Report - reserved-canada.com

Report Overview

Visited public
2024-10-14 23:01:12
Tags
URL
reserved-canada.com
Finishing URL
www.reserved-canada.com/
IP / ASN
196.247.231.18
#48950 Global Colocation Limited
Title
Reserved Canada - Buy Reserved Clothing, Pants, Shoes Online Canada

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

136

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r11.o.lencr.org	unknown	unknown	No data	No data	1.6 kB	4.4 kB	23.33.119.27
o.pki.goog	unknown	unknown	No data	No data	1.3 kB	2.8 kB	142.250.74.131
fonts.gstatic.com	unknown	unknown	No data	No data	542 B	129 kB	142.250.74.163
fonts.googleapis.com	8877	unknown	No data	No data	445 B	1.2 kB	216.58.207.234
r10.o.lencr.org	unknown	unknown	No data	No data	1.3 kB	3.5 kB	23.33.119.57
reserved-canada.com	unknown	unknown	No data	No data	474 B	491 B	196.247.231.18
www.reserved-canada.com	unknown	unknown	No data	No data	35 kB	2.8 MB	196.247.231.18

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed
2024-10-14	medium	reserved-canada.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	www.reserved-canada.com/js/jquery-1.7.2.min.js	158 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/jquery-1.7.2.min.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6706 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery_kinSlideshow.js	10 kB	2023-04-11 21:28	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery_kinSlideshow.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:28 Last Seen2024-12-21 11:29 Times Seen6625 Hash abbb3376ffd05856914efb567ee1f53b 4502bb187bd05f6bdc324546301c0fb3ededb453 f3e0eb53b3dc82b94ae4c1fe8c654bf827bf0d7f9f12cc01976e0689c5db9203 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/js/re_login.js	11 kB	2023-03-07 12:07	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/js/re_login.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07 Last Seen2024-12-21 11:29 Times Seen3476 Hash 7bd679d5c675a092b612e5b4b7a56dbd 6e62d5cf6e15493d5d34173348f255dfe6e9dac5 ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28 Loading...

	www.reserved-canada.com/	74 B	2023-03-07 01:42	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:42 Last Seen2024-12-21 11:29 Times Seen3310 Hash 77c0bd3bb3d308a78f5cd873c21fe43a 38671a50bcf4bfcfd34f5cb46c996d7b97a1254c 197e2d212246e4d08dee3d3b9e45228bbec236edaa7d31310d9de0607533a12c Loading...

	www.reserved-canada.com/	44 B	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6565 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_1.11.1.min.js	86 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_1.11.1.min.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6454 Hash 93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e Loading...

	www.reserved-canada.com/js/uisearch.js	6.0 kB	2023-03-07 01:42	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/uisearch.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2024-12-21 11:29 Times Seen3384 Hash 028b2e146eff5f378e21e7fe48131468 af6b54a64da88204e2d2c527c1a941dc17e790e3 86f2854513305e334b86057c752cf3821b72156d1f6aa0fd8132c57bec74d285 Loading...

	www.reserved-canada.com/	3.1 kB	2023-04-08 00:49	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-08 00:49 Last Seen2024-12-21 11:29 Times Seen1413 Hash 43bb8afcc41296e6afc46d741cca8ee4 a0944dbd64c1dac7465cfb0da95ca654855e7fe6 d6235bd24bc349c69e8d9da4ffddf96aadb93138a01ae18ec8530ec0bd522019 Loading...

	www.reserved-canada.com/	1.7 kB	2024-10-14 23:01	2024-10-14 23:01
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-14 23:01 Last Seen2024-10-14 23:01 Times Seen1 Hash 41ca3cc3b9f88e2414b97564c0ff1305 c32063e3012051df6c3b753e8d1fb4cd9540b15c 4e37674771eaba19a285429c87aadd63d76afc66076b61b2e60e27a3ca513d8e Loading...

	www.reserved-canada.com/js/swiper.min.js	96 kB	2023-03-07 01:11	2024-12-21 06:31
Pretty URL www.reserved-canada.com/js/swiper.min.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2024-12-21 06:31 Times Seen804 Hash 4945be5f0a07cb3f0970023969a9adb3 36bd0298e6e6c099c4fc7679d2e9225b280d8b4b 7ced2a234a4545ea6d85be94375f586f36dd0182b99ec3568abc5eea2b176213 Loading...

	www.reserved-canada.com/js/slick_new.js	1.9 kB	2023-03-07 12:07	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/slick_new.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07 Last Seen2024-12-21 11:29 Times Seen4049 Hash 37192079541f105b380c4d17cb5b1a45 4cf67b7d006b630a2e063acb52740d1b8cfa08c4 faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_slick.js	89 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_slick.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen7094 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	www.reserved-canada.com/js/modernizr.custom.js	7.7 kB	2023-03-07 01:42	2024-12-21 13:01
Pretty URL www.reserved-canada.com/js/modernizr.custom.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2024-12-21 13:01 Times Seen3564 Hash 02009db489ef4805210aafa21a6b8276 d3c333feb80a2e4045a6a353838171aaee6b878d 0cdb507e0527a90fb5b98b238843f6d2be8ded6d71f40458ff8e75b731405cad Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery.js	86 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen8988 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	www.reserved-canada.com/js/classie.js	1.8 kB	2023-03-07 01:03	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/classie.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-12-21 11:29 Times Seen4041 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/js/layer.js	38 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/js/layer.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen4960 Hash f679a433cba7ebde1bbe121fffd8c60c 4d2159e06a5e80328e0ba9554e02fb2422ed0b36 60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0 Loading...

	www.reserved-canada.com/	318 B	2024-10-14 23:01	2024-10-14 23:01
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-14 23:01 Last Seen2024-10-14 23:01 Times Seen1 Hash 9d48ced8d6fb6e2f2c92e0c404786197 20322225307329ad2b9421936e92dd923255a132 45072c74b86924d25ab0dbfc993cba72c4b9a7620f50d753403efadc30b1fac2 Loading...

	www.reserved-canada.com/js/slick.js	87 kB	2023-03-07 01:11	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/slick.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2024-12-21 11:29 Times Seen4707 Hash b56bbf351b271132a8fdab2ed21c82ab 8274eb6924ead2f5d8616fd162ef24bebd3c0b21 c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60 Loading...

	www.reserved-canada.com/	824 B	2023-03-07 12:08	2024-12-20 23:13
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:08 Last Seen2024-12-20 23:13 Times Seen575 Hash 40222eda1747a56d54bae15a48cb5cfb 2f4b777423571fbe627674557cd6e9fd00845ba3 26405d09a141535be1ef410f8bbfd5209b954af7dc53b353ec660c2a6b52c710 Loading...

	www.reserved-canada.com/	144 B	2024-10-14 23:01	2024-10-14 23:01
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-14 23:01 Last Seen2024-10-14 23:01 Times Seen1 Hash af82737b52dc0c62c377909535ca9a72 bdbef99c2b32ab2634d3282a15679a67c234a08c dafa81270450a59e37ab7940dfa2772e85b5e469755f2cf047c348c864e6d484 Loading...

	www.reserved-canada.com/	597 B	2023-03-07 01:11	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11 Last Seen2024-12-21 11:29 Times Seen4032 Hash 0dcfb49030f0696eed0631626f0b773a 2c88166dcdaa8372f41639a40ecc01195a012845 f0e9cf6e6cacab382ea6a8bbc66f73e345588eaff2c966d462578cf716ff74de Loading...

	www.reserved-canada.com/	312 B	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen4785 Hash 7ce5e7d2da9a3d65ead4d2138055617e 051b88ccda03caa7daf3d18190375955b31a7b4d 4c17dfdfc4b0a40b632f760a15a335f7627fa0b6b22acb202a87e49ef511273c Loading...

	www.reserved-canada.com/	21 B	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/ IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen5036 Hash 5a9b4911bc66f9e2f54bd20a9c333f26 8f357fb053913c958e71d7167e56aa68a698f1e4 2412af640fa9ba9f1a38f46e8b58e00b2cdd73ab4bd327a7d79be4132d960c65 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_lightbox.js	20 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_lightbox.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6365 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

	www.reserved-canada.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/jquery.mmenu.min.all.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6694 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.reserved-canada.com/js/jquery.jxa.js	2.7 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty URL www.reserved-canada.com/js/jquery.jxa.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen6663 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_2.2.0.min.js	143 kB	2023-04-05 13:52	2024-12-21 11:29
Pretty URL www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_2.2.0.min.js IP 196.247.231.18 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:52 Last Seen2024-12-21 11:29 Times Seen6268 Hash 391ebf61aa662184ec57e51ba5ce11c5 4359e99c16ac8e1dcc441465203d2025eaee8c48 a41091e7f49dd461b53a67d1fbbb715097796994077a2e7199f12c7a7d39c19e Loading...

		Size	First Seen	Last Seen
	#1 Eval - abf4a875d5948c9b1b39999a48ff7e87	13 kB	2023-03-07 01:06	2024-12-21 11:29
Pretty Observations First Seen2023-03-07 01:06 Last Seen2024-12-21 11:29 Times Seen5589 Hash abf4a875d5948c9b1b39999a48ff7e87 e686ced083517764a0dd7424d84ac5fa1b52f20b a824a97e1e060dcfc3950a4231c4510e369c17c0c8694340e873ff5bdc8397ea Loading...

HTTP Transactions (83)

URL IP Response Size

r10.o.lencr.org/

23.33.119.57

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4ef646b0e9b7327e4a942f9294833f80
292c5eafd5f9d4c35b11f0f3d456cdbe77e30c21
eb25c0ba5c8244185a6c004482f85ef91889d1f4f368d44bf009bb957e776f28

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "EB25C0BA5C8244185A6C004482F85EF91889D1F4F368D44BF009BB957E776F28"
Last-Modified: Sun, 13 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9264
Expires: Tue, 15 Oct 2024 01:35:06 GMT
Date: Mon, 14 Oct 2024 23:00:42 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
8c678121da7ea2edc90ea014cf3552af
3d76ebd2a3aba8dab56e3c15310551e9b226e249
1839e2eb73c24c27fda8e6bf4715b73ce52cc1c059bd1dfd9b739e71409cda3b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1839E2EB73C24C27FDA8E6BF4715B73CE52CC1C059BD1DFD9B739E71409CDA3B"
Last-Modified: Mon, 14 Oct 2024 08:07:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9151
Expires: Tue, 15 Oct 2024 01:33:13 GMT
Date: Mon, 14 Oct 2024 23:00:42 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
56575c1ee1a13dc9b3b9cbbbeb550407
818d2c9ecafa6e391ce4f19a4bd601b3d5531ccd
10541b95854d95ab545073ed31ff3473355942b1bf0038b86eac59c77d4854eb

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "10541B95854D95AB545073ED31FF3473355942B1BF0038B86EAC59C77D4854EB"
Last-Modified: Mon, 14 Oct 2024 14:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9568
Expires: Tue, 15 Oct 2024 01:40:10 GMT
Date: Mon, 14 Oct 2024 23:00:42 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7d3f40edab25e8d6b700410399e281dd
5abaaed5e9ea61626fd4d67b7c817195302b43a8
5438ee24c6b0170e7fa46e12c21b8a3bac1eb29bc86b1810a267dd3c72ea95ae

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5438EE24C6B0170E7FA46E12C21B8A3BAC1EB29BC86B1810A267DD3C72EA95AE"
Last-Modified: Mon, 14 Oct 2024 06:24:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9242
Expires: Tue, 15 Oct 2024 01:34:44 GMT
Date: Mon, 14 Oct 2024 23:00:42 GMT
Connection: keep-alive

reserved-canada.com/

196.247.231.18

301 Moved Permanently

240 B

URL User Request GET HTTP/1.1
reserved-canada.com/
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
240 B (240 bytes)
Hash
7c89c7c19a0b803c1061696077eddfa2
9797ca0d8a9159af9ed478127782d3999b8a4415
67737e83cae93162ec252cffc99341e70d4e575df84b8bdb8d30ed9649b2b6b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Oct 2024 23:00:43 GMT
Server: Apache
Location: https://www.reserved-canada.com/
Content-Length: 240
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.reserved-canada.com/

