Report - www.stumpclash.com/

Report Overview

Visited public
2025-03-14 09:08:23
Tags
URL
www.stumpclash.com/
Finishing URL
stumpclash.com/
IP / ASN
172.67.209.15
#13335 CLOUDFLARENET
Title
Fantasy Skill Challenge - Ultimate Fantasy Football Experience

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stumpclash.com	unknown	2025-02-27	2025-03-14	2025-03-14	14 kB	1.8 MB	188.114.96.1
www.stumpclash.com	unknown	2025-02-27	2025-03-14	2025-03-14	487 B	25 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed
2025-03-14	medium	stumpclash.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	stumpclash.com/js/main.js	ScriptElement	7.7 kB	2025-03-14	2025-03-14
Pretty URL stumpclash.com/js/main.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-14 09:08 Last Seen2025-03-14 09:08 Times Seen1 Hash 5d4c8307b6cfdcb1054ee391eb592d61 a1c396cd200677972328cca0548402ae852261ac d3cc7f73a5a05405f059e8471ac185aa702a4153707d5c46a714bbda0eb18485 Loading...

HTTP Transactions (33)

URL IP Response Size

stumpclash.com/images/adv5.svg

188.114.96.1

200 OK

3.6 kB

URL GET
stumpclash.com/images/adv5.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
3.6 kB (3604 bytes)
Hash
814d0f20e0fff3bfbc35f170d71f172f
c89e5cfd6bfb32a30eef00a36b7a64ceda407e68
59573e307919a60f8c9bdfc567bea2925278b74a17b032b7f0ea88889d2879f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv5.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-e14"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AhVw%2BxLyhuG0ccFZLvlXoxZ4Dxtfs3ZU6JWlVCYrEz0YBNBUPw2kDB%2B91XB84pHmzaRL3zqBxzlQ0jqKBUrOrPL4cE0x7KhssC%2FabIARcvVLvL23u8ZG1953jl%2BdHT5FBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74a9db51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3111&min_rtt=1318&rtt_var=1844&sent=112&recv=28&lost=0&retrans=0&sent_bytes=107533&recv_bytes=8096&delivery_rate=4899322&cwnd=48000&unsent_bytes=0&cid=f048511c5285581c&ts=926&x=1", cfExtPri, cfHdrFlush;dur=28

stumpclash.com/images/gamecare.webp

188.114.96.1

200 OK

1.2 kB

URL GET
stumpclash.com/images/gamecare.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.2 kB (1194 bytes)
Hash
794587a9937077b9fd5246b3ff76f3e0
701ebf30072ef7ff0c4d241e127367f75944ac1c
55e8811a2897b112c1726412fc47ff4da4917d0c597de023a944020e9553b08d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/gamecare.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 1194
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-4aa"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wy9wD0hQ4pbjY0BMzmHFdEz5OFcxQT0wMvPSpZTJlcncUxvk4RPJg8gbN6vdy%2B7TgzE4BmvEoRIo3BPD8%2BZF8%2FJpzBC0YiLPdFF4uY0BnkzRu3DIHfuA3UOKWL6ypUMWZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74abcb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=965&x=1", cfExtPri, cfHdrFlush;dur=36

stumpclash.com/favicon.ico

188.114.96.1

200 OK

2.6 kB

URL GET
stumpclash.com/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
PNG image data, 133 x 133, 8-bit/color RGBA, non-interlaced
Size
2.6 kB (2646 bytes)
Hash
be239a6dff3310669fc8ddb46572a7b5
522845705fc7bb1d5fd7a63fc6e9508d68e1694e
7b7a4eeea216d5b6b65da144e159708530a06debf40af6d5643addefda34b070

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: image/x-icon
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-a56"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VkZPL4hKu9iihEgOZqdfR4TNyZSJi%2FMxCLcN3rzaKW%2FRoZ2wiLPtzokyRZzKD3fIfONeycin6YE6D6OuAX54CXzvHnmvA51YPzs33FlBou8UMbX%2BdblZ%2FGwFom4n1df%2BHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fcbfc56b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5789&min_rtt=1318&rtt_var=4268&sent=1561&recv=51&lost=40&retrans=41&sent_bytes=1814967&recv_bytes=10837&delivery_rate=4043846&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1612&x=1", cfExtPri, cfHdrFlush;dur=0

www.stumpclash.com/

188.114.96.1

301 Moved Permanently

24 kB

URL User Request GET
www.stumpclash.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type

