Report - infura-ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu

Report Overview

Visited public
2023-11-30 08:50:24
Tags
URL
infura-ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
Finishing URL
ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
IP / ASN
54.205.31.215
#14618 AMAZON-AES
Title
410 Gone

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
infura-ipfs.io	249389	2020-01-30	2020-05-15 00:51:34	2023-11-27 12:03:41	532 B	362 B	52.5.117.114
ipfs.io	41400	2014-05-16	2015-09-09 06:41:36	2023-11-30 03:47:01	1.1 kB	14 kB	209.94.90.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-30 08:50:10	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:10	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:10	low	Client IP	Internal IP	ET INFO Peer to Peer File Sharing Service in DNS Lookup (infura-ipfs .io)
2023-11-30 08:50:10	low	Client IP	Internal IP	ET INFO Peer to Peer File Sharing Service in DNS Lookup (infura-ipfs .io)
2023-11-30 08:50:10	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:10	low	Client IP	Internal IP	ET INFO Peer to Peer File Sharing Service in DNS Lookup (infura-ipfs .io)
2023-11-30 08:50:10	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:10	low	Client IP	Internal IP	ET INFO Peer to Peer File Sharing Service in DNS Lookup (infura-ipfs .io)
2023-11-30 08:50:11	low	Client IP	52.5.117.114	ET INFO Peer to Peer File Sharing Service Domain in TLS SNI (infura-ipfs .io)
2023-11-30 08:50:11	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:11	medium	Client IP	Internal IP	ET INFO Peer-to-Peer File Sharing Service Domain in DNS Lookup (ipfs .io)
2023-11-30 08:50:11	medium	Client IP	209.94.90.1	ET INFO Observed Peer-to-Peer File Sharing Service Domain (ipfs .io in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-30	medium	infura-ipfs.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (3)

URL IP Response Size

infura-ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu

52.5.117.114

301 Moved Permanently

102 B

URL User Request GET HTTP/1.1
infura-ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
IP
52.5.117.114:443
ASN
#14618 AMAZON-AES

Certificate
IssuerAmazon
Subjectinfura-ipfs.io
Fingerprint65:7C:55:31:4F:BD:D1:6D:0F:51:8B:3C:AC:4D:5F:02:30:0E:A9:E3
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
102 B (102 bytes)
Hash
31db53d90b298650e08c0bdae47ae41a
d8052a4d7d1bd1fd8fe5d985a5e32ad4343d61e7
182c4b819dcaacafc15194ef595563c0f80c42658c4c355f97397189b54f952a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu HTTP/1.1
Host: infura-ipfs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=300
Content-Type: text/html; charset=utf-8
Location: https://ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
X-Robots-Tag: noindex
Date: Thu, 30 Nov 2023 08:50:06 GMT
Content-Length: 102

ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu

209.94.90.1

410 Gone

6.7 kB

URL User Request GET HTTP/2
ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint8B:0B:A0:28:A6:81:DF:E9:49:F0:E9:A3:20:69:C6:07:BE:D6:16:2C
ValidityMon, 20 Nov 2023 14:59:23 GMT - Sun, 18 Feb 2024 14:59:22 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1632)
Size
6.7 kB (6672 bytes)
Hash
f2ce39c9881b4a12aff800f6713c69d1
0f047ecc756d17f61d81da4b3bede1d80575bfe1
86f21e29947180f7b68e81b82992f786fc08b694ac4c714352f072768788f150

HTTP Headers

GET /ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 410 Gone
server: openresty
date: Thu, 30 Nov 2023 08:50:07 GMT
content-type: text/html
content-length: 6672
etag: "650c2b70-1a10"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank1-fr2
x-bfid: 38c84e8fa1d4b99b7f0e0808a657e7bd
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu

209.94.90.1

410 Gone

6.7 kB

URL User Request GET HTTP/2
ipfs.io/ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint8B:0B:A0:28:A6:81:DF:E9:49:F0:E9:A3:20:69:C6:07:BE:D6:16:2C
ValidityMon, 20 Nov 2023 14:59:23 GMT - Sun, 18 Feb 2024 14:59:22 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1632)
Size
6.7 kB (6672 bytes)
Hash
f2ce39c9881b4a12aff800f6713c69d1
0f047ecc756d17f61d81da4b3bede1d80575bfe1
86f21e29947180f7b68e81b82992f786fc08b694ac4c714352f072768788f150

HTTP Headers

GET /ipfs/QmXySBA947P8rUE4bhYC1GekP5dA3tG984gnMvAhQpUCxu HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 410 Gone
server: openresty
date: Thu, 30 Nov 2023 08:50:07 GMT
content-type: text/html
content-length: 6672
etag: "650c2b70-1a10"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank1-fr2
x-bfid: c7d81ea4bcf36e2b253eb09b569176c7
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (3)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers