IP104.21.26.52:0
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 26 Apr 2024 14:43:36 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 26 Apr 2024 15:43:36 GMT
Location: https://sdcsalesar.live/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sSJmq8p3W1UNQPKPjtGW409kK77q4%2F%2FV%2BlrzlAr6v3vqNG9EhpQ4EWaiCIiBsGhWGRoAiT7YDypsEmjzfw0mIIV5FZT34gDbwaMPSSzihD3F8u8kOBuhKnIyA6804BnzZmo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87a75896489a0b69-OSL
alt-svc: h2=":443"; ma=60
|
| sdcsalesar.live/traffic_statistics?gurl=https://urbanenjoy.com/ | 104.21.26.52 | 200 OK | 11 kB |
URL User Request GET HTTP/2sdcsalesar.live/traffic_statistics?gurl=https://urbanenjoy.com/ IP104.21.26.52:443
CertificateIssuerGoogle Trust Services LLC Subjectsdcsalesar.live FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40 ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT
Hash61d07529facbd615fdf7ed6ced59eb94 8a83fb799f94861837bb884a12f4c6013bfa52b1 5c5fa5e1e7529579c56527368063a729b40bed0fdf851edd3a67b1fc3afe8de0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /traffic_statistics?gurl=https://urbanenjoy.com/ HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:43:36 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlFqUkVFVTR6VHlWTjg0TWIyQm1WWlE9PSIsInZhbHVlIjoiM2EwbXBud3N2UDRIbXo3TFNRTzFvOEFuQ0loY0NYaWkzRi9zZjRza0NzZUliT29RYmVPeXZUL3dqYnNGRFNpWU9qMUtFOWVqRGJQemNYeTZHNzhZTDRRVUdFL1JxaDRTd0wrdUhDcURHT2ZRclREQmhQcExVWXo4VE1Ib2lKRmciLCJtYWMiOiI0NjdjM2ExZWQ4OTcyYTEwMGI1NDA4MmUyZGRmY2M3NWY0ZTNiNWZjNmM0Nzg2ODgyZjJkZjI0YWE2NTllMWVmIiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 16:43:36 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IjBycHpTVHVpM2hYTnVxTG44Qnhva2c9PSIsInZhbHVlIjoiT2xqenJrVmJzbTlQOFBLWnZ4NE41eUFwSTNvbFcya2tKK1ZmWmIvUmNYanRKbkM1bGErRDNhekpGdGY2OU5zMDBLYkJySTQwVjcyWDZsNnVuM1QrejEzL1U4dkphYTQ2b2llUnlaRFl3b242VnowN1hvdERxS1N4REsxaFRaRHAiLCJtYWMiOiI5YTJjMTIxYTMyMzkxNWUyMTEzYjIzMzkwZGNhMjU5N2ViYjkzMzJhZDIwZjgyYjYyMTk5ODM0MWM5Y2E2Mzg4IiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 16:43:36 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l9TOa2sImUGxC3LbmxNM4gt1AmWJO23C4xAZhOQLQg6PWeqTgO0TpMLM%2FqU20BJjhYrVu3ogrDyonlfXxPXZbx9vsA2EgaKPjhxZx0CMi19YxfTFLE4GxbWuy81d45bkskI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a758843c37712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
IP104.21.26.52:0