Size
24 kB (24538 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Fri, 14 Mar 2025 09:08:00 GMT
content-type: text/html
content-length: 167
location: https://stumpclash.com/
cache-control: max-age=3600
expires: Fri, 14 Mar 2025 10:08:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zwiJ6uKpv2PSt2RbL7TauCX0ghrmyYqNj1zCvxZIuFLKd6a4%2F7DNqniw43UwBqG043g6%2Ff7W4oD%2FQZKOg%2BdiDiluSfCgsEY%2BZsDtyXcY%2BNeFCiIJ4y%2BTRsenTW3CFXvdbSmpIQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc1de5c0b31-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=635&min_rtt=578&rtt_var=162&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3282&recv_bytes=1258&delivery_rate=5862348&cwnd=253&unsent_bytes=0&cid=2132fe5a52cbf9eb&ts=39&x=0"
X-Firefox-Spdy: h2

stumpclash.com/images/adv4.svg

188.114.96.1

200 OK

2.3 kB

URL GET
stumpclash.com/images/adv4.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
2.3 kB (2271 bytes)
Hash
ec35c4edb8ffe9eec9fbe36864a6498c
321558a25e178f49fcad57cb97113912bdee11cc
830060886bb155527b61eaf87becceb808f8cb1ab97604b65780310deefac923

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv4.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-8df"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFXMBXLCvRYVF1y92f2pjPZSWouoj4z7Sb42F8YZbdOSB5hYxHWivbI3LdzGmIJyXE5FnALIR9k%2FDdgJgoKypoZTMdaV%2FeZYZRzvrezsAoJjs38O48W0eMsN2iXcjM3jmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc72a6fb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3508&min_rtt=1318&rtt_var=2091&sent=48&recv=26&lost=0&retrans=0&sent_bytes=33533&recv_bytes=8008&delivery_rate=1664844&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=899&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/logo.svg

188.114.96.1

200 OK

54 kB

URL GET
stumpclash.com/images/logo.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
54 kB (53512 bytes)
Hash
64c95781f7e8fc8c729f75078c8e4047
f4e213137c5a1cacb07fc495b271edd895644c48
992ef16b6cb65d1b3c7d1019ec0106ca5ee46991acbcdd67aa1ebbdefb1c2a53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/logo.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: W/"67c9e800-d108"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ak1pO0KGu0xFRxEl8JwbMJ70piXKGiK9CF33fUyDNkCd16%2FuWZopbEiWnKefNYx8oBRh00sq9l4CXb%2BvfhA629zuS5UJGj5UKZJQcU8W1Tsd91et9FhQCvUH9dpz2zglSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc709feb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3257&min_rtt=1318&rtt_var=2070&sent=50&recv=27&lost=0&retrans=0&sent_bytes=35533&recv_bytes=8051&delivery_rate=1333675&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=920&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/adv2.svg

188.114.96.1

200 OK

4.5 kB

URL GET
stumpclash.com/images/adv2.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
4.5 kB (4525 bytes)
Hash
aef97b7635dba73a3f528403567b5c68
958b4a7638fed33fcc147a2bb22fdb1123687c95
6ca7ab5f8fb5a5dff868bff791c1e5ad73b49aa34593b02ed9fe62f7d829f40b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv2.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-11ad"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bixfn08%2BEmiFqkRtCD2kQ5LB02VfRk1uQ0fndLFLL3%2BfHPw9pvowJGj6xDzJOwSIsZAvIEBXk4p9epW4EMjmCSQVw9EMzI58bB4cgdniHd6vN2y6AM0aWejVA1cvuCQwDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc72a5cb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3741&min_rtt=1318&rtt_var=2167&sent=45&recv=25&lost=0&retrans=0&sent_bytes=30404&recv_bytes=7964&delivery_rate=2958012&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=876&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/fonts/Tinos-Bold.woff2

188.114.96.1

200 OK

149 kB

URL GET
stumpclash.com/fonts/Tinos-Bold.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 148980, version 1.0
Size
149 kB (148980 bytes)
Hash
7e41aaaf4793be20aa932aedc6db990b
9f1eb691351f182e00d59541bcd7f12b1900ba79
2a20dc0066ab8779c43a6430c29fed9ef389c50abbe1c36e75d7b173c6cb506f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Tinos-Bold.woff2 HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: font/woff2
content-length: 148980
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-245f4"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3Jvz4KJzq52BMSmzwAG7aT5epM82yhtnRfm8MBsjsl6%2BZaNAUjVeOhC2s6v0ZI6OrQMVzmHsELNulwz3M7zzbDCY8e2F%2B0kzi2UczrUXR46g3LTnC5jBAUq%2BxRz0i0vNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc90e5db51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4331&min_rtt=1318&rtt_var=3233&sent=1339&recv=47&lost=40&retrans=41&sent_bytes=1551134&recv_bytes=10420&delivery_rate=4355828&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1235&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/hero01.webp

