Overview

URL dwarlegends.ml/
IP31.131.22.224
ASNAS56851 PE Skurykhin Mukola Volodumurovuch
Location Ukraine
Report completed2019-05-11 09:45:28 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-05-11 09:44:56 CEST 2 Client IP  Internal IP ET INFO DNS Query for Suspicious .ml Domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 31.131.22.224

Date UQ / IDS / BL URL IP
2019-05-19 07:02:58 +0200
0 - 0 - 16 inform-guru.com.ua/ 31.131.22.224
2019-03-30 03:21:22 +0100
0 - 0 - 16 inform-guru.com.ua/ 31.131.22.224
2019-03-27 02:39:47 +0100
0 - 1 - 0 dwarlegends.ml/ 31.131.22.224
2019-03-23 05:51:11 +0100
0 - 0 - 10 inform-guru.com.ua/kak-vesti-zdorovyj-obraz-zhizni 31.131.22.224

Last 10 reports on ASN: AS56851 PE Skurykhin Mukola Volodumurovuch

Date UQ / IDS / BL URL IP
2019-06-07 05:30:03 +0200
0 - 3 - 0 dropp-shop29.tk/ 31.131.19.110
2019-05-31 05:30:10 +0200
0 - 0 - 2 forklift-toyota.com.ua/rackspace 31.131.19.186
2019-05-30 23:06:25 +0200
0 - 0 - 2 ad-simple.com/Netfra/Netframe 31.131.16.95
2019-05-24 23:33:10 +0200
0 - 0 - 65 zanachka.com.ua/eksbmne2 31.131.19.186
2019-05-21 15:10:06 +0200
0 - 0 - 0 31.131.22.158/place.php?check=UFQxUlQzZEJSRTE (...) 31.131.22.158
2019-05-19 07:02:58 +0200
0 - 0 - 16 inform-guru.com.ua/ 31.131.22.224
2019-05-07 10:17:47 +0200
0 - 0 - 30 https://polirovalsam.com.ua/ 31.131.18.83
2019-05-05 21:58:17 +0200
0 - 0 - 1 optosvet.com/nzjfq7p 31.131.19.37
2019-05-02 22:03:12 +0200
0 - 0 - 4 pearl-apartment.com/wp-content/themes/dt-the7 (...) 31.131.16.175
2019-04-25 16:02:37 +0200
0 - 0 - 5 serial-shkola.ru/video/68-seriya.htm 31.131.19.110

Last 1 reports on domain: dwarlegends.ml

Date UQ / IDS / BL URL IP
2019-03-27 02:39:47 +0100
0 - 1 - 0 dwarlegends.ml/ 31.131.22.224


JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 4, repeated: 1) - SHA256: 023e33504ab909cf87a6f4e4e545090e40bdc0a2153e5b68b19f7fad2b737904

                                        2019
                                    


HTTP Transactions (26)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: dwarlegends.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         31.131.22.224
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Content-Length: 593
Date: Sat, 11 May 2019 07:44:56 GMT
Server: LiteSpeed
Cache-Control: no-cache, no-store, must-revalidate, max-age=0
Location: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   593
Md5:    ec4fc20523a299bbfed48d1cffbf79d0
Sha1:   a615465c75b2e50a4a967a76501ce1809f5d8a36
Sha256: 06508a8401970c6ffbd37222af797b19d6f968df5da292286260b1ee6724570c
                                        
                                            GET /cgi-sys/suspendedpage.cgi HTTP/1.1 
Host: dwarlegends.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         31.131.22.224
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sat, 11 May 2019 07:44:56 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2618
Md5:    14af35ed0c53916cb4654e5b39c655d7
Sha1:   678d12333c15872746049c7ea4d5b0ff79b4c201
Sha256: 123c4486da732c33e5fe9c4e5259951855531b41487fea52cb2f6d75b061b05a
                                        
                                            GET /ajax/libs/jqueryui/1.5.3/jquery-ui.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 42191
Date: Fri, 19 Apr 2019 15:15:46 GMT
Expires: Sat, 18 Apr 2020 15:15:46 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1873750