196.247.231.18

200 OK

63 kB

URL User Request GET HTTP/1.1
www.reserved-canada.com/
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (21178), with CRLF, LF line terminators
Size
63 kB (62761 bytes)
Hash
56c9008946b0ea3444653ce32f24101d
9f3f2a307a82bf96baf54cb6866685a00b4081b1
a47b4dc2f2f102b5514c7db7cfeecfed776e0bf7f4c9bf2506602c9dba3427a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:43 GMT
Server: Apache
Set-Cookie: cookie_test=please_accept_for_session; expires=Wed, 13-Nov-2024 23:00:43 GMT; Max-Age=2592000; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

r11.o.lencr.org/

23.33.119.27

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
df561bb5aeeed26ec80dd28ea6ab5558
8dac4b67fdf82b7930ebba64c35208d5ac84c861
8bad15fc800c4a5db18dd22633896b1443d4d691221d6f1662610e51ae6084b1

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8BAD15FC800C4A5DB18DD22633896B1443D4D691221D6F1662610E51AE6084B1"
Last-Modified: Sun, 13 Oct 2024 17:09:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10650
Expires: Tue, 15 Oct 2024 01:58:14 GMT
Date: Mon, 14 Oct 2024 23:00:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
df561bb5aeeed26ec80dd28ea6ab5558
8dac4b67fdf82b7930ebba64c35208d5ac84c861
8bad15fc800c4a5db18dd22633896b1443d4d691221d6f1662610e51ae6084b1

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8BAD15FC800C4A5DB18DD22633896B1443D4D691221D6F1662610E51AE6084B1"
Last-Modified: Sun, 13 Oct 2024 17:09:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10650
Expires: Tue, 15 Oct 2024 01:58:14 GMT
Date: Mon, 14 Oct 2024 23:00:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
df561bb5aeeed26ec80dd28ea6ab5558
8dac4b67fdf82b7930ebba64c35208d5ac84c861
8bad15fc800c4a5db18dd22633896b1443d4d691221d6f1662610e51ae6084b1

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8BAD15FC800C4A5DB18DD22633896B1443D4D691221D6F1662610E51AE6084B1"
Last-Modified: Sun, 13 Oct 2024 17:09:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10650
Expires: Tue, 15 Oct 2024 01:58:14 GMT
Date: Mon, 14 Oct 2024 23:00:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
df561bb5aeeed26ec80dd28ea6ab5558
8dac4b67fdf82b7930ebba64c35208d5ac84c861
8bad15fc800c4a5db18dd22633896b1443d4d691221d6f1662610e51ae6084b1

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8BAD15FC800C4A5DB18DD22633896B1443D4D691221D6F1662610E51AE6084B1"
Last-Modified: Sun, 13 Oct 2024 17:09:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10650
Expires: Tue, 15 Oct 2024 01:58:14 GMT
Date: Mon, 14 Oct 2024 23:00:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
df561bb5aeeed26ec80dd28ea6ab5558
8dac4b67fdf82b7930ebba64c35208d5ac84c861
8bad15fc800c4a5db18dd22633896b1443d4d691221d6f1662610e51ae6084b1

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8BAD15FC800C4A5DB18DD22633896B1443D4D691221D6F1662610E51AE6084B1"
Last-Modified: Sun, 13 Oct 2024 17:09:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10650
Expires: Tue, 15 Oct 2024 01:58:14 GMT
Date: Mon, 14 Oct 2024 23:00:44 GMT
Connection: keep-alive

www.reserved-canada.com/includes/templates/reserved-canada/css/style.css

196.247.231.18

200 OK

25 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/style.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1470)
Size
25 kB (24572 bytes)
Hash
0269f25a408028ad7d1fa88f3fc07c32
bdf70b66b3a9a09ed1b009ccd694b89574646d9c
4225c3ed92bfc238dee21c99754cc70c6be9605fd4613f706c9ea927b00606d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/style.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 24572
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_header_menu.css

196.247.231.18

200 OK

3.5 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_header_menu.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
3.5 kB (3458 bytes)
Hash
2ad761b0d48adc4d66709369977d1ab2
b8b016f1f9ae78311c82a744f20a86004a6f9c68
8cbf3a6d37063ed460499e4ea6aad34ecd933a56d4d785825831127d744d47dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_header_menu.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 3458
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_categories_menu.css

196.247.231.18

200 OK

2.3 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_categories_menu.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_slick.css

196.247.231.18

200 OK

4.2 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_slick.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
4.2 kB (4153 bytes)
Hash
4a2c1179fa46145749786e25961b61fe
3521c6ff35903c500fb7e2b9952efd5e841c05fd
a61a93b148bd67c022f627392bc5a01834592e59e3be1b5cb0b14dd8eeb6f8a5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_slick.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 4153
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_lightbox.css

196.247.231.18

200 OK

2.4 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_lightbox.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_lightbox.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_all.css

196.247.231.18

200 OK

116 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_all.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text
Size
116 kB (115934 bytes)
Hash
f0fe01d9cc7e969719ba2fc839c15467
da62dfb12d8747df50f0fb0ad6ff6b6bc93a2e5d
5f46e6512ec4011bb8f25d725fb49e5aafae216376e72cc5f066737b7b24e03a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_all.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 115934
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_1.11.1.min.js

196.247.231.18

200 OK

86 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_1.11.1.min.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32069)
Size
86 kB (85588 bytes)
Hash
93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 07:10:10 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_jquery.mmenu.all.css

196.247.231.18

200 OK

11 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_jquery.mmenu.all.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text
Size
11 kB (11016 bytes)
Hash
71677734b09ae3c532865f174cb97b91
6570de5d3125b9b6c16eab8e3361f14c1dc777b9
fd94336ca97120bcdacf1906a59e8aacdc8654f45e01a1edfe82a0b57e31ddb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 11016
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet1.css

196.247.231.18

200 OK

18 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet1.css
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (876)
Size
18 kB (17947 bytes)
Hash
8f77ff678f01b33e773b5d1a777ae5cf
1a07b735b8b479727ef69d770adf8805a5fa6afb
175d23968c2106aa327d4296d4b528c54309cc00b5a74733c442e236be44a906