188.114.96.1

200 OK

90 kB

URL GET
stumpclash.com/images/hero01.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
90 kB (89686 bytes)
Hash
7e45f1368ad6d594906e67549e8c9099
4b07ceb756f51666aa22d72ede61f2bb23bf325d
1788ee4e08691580c3f76788d13947943132d6fa9211cf8c8a54bcbf9d0af250

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hero01.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 89686
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-15e56"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XxArIG0OoHLX84LZ287Ez4B6vmDPRyuXicfubVykgIRqou38g0EiDKKgW6q2rlxbb2oLnbDWuet35dWe3%2BJoNZyKZA20H3KjgsOwpoPWkJcqc4U3hW1W%2FHYwClX7ausmEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc70a0fb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3257&min_rtt=1318&rtt_var=2070&sent=70&recv=27&lost=0&retrans=0&sent_bytes=59533&recv_bytes=8051&delivery_rate=1333675&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=924&x=1", cfExtPri, cfHdrFlush;dur=1

stumpclash.com/images/contest2.webp

188.114.96.1

200 OK

124 kB

URL GET
stumpclash.com/images/contest2.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
124 kB (123470 bytes)
Hash
4a563ae5fbf0282d8b7941f68bdf8dea
80018f1ec0294869a621fd329e8d8d04f42cce05
8171136e9a93f5efaac45ee55ec24c162cb328c322365ffbdf63c90be4bd096a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/contest2.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: image/webp
content-length: 123470
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-1e24e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i296bRxgmq4vOb3kIotPsyx53hJ9etk4M8JkxI0D09DHCqtLYud49RG1%2FxlZ%2BdyvHBsKkXKMCN%2Brj3vosXpYzbVPw%2BG0zoI2iDLXMwhcmr6nZcUvVD%2FYQ1vwbRjtmgAexA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aa7b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4929&min_rtt=1318&rtt_var=2950&sent=684&recv=32&lost=0&retrans=0&sent_bytes=780133&recv_bytes=8280&delivery_rate=8588670&cwnd=318600&unsent_bytes=0&cid=f048511c5285581c&ts=1036&x=1", cfExtPri, cfHdrFlush;dur=10

stumpclash.com/images/contest1.webp

188.114.96.1

200 OK

80 kB

URL GET
stumpclash.com/images/contest1.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
80 kB (80092 bytes)
Hash
451c5e3b7b2988dceb266026079eefec
53bc8318a9d6e599ca95876151eb2ad97d775daf
6aa7af12b678ee66f68179b36137aab75754f55c374a1fe31d87b19886a232a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/contest1.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 80092
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-138dc"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=khaXyCwRLET3YEn2Qz73myZkDGnLslv6yj7aksstDMjgvl3QNbQ7dtEASgPXAiUgGW5Zss8%2FUYJfyhhkkBxIYdsi2g58bTdpPcVkgt%2FcqvRfMD9%2FmSn1YERt6AlG%2BooQvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aa4b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=967&x=1", cfExtPri, cfHdrFlush;dur=11

stumpclash.com/images/team1.webp

188.114.96.1

200 OK

40 kB

URL GET
stumpclash.com/images/team1.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1152x896, Scaling: [none]x[none], YUV color, decoders should clamp
Size
40 kB (40410 bytes)
Hash
d57c5d9cc8bf7ccc56c980649c77c3bb
c76496c389ac0f3cf78d61419e378146113a736e
07a043a376e42e6885860e48c38f95aa3c39a757e7ae1cc0e7b9084ac3d67159

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/team1.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 40410
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-9dda"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dL29KzwF%2FBnpyzdno8DKX79b%2BUShkxUyIyfYcMiwUWT3WqcEek%2BYwStYk2hqsd3zup9PXTke9G8T%2BxtwWCvITcidQpTSPn41M9X95%2Bf8OnNzkROV4hf7c0GZ5EDN3O1HOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74ab6b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5095&min_rtt=1318&rtt_var=3491&sent=413&recv=31&lost=0&retrans=0&sent_bytes=461533&recv_bytes=8234&delivery_rate=5026971&cwnd=162600&unsent_bytes=0&cid=f048511c5285581c&ts=999&x=1", cfExtPri, cfHdrFlush;dur=2

stumpclash.com/images/adv1.svg

188.114.96.1

200 OK

7.9 kB

URL GET
stumpclash.com/images/adv1.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
7.9 kB (7880 bytes)
Hash
58f98ceb80c5427fba5d7f3aee811cae
ea953b61fa0dfd70d5b1f1fa16811ff2d8225f96
5ea62cfeee72fa8449db7070f7e32935e581d845e5763ac11d80d6aa71d19756

