| sw-themes.com/porto_dummy/wp-content/uploads/images/shop_payment_logo.png | 172.67.187.134 | 200 OK | 1.6 kB |
URL GET HTTP/2sw-themes.com/porto_dummy/wp-content/uploads/images/shop_payment_logo.png IP172.67.187.134:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectsw-themes.com FingerprintB0:B8:DA:03:E8:E4:C2:FF:43:12:C2:4C:CF:A8:C6:A8:1C:F1:0C:DC ValidityFri, 26 Apr 2024 18:27:08 GMT - Thu, 25 Jul 2024 18:27:07 GMT
File typePNG image data, 240 x 32, 8-bit colormap, non-interlaced Hash3084214edcd42575abb8f85b339a273b aeb0c655b5ca1e557f9e1b2f928f4eb1e1efd511 1368c2b3f5f7332592f321051c5b39bc794eaa0e584157d7926781c7d1e83579
GET /porto_dummy/wp-content/uploads/images/shop_payment_logo.png HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:55:43 GMT
content-type: image/png
content-length: 1616
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 02 Feb 2023 05:38:50 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ifgvG5Owy1fSkACI%2BRZ1XM4rb1R6%2BUnCEdZ3LLK%2B8Ig9vcircOomwxvXX1iVs%2FFw4VlcYgVwZDrfgoNQhjMLmyEGJtBnYCk%2FMFOk1CMXpl1QFp3wo5iVV4%2FW3AvJ7sit"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae976901b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1713103558 | 104.21.56.90 | 200 OK | 28 B |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with no line terminators Hash0320c07ca5fb49adf34c5361f29f3582 92445afbe317486d33d94a8b9f5cbb3e319fc727 4c1f9850e1c7c253ac387218e478215265546c83f35b8f3fa8d1163d9b4b8bcc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
content-length: 28
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-1c"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7NOnnpNSyuYYuE2t8RxqKYhimwyL2tFRrUU9dWQigMqBZyp4bBu0sPbtFTx6Wk1uqEK5WaUr2gYR2K2wDZWkS%2F2XmVbJHVPKAYQHjw5dRJPQchlP59WlxsgMiYeMaxojaihfXBBXzJ35"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae96afa65689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_1-85x85.jpg | 104.21.56.90 | 200 OK | 3.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_1-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hash3f2ac2f505efc04921434a97dd3293bd f8a4e7acefc344e0f95973b13c2af041d33fa024 427518f547c95140834a7a12cca10f6404c82fdd7e5e6bbbcb6ff0c94d858ff7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_1-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 3056
last-modified: Thu, 18 Apr 2024 23:13:29 GMT
etag: "6621a919-bf0"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Ipo5zi0a3pMWt%2BMnFATMUAj2WpZr9R%2FHi4ydS%2BpaTirYdKZi7ZskAtu6ytyIvwseULyfbndlUb1vmL3x87Be%2FiSsbjdLqPou8av23N3bT%2F7H75a6tZllMIHq0XhE9%2BlStK7eUTfX6Ca"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae97382d5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/18/nina-studded-ring-ring_0-85x85.jpg | 104.21.56.90 | 200 OK | 2.2 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/18/nina-studded-ring-ring_0-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hash8f5de0de7b85c18297c8879fb8ac4d84 abdca9ceab4ad0260a9fb644526f55a466511c89 62bce54f8caedbf43b578c0d59184489628808c349f51435d340b896ac32de11
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/18/nina-studded-ring-ring_0-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 2168
last-modified: Wed, 17 Apr 2024 01:43:51 GMT
etag: "661f2957-878"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uhDdZzP0WH9d9YumTUbXBSRYUuoJkftsUm4o99E73BgdqQxMMbIzMtgkfXG1UnZtPc4STWgwixSEsuqDlYelGQLzoyO3D79bLs%2BnRU8lI3S7fPzpbEebNtHDS0NKn59hkQo%2FGbjQ31KL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9738245689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.56.90 | 200 OK | 43 kB |
URL User Request GET HTTP/2IP104.21.56.90:443
CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (8815), with CRLF, LF line terminators Hash4481ddcdb6349c5ee74c6ce1a56545bc d3be5683c30afd500f1f2fdd735d66aabcdaae74 f6afcd9011903e4440a2ce9035f330ee556f01429f0fb0c1b33c763b1b6530cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:55:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
link: <https://www.amanornaments.shop/wp-json/>; rel="https://api.w.org/", <https://www.amanornaments.shop/wp-json/wp/v2/pages/143>; rel="alternate"; type="application/json", <https://www.amanornaments.shop/>; rel=shortlink
last-modified: Fri, 10 May 2024 05:55:43 GMT
cache-control: max-age=0
expires: Fri, 10 May 2024 05:55:41 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PyMxtwmJFFxeqoDJqIESGRXU61BS9M4hU8vCEGE1xI%2Bs1656QHhYuAC7RwcdTKYlZldAC9CODjadzqJmVZ2xxhWUT7bGqkm5%2F5Itfrbdk%2FAzDQQrvX5s08za7P9h6vqQAP37J3VxcMK8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae86cc5cb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_0-85x85.jpg | 104.21.56.90 | 200 OK | 1.9 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_0-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hashfcb21a7616c4ccf86959c0a4b4dcc4ff 9a3f926cf1dc473e7cf23f867e8824e32b95ca3a c403aba141b49cc0cea6b8aa3d7cbe3fcd68f2adf963cc62b48a4be5c5a6c99f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/82/micro-tennis-necklace-in-white-gold-jewelry_0-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 1933