File typeHTML document, Unicode text, UTF-8 text Hash3d752781fb2aadcdcc9b909beafccc8f f609bb360b0d9136edb3cb35499d2dfaa82b572d 20628fe44e4cd89c55183261e2ae1c4f208b82c28d7515336a22dc8d3bbd505a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:43:39 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlMzR1d1Tkt3TGJKNFlKZ1VlZkZUbkE9PSIsInZhbHVlIjoiT2R1NXFwQ2Y3VStnK1hEWHFEcmVZMi96d2VBRFJVbGQ2TFNQZkdLM3dna1ZOWHhCRktoMkVkMHc5SGVJL0x3cFhmeThUUlNnUWEyRFFXZWxkZkpOMExDVzczaGZGM1dLQUJVZmNWbURCcTBteWs2NVRlaDVlRVZ5WHFDejFsaHgiLCJtYWMiOiIwNGIxZTFlNGNmMDliOGQ2N2FkODZiMGRkNzMzNWNlNTQ0ZmNiOWZkNmFmMzYxMzA1ZmYyNWQwN2IyN2FiNjM0IiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 16:43:39 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IkVyTXJnUTFkbTZkWDllRWQ0c0xBSlE9PSIsInZhbHVlIjoiVlduZkV4MVpCT0xLN21FV1Z6WVBTaEZCMlRxUHg4Yzl2QjduNE9aNkhIcUk0QUdndGcyZGRkcUxEbmZUaFRlRVRLNUQzRGRYRXBJa1RxUmY5WnlyRHp5anhqVUxQL0lGQUlxSXkrT1BMaHJNTyszc2czTVduK3UyZE00M2xTSFEiLCJtYWMiOiJmNDkzM2RkNjFjNmQ5MzYyMTJkNDk3YWQwYzBmOWM3ZDc1YWVmMWMwMzc2ZDUyNmY1NzlhNmRmODI1MmVkZTg5IiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 16:43:39 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mb5geyHVZJeFiJJnN7PuQTgpSCFSWTURGN72m%2BWKCt%2FkujLKsXfjfxDKnh8RPC1OFDhH0UGqeZDSqIXTE8zgcFmWgeG7UZ%2B2HR%2FCQXCbxaTZ8TuUikGLFa7yWRiTo%2BhfXS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a75896780c568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| sdcsalesar.live/favicon.ico | 104.21.26.52 | 200 OK | 61 B |
URL GET HTTP/3sdcsalesar.live/favicon.ico IP104.21.26.52:443
Requested byhttps://sdcsalesar.live/traffic_statistics?gurl=https://urbanenjoy.com/ CertificateIssuerGoogle Trust Services LLC Subjectsdcsalesar.live FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40 ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash2d963171282c4de9d6969472b23e47e3 1ea3d4ba9fe4b01b4edf5b7dcd20ac246d2187d8 87ed5a5a37969aa977d6f4fc16ae7a094bc1abc454307e011b65036646b4d3ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/traffic_statistics?gurl=https://urbanenjoy.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlFqUkVFVTR6VHlWTjg0TWIyQm1WWlE9PSIsInZhbHVlIjoiM2EwbXBud3N2UDRIbXo3TFNRTzFvOEFuQ0loY0NYaWkzRi9zZjRza0NzZUliT29RYmVPeXZUL3dqYnNGRFNpWU9qMUtFOWVqRGJQemNYeTZHNzhZTDRRVUdFL1JxaDRTd0wrdUhDcURHT2ZRclREQmhQcExVWXo4VE1Ib2lKRmciLCJtYWMiOiI0NjdjM2ExZWQ4OTcyYTEwMGI1NDA4MmUyZGRmY2M3NWY0ZTNiNWZjNmM0Nzg2ODgyZjJkZjI0YWE2NTllMWVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjBycHpTVHVpM2hYTnVxTG44Qnhva2c9PSIsInZhbHVlIjoiT2xqenJrVmJzbTlQOFBLWnZ4NE41eUFwSTNvbFcya2tKK1ZmWmIvUmNYanRKbkM1bGErRDNhekpGdGY2OU5zMDBLYkJySTQwVjcyWDZsNnVuM1QrejEzL1U4dkphYTQ2b2llUnlaRFl3b242VnowN1hvdERxS1N4REsxaFRaRHAiLCJtYWMiOiI5YTJjMTIxYTMyMzkxNWUyMTEzYjIzMzkwZGNhMjU5N2ViYjkzMzJhZDIwZjgyYjYyMTk5ODM0MWM5Y2E2Mzg4IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:38 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I5O5ogSPHZpkjcnZ9rz6H%2FWWScIhB2SZt1W12S17DLIwrzJ8DSpjse%2Bjsikto6jQmgqoYpaSO9PcVCL1l2KCffqYR9R5CkU7rLX9wnEnjm1uc99ovGa1lUGX7BYntOQ1cIM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a75897dcba7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|