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv1.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-1ec8"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uC7PahDyho8QKFhlMIuezUEve4xh5a2Qnr0jJaesuoe48YuM9SdLyzt%2BS2C%2FAawzTzBenySiT0W%2FVrxXmmI5%2FSXwo%2FutQi2B9%2F8rvaFfiUmGckIPER0hX9npeUKVQfw17A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc71a49b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4044&min_rtt=1318&rtt_var=2080&sent=41&recv=24&lost=0&retrans=0&sent_bytes=25623&recv_bytes=7921&delivery_rate=2079238&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=873&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/user3.webp

188.114.96.1

200 OK

61 kB

URL GET
stumpclash.com/images/user3.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
61 kB (61082 bytes)
Hash
252093a71bcd92d73d986416e051c312
7ccca446a59982bb1c42e16e083125d64e98c0bb
1c48a8e00725b8a67320b15995391d9cb6881d010d5cff3b63dc08354bb403c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user3.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 61082
last-modified: Thu, 06 Mar 2025 18:22:58 GMT
etag: "67c9e802-ee9a"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zdjpHr2dLIbsfufDozKGn9mtxK6HtyLQlp4qy%2BtJ%2FUQ4aZS9X8dvU%2Beu1UYC58cytJA%2BZn9%2FT8NnpCflBIloLaaAkkBWqNFhw3vwybofu0j8MaMX3GGpYE8Q%2B2ILHELVLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aadb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3257&min_rtt=1318&rtt_var=2070&sent=70&recv=27&lost=0&retrans=0&sent_bytes=59533&recv_bytes=8051&delivery_rate=1333675&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=925&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/team3.webp

188.114.96.1

200 OK

47 kB

URL GET
stumpclash.com/images/team3.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1152x896, Scaling: [none]x[none], YUV color, decoders should clamp
Size
47 kB (46930 bytes)
Hash
80811552542b03db449664abee3a962a
3b62de0878e77a268387c26bfb1a62194588c1ba
0f96db5e02bf50c23d112d9f8c011c9323a79c8c32f41c83c72fd22f446303f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/team3.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 46930
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-b752"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uJZvNmN%2FgO0NMK4O5jdEna9XyaGxTsb2VseZCYyrlDEHwLx%2F3QzbnHD%2F09%2F082qvRoTRXWkTNkoQ%2FsJbbV2pmUa5jK6EhIelHklNamGLuq1jYqoakWiM02X6DGT5SJ66VQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74abab51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=956&x=1", cfExtPri, cfHdrFlush;dur=45

stumpclash.com/fonts/OpenSans-Bold.woff2

188.114.96.1

200 OK

58 kB

URL GET
stumpclash.com/fonts/OpenSans-Bold.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 58152, version 1.0
Size
58 kB (58152 bytes)
Hash
0435cb58fe7658b691e1e4ef07b538ec
3dc9cbbab4ce2821b3ca8c3ffb8768f4875d9329
94b08a69b4f489599c09185046d5cafdb824987d318e75078f58dabc6915dd92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/OpenSans-Bold.woff2 HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: font/woff2
content-length: 58152
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-e328"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ysoHgbgKCVhn3HmLYCLpuRmxp0Fe86phhqcP1QWlo7iUW0EqOrp67kek%2BTSxwqAgdQX0gV7aRumKiKyP1YJm3uOiVCCw4b%2FmuAttj1%2FoOWcj5RxKERkyZ0s9I6srb%2F7%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc92e7eb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4610&min_rtt=1318&rtt_var=3565&sent=1230&recv=46&lost=40&retrans=41&sent_bytes=1421770&recv_bytes=10374&delivery_rate=10055541&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1218&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/team2.webp

188.114.96.1

200 OK

34 kB

URL GET
stumpclash.com/images/team2.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1152x896, Scaling: [none]x[none], YUV color, decoders should clamp
Size
34 kB (33918 bytes)
Hash
7b8f1afb68ad7a6da59e662d0bb5b6db
c3cc4c78aee98e5eeaf44a094cf95c0c75ca5c5f
232fde02ba98ccd1b9c5adb18d12d0f74f93da1789f0fd3ce4ba5cc37b15c137

