| | 104.18.114.38 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/3IP104.18.114.38:443
CertificateIssuerGoogle Trust Services LLC Subjectgymahsark.shop Fingerprint6E:BA:EE:76:18:CE:AE:99:CA:19:6D:48:C7:CE:53:CA:FB:14:01:E1 ValidityWed, 06 Mar 2024 07:55:44 GMT - Tue, 04 Jun 2024 07:55:43 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gymahsark.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 25 Apr 2024 16:58:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 25 Apr 2024 17:58:20 GMT
Location: https://gymahsark.shop/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1dvVa8vhXPinbca3Q%2Bev6RrDTkM8el4rQdUsVRcLHPwL6j698kk9XBK4NmabWYOLhU92YmFO4eAG9WVw9Z9XODk9wLAspAnVwd%2BdkM0qtkqxVVGW0Jkxip5EbQAj72hT1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879fe095af33712f-OSL
alt-svc: h2=":443"; ma=60
|
|
| | 104.18.114.38 | 301 Moved Permanently | 7.7 kB |
URL User Request GET HTTP/3IP104.18.114.38:443
CertificateIssuerGoogle Trust Services LLC Subjectgymahsark.shop Fingerprint6E:BA:EE:76:18:CE:AE:99:CA:19:6D:48:C7:CE:53:CA:FB:14:01:E1 ValidityWed, 06 Mar 2024 07:55:44 GMT - Tue, 04 Jun 2024 07:55:43 GMT
Hash29666fd6c2f1f9e0b70983b0164adb93 3e370435db4531a2bf3e5dd8ab99c7eb08d6b6f7 09398a069615d4b57b761ec2819844badd1f3de6371d8b0a7aaed3b648e8cb1a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gymahsark.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Thu, 25 Apr 2024 16:58:19 GMT
content-type: text/html
location: https://gymahsark.shop/
cache-control: max-age=3600
expires: Thu, 25 Apr 2024 17:58:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aEhVJG6R%2FNw0kaI0qjZzsKTcXQYY3LEhzGNDs2%2FGIGDpOLu8mvRI0J4iUp6PXDnSj79gvYcZ7EhYwqexk0hhqmeBhhNxhnQ99fhAm1jKO82l4ViMfDP1%2FFhnwoka%2BI7ajg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fe0910d8b56cc-OSL
|
|
| | 104.18.114.38 | 301 Moved Permanently | 9.6 kB |
URL User Request GET HTTP/3IP104.18.114.38:443
CertificateIssuerGoogle Trust Services LLC Subjectgymahsark.shop Fingerprint6E:BA:EE:76:18:CE:AE:99:CA:19:6D:48:C7:CE:53:CA:FB:14:01:E1 ValidityWed, 06 Mar 2024 07:55:44 GMT - Tue, 04 Jun 2024 07:55:43 GMT
Hash7407bea7741db94a8758fdbe6f2b11e1 ec155e647724d074e88abda40db93a8617256a20 b54bc762af1ada7bfab81594a3b5d8b4400cffc43be7776c04f68e2623042446
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gymahsark.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Thu, 25 Apr 2024 16:58:19 GMT
content-type: text/html
location: https://gymahsark.shop/
cache-control: max-age=3600
expires: Thu, 25 Apr 2024 17:58:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jry4IpS5eLuiwxWcNV6tmDK4InNEzgTJL62NHPXtd%2FDDkCwR3Br9VRkl9FYzuHBNPMlNZdBfRPnCpZffZmxmgUoRUhHK7BFfsHjAGiBh2nE2pHUUjlwT3F4xRiLwBBdYxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fe0918dee56cc-OSL
|
|
| | 104.18.114.38 | 301 Moved Permanently | 10 kB |
URL User Request GET HTTP/3IP104.18.114.38:443
CertificateIssuerGoogle Trust Services LLC Subjectgymahsark.shop Fingerprint6E:BA:EE:76:18:CE:AE:99:CA:19:6D:48:C7:CE:53:CA:FB:14:01:E1 ValidityWed, 06 Mar 2024 07:55:44 GMT - Tue, 04 Jun 2024 07:55:43 GMT
Hash2a5d64b4cea99c96a5168e83a41aa4c2 a55b5f9335ade32fc290fadceac283d7f54390b2 40b692a2e5fba46dcf82ca0a79022823249aafc7211e495e592e672ab049b8e4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gymahsark.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Thu, 25 Apr 2024 16:58:19 GMT
content-type: text/html
location: https://gymahsark.shop/
cache-control: max-age=3600
expires: Thu, 25 Apr 2024 17:58:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PZ1u7l1QV0bNQr8ED83LOAaeqA3WMBd5lUgVNyEjHvpi%2FY7J1uj8udasVYF%2B3WJ9N45d48I9UAJsy5RW1b6aflCIpG2HpjOe1%2BAOEbKu0i6zMCrUXUWkwgitxE0FpHL%2Fwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fe0916dd456cc-OSL
|
|
| | 104.18.114.38 | 301 Moved Permanently | 5.1 kB |
URL User Request GET HTTP/3IP104.18.114.38:443
CertificateIssuerGoogle Trust Services LLC Subjectgymahsark.shop Fingerprint6E:BA:EE:76:18:CE:AE:99:CA:19:6D:48:C7:CE:53:CA:FB:14:01:E1 ValidityWed, 06 Mar 2024 07:55:44 GMT - Tue, 04 Jun 2024 07:55:43 GMT
Hash94ee03e29aaee020249f65f65505494c 95602123ca6c326f0ce584ac39d28c15367da1d4 b83d7bd97d6a62ca0baad8ea9be2a1c3f7b45b7f668b98c8ef335200561744b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gymahsark.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Thu, 25 Apr 2024 16:58:20 GMT
content-type: text/html
location: https://gymahsark.shop/
cache-control: max-age=3600
expires: Thu, 25 Apr 2024 17:58:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QiHnMkT5tSFWEMFjj8zmnrvpHqTmS9PGpfcjclOEJfClsFY8Bsq4xRKXpP%2FODj1oXqqxfo0wqanvUMsz0ZelWueLZ1Y03hDHFwRwfiExGUXBKYbIWHt0nAZvh5JT2mj9EA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fe095ca5256cc-OSL
|
|