last-modified: Thu, 18 Apr 2024 23:13:28 GMT
etag: "6621a918-78d"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0KojQsBBvrKzXxyCP7uCvORbceOHkhFWhUuWO5yxN69zOn67Z18oal%2B1CquwuA8Sal%2BfMCcZUAZxDQveEjifdRnBRk%2FC%2FyEqVWEJzkgt3gAGiDmG3Qaz7lsvxDUYc44bQ8Q5qUYpoLBQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae97382b5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/18/nina-studded-ring-ring_1-85x85.jpg | 104.21.56.90 | 200 OK | 3.4 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/18/nina-studded-ring-ring_1-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hasha73c4ed7708113c2790d63668a5a32a1 0f5d2e014d46ae491db46f4f0c3a0b84db309617 8073ec13e99a272c6d44fb161717b99b6fccc60e49b34b00cd817074e5b38072
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/18/nina-studded-ring-ring_1-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 3369
last-modified: Wed, 17 Apr 2024 01:43:54 GMT
etag: "661f295a-d29"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=di9RMWZb0u0Vn9ZoqIrz671p8CwOjU7GxUd7Xz%2Blnff4Rh%2BSZFIxvoeqa8NHi2PkpCFMPzsRY4oFtoyg5GvMATRlHUwiGZuY6quJ3T0RqG2NtbNNKeIRcj6RuM%2BxngKgmcFHGtlB0Lif"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae97382a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_1-85x85.jpg | 104.21.56.90 | 200 OK | 1.3 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_1-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hash21b8f3aa06cdecc899e4e5e02a54341e 655d1b17fee87215199bd6e73a89b783d088b2b0 8054a9655e28fb9712bea010329eadd13371c1fb8d92da1efee9e678ce10721d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_1-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 1339
last-modified: Mon, 15 Apr 2024 20:21:35 GMT
etag: "661d8c4f-53b"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WAk9iubMKRYrUbGfotj5jSlHpRKw7YZkK8wNLZoY24mxpv3bxwDsZzA%2F%2FWqVNCvaixnA%2FOTOTseUh4Zg07wVqtzXXP8Ghm3DzS271q2QEU6GTiUPRy1QwVARYk7X%2B8aLQMs%2BtwxHsxyn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9748345689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/72/cnnbs-neon-thong-all_0-300x300.webp | 104.21.56.90 | 200 OK | 18 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/72/cnnbs-neon-thong-all_0-300x300.webp IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typePNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Hash094621d3d43e78f7675ab2050819b82b 683aa69c3c49a16b61ce3062eba43e8da9972754 4ffa11f9ccba1d00798ed25b4ab8cbb14c168d06309ea7754c4de7bb6bebc5ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/72/cnnbs-neon-thong-all_0-300x300.webp HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/webp
content-length: 17998
last-modified: Thu, 18 Apr 2024 20:39:02 GMT
etag: "662184e6-464e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4eHvddn9MgBM%2FFBAP0uZJkMsEeM0snkdzjFoR3eEMUdKfLpYl1Yq0fcOeyRlozNcMeNg3bX7kkrYS9iiih2UVj0oFvOs7iVCHqSRr6OQTc5z68bxpCmnvhX3jXyNeSdQlOmqOyS4uAx1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae96bfc05689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/72/cnnbs-neon-thong-all_1-300x300.webp | 104.21.56.90 | 200 OK | 18 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/72/cnnbs-neon-thong-all_1-300x300.webp IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typePNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Hash6b5dc7a27fc705a12673c9a6eac94882 6c46a0fa49d30bc91951e20aecf9ba8b4fea79b6 f16d3a83ce73446517d2e9f08a73528f574a489ee65a8cfb5f8e502c8c681c4f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/72/cnnbs-neon-thong-all_1-300x300.webp HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/webp
content-length: 18019
last-modified: Thu, 18 Apr 2024 20:39:03 GMT
etag: "662184e7-4663"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PLZ%2FI8KZaFDFndP9UXklfsGj6c%2BRuPLB8n%2FlIvjOUf2IsfTO9teMJ524e77OVlVTpeq%2FcvRDtI0sGYxU6oGvwnBBjiZWv1n5uMIe%2Bq%2B365xhAa%2FKc6JyXozhF%2BouI4834V6P8%2FyTJ668"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae96cfc35689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1713103558 | 104.21.56.90 | 200 OK | 6.2 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash974ec2b9139b3a486f2249f37f9b9c0a cb9a182a952e3004c78fb347edb4916220773ceb 4adac0d3c853f89866272ad12b4becd6cab14c7b19d75fccbc1a37f3a044904a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-3f5f"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MF93N3sGP6qAJPjbJ4VlLVZrAx8Ro56i5MCDMVrw7eaCKeSDYoZ5nmBzsSGo2Vxx3gq77vKqzXkSMKNUj4wzeeJjwdOOGd0zpFcqD%2FdZlfa8Ap%2FujPPUXEto4c%2BPeUSCh4sMGqXMes%2Bl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f725689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0 | 104.21.56.90 | 200 OK | 7.7 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (25294), with no line terminators Hash32f353893906d18e1fc351066e4b263a c8ed65fffa387077fe4ba700b7913bbb59f90436 80d7254b4e01cf17bf56254fc3698a81ce127553bc9eac47ef24b9e2a94cad8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-62ce"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BOHKmGwKq7Fe8Ow9RSQGPGnEBjwHCdxr7uIM%2Fsccjvbb%2BuGH4dpBM4gIjgESIzz5d7h5vyXQDL8WaINVEgfkDi0hyLzZMC%2FHDtB9RGQqWjRw8oZQ15ayNfVz4LdhPA2WLn6uRxk%2Ft27v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9758405689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1713103558 | 104.21.56.90 | 200 OK | 25 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashfaf68f8bf54c8f0be2d84cd291ab1bad 79018d3c5df97807b7c73e6101eddb9c282242fe b4ea7725686544ad0f1247e65ace1d464f41b5ee6e35ab0ddf125b7bc38fe0dc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-a84"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JOy3SBVMUewGNNNmL6S%2FAUqLSz%2BqYszPZQccO4x5TD0wItWLxx9JsjW%2BwG3zcp8h%2B%2B1y8GjijHXJlHW5ESfdubhbGjI04V5NN%2BkoZPAHOwW4g%2FxYXnSQPxMee%2B2f%2BdHuX%2FSkDiyJufBP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f615689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/theme_css_vars.css?ver=1713103558 | 104.21.56.90 | 200 OK | 79 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/theme_css_vars.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash13896f5fa52cda30c4de5906e255240a 687bf5c1caf427949d567fbdea2fd4ed7dba4bbd e76057f8bbba3eaa4f9e465affca463da4e869d3032a77808c79a915bef10576
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/theme_css_vars.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-16a2"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qJViBAc4WA29ABR96YZBb%2BulblOitMBQBCmNRG6Y3G5fpCa9xmA3zgLCxwpW7ieF6YPED8KaQK01OQYvadUDzVKzLdGaqaWVZXNn9x%2BnYBEMJDFPFZS3V2COkXZzk0MHjcnmS5OOqwEQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f775689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_elementor.css?ver=1713103558 | 104.21.56.90 | 200 OK | 11 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_elementor.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash2622a8e192abe61cd6179740d1df36ae 4da6baa67a76b1b22bb17f87408d72ee8ada402e 17ef9b8ee352b0dcde6ffb321af3fb163be7c469291257b0b82d0c35d5a8e821
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme_elementor.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-21b4"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Msn5LbzIEwPyVT74ctA0hTAYqDp5Fcp6vbHAVt6Hq%2FVuhFGWicEFhI5aEYtM%2FTnD3PWmlJvgyPh%2Fw%2F2vXKCXdyo5sh8srS6NlQSOj%2FIVcyUhxzY1Bamaw3pqJFdA4tOBfaJUquQ45%2Fjy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae969f8a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/emerald-star-necklace-cannabis_0-300x300.jpg | 104.21.56.90 | 200 OK | 8.8 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/emerald-star-necklace-cannabis_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash61a4e68cbe931f83b724cd43b45c3de7 0e15472316048af339fbf969ab5b5cfe26d79382 f1b48898fdbae987f90ae4d1e53fabbb41fe8042d736fa88d56b435570b85049
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/emerald-star-necklace-cannabis_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 8767
last-modified: Fri, 19 Apr 2024 07:14:37 GMT
etag: "662219dd-223f"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YWh4Pg7GPPFn4hx2XZIIVz8Edhq6NnwYQ9yyQ0%2BXxM2rq1yBeucGCx4VwrBAcq8vuPdl%2FO%2FgocfCfIZMN0nN1cyb6iuefktKUquCoq3f2lAnpyNpm2zHUP3xUeGs1umchpIz5PFhyk3Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f8eee5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/emerald-star-necklace-cannabis_1-300x300.jpg | 104.21.56.90 | 200 OK | 7.8 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/emerald-star-necklace-cannabis_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hashfd352fd9350190e9ab7c85c4d9c33c61 1889b046da15597ba27b6999b691e25c74a6395f da53508566620099a0adb4e512b4bb84e763fb5ba2749949e866225fb5acf3e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/emerald-star-necklace-cannabis_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 7778
last-modified: Fri, 19 Apr 2024 07:14:39 GMT
etag: "662219df-1e62"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tdeDg0JrZrByJ0BNFlqcsQSf65m7L3Ns26wpYPOQbK%2B8LF%2BO2nQJBzUrkXrxcgJ5HwlU4%2Bwqn%2FyyFGQztIMQ4yMzn8YOxUYDNEuwRdV13fvlobAUI7vp3C1DJ0ZU2u8sx6RgvJDADrOa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f8ef15689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.1.1 | 104.21.56.90 | 200 OK | 1.6 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashc30c69fee3706491eb2a9d3133f3207f 9b8df0025026292fbe055fea10831f07edd52b7d b2c4fe79f926d3694f17fe7da51f7c82c0b15e6025e07a43875c82f8d28f8010