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/team2.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 33918
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-847e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=92NXfTkM4qNmx1%2BpEToxZWiNfc6NiXxriFSB6QNji3IGIEH1h%2BGbTZCA860liAis%2FdDs9LwGkS0wYVO%2Bfw5oP8HmGHObawJ6JccF8cNUemsbsVuKgI7wgGfKTZT9Ufx5EA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74ab8b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3111&min_rtt=1318&rtt_var=1844&sent=112&recv=28&lost=0&retrans=0&sent_bytes=107533&recv_bytes=8096&delivery_rate=4899322&cwnd=48000&unsent_bytes=0&cid=f048511c5285581c&ts=932&x=1", cfExtPri, cfHdrFlush;dur=69

stumpclash.com/js/main.js

188.114.96.1

200 OK

7.7 kB

URL GET
stumpclash.com/js/main.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
ASCII text, with very long lines (8424), with no line terminators
Size
7.7 kB (7709 bytes)
Hash
b6bbfce530df4558ac3fc4c436cb4075
b39789b4b70b6a05abe05ba1fffa4d72b5039083
57b6ec2a01334da0287309311fd57e5949226ebe6102305d516aca1ee9ffd722

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main.js HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Mar 2025 08:21:10 GMT
etag: W/"67caac76-1e1d"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZkL8ywfIojpvNhqtYNxQZdYTFA6E2Z1jNwU9XZDAppWdE7XY5iClugUSSe2g3WR0O39QF0Yp2%2FTi8xFP77TYZlHOVoAqxbaHiQfqF6kvsbKzVxQ5P4LhutHyunH6isuVXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74abeb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=962&x=1", cfExtPri, cfHdrFlush;dur=39

stumpclash.com/fonts/OpenSans-Regular.woff2

188.114.96.1

200 OK

60 kB

URL GET
stumpclash.com/fonts/OpenSans-Regular.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 60132, version 1.0
Size
60 kB (60132 bytes)
Hash
0f7f0793bf4ec5cfca6cb63105a7e1fe
4ec9f258d32712fafcfe81ea9ba49af2e0f71bd5
3a8eec7f40ed3ce27ece2e535eb218c707115e6bd6fdc2d95c4098c66dd8b59c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/OpenSans-Regular.woff2 HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: font/woff2
content-length: 60132
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-eae4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oHR7CHWTceNcpe8GCs0yTUyWf%2BHu2%2BGYmVJZQBLUsEVKsQ2VmXLvMiNQ%2BH6945e1%2B4ShKMCKogMSWvosBir06nnSyXG79%2FIsFoVDaaY%2FoTDQ4V85Dg%2Fyt2iPZheGBmjHOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc8bdb1b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5093&min_rtt=1318&rtt_var=4994&sent=1154&recv=43&lost=40&retrans=41&sent_bytes=1330718&recv_bytes=10238&delivery_rate=210346&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1202&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/user2.webp

188.114.96.1

200 OK

77 kB

URL GET
stumpclash.com/images/user2.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
77 kB (76934 bytes)
Hash
952300b4688b07317cfd0ff8b81ba8bb
3e429da1c93c85e5455517e3402a3fedb1fb10f8
a91e5080ebab81317ae58242ad9ed784d6f67e32661e7c9938be15b8e0ed165b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user2.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 76934
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-12c86"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ilno2HkOEJp4LBqrcuwgCtdHP2vzamA8e6PxCJvevHnnLDdVHK%2FxGvrj7bXs7y3Ug0%2BOAgqz0hgb0wv0e0RNNgbt%2FrTMHVyzhC98NCf0PGuU14e8e5BefkpxPLMc7TwF4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aabb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3111&min_rtt=1318&rtt_var=1844&sent=112&recv=28&lost=0&retrans=0&sent_bytes=107533&recv_bytes=8096&delivery_rate=4899322&cwnd=48000&unsent_bytes=0&cid=f048511c5285581c&ts=929&x=1", cfExtPri, cfHdrFlush;dur=25

stumpclash.com/images/user6.webp

188.114.96.1

200 OK

77 kB

URL GET
stumpclash.com/images/user6.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
77 kB (76562 bytes)
Hash
cc16ea2aac3d29a11fcd7f2cd13d48f3
8dc46ecac3c38f16fa8a099a3ccbad9a96d8edbf
b131abf53ea54cc594840fcd971e0624818dc30a02efbabcb9f818fc3973e262

