Overview

URL alphasisnotgay.ga/
IP188.209.49.72
ASNAS60033 BlazingFast LLC
Location Netherlands
Report completed2019-06-10 22:32:11 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-06-10 22:31:38 CEST 2 Client IP  Internal IP ET INFO DNS Query for Suspicious .ga Domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 7 reports on IP: 188.209.49.72

Date UQ / IDS / BL URL IP
2019-06-10 00:44:27 +0200
0 - 0 - 17 sexoamadorbrasil.com.br/ 188.209.49.72
2019-06-07 01:27:13 +0200
0 - 0 - 3 skinspotty.com/ 188.209.49.72
2019-06-03 00:57:43 +0200
0 - 10 - 0 interviewnaija.com/ 188.209.49.72
2019-05-17 16:59:17 +0200
0 - 4 - 0 cloudlayar.pw/ 188.209.49.72
2018-06-11 18:18:17 +0200
0 - 0 - 1 super.ideia3d.com.br/ 188.209.49.72
2017-12-27 20:38:53 +0100
0 - 0 - 1 super.ideia3d.com.br/ 188.209.49.72
2017-11-17 07:02:48 +0100
0 - 0 - 1 super.ideia3d.com.br/ 188.209.49.72

Last 10 reports on ASN: AS60033 BlazingFast LLC

Date UQ / IDS / BL URL IP
2019-06-30 18:51:31 +0200
0 - 0 - 0 pamz0x.xyz 185.11.145.5
2019-06-25 21:41:21 +0200
0 - 0 - 1 share.dmca.gripe/QpS0NEPTye4yXe2B.htm 185.62.189.68
2019-06-25 15:19:37 +0200
0 - 1 - 1 https://share.dmca.gripe/iOhPKMxr5CrKES9J.htm 185.62.189.68
2019-06-20 02:37:24 +0200
0 - 0 - 0 verifiedcarder.ws 185.61.137.107
2019-06-17 12:04:00 +0200
0 - 0 - 0 https://secnoti393kd.host/e1KZVxlLvnggrandee8 (...) 185.61.138.17
2019-06-12 18:01:43 +0200
0 - 0 - 0 https://notimaer.club/eGA5QyPCPolisaemekaBfd8 (...) 185.61.138.166
2019-06-10 17:46:31 +0200
0 - 1 - 0 patch-exodius2.org/DF_new_Patcher/admin/DarkF (...) 188.209.52.51
2019-06-10 12:16:18 +0200
0 - 0 - 1 ms-support-htmt0.xyz/facebook/Shwq0 188.209.49.158
2019-06-10 12:07:48 +0200
0 - 0 - 1 ms-support-htqi5.xyz/facebook/TPxms 188.209.49.158
2019-06-10 08:31:12 +0200
0 - 0 - 0 https://epu8733.site/8fQrvgAiRolorogunYYyKBGh (...) 185.61.138.196

No other reports on domain: alphasisnotgay.ga



JavaScript

Executed Scripts (1)


Executed Evals (1)

#1 JavaScript::Eval (size: 323, repeated: 1) - SHA256: f6fe9de3f421599c692dbb74fdbab89f1fe6a4df0c5e05ee4793adedbd373a3c

                                        function challenge_f() {
    document.cookie = 'CLOUDLAYAR_ANTIDDOS             =08f2cef2b7683b89caf4de11173f16336b013dd4; max-age=600 ; path=/';
    window.location.reload()
};

function challenge() {
    document.cookie = 'CLOUDLAYAR_ANTIDDOS             =fb5dfca0a3d5f2998a72893a040b5dcbf7feed27; max-age=600 ; path=/';
    window.location.reload()
}
                                    

Executed Writes (0)



HTTP Transactions (11)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: alphasisnotgay.ga
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.209.49.72
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 10 Jun 2019 20:21:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, no-store, public
Pragma: public
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   679
Md5:    131e8027bc6769c5a9a1d37d1b951c08
Sha1:   a523d6989f6506551c4080fa1949551a19cc2396
Sha256: 8e1bdc23a85a1d169dbc1527722219c3b4657ba017087266aee795099063238d
                                        
                                            GET /big-badge.png HTTP/1.1 
Host: cloudlayar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://alphasisnotgay.ga/

                                         
                                         104.18.47.209
HTTP/1.1 301 Moved Permanently
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 10 Jun 2019 21:31:39 GMT
Location: https://cloudlayar.com/big-badge.png
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4e4e1c2d8ed38677-ARN


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Accept-Ranges: bytes
Last-Modified: Wed, 05 Jun 2019 06:08:12 GMT
Server: Apache
Etag: 49A2B7086E8D7CB28B160FF164CF22C3FBB16966
Cache-Control: max-age=388688,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp4
X-HW: 1560198699.cds055.sk1.h2,1560198699.cds047.sk1.c
Connection: keep-alive
Content-Length: 279