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/stylesheet1.css HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 03:02:03 GMT
Accept-Ranges: bytes
Content-Length: 17947
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery_kinSlideshow.js

196.247.231.18

200 OK

9.7 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery_kinSlideshow.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2010 16:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_2.2.0.min.js

196.247.231.18

200 OK

143 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_2.2.0.min.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (522)
Size
143 kB (142713 bytes)
Hash
674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sat, 25 Jul 2020 01:30:22 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_lightbox.js

196.247.231.18

200 OK

20 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_lightbox.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_lightbox.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sun, 24 Oct 2010 11:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/modernizr.custom.js

196.247.231.18

200 OK

7.7 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/modernizr.custom.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7558)
Size
7.7 kB (7671 bytes)
Hash
02009db489ef4805210aafa21a6b8276
d3c333feb80a2e4045a6a353838171aaee6b878d
0cdb507e0527a90fb5b98b238843f6d2be8ded6d71f40458ff8e75b731405cad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/modernizr.custom.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sat, 10 Dec 2016 01:34:46 GMT
Accept-Ranges: bytes
Content-Length: 7671
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/classie.js

196.247.231.18

200 OK

1.8 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/classie.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.8 kB (1835 bytes)
Hash
a9df1cfb76ce492afd9d13f3320272fd
782b9564f015a2ec7bdf9c89e238fab9b44bd587
717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/classie.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sat, 10 Dec 2016 01:34:46 GMT
Accept-Ranges: bytes
Content-Length: 1835
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/uisearch.js

196.247.231.18

200 OK

6.0 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/uisearch.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2051), with CRLF line terminators
Size
6.0 kB (6033 bytes)
Hash
028b2e146eff5f378e21e7fe48131468
af6b54a64da88204e2d2c527c1a941dc17e790e3
86f2854513305e334b86057c752cf3821b72156d1f6aa0fd8132c57bec74d285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/uisearch.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Sat, 10 Dec 2016 01:34:46 GMT
Accept-Ranges: bytes
Content-Length: 6033
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery.js

196.247.231.18

200 OK

86 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_jquery.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_jquery.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 23:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/js/layer.js

196.247.231.18

200 OK

38 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/js/layer.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (984)
Size
38 kB (37747 bytes)
Hash
f679a433cba7ebde1bbe121fffd8c60c
4d2159e06a5e80328e0ba9554e02fb2422ed0b36
60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/js/layer.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Tue, 29 Jun 2021 19:47:40 GMT
Accept-Ranges: bytes
Content-Length: 37747
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

o.pki.goog/wr2

142.250.74.131

200 OK

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ea85c32beb06621d3c98a9d9d5b8cf8
93a361890013c599f35ea545964fa81c05ecaf92
c21799b4716e3b725b841fc5f08734fb03ff8378d948256de6f8c71812cfa517

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 23:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_slick.js

196.247.231.18

200 OK

89 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/jscript/jscript_slick.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/jscript/jscript_slick.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 11 Feb 2022 15:22:28 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/jquery.mmenu.min.all.js

196.247.231.18

200 OK

39 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/jquery.mmenu.min.all.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 23:51:20 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/jquery-1.7.2.min.js

196.247.231.18

200 OK

158 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/jquery-1.7.2.min.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 00:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/slick.js

196.247.231.18

200 OK

87 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/slick.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
87 kB (87046 bytes)
Hash
b56bbf351b271132a8fdab2ed21c82ab
8274eb6924ead2f5d8616fd162ef24bebd3c0b21
c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 11 Feb 2022 15:38:06 GMT
Accept-Ranges: bytes
Content-Length: 87046
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/includes/templates/reserved-canada/js/re_login.js

196.247.231.18

200 OK

11 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/js/re_login.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
11 kB (10927 bytes)
Hash
7bd679d5c675a092b612e5b4b7a56dbd
6e62d5cf6e15493d5d34173348f255dfe6e9dac5
ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/js/re_login.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2022 18:53:02 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/swiper.min.js

196.247.231.18

200 OK

96 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/swiper.min.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31999)
Size
96 kB (96300 bytes)
Hash
4945be5f0a07cb3f0970023969a9adb3
36bd0298e6e6c099c4fc7679d2e9225b280d8b4b
7ced2a234a4545ea6d85be94375f586f36dd0182b99ec3568abc5eea2b176213

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/swiper.min.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Fri, 27 Jul 2018 19:24:40 GMT
Accept-Ranges: bytes
Content-Length: 96300
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/slick_new.js

196.247.231.18

200 OK

1.9 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/slick_new.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1859 bytes)
Hash
37192079541f105b380c4d17cb5b1a45
4cf67b7d006b630a2e063acb52740d1b8cfa08c4
faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick_new.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 20:22:54 GMT
Accept-Ranges: bytes
Content-Length: 1859
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/js/jquery.jxa.js

196.247.231.18

200 OK

2.7 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/jquery.jxa.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:44 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 21:46:06 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/images/hoverimg/202404181506524963.png

196.247.231.18

200 OK

1.9 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181506524963.png
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
PNG image data, 164 x 18, 8-bit colormap, non-interlaced
Size
1.9 kB (1869 bytes)
Hash
8dd3ace82c4a03c65d98a67af603da18
ba2879e62c4f5d2972816f46e2dc04538d10a6ae
96d3a75576d03bb9cf6a213199ad4361d5e4e875c484b59d5f1062d51f7c96f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181506524963.png HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:06:52 GMT
Accept-Ranges: bytes
Content-Length: 1869
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.reserved-canada.com/images/60721257283023/Beige_Reserved_Doublebreasted_Faux_Leath_230.jpg

196.247.231.18

200 OK

14 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Beige_Reserved_Doublebreasted_Faux_Leath_230.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
14 kB (13998 bytes)
Hash
44d8e3b3eb4b9ff98eb806800479dfc9
7b92ef24fa0106eb236184473cc6b02757b03612
00268ea92d4820831544029f07d4fd1abd0cc39555d10e45cb10c1ebd30a9c8c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Beige_Reserved_Doublebreasted_Faux_Leath_230.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:23:20 GMT
Accept-Ranges: bytes
Content-Length: 13998
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/hoverimg/202404181510095740.jpg