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user6.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 76562
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-12b12"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8GthSmy%2Frq0aGQ274FzYkF%2FmrsiAxuVJufnPkMXNcv8yVsdVYqDtUatBhzdC2Thngh89ZIUMdXSe%2BPkaA5n%2B7AtvAPSdzuQ8652HFUZ2SOhzmcoUgl4fkWoiN3Atv3cxgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74ab3b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=971&x=1", cfExtPri, cfHdrFlush;dur=30

stumpclash.com/fonts/OpenSansCondensed-SemiBold.woff2

188.114.96.1

200 OK

60 kB

URL GET
stumpclash.com/fonts/OpenSansCondensed-SemiBold.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 60388, version 1.0
Size
60 kB (60388 bytes)
Hash
9f3ad6ff0b4ea3953a77d4b238129f7c
175c4edd66bdbf1b7248e006d58a3a5a7facb81c
aa666a384061ea749469ff0fc3d6f7c90f9eda05a8817f510131808a284cc4db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/OpenSansCondensed-SemiBold.woff2 HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: font/woff2
content-length: 60388
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-ebe4"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qbnblYCMV3tThoF1mSnjdXD%2BqGR8tIwgFj9Leuxbq8LrpAD3sXCRDgNr4ljnpAP9U6J4%2Ff6JNXGLTyvnkD31J4D2%2BuQXdORfka1syr3DQHGZGn4Mw4G1%2BgT3Ikschf3Txw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc90e61b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5625&min_rtt=1318&rtt_var=5240&sent=1142&recv=42&lost=40&retrans=41&sent_bytes=1316661&recv_bytes=10192&delivery_rate=3521649&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1180&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/

188.114.96.1

200 OK

24 kB

URL User Request GET
stumpclash.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type

Size
24 kB (24538 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: text/html; charset=UTF-8
last-modified: Fri, 07 Mar 2025 07:12:03 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=la3F8LjaSfQbA%2FJXLx8nxlM63dMqdtJMXWrwpHtYfdbR8qN8Gaim7l45ncI6COWAKUVKMt1z%2Bvq5bVx1WA9D1gYJDI8rn2Y2%2BTxVGdxhYN3QXK26pZXYjUJ3jCLkFN8yKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92029fc2c9d7b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4770&min_rtt=4668&rtt_var=1953&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4102&recv_bytes=1221&delivery_rate=108091&cwnd=12000&unsent_bytes=0&cid=f048511c5285581c&ts=244&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/css/style.css

188.114.96.1

200 OK

61 kB

URL GET
stumpclash.com/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
ASCII text, with very long lines (54983), with CRLF line terminators
Size
61 kB (61427 bytes)
Hash
a710103751295d1b16af0370b14ee641
f8c226d4e353351146dfe6869c368e548247566a
d2339058c21ef1a4f5fab049a7a89d4e9d6956e50e2903592ac560b83d0fc977

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: text/css
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-eff3"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bsXQUV%2Fy8N1omprFToiNQDYpNZQH%2Fa58%2F2KDMiHintlV6m2It8t9Yngz%2Fn9sPMkFurxf4iqpaUw7cgVUootwYgFBTKQpUve5EJIov%2FVktQ5yQpW0A00gnJ5KcY470zdqPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc709f5b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4701&min_rtt=4217&rtt_var=1603&sent=28&recv=22&lost=0&retrans=0&sent_bytes=10882&recv_bytes=7834&delivery_rate=29576&cwnd=12000&unsent_bytes=0&cid=f048511c5285581c&ts=862&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/hero03.webp

188.114.96.1

200 OK

98 kB

URL GET
stumpclash.com/images/hero03.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
98 kB (98132 bytes)
Hash
40b097b202d35ace93f995de52a6dff8
92b05b12f16c5e2c8c9cc39b7ff633b2e50bef3c
c842a8fc610439af84327d625e9f9334e09285af090bf7f2da8a08dc8ca555a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hero03.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 98132
last-modified: Thu, 06 Mar 2025 18:22:54 GMT
etag: "67c9e7fe-17f54"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QhbPbVCcaME8czwkcgjg8IIZN9lFgsot2LTqJt2mYBD2yRFxIq1LGdLLqXg3hOZFKIiLJcdu1dvnJPojyt7sFByV7hVIjXDQGgUnLuqI7bcv92BAJreq8f%2FFcv7UqkDZwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc71a2eb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4932&min_rtt=1318&rtt_var=5026&sent=168&recv=29&lost=0&retrans=0&sent_bytes=173833&recv_bytes=8142&delivery_rate=2295079&cwnd=66300&unsent_bytes=0&cid=f048511c5285581c&ts=949&x=1", cfExtPri, cfHdrFlush;dur=5