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-b7b"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMJyWxORi2eAhHbl3POm2yGB%2Bn0EKfd8wEkdRtq467lYYz7CWDdo4sZ5H0e7Ebbf9qFKGf3RR%2FVNzhM7yLsSZaI55kkKZBAYAz2eFKfviIXmrd2LR%2BHo3kZvu7s6uKZ%2F6ke9b%2FuP3pcV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9788885689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 | 104.21.56.90 | 200 OK | 7.2 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash16ea532d61af65341ad68d68ef8317ca 2af13eea13338c85d3becd6c666b97c8550a3b8c 4e4b41558052104faa2d3b7d15717bacaeeae00d103f459361094ab28c8635fb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-735"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=akAFo7HzONCSpStJB4nJr6J2om5iWa%2F6DIscOt5kqg9XZOCV0YPlfhUWjpfXJHp1%2BWRbsiBmPZooD5w7y9QYojvosE1HXRc9WInTLsYUcrlBvqlS%2Bv66Cfboj9XPteNmmr986he7O7WB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9778745689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1713103558 | 104.21.56.90 | 200 OK | 11 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashe82e68e1ffe909b75ce46eff0407fa30 2f6d3401b3206ec9686579becedbc220e9d60e10 4f9f2025bd92a4713a862495ca21c1faa2c453a656bc2075a51e5ef7dddc7801
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-2a11"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XlKgBAx41rUQnsLq5hp0R7WGvJrVaqDgjKlNDme9zdccN33yNi7Ff%2Bz2%2FISRXc8w4cv0Cpj2Z7kjgKJipZ81oHz9X%2B%2BFiDQyYiPQlHrrAgH5smWjNkFHVbpD5P8dbFX4EQXCVFbH5asH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9768655689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 03:25:26 GMT
expires: Wed, 07 May 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 268219
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 | 104.21.56.90 | 200 OK | 9.2 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash61cd8e82a4fc599ab96aa082f4afb6a0 ff8d9f824664b3ecbd245902b26f667d27307d34 043c8a3cad25f99ab41c36615086d54ed417b7923ab8be7866f2b408a9a91e61
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-3a4f"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DC1Xv%2FFxB9F3nJBRknghMiiEbTxV2g1LHAVHxXhSqg0gD2bLT%2BtzF2dQcuufrcL3NzjIMv2voRSVLHo4D80iqKoE7R40kTdqLpFdILYknYOAYaJ872i%2B0CGc%2FLXWHWmNJhzPq4CCxfGZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9748395689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 8.0 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0 Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 15:13:04 GMT
expires: Fri, 09 May 2025 15:13:04 GMT
cache-control: public, max-age=31536000
age: 52961
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7824, version 1.0 Hashaf4d371a10271dafeb343f1eace762bc 6d11d743bc3cfb169d70bc86450f18351dc1a905 60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:27:59 GMT
expires: Sat, 03 May 2025 06:27:59 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:57 GMT
content-type: font/woff2
age: 602866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/silencer-necklace-armament_0-300x300.jpg | 104.21.56.90 | 200 OK | 8.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/silencer-necklace-armament_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hashc097e2157c1bd7370ef49cd18cef2547 f477182c8e6191b72cb9118da5aadca591f0f65a 0e48cd159d5e7b7081930795221d87e58be23e462e297aac81d66cbf35068a11
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/silencer-necklace-armament_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 8103
last-modified: Fri, 19 Apr 2024 07:06:15 GMT
etag: "662217e7-1fa7"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4sLFlX5%2BfaWPSA6eA0%2Bqifckhu255rzQoQ04TgwaajpyqQ%2FzMVqS9ph63EdSy7Rg6l4542dp2LtKKYI3%2B63C%2FDwBjz9yEhhAtFUOaZED9rfGIZqEiSDH4igdd4aUCGx5HKrUIaUoGCQq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9f015689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558 | 104.21.56.90 | 200 OK | 107 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Size107 kB (106733 bytes) Hash080fc679af321d389b0e0a8bee1d8271 d5cb72de428f406e0ac276b4c000d53193b134bc d68bba3ed6d726980bd5d9c69b9d5f2a6f29448f15e799f4e48dc62748349ec6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1c24a"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e9SVMXgVAcftBe7JpJcaWKJiu%2BtEoguoLOSzCjyPdc%2FFMbkZbhnNJjEu1Ku8UJpqLpUd689nEloHsul4yVkAKBnU9%2F0mLVcSsxK%2BcYg4LNtidGTRQUixuCdn5f6r6xmaIteRqEekZtiU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f7b5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 | 104.21.56.90 | 200 OK | 77 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashad8b69c9450f89e90a1ad44fb583d9d8 dc81bb89b0285f66800c6fedfdcc6653319ef376 e1590e8715a2f83e7630e9cb3aa36724356d765d74df91fb35eb8602f0a92387