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   42191
Md5:    0c2e4ad01d50558740f5fadb46d1a2ad
Sha1:   a4eba1388656e48438d4a0bb437bb31de1ef90da
Sha256: 407928ab5d650eb2d0332b1c2edb38628416a140d5ccc17b57d86b269cf78714
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    009e45433a052630364e89594f390cf2
Sha1:   2a7d4f0bb232ac5c6a40c874c41e3f2c943a4eac
Sha256: e614b5c9babc977b3a0d8c3bec6b84c3cd92e1a352eca7e36bf4fae7dee104a9
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:56 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 06 May 2019 19:38:57 GMT
Server: Apache
Etag: 61A9494DFC999137597919FF8E07CC3D0E015943
Cache-Control: max-age=451510,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp5
X-HW: 1557560696.cds054.sk1.h2,1557560696.cds036.sk1.c
Connection: keep-alive
Content-Length: 472


--- Additional Info ---
Magic:  data
Size:   472
Md5:    580058d3242360c34d12f8cc402a1c2c
Sha1:   61a9494dfc999137597919ff8e07cc3d0e015943
Sha256: dd3c621bacf18b699a55d3a5b30ff67aa4ddc86870ba3562dfebf741d470c50a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:56 GMT
Accept-Ranges: bytes
Last-Modified: Sun, 05 May 2019 03:20:45 GMT
Server: Apache
Etag: 120E7ED11A1BB43E67F29722818652F73AC9B6B2
Cache-Control: max-age=589012,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp15
X-HW: 1557560696.cds054.sk1.h2,1557560696.cds050.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    11824ad0f97ef313d96fc23c63ca82a2
Sha1:   120e7ed11a1bb43e67f29722818652f73ac9b6b2
Sha256: 1b230762f46d46eb25dabd49678343344cabd8741d24528b7315a68db4b74f93
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:56 GMT
Accept-Ranges: bytes
Last-Modified: Sun, 05 May 2019 03:20:45 GMT
Server: Apache
Etag: 26E54EF94AE98090DC82E1AEE8DA861709037B20
Cache-Control: max-age=568829,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp13
X-HW: 1557560696.cds007.sk1.h2,1557560696.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f5544909f33aff9038f9903e5ce5966a
Sha1:   26e54ef94ae98090dc82e1aee8da861709037b20
Sha256: ee134321b98e317511982ac9aae8943d853c222d5518154829dbfe761d12deb3
                                        
                                            GET /css?family=PT+Sans:700,400&subset=latin,cyrillic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sat, 11 May 2019 07:44:56 GMT
Date: Sat, 11 May 2019 07:44:56 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   226
Md5:    88d2e6ed55112c478e122e0bc7df59d1
Sha1:   712d20bdc25362889cc893ab5f82ffe55d5bff14
Sha256: d4f3457371187ddb68b9ab4720d6d8b981fd2a074509c413375957168dbd023c
                                        
                                            GET /js/js.js HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dc9ab63298802220a837d666219adb7701557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Tue, 23 Apr 2019 09:54:08 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d44bb7cb00-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5809
Md5:    aa9daf6d462a8ccfcf20f8b2bd2d485f
Sha1:   36c63f8a9ffab9b596500d8830a02d500e8cbc49
Sha256: 02181f4d6daf9beb5f355bedab3ae449b0c71c25c0297381e192b51fb5251bae
                                        
                                            GET /css/overlay.css HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=ddb8343faac46a6aeeae1f81e556fec9a1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Wed, 24 Apr 2019 11:02:38 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d3fcc5caf8-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3928
Md5:    0863d258ce00daf4a8a70966a125f4c0
Sha1:   79a11da49ed599a1de32f3fbad9d5e7c65edd0ac
Sha256: 7d4f7d461593f3e76a6cdd3fd0bf1bef6097acfce33e1545649a9b39a376d343
                                        
                                            GET /js/popup.js HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dc9ab63298802220a837d666219adb7701557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Wed, 24 Apr 2019 11:02:38 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d48c78cb00-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1576
Md5:    eb6999c5ad0d7d9ed6694979dc84296e
Sha1:   b00efb46279c21602aafcbef629fe91735d65259
Sha256: 05284a7954b9e1ec821919961cba7a70a54815f88977f173adb6954213e48f76
                                        
                                            GET /images/design/logo.png HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 2079
Connection: keep-alive
Set-Cookie: __cfduid=ddb8343faac46a6aeeae1f81e556fec9a1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Thu, 24 Nov 2016 11:04:11 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d49f07caf8-ARN