stumpclash.com/images/adv6.svg

188.114.96.1

200 OK

3.2 kB

URL GET
stumpclash.com/images/adv6.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
3.2 kB (3175 bytes)
Hash
959de500a9abe41d522b94139424e6e7
d1e762b6f85b52c74f5ea511640e446f0ce0914f
81e2a33c557eb9337a1378289f654ac8b941bb421011d636c8e98db0f9fd906e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv6.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-c67"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EG2yDl2iqYRby8WpJ3qmxxaTdFxgofqWG2LRYw1WVsKoGTPoSG3AZF%2BipA%2F5hW117gGnGdwHbqtct6wSp3ExfzVDR%2FhucBYg%2BRiMOUVefqf2hVU4a1IQqM6NDXFuSFGpnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aa0b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3257&min_rtt=1318&rtt_var=2070&sent=50&recv=27&lost=0&retrans=0&sent_bytes=35533&recv_bytes=8051&delivery_rate=1333675&cwnd=24000&unsent_bytes=0&cid=f048511c5285581c&ts=920&x=1", cfExtPri, cfHdrFlush;dur=5

stumpclash.com/images/hero02.webp

188.114.96.1

200 OK

97 kB

URL GET
stumpclash.com/images/hero02.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
97 kB (97214 bytes)
Hash
fcecbd91521a0c1b470e1a87486805b3
e33c7de0539186b379e78ed1cbe13b4e61863fa2
85114da49edc8212b758eb11aedb34f5c24a0474ca2475833c89deeaffe6e901

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hero02.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 97214
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-17bbe"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2hAFBzD2J9KkEOVJF5IRa7BnQOVbsTmihh0jYZu7iXK50TZyRUn47E9TvtNSBk0htYwrum64CAIGzVjNjqnZNe531STVNRAFS7nviqXu4QqSC%2FMQeoDkN9r41wt1zhR9%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc70a19b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3111&min_rtt=1318&rtt_var=1844&sent=112&recv=28&lost=0&retrans=0&sent_bytes=107533&recv_bytes=8096&delivery_rate=4899322&cwnd=48000&unsent_bytes=0&cid=f048511c5285581c&ts=933&x=1", cfExtPri, cfHdrFlush;dur=13

stumpclash.com/images/user1.webp

188.114.96.1

200 OK

66 kB

URL GET
stumpclash.com/images/user1.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
66 kB (66232 bytes)
Hash
40558d380dfe972773cc88f80304c88a
463f29f85c8003d88ad4ac47fe12b34773cf190b
99a2965e0ca74ae7af0b2a714b1c6328195a1e4578a48153cd02665659d8b564

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user1.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 66232
last-modified: Thu, 06 Mar 2025 18:22:56 GMT
etag: "67c9e800-102b8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7r03pBGXp86%2BP7fiA54CMtmQ1oY9GeQp5ZhV6o7NgPlFmn7MQKnnQya%2FepL%2FF0idukxd0ad4LGJS3tIjp07IxNSKpzzIXgoYwpKfIv92dfCkG4TmJy8WkI%2FC5SaFlf7qTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74aa9b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=971&x=1", cfExtPri, cfHdrFlush;dur=7

stumpclash.com/images/user4.webp

188.114.96.1

200 OK

105 kB

URL GET
stumpclash.com/images/user4.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
105 kB (104692 bytes)
Hash
914b9050f3faa420d59bf08d6707368c
e52736017575332cfa33502264585061d9deeadf
59a2c8b76376c59c23f71847bf1109f72854543689c066d41809c90520e51fa8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user4.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 104692
last-modified: Thu, 06 Mar 2025 18:22:58 GMT
etag: "67c9e802-198f4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l6IRYpEHL%2BfmFhuZvwvxWhKDvHzuGZ%2FklGRYOWiRjtA%2FVvJbtrsr%2FhY95M4IBP8GsUAQ0RzBZAy5510ZICeKdWFu7zMFUi%2BCfuvzqqB3qxTtfHBwE8OZHbzdBDS61r7UKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74ab0b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=210&recv=30&lost=0&retrans=0&sent_bytes=223484&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=955&x=1", cfExtPri, cfHdrFlush;dur=23

stumpclash.com/fonts/Tinos-Regular.woff2

188.114.96.1

200 OK

155 kB

URL GET
stumpclash.com/fonts/Tinos-Regular.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 154700, version 1.0
Size
155 kB (154700 bytes)
Hash
e633535deac9f0d4fd0d72931758b2e8
c8b4ec99fef086a1abab337d47e3f6ea2907490c
c9872177592e4a6526c539cdda03b7fad54511dab485efd731bd35472664f4ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Tinos-Regular.woff2 HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:02 GMT
content-type: font/woff2
content-length: 154700
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: "67c9e7fc-25c4c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VyghTfE%2F0g0kST0mp%2BnptSL6qk9bVhOzbGPssqcpxVCM09w8Fx356xb671%2BYfRh4R4xDTvSUjjN4m0ffNKvIik8ESoPuQ5E9TBaLtQu4R5ihXsits7oIjhxYqxTC67uw1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc8fe36b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4610&min_rtt=1318&rtt_var=3565&sent=1281&recv=46&lost=40&retrans=41&sent_bytes=1482122&recv_bytes=10374&delivery_rate=10055541&cwnd=225420&unsent_bytes=0&cid=f048511c5285581c&ts=1225&x=1", cfExtPri, cfHdrFlush;dur=0

