| secure-auth-40c.com/.2/Home/ | 188.114.96.1 | 403 Forbidden | 1.7 kB |
URL User Request GET HTTP/1.1secure-auth-40c.com/.2/Home/ IP188.114.96.1:80
File typeHTML document, ASCII text, with very long lines (394) Hash36d72de3abcd03af5764d767ecdfdc5e 272d026d2b7301982d3319eafd7f8bf4d32c255e a11a8927289cc853af8023c871cc9874ec64d0ff9ca1f9a93a677487c2967af2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.2/Home/ HTTP/1.1
Host: secure-auth-40c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 15:03:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: max-age=15
Expires: Wed, 08 May 2024 15:03:41 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ylVfxwxfRz7vS9GthKxdpOp3mXnO0FWd9nr6iY7EHQqr25UTHGUvT4ZLQLHt%2BrKV%2FdTujTbphHh0fGVpgyYWdHMSRAAsLCEhHywQ53VcuemcEws5voQwx5oPQ1KHDFQaR9M86KBr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880a56249943568a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| secure-auth-40c.com/cdn-cgi/styles/cf.errors.css | 188.114.96.1 | 200 OK | 4.5 kB |
URL GET HTTP/1.1secure-auth-40c.com/cdn-cgi/styles/cf.errors.css IP188.114.96.1:80
Requested byhttp://secure-auth-40c.com/.2/Home/
File typeASCII text, with very long lines (24050) Hash5e8c69a459a691b5d1b9be442332c87d f24dd1ad7c9080575d92a9a9a2c42620725ef836 84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: secure-auth-40c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://secure-auth-40c.com/.2/Home/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:03:26 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 08 May 2024 09:31:53 GMT
ETag: W/"663b4689-5df3"
Server: cloudflare
CF-RAY: 880a5626dc88568a-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 08 May 2024 17:03:26 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
|
| secure-auth-40c.com/cdn-cgi/images/browser-bar.png?1376755637 | 188.114.96.1 | 200 OK | 715 B |
URL GET HTTP/1.1secure-auth-40c.com/cdn-cgi/images/browser-bar.png?1376755637 IP188.114.96.1:80
Requested byhttp://secure-auth-40c.com/.2/Home/
File typePNG image data, 960 x 53, 8-bit colormap, non-interlaced Hash226dcb8f6144bdaafdfbd8f2f354be64 3785cc5b3bf52f8e398177b0ff1020b24aa86b8c 8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1
Host: secure-auth-40c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://secure-auth-40c.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:03:26 GMT
Content-Type: image/png
Content-Length: 715
Connection: keep-alive
Last-Modified: Wed, 08 May 2024 09:31:53 GMT
ETag: "663b4689-2cb"
Server: cloudflare
CF-RAY: 880a56272d13568a-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 08 May 2024 17:03:26 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| secure-auth-40c.com/cdn-cgi/images/cf-no-screenshot-error.png | 188.114.96.1 | 200 OK | 3.2 kB |
URL GET HTTP/1.1secure-auth-40c.com/cdn-cgi/images/cf-no-screenshot-error.png IP188.114.96.1:80
Requested byhttp://secure-auth-40c.com/.2/Home/
File typePNG image data, 178 x 175, 8-bit colormap, non-interlaced Hash0d768cbc261841d3affc933b9ac3130e aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7 1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1
Host: secure-auth-40c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://secure-auth-40c.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:03:26 GMT
Content-Type: image/png
Content-Length: 3213
Connection: keep-alive
Last-Modified: Wed, 08 May 2024 09:31:53 GMT
ETag: "663b4689-c8d"
Server: cloudflare
CF-RAY: 880a56273d37568a-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 08 May 2024 17:03:26 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| secure-auth-40c.com/favicon.ico | 188.114.96.1 | 403 Forbidden | 1.7 kB |
URL GET HTTP/1.1secure-auth-40c.com/favicon.ico IP188.114.96.1:80
Requested byhttp://secure-auth-40c.com/.2/Home/
File typeHTML document, ASCII text, with very long lines (394) Hashe0e7fe13686d2f086e80c5906390c50a 9432079a569195c8a7c4a0a0793ea1f8c313bb70 1297d7fd04ce4bb1ef23cdeabada3a8d1479c162183c95a6876e39e9f0471b7a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: secure-auth-40c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://secure-auth-40c.com/.2/Home/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 15:03:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: max-age=15
Expires: Wed, 08 May 2024 15:03:41 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a95CWW%2FBnx7%2FBPk%2F3shG%2Bj09li6ozQ8Xdv45rGWPHkQ4RJk8E2uihPtcOgX1BM85yOzN9WNvBTzNbX0NEwb84sVY3GsTdut0FNHq9i66%2Fr%2Bq05lqXzhQDF%2FeqrX3pIRsrkBI2Yfm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880a56277deb568a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|