| solarstockboom.com/disclaimer | 190.92.141.87 | 200 OK | 545 B |
URL User Request GET HTTP/2solarstockboom.com/disclaimer IP190.92.141.87:443
CertificateIssuerLet's Encrypt Subject*.solarstockboom.com FingerprintFE:22:0F:49:66:3F:B0:67:27:C0:C9:30:92:E3:CC:E4:DF:D3:7E:07 ValidityThu, 14 Mar 2024 17:06:17 GMT - Wed, 12 Jun 2024 17:06:16 GMT
File typeHTML document, ASCII text, with very long lines (1167), with no line terminators Hash12d6601b2fde1889763d26e5fe301e46 a3ba27ad75268cee2fd7244f977a01d6d20cf868 30a89e8151ba5d9aff6217a16d2f07571c62adc7dd5b39d3b0c602cf3d37b52b
GET /disclaimer HTTP/1.1
Host: solarstockboom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 545
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 13:43:41 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| solarstockboom.com/favicon.ico | 190.92.141.87 | 404 Not Found | 1.3 kB |
URL GET HTTP/3solarstockboom.com/favicon.ico IP190.92.141.87:443
Requested byhttps://solarstockboom.com/disclaimer CertificateIssuerLet's Encrypt Subject*.solarstockboom.com FingerprintFE:22:0F:49:66:3F:B0:67:27:C0:C9:30:92:E3:CC:E4:DF:D3:7E:07 ValidityThu, 14 Mar 2024 17:06:17 GMT - Wed, 12 Jun 2024 17:06:16 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
GET /favicon.ico HTTP/1.1
Host: solarstockboom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solarstockboom.com/disclaimer
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Wed, 08 May 2024 13:43:42 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| js.cdntoswitchspirit.com/source/split.js | 104.21.93.126 | 200 OK | 24 kB |
URL GET HTTP/3js.cdntoswitchspirit.com/source/split.js IP104.21.93.126:443
Requested byhttps://solarstockboom.com/disclaimer CertificateIssuerLet's Encrypt Subjectcdntoswitchspirit.com FingerprintDF:DB:EE:70:5A:39:BB:E7:A9:C6:4B:5C:24:04:56:6B:D0:D3:C0:AD ValidityMon, 29 Apr 2024 10:49:03 GMT - Sun, 28 Jul 2024 10:49:02 GMT
File typeJavaScript source, ASCII text, with very long lines (36341), with no line terminators Hashfe59aea1c787d361c69c43c46a747767 2cc61a29d05db4814718cc60450876419afc5d24 9763b6045876ff0f6ddf7f20e19d631346a2f132e675ff1601896b3625fd9816
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /source/split.js HTTP/1.1
Host: js.cdntoswitchspirit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solarstockboom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 13:43:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 30 Apr 2024 15:35:14 GMT
vary: Accept-Encoding
etag: W/"66310fb2-8df5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 15420
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Drh1H8L99etOMhtVqnBEYYiR64E4fb4%2FFasQm3OJ8KHVDHXIIIrhiSP%2FH%2F%2FdNbnCLMzi4B2yGE1%2Bl8StKo9Fbmzwi6Ow%2BKhnh%2BOWJwklhTiiz5xHiW7Fx%2FJQ%2BCqwKhf%2FiEdMPI4jPqkZNI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809e1589e4856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| done.restartyourchoices.com/stepone | 188.114.97.1 | 200 OK | 0 B |
URL GET HTTP/3done.restartyourchoices.com/stepone IP188.114.97.1:443
Requested byhttps://solarstockboom.com/disclaimer CertificateIssuerLet's Encrypt Subjectrestartyourchoices.com Fingerprint1E:64:C0:EA:CA:57:4F:66:CB:2A:33:CF:E5:2D:8D:F5:B1:21:CE:D6 ValidityThu, 02 May 2024 15:04:04 GMT - Wed, 31 Jul 2024 15:04:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stepone HTTP/1.1
Host: done.restartyourchoices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solarstockboom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 13:43:42 GMT
content-type: application/javascript
content-length: 0
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 08 May 2024 13:43:42 GMT
set-cookie: _subid=376l60jilrl5n; expires=Sat, 08 Jun 2024 13:43:42 GMT; path=/
a4fba=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjUxXCI6MTcxNTE3NTgyMn0sXCJjYW1wYWlnbnNcIjp7XCIxNVwiOjE3MTUxNzU4MjJ9LFwidGltZVwiOjE3MTUxNzU4MjJ9In0.D7sgWVGgqCtZt9_JATiY-GYAHHh43GVbhNJBkTfI6co; expires=Wed, 14 Sep 2078 11:27:24 GMT; path=/
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=STVSGb20MAPzE1laRqOHqbfNVm0RMYAnTqLm0z2ajV4WaAzi79%2B8DPVhlNfEWxRjiCwkgz0wjQR2GZ12trTiTUY%2BhTdttxav7rph%2F6e9gDOhlRZa%2B0rvANLEaVPAA3I8GxpddqiCnp5geQwn9KU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809e15acfab569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jquery.restartyourchoices.com/cdncollect?r1=solarstockboom.com | 188.114.97.1 | 200 OK | 10 kB |
URL GET HTTP/2jquery.restartyourchoices.com/cdncollect?r1=solarstockboom.com IP188.114.97.1:443
Requested byhttps://solarstockboom.com/disclaimer CertificateIssuerLet's Encrypt Subjectrestartyourchoices.com Fingerprint1E:64:C0:EA:CA:57:4F:66:CB:2A:33:CF:E5:2D:8D:F5:B1:21:CE:D6 ValidityThu, 02 May 2024 15:04:04 GMT - Wed, 31 Jul 2024 15:04:03 GMT
File typeJavaScript source, ASCII text, with very long lines (10370) Hasha670ec3dd6fa757de5d5aab7abddfe59 07efb08354a342ae821e52b60728a31945c95759 a9aa76d5655c965f1feceec22619fa26acb1c4832f76ea25a79201bbc2b2c2f0
GET /cdncollect?r1=solarstockboom.com HTTP/1.1
Host: jquery.restartyourchoices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solarstockboom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 13:43:42 GMT
content-type: application/javascript
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 08 May 2024 13:43:42 GMT
set-cookie: _subid=376l60jilrl51; expires=Sat, 08 Jun 2024 13:43:42 GMT; path=/
a4fba=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxXCI6MTcxNTE3NTgyMn0sXCJjYW1wYWlnbnNcIjp7XCIxM1wiOjE3MTUxNzU4MjJ9LFwidGltZVwiOjE3MTUxNzU4MjJ9In0.XDukaCHHZT9KOanKRZD2K7OBxpbiZQAihtII2mefslc; expires=Thu, 15 Sep 2078 03:27:24 GMT; path=/
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fy6aPW%2Fkj6sZoC9KpesXm%2BqcyVK3YOfjtEZsCPq7YnsARBGbZHbu62KX4bDarfZxwGzm9OHzBRVPSCSkll1VNh6PX2FwKdRCdEkoM0PBL%2Bybc%2BBaiMFca3CXWZMfyhNkjXUPxYTf%2F4MI7ssQjLYi0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809e1596cf50b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| chest.cdntoswitchspirit.com/scripts/connections.js | 104.21.93.126 | 200 OK | 10 kB |
URL GET HTTP/2chest.cdntoswitchspirit.com/scripts/connections.js IP104.21.93.126:443
Requested byhttps://solarstockboom.com/disclaimer CertificateIssuerLet's Encrypt Subjectcdntoswitchspirit.com FingerprintDF:DB:EE:70:5A:39:BB:E7:A9:C6:4B:5C:24:04:56:6B:D0:D3:C0:AD ValidityMon, 29 Apr 2024 10:49:03 GMT - Sun, 28 Jul 2024 10:49:02 GMT
File typeJavaScript source, ASCII text, with very long lines (10458), with no line terminators Hash2f55ce25abc861b92352d8d02a680307 57941c0f50200a0a6b8b9fdc8c72cd19db9a1392 833458a6c0f1e53614fa5cde6e3dacd63186bf18d12f8665828c1c031543df46
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /scripts/connections.js HTTP/1.1
Host: chest.cdntoswitchspirit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solarstockboom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 13:43:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 08 May 2024 09:16:52 GMT
vary: Accept-Encoding
etag: W/"663b4304-28da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 15422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wulDFPlQbC1AnbuSg8LRUoAwBIgGXyZpWc80Rwn6jdkkc11QC%2F4lJ%2FRa99dSlnNbVe3ErhMm%2BSQdKmYfLL6on05%2FQW2F4GPaE8Ya%2F9vzUBucYjNQA4%2FY3JJKqsAmiKCRvsRiIdppOzgUZOz3qoo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809e157fea0b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|