URL User Request GET HTTP/1.1IP34.216.236.248:80
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 34.216.236.248
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Wed, 24 Apr 2024 03:18:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Server: nginx
Expires: Mon, 1 Jan 1990 12:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: opt_out=1; Domain=.postrelease.com; Expires=Thu, 24-Apr-2025 03:18:32 GMT; Path=/; Secure; SameSite=None;
|
| 34.216.236.248/favicon.ico | 34.216.236.248 | 200 | 43 B |
URL GET HTTP/1.134.216.236.248/favicon.ico IP34.216.236.248:80
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 34.216.236.248
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.216.236.248/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Wed, 24 Apr 2024 03:18:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Server: nginx
Expires: Mon, 1 Jan 1990 12:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: opt_out=1; Domain=.postrelease.com; Expires=Thu, 24-Apr-2025 03:18:32 GMT; Path=/; Secure; SameSite=None;
|