172.67.203.108403 Forbidden 2.2 kB URL User Request GET HTTP/1.1 IP 172.67.203.108:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1001)
Hash 749348b6708d10cf873f2bde989650a1
97629598d2ceb51713bfe2871853c6e141fe16df
9f91056f74ea312732cd00102631c42506cd165cc6807c52fb2289bf171912a6
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: vbshoesindia.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Fri, 02 Jun 2023 12:30:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7yemWHbZ6G0T0UnqKHG1aj9f6qM%2FMNSWiKy1gtPVIVvS8iplp8Y90VUgNu02e7rPyrRLgfd550QXj7JxfBdtk6sSLetCQ%2BrLZ%2BfdaW5MInZOZ0pfcvustllmw8Y%2F70ia%2Bja3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d0fb54f0abbb4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
vbshoesindia.top/cdn-cgi/styles/errors.css
172.67.203.108200 OK 1.9 kB URL GET HTTP/1.1 vbshoesindia.top/cdn-cgi/styles/errors.css
IP 172.67.203.108:80
File type ASCII text, with very long lines (6205), with no line terminators
Hash fe09856beaff5d48a34796587e849b7b
e92a56ee85880c5dd593e9f0a49517d7598a07fd
574b098b0c3e4a12f959bafb73cfa857b414f27ebe854f3910b3a45651ff7a0f
GET /cdn-cgi/styles/errors.css HTTP/1.1
Host: vbshoesindia.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vbshoesindia.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 12:30:33 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 15:20:42 GMT
ETag: W/"6476144a-183d"
Server: cloudflare
CF-RAY: 7d0fb5507c6ab4ff-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Fri, 02 Jun 2023 14:30:33 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
vbshoesindia.top/cdn-cgi/images/external.png
104.21.37.30200 OK 265 B URL GET HTTP/1.1 vbshoesindia.top/cdn-cgi/images/external.png
IP 104.21.37.30:80
File type PNG image data, 24 x 24, 4-bit colormap, non-interlaced\012- data
Hash cb09a55c92c63ed227cf14f2b7f23601
a97780adf99f6dcc0e88dba36cd11df267098271
9f03b2b292f718119a8203689d05692e054f1059112c981c1e20dec82e9f2ddb
GET /cdn-cgi/images/external.png HTTP/1.1
Host: vbshoesindia.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vbshoesindia.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 12:30:33 GMT
Content-Type: image/png
Content-Length: 265
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 15:20:42 GMT
ETag: "6476144a-109"
Server: cloudflare
CF-RAY: 7d0fb5508b7eb4f7-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Fri, 02 Jun 2023 14:30:33 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
vbshoesindia.top/favicon.ico
104.21.37.30403 Forbidden 2.2 kB URL GET HTTP/1.1 vbshoesindia.top/favicon.ico
IP 104.21.37.30:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1001)
Hash f3d69f300bda594332f5dcf6cf57ed11
6c34461289758f1d740375aef918684a36968d28
e159d1369e1a455d0ca41f8d55e52796b466282afc62dcd5f328e2f7b7a8cd58
GET /favicon.ico HTTP/1.1
Host: vbshoesindia.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vbshoesindia.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Fri, 02 Jun 2023 12:30:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rEZAmQtNt5DEdAagtOVUQfLA3OeoRYeROkCN%2FR5q4sfoHeGhqOMPvDyhpjx%2Fav2TUldo%2BzZvpjpH8l2SIVdWx9S9hQJ0ZbxJynpeDv2NrZcihsGQbckVzSWou88mDAO1zmpB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d0fb5521d6bb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
performance.radar.cloudflare.com/beacon.js
104.18.31.78200 OK 17 kB URL GET HTTP/2 performance.radar.cloudflare.com/beacon.js
IP 104.18.31.78:443
Certificate IssuerCloudflare, Inc.
Subjectradar.cloudflare.com
FingerprintFE:EA:F1:74:79:25:BC:59:5B:45:EB:7A:CB:F3:03:91:C3:A4:B2:A0
ValidityFri, 22 Jul 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (17377)
Hash 0f12bbf86ec25bac79af92e81742caf7
c0528945cf17a19c86615428ceaab71cf4d77332
319d62955897d48e0b5ef59eb076cee49dff7d89bb77b10b3d945637e60d0841
GET /beacon.js HTTP/1.1
Host: performance.radar.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 12:30:33 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: no-store, max-age=0
access-control-allow-headers: *
access-control-allow-methods: *
timing-allow-origin: *
set-cookie: __cf_bm=SX2RnW2IZBJ9IBm0l3fMgPSfMxlylukZqa8p7NVywOQ-1685709033-0-AWxKQfIwpxL8d5mlY4Pqic97hXWnKlrg20CNP+8VFafcwnEfrNv0xOtv9LJuPycS2IC//YjhGOYTNnu3rrPA6hE=; path=/; expires=Fri, 02-Jun-23 13:00:33 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 7d0fb550c9150b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2