--- Additional Info ---
Magic:  data
Size:   279
Md5:    466ade3c5022ed392465be3d88eca8a4
Sha1:   49a2b7086e8d7cb28b160ff164cf22c3fbb16966
Sha256: 2f6734721cf66e037622acefee9e6663b5964d52cf5cf800b837c855310fd185
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 06 Jun 2019 12:14:19 GMT
Server: Apache
Etag: F98FE69419F0A042D5003F1E135682AE94B95FA1
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp10
X-HW: 1560198699.cds055.sk1.h2,1560198699.cds045.sk1.c
Connection: keep-alive
Content-Length: 313


--- Additional Info ---
Magic:  data
Size:   313
Md5:    ef49b142e9b2c6905cd0495ba0fe5d76
Sha1:   f98fe69419f0a042d5003f1e135682ae94b95fa1
Sha256: 2c7e10da3b73ba32e56bf43de9d56af0b2c47b7b4fbcb21d624b811561a3adbf
                                        
                                            GET /big-badge.png HTTP/1.1 
Host: cloudlayar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://alphasisnotgay.ga/

                                         
                                         104.18.47.209
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Content-Length: 1635
Connection: keep-alive
Set-Cookie: __cfduid=df6a22ea4f286983c7527ac9d4d34c8701560198699; expires=Tue, 09-Jun-20 20:31:39 GMT; path=/; domain=.cloudlayar.com; HttpOnly
Last-Modified: Wed, 14 Nov 2018 20:45:34 GMT
Etag: "5bec896e-663"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Expires: Tue, 11 Jun 2019 00:31:39 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4e4e1c30bcb67628-ARN


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGBA, non-interlaced
Size:   1635
Md5:    d27fa785c9208ecbe9973b36579de450
Sha1:   32b8b03ee48725ebabda587c888b5e4902d7a22c
Sha256: dc55d7b3d35fa7f470e56fced154d9348c97632e9629c8f3e0b443123490526c
                                        
                                            GET / HTTP/1.1 
Host: alphasisnotgay.ga
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: CLOUDLAYAR_ANTIDDOS=fb5dfca0a3d5f2998a72893a040b5dcbf7feed27
Cache-Control: max-age=0

                                         
                                         188.209.49.72
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 10 Jun 2019 20:21:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: public
Cache-Control: public
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1253
Md5:    7f3e71d170c3d13cab90efdd71bfb10c
Sha1:   7a3af2655b3593c1655059c16f13f9f7bb5c7777
Sha256: 3225037f2483c3d788eb63e6efcdf3c1191965f0916451a58258e4091004d274
                                        
                                            GET /big-badge.png HTTP/1.1 
Host: cloudlayar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://alphasisnotgay.ga/
Cookie: __cfduid=df6a22ea4f286983c7527ac9d4d34c8701560198699
Cache-Control: max-age=0

                                         
                                         104.18.47.209
HTTP/1.1 301 Moved Permanently
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 10 Jun 2019 21:31:39 GMT
Location: https://cloudlayar.com/big-badge.png
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4e4e1c31dade8677-ARN


--- Additional Info ---
                                        
                                            GET /big-badge.png HTTP/1.1 
Host: cloudlayar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://alphasisnotgay.ga/
Cookie: __cfduid=df6a22ea4f286983c7527ac9d4d34c8701560198699
If-Modified-Since: Wed, 14 Nov 2018 20:45:34 GMT
If-None-Match: "5bec896e-663"
Cache-Control: max-age=0

                                         
                                         104.18.47.209
HTTP/1.1 304 Not Modified
                                        
Date: Mon, 10 Jun 2019 20:31:39 GMT
Connection: keep-alive
Last-Modified: Wed, 14 Nov 2018 20:45:34 GMT
Etag: "5bec896e-663"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Expires: Tue, 11 Jun 2019 00:31:39 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4e4e1c326e207628-ARN


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: alphasisnotgay.ga
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: CLOUDLAYAR_ANTIDDOS=fb5dfca0a3d5f2998a72893a040b5dcbf7feed27

                                         
                                         188.209.49.72
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Mon, 10 Jun 2019 20:22:02 GMT
Content-Length: 292
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   292
Md5:    6c32f96b5dd77ca36968e77049206e3d
Sha1:   f1e969f595f220c2eadf803388869abb5d968d4f
Sha256: c5381b41991a3092ceacb839943ddd78db8c116d572178079fec0f914d4ec5a1
                                        
                                            GET /favicon.png HTTP/1.1 
Host: qlsite.pro
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /favicon.png HTTP/1.1 
Host: qlsite.pro
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---