stumpclash.com/images/adv3.svg

188.114.96.1

200 OK

4.0 kB

URL GET
stumpclash.com/images/adv3.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
SVG Scalable Vector Graphics image
Size
4.0 kB (3972 bytes)
Hash
4bd7aba05fc5dee22e3c02a89f9d3405
77f150e75c441bae92711f0314c7e2a8b884593a
f88d67c75eed1d706caf464fd820f3f0a43faeae71876954c34b61696ecab704

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/adv3.svg HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Mar 2025 18:22:52 GMT
etag: W/"67c9e7fc-f84"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3hDS2TynYJ9GrZU1bdSoq2xY3w3%2B3KycsaXx0meBSyJMPT%2B1Yr09O3mXaVIb64KenTRTY4La5KKsUS72s0qd3wblwWDwIb8AIM%2FCty5AM1Lvm0i3mwh0ZHzLGHhhM61N%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc72a64b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3111&min_rtt=1318&rtt_var=1844&sent=112&recv=28&lost=0&retrans=0&sent_bytes=107533&recv_bytes=8096&delivery_rate=4899322&cwnd=48000&unsent_bytes=0&cid=f048511c5285581c&ts=933&x=1", cfExtPri, cfHdrFlush;dur=21

stumpclash.com/images/user5.webp

188.114.96.1

200 OK

87 kB

URL GET
stumpclash.com/images/user5.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
87 kB (86614 bytes)
Hash
89d230754b4dec67a8185d8389954b26
070fda6f2353c3f987f4993217f524441d6330b2
2a5caa2400ce3285b283074069d2cb5d7aa2a687610e4952cc6e0ddba3a2c32d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user5.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 86614
last-modified: Thu, 06 Mar 2025 18:22:58 GMT
etag: "67c9e802-15256"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sdQr8T7%2BSXKUXwgI66mZERED29p5rGcj1IBZ%2Brm2Xzm4uTSFTYfefN3mP6UHhsp0dlu50fSjKaXVaABj%2BG%2Fh7hiTgXLLMbG9EEGO0Db58hUyaU2dmkY%2BNuCu5uPQKFv%2BNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74ab2b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4932&min_rtt=1318&rtt_var=5026&sent=122&recv=29&lost=0&retrans=0&sent_bytes=119533&recv_bytes=8142&delivery_rate=2295079&cwnd=66300&unsent_bytes=0&cid=f048511c5285581c&ts=947&x=1", cfExtPri, cfHdrFlush;dur=7

stumpclash.com/images/hero4.webp

188.114.96.1

200 OK

69 kB

URL GET
stumpclash.com/images/hero4.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://stumpclash.com/
Certificate
IssuerGoogle Trust Services
Subjectstumpclash.com
FingerprintB0:07:5D:12:FB:F9:B7:5C:FB:EC:BC:93:6D:A2:17:3B:B5:2C:0E:64
ValidityFri, 07 Mar 2025 10:11:31 GMT - Thu, 05 Jun 2025 11:09:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1344x768, Scaling: [none]x[none], YUV color, decoders should clamp
Size
69 kB (69064 bytes)
Hash
89530f79dd7ca05720882ab27f2a14d1
46dc51fb87d5623d17a3e29882b8cb680872aaad
cc66fc5699815142414c5f034fde08aa72d8e8cca3e57682adaeda8dbfb70c3d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hero4.webp HTTP/1.1
Host: stumpclash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://stumpclash.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 09:08:01 GMT
content-type: image/webp
content-length: 69064
last-modified: Thu, 06 Mar 2025 18:22:54 GMT
etag: "67c9e7fe-10dc8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=32RfH5ZTFruixZRI4v122D3Qnb6cnskWRxnwDCpW1%2B%2FuGK1%2FqZ8iJx5WbKkLAhJX6QGD2hfTwN4Ew9PXPzzoedDIHvt%2BgPuhKx2jaD4r6RoLiy6xSLpQcR%2B%2FQDLwlVBp6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92029fc74abbb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4836&min_rtt=1318&rtt_var=3963&sent=276&recv=30&lost=0&retrans=0&sent_bytes=298933&recv_bytes=8188&delivery_rate=9273104&cwnd=125100&unsent_bytes=0&cid=f048511c5285581c&ts=967&x=1", cfExtPri, cfHdrFlush;dur=34

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (33)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET