKCIA9HuRURRNgkbjJr1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798c1ef7f3e0afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|