--- Additional Info ---
Magic:  PNG image, 167 x 40, 8-bit colormap, non-interlaced
Size:   2079
Md5:    19791df5db8b3afb5b504483329de13e
Sha1:   1eb22e955e3459131577ff535547ad139c5f939a
Sha256: b4d0c4cfddb79a91c76bf0a50504cd1f65cf71f67db6745fb890a96b484aeec6
                                        
                                            GET /css/styles.css HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=de0c331ff471d53381ff2be39deaf981b1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Fri, 26 Apr 2019 14:02:32 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d3f8ef75ce-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8741
Md5:    6c725bfa9badb497cd698d6aee43bb19
Sha1:   f46788310a47edad03c1852e43f18d619ebf9e2a
Sha256: 4b1aa3fe0919c4f9c6deaee1a0d7e1246f482759c599ba84cce1aef37368b273
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d690190432d1ba3f3545f2ec7e0e6911d1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Mon, 27 Apr 2015 22:31:00 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d49edccaf8-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   418
Md5:    7673b3a7765c43a67b1f0d073fb66524
Sha1:   fc86f2847f847969f2f92f013dbc29593e0abc8f
Sha256: 48b365f356d2fe794f297538a721f0f0205f4ac7e33a3a205ad5999dfe4a2435
                                        
                                            GET /images/design/logo-gray.png HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 1236
Connection: keep-alive
Set-Cookie: __cfduid=dc9ab63298802220a837d666219adb7701557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Thu, 24 Nov 2016 11:04:11 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d4bd09cb00-ARN


--- Additional Info ---
Magic:  PNG image, 87 x 21, 8-bit/color RGBA, non-interlaced
Size:   1236
Md5:    9db48613a8be64f55104e1430263e51c
Sha1:   a2534e60429d77a116e805972b2bcab86573cb47
Sha256: e545b662133bbf2b0d2c928d7d8079fda35b9496f6e7444498f202cbb1e5d005
                                        
                                            GET /css/pages.css HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=ddb8343faac46a6aeeae1f81e556fec9a1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Wed, 08 May 2019 09:45:19 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d4af15caf8-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   49950
Md5:    5f67c4dbb6d2e0f8a01bf53ef822295b
Sha1:   a8aaf4fe2cc502b8955e835742550deb881bb14d
Sha256: ea7b13aa0f4764147fa3e1b19cc106eaa071ff0ce9f417040588211e920bf69b
                                        
                                            GET /js/jquery-latest.min.js HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dwarlegends.ml/cgi-sys/suspendedpage.cgi

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697; expires=Sun, 10-May-20 07:44:57 GMT; path=/; domain=.hostiq.ua; HttpOnly
Vary: Accept-Encoding
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Mon, 27 Apr 2015 22:31:01 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4d5287d4af4e86ef-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   27106
Md5:    bfb2b4491791774e1f64610bffd75672
Sha1:   f220f89ee3cb5c573886e3677c4fb71098533af8
Sha256: 1117ee394e731894a0d276ddbd08134b5a91287a19ac6e94f0758258e688544f
                                        
                                            GET /images2019/design/header-cont-bull.png HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hostiq.ua/css/styles.css
Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 185
Connection: keep-alive
Cache-Control: public, max-age=2678400
Expires: Tue, 11 Jun 2019 07:44:57 GMT
Last-Modified: Tue, 23 Apr 2019 09:54:08 GMT
X-Turbo-Charged-By: LiteSpeed
X-Cache: HIT from Backend
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d73821caf8-ARN


--- Additional Info ---
Magic:  PNG image, 9 x 7, 4-bit colormap, non-interlaced
Size:   185
Md5:    a593931f0e1e5f7778885b641c72be3b
Sha1:   b3adb44f435fa9db6f81db8f7fd7bf46c63c610a
Sha256: e776e591dbec336e237688da6924356ec5a3ea6a7057b11b15946b962b30953e
                                        
                                            GET /images/design/error404box-top.gif HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hostiq.ua/css/pages.css
Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 332
Connection: keep-alive
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Mon, 01 Aug 2016 14:15:54 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d73c3b75ce-ARN


--- Additional Info ---
Magic:  GIF image data, version 89a, 981 x 8
Size:   332
Md5:    e1b2d5f5c9fdd9ced867875a69842504
Sha1:   363b3bc2dc4e06c523ffeb3421d4adb8eee1b902
Sha256: aa1ac8f0e4d7d5fab63725c350e8c0a633fa958eece30bf4a5377fc67e647e7c
                                        
                                            GET /images/design/error404box-rep.gif HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hostiq.ua/css/pages.css
Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 79
Connection: keep-alive
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Mon, 01 Aug 2016 14:15:54 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d73830caf8-ARN


--- Additional Info ---
Magic:  GIF image data, version 89a, 981 x 1
Size:   79
Md5:    934b4eb2f56bce41e4ba83cbd422d00a
Sha1:   4d741563405fa520a63bd35775cdaa83ad566e7e
Sha256: 39c0e2a66eb0bdf52a3a5a1c61e806a6e45bf7b58030a1592e196a8e7a049626
                                        
                                            GET /images/design/domains-sale-close.png HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hostiq.ua/css/overlay.css
Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 216
Connection: keep-alive
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Tue, 26 Sep 2017 07:42:39 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d7485ccaf8-ARN


--- Additional Info ---
Magic:  PNG image, 17 x 17, 8-bit/color RGBA, non-interlaced
Size:   216
Md5:    c4f7c90e7c43400c60286609bd702fb4
Sha1:   079f60755a4aae31c83cf6f0193fedab1dbc35e9
Sha256: 0c735cd761c805bc57bfaf2603398e30dc8653eb242324c54dbd55b91323004b
                                        
                                            GET /images/design/error404box-bott.gif HTTP/1.1 
Host: hostiq.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hostiq.ua/css/pages.css
Cookie: __cfduid=dace8b929b71ac80a8b884bae39843f1a1557560697

                                         
                                         104.20.51.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Content-Length: 331
Connection: keep-alive
Cache-Control: public, max-age=31536000
Expires: Sun, 10 May 2020 07:44:57 GMT
Last-Modified: Mon, 01 Aug 2016 14:15:54 GMT
X-Turbo-Charged-By: LiteSpeed
Strict-Transport-Security: max-age=604800
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4d5287d73cf0cb00-ARN


--- Additional Info ---
Magic:  GIF image data, version 89a, 981 x 8
Size:   331
Md5:    082a7616c87c6d06a23e7a9db41bac96
Sha1:   29d669f6e2857b785fe598f808a355f70f92be9e
Sha256: f1fdc588929cf871fcf102bca69385f2746c7bf12b0e70972863da2bd92ca60b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 11 May 2019 07:44:57 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9b8cdab1972ccf652dcd38d9750ac7a7
Sha1:   173c94d00378cb5ffaf3c8fa2041c9eebc139a8a
Sha256: 26a054aff7249930f16c2c5d06907c91589e6274aac6c1d667e2a33fd771bc8f
                                        
                                            GET /s/ptsans/v10/jizaRExUiTo99u79D0aEww.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=PT+Sans:700,400&subset=latin,cyrillic
Origin: http://dwarlegends.ml

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 77512
Date: Fri, 19 Apr 2019 15:23:54 GMT
Expires: Sat, 18 Apr 2020 15:23:54 GMT
Last-Modified: Tue, 19 Feb 2019 22:38:20 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1873263
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   77512
Md5:    3a9cab958336447e397ee6165f9f8597
Sha1:   3efd9e01c3f19fdd9646eba7dc358c4b8e19ca3a
Sha256: ab6ba1a4585ea483e47b47f9c1ba787195b78c0bd08860e1d6ef844565e924fd
                                        
                                            GET /s/ptsans/v10/jizfRExUiTo99u79B_mh0OqtKw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=PT+Sans:700,400&subset=latin,cyrillic
Origin: http://dwarlegends.ml

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 81780
Date: Fri, 19 Apr 2019 15:32:53 GMT
Expires: Sat, 18 Apr 2020 15:32:53 GMT
Last-Modified: Tue, 19 Feb 2019 22:38:29 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1872724
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   81780
Md5:    4570850e0d1ef0a3dd804e437e378795
Sha1:   a74dc2a012e26d196ce3f9e6aad22ed8080b372a
Sha256: 5c3c6398aab70e6baac3ef2e8b193b9e8087ebc3cb75fe5425f2882db84a92da