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1ca7c"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w9IanIxELORqSPLzJhwK%2BW3%2FwciayGo8YkZ6GULmvI9yyWDIzrYMitHFLrwkYZ7yN6RoCRBwzBnegu98fSRKG5itVlqG59ODGtR1rPW6NZBf4%2FhK%2BEQxTHeVHP8Lf1KFRhYecaYkL5Fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f705689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/fonts/porto-font/porto.woff2 | 104.21.56.90 | 200 OK | 55 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/fonts/porto-font/porto.woff2 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 54868, version 1.0 Hash12f09cf1816f03eadc287d279b5ae526 45cbd4c2a723cfd8512d64e04dd42ce965170c11 9e97d3c07ef972e6ef77a535f387ad3244fae1c56aa26586a1ef6f25691fd217
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/fonts/porto-font/porto.woff2 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: font/woff2
content-length: 54868
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-d654"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GffDeTy5hhFz%2FARJj95tCbVhth7TRjEpnQVYUZhBENhy9WVTmX9a%2BHHqtqoRws7fkQbPzWnX7AQvX5aAe%2BklFe0zslTQIFa%2FZZ%2FB3I3JJ7hfacQyo0QZru0kWxDzEF5Sztgc%2BAFvLfvd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9c1c525689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/images/select-bg.svg | 104.21.56.90 | 200 OK | 727 B |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/images/select-bg.svg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeSVG Scalable Vector Graphics image Hash1c387339920f4d0e96f601d25b9e1bef 2aa1487c1416845dfab24e800e09dd087b783f00 801bbecfe24ea20eb49f8d9bbada36d10d17b1389f13ff46152c6119612cfb8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/images/select-bg.svg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: W/"661be2c6-195"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5KV80LiX6Ds2nW0pBop4g7XP40I952N6tRt06OofXxItELIwYUwjiTnnBG3ZzIDjBQKypBmE6ig4pmUsrwl9I1MjTviNSB3GVTXU5YWyEmjHm0qaKNmaYIZqPITHHYUi6oCi64jVM3%2Fm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9e5e145689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/imagesloaded.min.js?ver=5.0.0 | 104.21.56.90 | 200 OK | 9.8 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash1401f4159372a4e85846fa93bddcf260 761cc71bd19db425002d7076fef7e3115784298d 5a08533a567df4c0f18a3499f6b1622d72fc68470a7eda79651ddc15d5d2cb73
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-1590"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AP8enG2m6MyXAUeN8H8uzvgpIZDC6SxUdiGT%2Bv3NSuZbFcBXsySBBlx96VcCjWrZ88%2FovioLV1SNCNQJgUgKYZpG0OJVpNoEzaw%2BAgzg1BT8GawW6Aq5weyUCNG369gZLe6CVuwCji%2BR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97989f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/yasmine-hoops-all_0-300x300.jpg | 104.21.56.90 | 200 OK | 11 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/yasmine-hoops-all_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hashe36e926ebe7806438ea3415f65244f16 e730a635317698e230bba1684f71b8ef88d38f7b c4c8212a486e02e200bb15980bcd3bd543d6d9123e11aa4541fce858eb0fcc6d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/yasmine-hoops-all_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 10932
last-modified: Fri, 19 Apr 2024 07:12:32 GMT
etag: "66221960-2ab4"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dl1M3OhY0PwZXNAPPDSVWle0G0bRKtYdumLSFwF1IBBYhqHw68OCOdUczcx18fj8eV6ad6vn%2B71LbL%2F0Psbzob7b%2Bydz8618NRPZUjfD29H4CRDRe0atE9GLNtbNgmBwVjur4pT3zxUB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9ef55689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1713103558 | 104.21.56.90 | 200 OK | 12 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash067b73d40656e5c5c2b36abaddd9332a 5830eacf76fa664d0b0216152d5a1680b3aa1942 6d696183f83327a44c898032009e8906b81f5e7cfc9fb5ee915c51724f20b6ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-286f"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CXs%2FT3btCQr1wgGpRc%2BpV%2FmYb4qf2XaOkADZx2LtxnvTtSBSdFHrndfxesCjkOrjmcsqiHBp449R4axTMUdUGDwbsb9ZcD2Sa2GO3CZ0jGCsiuInKFGfijfqmWASOR7fvh8O3mACEH%2B1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f5c5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/elementor/css/post-2060.css?ver=1712685875 | 104.21.56.90 | 200 OK | 7.3 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/elementor/css/post-2060.css?ver=1712685875 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash435d4b55f29d286a9704b7194b56e11a 4ec337d5b49cdaa7cdbb05e7b84272fc2de0bd23 6bb82d679e177971b44609cd5c64f122f3913feb25931f0dbafd7be7f12689d7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-2060.css?ver=1712685875 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-454"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IKsb1CM8H8UQS2Dt4f6vWosW6xCfv8vdLl4vcaVWBaIWQaA15dRJTIVpqdWRJcKILlFs%2FFysKL11znM7YxSkuSGOMTkfjoSNWjacOZqYH%2FSblksITRwZRaTxd4CDKULMGvnabS%2FFMlyO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f745689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 