IP139.45.197.242:443
Requested byhttps://ophoacit.com/1?z=6542670 CertificateIssuerLet's Encrypt Subjectophoacit.com FingerprintD4:EF:6E:1D:4B:02:94:E8:E2:BE:63:9E:48:59:EC:F6:C5:0F:92:9D ValidityThu, 18 Apr 2024 22:05:16 GMT - Wed, 17 Jul 2024 22:05:15 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ophoacit.com/1?z=6542670
Cookie: OAID=040048ed022f4acfe77177e3bf058613; oaidts=1713989505
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 24 Apr 2024 20:11:45 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
URL User Request GET HTTP/2IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectophoacit.com FingerprintD4:EF:6E:1D:4B:02:94:E8:E2:BE:63:9E:48:59:EC:F6:C5:0F:92:9D ValidityThu, 18 Apr 2024 22:05:16 GMT - Wed, 17 Jul 2024 22:05:15 GMT
File typeJavaScript source, ASCII text, with very long lines (42427) Hash34690d58a7db54acb7e7df001e0be177 f7aebdbd955572021a9cb8000a40ed3aa7f66fb9 59b1195ee54b58455bd71828d325902f119d1f29341e0438b844a1a0f0ef6be3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1?z=6542670 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 20:11:45 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9eacaece72422ff20c20f75c69bc6172
access-control-expose-headers: X-Sc
x-sc: 5M9kVKGwBBhCLnNaQmH1FOT9WihrSBw3KJ7x8n6rmY31M1sLBeYXIS_4OTYQZrTe7axl8_nMyffze94T
set-cookie: OAID=040048ed022f4acfe77177e3bf058613; expires=Thu, 24 Apr 2025 20:11:45 GMT; secure; SameSite=None
oaidts=1713989505; expires=Thu, 24 Apr 2025 20:11:45 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|