| gift7521.googie.vip/favicon.ico |  104.21.48.1 | 200 OK | 68 kB |
URL GET gift7521.googie.vip/favicon.ico IP104.21.48.1:443
Requested byhttps://gift7521.googie.vip/ CertificateIssuerLet's Encrypt Subjectgoogie.vip FingerprintEF:DC:B6:D6:BD:09:A5:2C:B5:74:C5:08:43:FC:E3:A8:23:A1:A5:D2 ValidityMon, 07 Apr 2025 20:17:49 GMT - Sun, 06 Jul 2025 20:17:48 GMT
File typeMS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel Hash5d314e000175f9fec4ab4325ef438be9 4d48298cec69fc284570437dba43e5f14fe99be5 a3e831628af5a26e9a51d53636e42db46d8d2e7c59e7d2845c988baf1ccd18e3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: gift7521.googie.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gift7521.googie.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 04 Jun 2025 14:20:15 GMT
content-type: image/x-icon
cf-ray: 94a811e1386c1c06-OSL
server: cloudflare
content-encoding: br
last-modified: Mon, 10 Jan 2022 06:10:46 GMT
etag: W/"61dbcde6-1083e"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e%2B%2F%2B2BcGf7eQkQKF7lncpqLFMhYhlpgtBSKxLfhe5Molsqc4KJG%2BWwPeqdcOQqFunzZuuW%2B5k%2Ffld2wB1UXTwsAkfsqYJTJuAuq2mLPzfSIynmNPbf7YibXwSWUllFAd4KtmhEGL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=TCP&rtt=3842&min_rtt=369&rtt_var=6802&sent=10&recv=14&lost=0&retrans=0&sent_bytes=3591&recv_bytes=1268&delivery_rate=8014760&cwnd=256&unsent_bytes=0&cid=5b3e26e7d8fbd330&ts=472&x=0"
X-Firefox-Spdy: h2
|
IP104.21.48.1:443
CertificateIssuerLet's Encrypt Subjectgoogie.vip FingerprintEF:DC:B6:D6:BD:09:A5:2C:B5:74:C5:08:43:FC:E3:A8:23:A1:A5:D2 ValidityMon, 07 Apr 2025 20:17:49 GMT - Sun, 06 Jul 2025 20:17:48 GMT
Hashd07805e58001307cfaeb478d18984c44 a2310e5c7904b3bddabdf75fdde3448bd2252d4f 2388af7dc7d62af505524ff8c28483b15953436544eefcbb502637578cfb04d5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gift7521.googie.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 04 Jun 2025 14:20:14 GMT
content-type: text/html
cf-ray: 94a811df5e421c06-OSL
server: cloudflare
content-encoding: br
last-modified: Sun, 27 Jun 2021 01:03:08 GMT
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ryvLmmuoEhG4oSrmw%2B8tubtmh1rNGTEQwa5hB%2B%2Fw0%2FT23mORxSK2JthyAw2DoLj5dhr3jd3Ge4PdVXBbFA4iHb3j3bMen%2BI8rNsQJg09tb%2Bt9lWiiQLDhLu1HI3ualV%2BaRRlZsbi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=TCP&rtt=5513&min_rtt=464&rtt_var=10150&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2819&recv_bytes=1128&delivery_rate=5934426&cwnd=253&unsent_bytes=0&cid=5b3e26e7d8fbd330&ts=107&x=0"
X-Firefox-Spdy: h2
|