196.247.231.18

200 OK

105 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181510095740.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x823, components 3
Size
105 kB (104871 bytes)
Hash
81f5de31c33677e15b0b6b080ecbd5dc
bfc1e0a44d95365a9f45ca21182022bd3e3cbfe9
ae232a4920ca38313d355d542c52002fee5c411d190d82aec921649c816de4ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181510095740.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:10:10 GMT
Accept-Ranges: bytes
Content-Length: 104871
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/includes/templates/reserved-canada/images/flag/CAN.png

196.247.231.18

200 OK

373 B

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/images/flag/CAN.png
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
PNG image data, 27 x 17, 8-bit/color RGB, non-interlaced
Size
373 B (373 bytes)
Hash
5bcefbd3115209dc486a33315fd0adfe
8092f5ffa43e543815386f2956ae80c27f233dcf
42499bcaf81be894215431d16cbcddfea28868095b7d13e4419784e446d99bbf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/images/flag/CAN.png HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Sat, 09 Oct 2021 16:02:58 GMT
Accept-Ranges: bytes
Content-Length: 373
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

www.reserved-canada.com/images/hoverimg/202404181510001028.jpg

196.247.231.18

200 OK

105 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181510001028.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x823, components 3
Size
105 kB (104871 bytes)
Hash
81f5de31c33677e15b0b6b080ecbd5dc
bfc1e0a44d95365a9f45ca21182022bd3e3cbfe9
ae232a4920ca38313d355d542c52002fee5c411d190d82aec921649c816de4ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181510001028.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:10:00 GMT
Accept-Ranges: bytes
Content-Length: 104871
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

o.pki.goog/wr2

142.250.74.131

200 OK

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ea85c32beb06621d3c98a9d9d5b8cf8
93a361890013c599f35ea545964fa81c05ecaf92
c21799b4716e3b725b841fc5f08734fb03ff8378d948256de6f8c71812cfa517

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 23:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.reserved-canada.com/js/jquery.jxb.js

196.247.231.18

200 OK

158 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/jquery.jxb.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Sat, 06 May 2017 02:03:44 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/images/60721257283023/Black_Reserved_Mini_Womens_Dress__GHMY96_3.jpg

196.247.231.18

200 OK

13 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Mini_Womens_Dress__GHMY96_3.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
13 kB (12734 bytes)
Hash
be427d5ab0217c76718199eccaa580bd
6ffc80b64b7530c991945ef743c5f208cddfd824
b066422aa00903e920ca8b486ae7adac772c2428a1cc05fb13bb7a8026199aca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Mini_Womens_Dress__GHMY96_3.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:20:12 GMT
Accept-Ranges: bytes
Content-Length: 12734
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Black_Reserved_Sequin_Womens_Dress__JQMN_1.jpg

196.247.231.18

200 OK

13 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Sequin_Womens_Dress__JQMN_1.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
13 kB (13160 bytes)
Hash
0d941656f56d7ec787762583c2cdd878
d6986eaf6db3fdca62f5bf3ba729ef302a28f075
00949f35c31c5c57b0dc91d408703fd44510e32af60ae0c6f036e484f06891dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Sequin_Womens_Dress__JQMN_1.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:20:11 GMT
Accept-Ranges: bytes
Content-Length: 13160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Beige_Reserved_Oversizedwool_Blend_Women_193.jpg

196.247.231.18

200 OK

14 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Beige_Reserved_Oversizedwool_Blend_Women_193.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
14 kB (14003 bytes)
Hash
ba8c36a162e2902b6bd47afee50e2b63
e6f1bde6dae35e6b16e369ed76eacf01c40f5500
d02176969d677b41099659d41940de03d199c37d3ec1f14aa62c9e100179aaa0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Beige_Reserved_Oversizedwool_Blend_Women_193.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:47 GMT
Accept-Ranges: bytes
Content-Length: 14003
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Black_Reserved_Patterned_Maxi_Womens_Dre_5.jpg

196.247.231.18

200 OK

36 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Patterned_Maxi_Womens_Dre_5.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
36 kB (35623 bytes)
Hash
9e283247a6fb80b3ec1a65af544849d5
88c0b6589cb5e63e65ea013c4b2c24bb4281da66
5c06745c331a862ef9f3f7a115737c667832f527bf115e0049a977e2d6fb2983

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Patterned_Maxi_Womens_Dre_5.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:20:13 GMT
Accept-Ranges: bytes
Content-Length: 35623
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Pink_Reserved_Polo_Style_Jersey_Womens_S_1302.jpg

196.247.231.18

200 OK

20 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Pink_Reserved_Polo_Style_Jersey_Womens_S_1302.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
20 kB (19744 bytes)
Hash
6435213723255b9a363e21b76c9574e3
4e34d2d20cc6c4aa3ec724e1b0cc9dc578a258d5
85b71233d1d61c9cc49bb0628ced789caa876c289f6d3caa3461af03b20afd0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Pink_Reserved_Polo_Style_Jersey_Womens_S_1302.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:37:54 GMT
Accept-Ranges: bytes
Content-Length: 19744
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Beige_Reserved_Patterned_Maxi_Womens_Dre_69.jpg

196.247.231.18

200 OK

22 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Beige_Reserved_Patterned_Maxi_Womens_Dre_69.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
22 kB (21479 bytes)
Hash
825bfc5ec97105b531d68474c5fec4b9
6a8a83bb41cd0e8bec339f8da352e87155645c27
18d83ae36495742979d761c5e43ac6faa514db7d9f3dfb4d20b5178e525f5523

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Beige_Reserved_Patterned_Maxi_Womens_Dre_69.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:21:05 GMT
Accept-Ranges: bytes
Content-Length: 21479
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Rose_Reserved_Simple_Womens_Vest__HRGK89_171.jpg

196.247.231.18

200 OK

16 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Rose_Reserved_Simple_Womens_Vest__HRGK89_171.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
16 kB (16488 bytes)
Hash
f875904c021ce14188109d08113ffbad
4b575076e27daf12d6cb891ff4a479a16f4c19ec
7aeee83db3a43300eb7a8c12674383ee1bbed9cf44ad25802be0dbd6b5ee5035

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Rose_Reserved_Simple_Womens_Vest__HRGK89_171.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:31 GMT
Accept-Ranges: bytes
Content-Length: 16488
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Black_Reserved_Pleated_Wide_Leg_Womens_T_1043.jpg

196.247.231.18

200 OK

11 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Pleated_Wide_Leg_Womens_T_1043.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
11 kB (10729 bytes)
Hash
928235ce4cee3f21612076e2930b6438
d62dccd7ccb5751e0d9be281b872ab9e9b6e0776
b88f63aa16c663ed57adf48a612141b32da0021647602b78dbebc3ede6993a33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Pleated_Wide_Leg_Womens_T_1043.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:34:28 GMT
Accept-Ranges: bytes
Content-Length: 10729
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Light_Grey_Reserved_Maxi_Womens_Skirts___1129.jpg

196.247.231.18

200 OK

10 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Light_Grey_Reserved_Maxi_Womens_Skirts___1129.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
10 kB (10378 bytes)
Hash
51271e713e26d4bc3715b4e77762a7ae
abf60c5993b83e1ddea84682e278db907f95ba22
0938fa24c80fd1246539258fed669b579e31ba77f60e54cb08c1dc2afd78b907

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Light_Grey_Reserved_Maxi_Womens_Skirts___1129.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:35:35 GMT
Accept-Ranges: bytes
Content-Length: 10378
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

o.pki.goog/wr2

142.250.74.131

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 23:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.reserved-canada.com/js/jquery-1.7.2.min.js

196.247.231.18

200 OK

158 kB

URL GET HTTP/1.1
www.reserved-canada.com/js/jquery-1.7.2.min.js
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 00:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/javascript

www.reserved-canada.com/images/60721257283023/Green_Reserved_Doublebreasted_Womens_Coa_219.jpg

196.247.231.18

200 OK

14 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Green_Reserved_Doublebreasted_Womens_Coa_219.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
14 kB (14494 bytes)
Hash
a0b18f98aa537f5cae456faca42df575
c9e335054159ff52513a5c5efa0ade858a077330
82d2d6fdebd42321bae483360543ceecfc31f1e3d818c56b0ee1d6d000815eb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Green_Reserved_Doublebreasted_Womens_Coa_219.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:23:12 GMT
Accept-Ranges: bytes
Content-Length: 14494
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Pink_Reserved_Linen_Blend_Womens_Vest__R_153.jpg

196.247.231.18

200 OK

16 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Pink_Reserved_Linen_Blend_Womens_Vest__R_153.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
16 kB (16363 bytes)
Hash
c1dd132bad397672cdfdf6eca9b1f983
3c7724d7f573580c1b82571526bc9552077fd5b2
1a40c5beaecf77d0e2a4d951cade85f08d86218ee2f28888a32379882b7c6bd3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Pink_Reserved_Linen_Blend_Womens_Vest__R_153.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:11 GMT
Accept-Ranges: bytes
Content-Length: 16363
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Grey__Green_Reserved_Boxy_Mens_Tshirts___1685.jpg

196.247.231.18

200 OK

13 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Grey__Green_Reserved_Boxy_Mens_Tshirts___1685.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
13 kB (12754 bytes)
Hash
04fb75cc2a59d4490e7e1b08e3685dd3
9aa82f57cb95a0c265fbf11c45ad09764de2fd7e
1063f868bf5fdef12969fc6bc884329da3e45eba0fd6463c465216cd8c8a3558

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Grey__Green_Reserved_Boxy_Mens_Tshirts___1685.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:42:33 GMT
Accept-Ranges: bytes
Content-Length: 12754
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Light_Blue_Reserved_Bomber_Mens_Jackets__1911.jpg

196.247.231.18

200 OK

22 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Light_Blue_Reserved_Bomber_Mens_Jackets__1911.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
22 kB (21638 bytes)
Hash
2c900fcd9ea0a6fa3fcd02469c547123
9984ac90aca03db80cca9ee29d27bb414f5bbd62
44d09b138a87a912dea8790c7cf3a9b811dde0834951eb692b2a332b831cb3ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Light_Blue_Reserved_Bomber_Mens_Jackets__1911.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:45:23 GMT
Accept-Ranges: bytes
Content-Length: 21638
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

142.250.74.163

200 OK

128 kB

URL GET HTTP/2
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.reserved-canada.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reserved-canada.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 09:57:30 GMT
expires: Sun, 12 Oct 2025 09:57:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
age: 219795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.reserved-canada.com/images/60721257283023/Green_Reserved_Faux_Fur_Lining_Womens_Ja_184.jpg

196.247.231.18

200 OK

14 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Green_Reserved_Faux_Fur_Lining_Womens_Ja_184.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
14 kB (14199 bytes)
Hash
b92013a40e200a208aafca07770c9958
981c2ee49ee08a481bdf627ad76dfe704ad17807
98ee8f8f302e2c6110fa3464dcbdc9e3358955fb8f3246b52078113968fc7a2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Green_Reserved_Faux_Fur_Lining_Womens_Ja_184.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:41 GMT
Accept-Ranges: bytes
Content-Length: 14199
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Black_Reserved_Sequin_Top_Womens_Tshirts_574.jpg

196.247.231.18

200 OK

18 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Sequin_Top_Womens_Tshirts_574.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
18 kB (18183 bytes)
Hash
6b5df4d0a455b434b540110925ff1b7a
d8fa65bdcbb7e128dbf1c38c445a58b460ca6207
7b69d9cb1b62bb1ff2cf0f0abb6b25852b6cdb521925cefe50d37673330c55c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Sequin_Top_Womens_Tshirts_574.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:28:03 GMT
Accept-Ranges: bytes
Content-Length: 18183
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Light_Grey_Reserved_Alpaca_Wool_Rich_Wom_1186.jpg

196.247.231.18

200 OK

12 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Light_Grey_Reserved_Alpaca_Wool_Rich_Wom_1186.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
12 kB (12418 bytes)
Hash
9c063012ce3f142c15f5c66df8a10184
8edba898ae74f7ac69f3a480efa8caf2dfc7dd75
4950ed34ea589df9091f0a27f088c84175aa65dfdbf82728dd38e6be18328797

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Light_Grey_Reserved_Alpaca_Wool_Rich_Wom_1186.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:36:19 GMT
Accept-Ranges: bytes
Content-Length: 12418
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/hoverimg/202404181527025924.jpg

196.247.231.18

200 OK

80 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527025924.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:19:04], progressive, precision 8, 1200x514, components 3
Size
80 kB (80436 bytes)
Hash
eb32dfda2a0e951d234487c24634b34e
63a76666a97f79038e855c5f2a321e8901c58bb0
d2674488fdef0cffc71f52af8bedf9f4423135f0e93f541e851d9ae468adfdfe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527025924.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:27:02 GMT
Accept-Ranges: bytes
Content-Length: 80436
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Dark_Turquoise_Reserved_Cigarette_With_W_849.jpg

196.247.231.18

200 OK

12 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Dark_Turquoise_Reserved_Cigarette_With_W_849.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
12 kB (12017 bytes)
Hash
55e648d216db586582f7d54f6b48f6d3
d2d0a6d29aa6c7051088ab23bb0e679f796674d8
c5cc806dd6cf5ccf8ba9a0f80011b48f2c7b37bff554b3a877775ad5233f55dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Dark_Turquoise_Reserved_Cigarette_With_W_849.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:31:54 GMT
Accept-Ranges: bytes
Content-Length: 12017
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Green_Reserved_Cotton_Trench_Womens_Coat_181.jpg

196.247.231.18

200 OK

17 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Green_Reserved_Cotton_Trench_Womens_Coat_181.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
17 kB (16723 bytes)
Hash
8123530c0858bb3d538a985fbd53823d
63fa961d6a686771ddc4adf9a78127d4684d4017
5a86fceed4bf979b9874548e3f96373da73fac25323e5a078e5db33034deb6ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Green_Reserved_Cotton_Trench_Womens_Coat_181.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:38 GMT
Accept-Ranges: bytes
Content-Length: 16723
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Blue_Reserved_Wide_Leg_Womens_Jeans__CEK_728.jpg

196.247.231.18

200 OK

15 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Blue_Reserved_Wide_Leg_Womens_Jeans__CEK_728.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
15 kB (14570 bytes)
Hash
3828f5eab005628bf77483c1385ee607
37f4d112bf95a5c1bb85e264aacee5a207c8ea63
71caf6ac6568a9aff9c0f49d965fbc00ff7775b62b56432e7795300c593025f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Blue_Reserved_Wide_Leg_Womens_Jeans__CEK_728.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:29:52 GMT
Accept-Ranges: bytes
Content-Length: 14570
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Black_Reserved_Striped_Arms_Womens_Shirt_338.jpg

196.247.231.18

200 OK

14 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Black_Reserved_Striped_Arms_Womens_Shirt_338.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
14 kB (14334 bytes)
Hash
8165a4811f5b44fc8ac11701cd2c9fda
9b8204f69548339a325c9b53074fcb89b7bd4592
79591f4a21da04898cdfa51fea50defd7b9cd9d30299b4cc4810574f7a1e13a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Black_Reserved_Striped_Arms_Womens_Shirt_338.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:24:57 GMT
Accept-Ranges: bytes
Content-Length: 14334
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

o.pki.goog/wr2

142.250.74.131

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 23:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.reserved-canada.com/images/hoverimg/202404181527348750.jpg

196.247.231.18

200 OK

90 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527348750.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:29:43], progressive, precision 8, 465x621, components 3
Size
90 kB (90104 bytes)
Hash
c6284881c8f97d2f58df071baf08e259
80ae6bd9b87146ace376adb12f1d24b4ba0c4e92
5b6cfa07c71eedbad7a0592426c2996461e5c653a8a58e9408ddd944b2428cc0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527348750.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:29:44 GMT
Accept-Ranges: bytes
Content-Length: 90104
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/includes/templates/reserved-canada/js/theme/default/layer.css?v=3.5.0

196.247.231.18

200 OK

17 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/js/theme/default/layer.css?v=3.5.0
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
17 kB (17360 bytes)
Hash
94ae7c3e6834f7e25a85ff97c2d9cd88
953ea6a358fdbd59f99eef88c93f467a749d27e4
38d12ae4119d3c7ae42cf9ffb240d53b351716c8f44ae4b1acb0f4c15b003eb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/js/theme/default/layer.css?v=3.5.0 HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Tue, 29 Jun 2021 19:47:12 GMT
Accept-Ranges: bytes
Content-Length: 17360
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css

www.reserved-canada.com/images/hoverimg/202404181527025343.jpg

196.247.231.18

200 OK

190 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527025343.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:19:16], progressive, precision 8, 1200x514, components 3
Size
190 kB (190222 bytes)
Hash
a3bcd48a99d591cda3f1b13558108c97
06fff3d961deddec372135494d01c1ea0641dd16
0077d4a31be644eda4899284cb357a186b48099fbdedbba562a8241e74fc2569

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527025343.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:27:02 GMT
Accept-Ranges: bytes
Content-Length: 190222
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/White_Reserved_Floral_Print_Womens_Dress_60.jpg

196.247.231.18

200 OK

23 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/White_Reserved_Floral_Print_Womens_Dress_60.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
23 kB (22688 bytes)
Hash
7368ec76e3b8ca350ded3aaedd5efa12
8bb0aaa7f1ab96b2ccf45a344f7842b4e8b25af5
8c3b3e206f4a2896c70fe6033c53b1a6e9fd58b60e7d097b8387b8c95a013649

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/White_Reserved_Floral_Print_Womens_Dress_60.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:20:59 GMT
Accept-Ranges: bytes
Content-Length: 22688
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/hoverimg/202404181527342482.jpg

196.247.231.18

200 OK

76 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527342482.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:28:50], progressive, precision 8, 465x621, components 3
Size
76 kB (76017 bytes)
Hash
00dc5917a8bfb07d5eee28da500296ea
ccd8bbdcfb76e441e41d5324dd6533981172ba5b
bc2247c8c35743029af8c261c8786f2e34de4fb60c23e884fa2cd77688aebfea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527342482.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:28:52 GMT
Accept-Ranges: bytes
Content-Length: 76017
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/hoverimg/202404181527026810.jpg

196.247.231.18

200 OK

85 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527026810.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:19:26], progressive, precision 8, 1200x516, components 3
Size
85 kB (84802 bytes)
Hash
ad38608225b30d7a0b2cf67241d7c545
3892a79158fcb53821530515c6246454375ec02c
61936c122f87b8b74624688a629702f52f4ceafadaf789b61c8be97603d3323f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527026810.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:27:02 GMT
Accept-Ranges: bytes
Content-Length: 84802
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/hoverimg/202404181527347175.jpg

196.247.231.18

200 OK

72 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/hoverimg/202404181527347175.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2024:04:18 15:29:27], progressive, precision 8, 465x621, components 3
Size
72 kB (72328 bytes)
Hash
86cce14e91b916385c83866cf25e451c
edf5f35ac746fba1364caf53a4f5189a261a2c95
cc4b7e9d8a7d232598c18f9ac1c548622124561b0ed87b3de97c47ae5dd17ee8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202404181527347175.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:29:28 GMT
Accept-Ranges: bytes
Content-Length: 72328
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Green_Reserved_Lyocell_Blend_Womens_Dres_7.jpg

196.247.231.18

200 OK

15 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Green_Reserved_Lyocell_Blend_Womens_Dres_7.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
15 kB (15336 bytes)
Hash
dbff4a99404c65245fd6e1f1c95c4369
7e807ea2a22e93c5fc6d7295d552a1c8f90c00d5
bd20b50d4bfba947b910dae2f32f5d8f4b35229a92dc28612ef5163360d168f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Green_Reserved_Lyocell_Blend_Womens_Dres_7.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:20:15 GMT
Accept-Ranges: bytes
Content-Length: 15336
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Cream_Reserved_Metallic_Womens_Blazers___146.jpg

196.247.231.18

200 OK

23 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Cream_Reserved_Metallic_Womens_Blazers___146.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
23 kB (23417 bytes)
Hash
8dc8e3438e69e6adada23b3cf7a89de1
aad6d7bad2cf383734f76429b4ea64ebcad345e5
52efb410a346922fe0026370e5747873b86ab04e33c586a3cb37ea4cd9878367

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Cream_Reserved_Metallic_Womens_Blazers___146.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:22:06 GMT
Accept-Ranges: bytes
Content-Length: 23417
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/images/60721257283023/Blue_Reserved_Bootcut_Womens_Jeans__CQBW_782.jpg

196.247.231.18

200 OK

16 kB

URL GET HTTP/1.1
www.reserved-canada.com/images/60721257283023/Blue_Reserved_Bootcut_Womens_Jeans__CQBW_782.jpg
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x400, components 3
Size
16 kB (16516 bytes)
Hash
565a605af30cb8d4e9020cc7aed67c7e
4308fb4605eac70ea7ddd19679d16bcb652f4a60
9e6808664d0c78b5e222eabb7a1bcb8e381af0d547a88f41b417091e84b9322f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60721257283023/Blue_Reserved_Bootcut_Womens_Jeans__CQBW_782.jpg HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Fri, 19 Apr 2024 02:30:45 GMT
Accept-Ranges: bytes
Content-Length: 16516
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.reserved-canada.com/favicon.ico

196.247.231.18

200 OK

1.3 kB

URL GET HTTP/1.1
www.reserved-canada.com/favicon.ico
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1269 bytes)
Hash
5feecc6d0e9a37fd7dc06755b53072d2
7e1f0613a7dc5affd6743ec9816b230b34457a46
c428d8c872dca719a53796d0e1158484dc4c8ea0b55c45da82e7e69ce7e0584d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2024 19:00:56 GMT
Accept-Ranges: bytes
Content-Length: 1269
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/x-icon

www.reserved-canada.com/api/country

196.247.231.18

200 OK

110 kB

URL GET HTTP/1.1
www.reserved-canada.com/api/country
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
110 kB (109930 bytes)
Hash
09889b2376c2e35c09c677d776b27e59
7ec15818b6e8c9e7a0583cc9f0322983072c373c
6100955edd4b70f39aed0e5fad4ed2541ba82cdf3c404decb29b3e13d2d54a49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/country HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Wed, 13-Nov-2024 23:00:45 GMT; Max-Age=2592000; path=/
zenid=dq2juhoblu2018o3g8mvor7160; path=/; HttpOnly
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json

www.reserved-canada.com/includes/templates/reserved-canada/css/ajax-loader.gif

196.247.231.18

404 Not Found

24 kB

URL GET HTTP/1.1
www.reserved-canada.com/includes/templates/reserved-canada/css/ajax-loader.gif
IP
196.247.231.18:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.reserved-canada.com/
Certificate
IssuercPanel, Inc.
Subjectreserved-canada.com
Fingerprint40:C3:A9:E8:B3:5E:64:8F:F1:A1:3C:1B:DA:F4:B7:F5:6C:79:DF:EF
ValidityTue, 10 Sep 2024 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (16355), with CRLF, LF line terminators
Size
24 kB (23536 bytes)
Hash
e9bde7012ccf74f7865518d08b1fd250
7abab84d6fdbe0f534ce7ddc627f2f3d8f3156f3
77ec0f116d883be230a217b2c6fad94be0ef6bbe3934d5a5144c76452bae7461

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/reserved-canada/css/ajax-loader.gif HTTP/1.1
Host: www.reserved-canada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/includes/templates/reserved-canada/css/stylesheet_slick.css
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Mon, 14 Oct 2024 23:00:45 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Wed, 13-Nov-2024 23:00:45 GMT; Max-Age=2592000; path=/
zenid=v6c7uesc8m600ksv5a0mfr8vh5; path=/; HttpOnly
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

fonts.googleapis.com/icon?family=Material+Icons

216.58.207.234

200 OK

565 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://www.reserved-canada.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint80:2E:9C:80:BE:20:08:CB:81:6F:92:4C:83:5C:1E:73:D7:6B:F3:27
ValidityTue, 24 Sep 2024 03:17:04 GMT - Tue, 17 Dec 2024 03:17:03 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.reserved-canada.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Oct 2024 23:00:44 GMT
date: Mon, 14 Oct 2024 23:00:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by