104.21.56.90 | 200 OK | 26 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashe480ae545f905040e7c4f3dc0ef98495 7e7c0d326cbebc39bd7cc7c8c7b2ffab4ba78f12 f5c737dd97b5c175f3d56846869a48b659900ad2be2f01ac0891f538464836b8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-1bae5"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fXqoCyipsOicUtrQ10oV6JTxSm1B%2Fmylj11A6BuV1UXIa97HkoswCpdKDb6Swz%2F7AWZClajpNyndqKEeur3jQOSz73FyHEHql2WnYSxl6eqs%2BYwPB7qNrwHk4B4vUe3SjsREvNtZcI%2FB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae966f5a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/51la/js-sdk-pro.min.js | 104.21.56.90 | 200 OK | 22 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/51la/js-sdk-pro.min.js IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashe8b6c9fd0276a971fc73c76d6badb4e8 116f139754e3578fda77464b88b5dcce3e7d6ae9 d8739de58aaab91e9eea9cf5efaccc43014dc04640ba278105799b8a14a90384
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/51la/js-sdk-pro.min.js HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-861a"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jMR%2FYRmrP%2B%2Fjt8mJTmF6q2Sqy8Pggwj26mifwGfDUEH50oSSG2%2FAw6lcJ6M5hInAoAJpu9HsLOJbaSIwJo37fOEpA9cq2P%2BPuCmQHHKr2oCb9Gv1xuQRNsZdp1lO084Q63xezRcWHg1z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae96bfba5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_1-300x300.jpg | 104.21.56.90 | 200 OK | 5.9 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash8856147b4d0a130800ec55b98f97fc34 ab4e781aac139e9314b008e13d52554219292eca c3b2e145c541f264d6bc8bd2cd66b3c1704409536113cd3dbfbec53e4afe27ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 5890
last-modified: Fri, 19 Apr 2024 07:08:03 GMT
etag: "66221853-1702"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tZ2mkJRTpY4TuEbNEJ6T%2FnyJgFAXStlgZWIMA2s%2BoJnrPySkTTwEZxyxDvNDKSGPAjfykqX7FAWBaGjSk6D8YwPRd1EQlsDFFptlYzDP5fawGYWLsvsBdtfRQQH24MSp6vAnEYi9EcgQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9efd5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 104.21.56.90 | 200 OK | 18 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashf50fd4e13edd886a1e9b5ae8e59a3278 4e9498aa24c5214ceb879412d5c41e44bdda16e3 84c860883254e6a9258ddb39cfd3f8588becbb48df8ab2467116c83f1b6c9283
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-3509"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4gl8xQ%2FnlcfYLNB2SZhuCGXWlrO7mQhnZzCj%2F9SX5NizWT8w1xZ54HEaBd290t%2BFpwkEeA%2F%2F9NZx5%2B0hvthX837KblmLIlatf8FobkQCywagNKH7OOUlGaTBRhB%2BIp3CsudEPHV7ykEg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae96bfb95689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1713103558 | 104.21.56.90 | 200 OK | 51 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hash24ab9bbbf4e471141dd9c06aae5c2e18 1efb917679d80c0410f9a51e8323eb54d7270f08 8341dec08110045648ec0630105890439127c32313827969155f07d67bb26e05
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-22a2e"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jC2qbykC3Bvr0S8JueKO1qw81DptXLGULpucbL%2BZ%2Bt4UBGzJxMYHXkP3HbcS4zjGUEu15m9NXTb7QQXkp2jyZxBP8%2Bh1%2BMfD9nN9zvLhZfWoQ%2BhLVKhA14AT8t0S9bPlowtfCucRlyeO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f825689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 | 104.21.56.90 | 200 OK | 25 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typegzip compressed data, from Unix Hashce9ea21ea5588fce4a1f14de326ed986 7e85da8f7de371970560880c9e9055d7d4fad8ee 512b5486951951c912c95ee277409a3d92b599dc8a52a31e6c833b9baf7a86e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-546c"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZutNNUm7X%2FKJakntCGj6g6c0p2YeSN3g2BpXIyi5AvGPmu3v1nW7XQAZXeoDmD3NyfA0vwydYlAzQf98CjOZkhyMrAxqdN0N3XuBf%2BiOq47ZvMqOxv2NoYdOUNBf06AYMKlWeaIejd0e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97583f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/16/diamond-cut-grillz-grillz_0-300x300.jpg | 104.21.56.90 | 200 OK | 13 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/16/diamond-cut-grillz-grillz_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hashc7281e32c50b169b49e893976db271c5 a1e5f1c4bdf646303f0250c1339f32c74925a01b 6a4a4ec5889ea9338eb5b4adb3ab40ab73b5a8745c58e935764fb93749c07b24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/16/diamond-cut-grillz-grillz_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 13094
last-modified: Wed, 17 Apr 2024 01:15:20 GMT
etag: "661f22a8-3326"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f9skVb7j2cBRpGXGaL8dlSP2CUwgMhDf5dvbdECiphNNWXDoeTNMOMjDg5foTdvrgaCOtnP1IlPQApYfpSz0Uz%2BAKDEP%2FBq88Pb3pJ97SYjyHXpqr0l5%2FKUKdbFiaCMzAVVFZ%2B80x0OO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae96bfbc5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-json/contact-form-7/v1/contact-forms/1453/refill | 104.21.56.90 | 200 OK | 2 B |
URL GET HTTP/3www.amanornaments.shop/wp-json/contact-form-7/v1/contact-forms/1453/refill IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-json/contact-form-7/v1/contact-forms/1453/refill HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amanornaments.shop/
DNT: 1
Connection: keep-alive
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:47 GMT
content-type: application/json; charset=UTF-8
content-length: 2
x-powered-by: PHP/7.4.33
x-robots-tag: noindex
link: <https://www.amanornaments.shop/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
cache-control: max-age=0
expires: Fri, 10 May 2024 05:55:46 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9D1FOOk72bTzn3133akL6M%2FGFiXXV03wv1YnxbXw99uwWdxVLFDNDFJEEclBz%2FAyvPY%2FgT9uCQoWAtNGMR9mA2fUxtmfAewheF2JYhMj9J2hO5%2BQSgPx9JHeWaBpmHv973iSQ7QireLC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817aea43b105689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/images/w-logo-blue-white-bg.png | 104.21.56.90 | 200 OK | 4.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/images/w-logo-blue-white-bg.png IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash000bf649cc8f6bf27cfb04d1bcdcd3c7 d73d2f6d74ec6cdcbae07955592962e77d8ae814 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amanornaments.shop/
DNT: 1
Connection: keep-alive
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:47 GMT
content-type: image/png
content-length: 4119
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-1017"
expires: Sun, 09 Jun 2024 05:55:47 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z3k6g2jCzZ4pbb3aInbrVLcyWCjM8yonfYhBqBsxj%2BWyK7D9Se%2FMfVf7ycfABQmXETtnFYYlJuegdVUKIzAu85J9u8HNqldcl7BYzWz2Q6jDvQ1NFg7jr1pEf7HV2myOJv%2FIFEPQji6P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817aeae1b535689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/favicon.ico | 104.21.56.90 | 302 Found | 12 kB |
URL GET HTTP/3www.amanornaments.shop/favicon.ico IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash504070830111780b0981790e67eda7f3 b538cca37745395639a2efd8e176dbd3548f9e39 42dec03f12416882a7dce23ebe5f8aebe3afbeac1f0c6a99e7a2d45c28784c3e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 05:55:47 GMT
content-type: text/html; charset=UTF-8
location: https://www.amanornaments.shop/wp-includes/images/w-logo-blue-white-bg.png
x-powered-by: PHP/7.4.33
link: <https://www.amanornaments.shop/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
cache-control: max-age=14400
expires: Fri, 10 May 2024 05:55:46 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SeYjjBqm8%2FaIesPbW3JKCona7%2BPhdZMberm4dWIADt4oqgvXtxhdV9qyW7o5G4g%2Fsi7kEcZzeuHYg0CMmHq2023%2FvcUMxEHMmHlbzAF1VGMWWKPl8YjtclEvCb8ELCCIyKiFdpNUqXlO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817aea61c965689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1713103558 | 104.21.56.90 | 200 OK | 13 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (12942), with no line terminators Hashcc5e69ac94305dc03d3aa9ec854e388b 3aa97238527b7ff6d2df1990dfead7acc888b815 4af9dac8fb9b63a0212749b1d6a4466fab62ba560c630c71b378c1fcde550797
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-328e"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CpntgTuC0C9IqYgf8YuSw6igXf6vURM%2BDFaHUm2j0FhhdEDiKs8aPkdcgG4qM%2Fv1pTSyGAWWXcIpUm2XpThLnqdwkZadWakYGhorMoqUPZXwhAMVglf40mxE0KMGTxOFu94Qvxx1qnWu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9778705689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto-child/style.css?ver=6.5.3 | 104.21.56.90 | 200 OK | 786 B |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto-child/style.css?ver=6.5.3 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (813), with no line terminators Hashf5981126cdb451fe47fcefcb49fd3d9b 32aea3dd45fe9f7fe53e03cbd7f48896fc020216 ec08a6b1f84ecb4b251b119b1e05db9dcd063f325b2aecae8cd4b34d21c1a335
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto-child/style.css?ver=6.5.3 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: W/"661be2c6-312"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6xkm4GNcaq9VzJ0kInUfG0nKkoUoPbRHbu3Hy%2FlpfAKHuOkfuK6Lz5D%2FOrLoR7AYoUFuzz0Vs%2BlvN3Yi%2FGBapp6pa0JKyGiDz5juGxSoQmrTQeA8siKg3K9Za1dOd343JyFdWV0%2BJgVn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae96afac5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme.js?ver=1713103558 | 104.21.56.90 | 200 OK | 126 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (10425) Size126 kB (126372 bytes) Hash94f08a6d2744406617572e5b083edc7c e6f8cc6dddc5080be3cfa2cc50dc1e865ae86f2c 8e0afdc3f5a3fc1e7fa154fccf184c917d2ab82d99c30d7bcb997cc12516b5c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/theme.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1eda4"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2K8pOvAt%2FI74LW5mOEq0bjCkDWPpGHlRlO%2FiXgi5KDOxYQfSXdKItaoYXkkgamdzZZNZyc2AY71fnjdXEPeFV8l2JFjqJdht2Mv3IngqxIAda2WJcGPZy8uLI2HO1%2FJZACb3NX94cVsS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798a65689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1713103558 | 104.21.56.90 | 200 OK | 8.8 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (8799), with no line terminators Hash6e3a3ad146f34226dd09f327744314c6 64af50898d754f7fb5018c672e57f698e3f67535 c37ef6b3b8caf33776c0c2fb5a0f057c55ccd64b4cc9920aea133bb77f505f50
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-2249"
expires: Fri, 10 May 2024 17:55:43 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QFDeAm936wzo0zcWVF2XrRFnGFSbtPD6zFEj0kU9iZhDB32cNAUSo43maiXFVsibwzM1%2FCJ2aXls59v3nq54LF6WTZ1%2FmzdjQj0tDs%2BtTSF0KKh8LGEOjJOhRzBpXCV40D%2BIHH2Kh8AN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae969f955689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_0-85x85.jpg | 104.21.56.90 | 200 OK | 1.4 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_0-85x85.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 85x85, components 3 Hash4824a460bd3e28390acc1b295af95384 a089c49fbf6e7da663231fd5871d14e6ac621e83 b1691e03ee78ad1c630b938bf696c7dc06b561eaf15dd49fd6c4eebc24dbd2ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/12/sterling-silver-wave-midi-finger-pinky-toe-ring-simply-wavy-band-new-in_0-85x85.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: image/jpeg
content-length: 1427
last-modified: Mon, 15 Apr 2024 20:21:31 GMT
etag: "661d8c4b-593"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G9aIahhX3%2F4PwiCAcnS6O5nhjvNvlbpd9ENBz0eDVyXkvog%2F%2FIQRIdgQxcj6r%2FiuNfOrSTx779xbFOUs0WgOL14MsreLTitPWCyRSUUmbjIlaJmnNACJkPFSOINSgs9tT0Y7s7NXJ0JH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9748325689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/fonts/Simple-Line-Icons/Simple-Line-Icons.ttf | 104.21.56.90 | 200 OK | 54 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/fonts/Simple-Line-Icons/Simple-Line-Icons.ttf IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Simple-Line-Icons Hash89c4fa5d1b1b134b4bb26f1e7d496439 3b925d9100460c9791dcf8e4c8f18474aa10207b d3e2dba264092fd22c56b7319186df70c9375b16bbfbf01bd2ec7810bf3f03d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/fonts/Simple-Line-Icons/Simple-Line-Icons.ttf HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: application/octet-stream
content-length: 53968
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-d2d0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fKMGMXkvbrkjAOcIRYrjfodfahtziCOC1YoocujtjcQCk%2BJ7t%2FCdDiUyznPEK0ZcN5%2BCpL8h6rUgi9eK6EBOczfYUskntNxMfQuDPjD7zZRANOGRImmB7xZE9qn2Ak96jE6ZMbwnLP4J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9d2d3a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 | 104.21.56.90 | 200 OK | 19 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-4926"
expires: Fri, 10 May 2024 17:55:45 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ab9LD%2BQGedkUQF1mMo%2FeDLbJA6OvKCG0flN%2BtB2Pgz1OULtweSN0yV0z%2BO8z3hoPIEFozTaAmUcZbyTY9mALH%2FTDr4iA09sGYnVipFQsUKClaQdwxVbCCP08SRALbiw%2FncGZgT5GROme"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9fcf175689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1713103558 | 104.21.56.90 | 200 OK | 9.8 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (9839), with no line terminators Hashc6c8f156176110e0bdd2bcaae8ebc184 fec9cdb298129bf906c7f74da1b366bbcfd583be c98938e43dc3f7814bf68e8a48ee868c63960aab85b3dc039854b4d6c7b1a223
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-2646"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ldkPNyjOOq6l2BEzL5isfxh%2FckbAwHIy9OLxawZ7bBYZGRahHdlGsCJ397xNJ8R0mOUCORPVgkVQhelSJSHgGtDmoqMWxdYzmR2e2VgQW3AJRk2mnErS6XhM%2FMlnBb6rrwDs%2FSLPyUzm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f625689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1713103558 | 104.21.56.90 | 200 OK | 20 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (19883) Hashdbb092855d59598c20acf0729eda1273 b794b6a6ace8d8c0ec9bd4c9ea87d4b4c0868cfa 054d4eba2270037bdce228b46620018244a9f2fcf20b7eb23df59806e1eb1c93
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-4dd9"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3sLKOQamHw4OUgUBGu48Z5g3mvqZy5gvJJLh3ncAWTcdLMz5j0sY4Uf1gjPFv6RUMtNU%2FGCvTIvCOVPYEc2m90NWMpmOMqk2d6VDg1Kp81wa3A9fAW9tGew0WZ9nl2K%2F3T0fboIUBzux"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f6a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1713103558 | 104.21.56.90 | 200 OK | 301 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Size301 kB (301074 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-49812"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QxDlJ2w%2FbGCxR6Ocsg9yabX5UCHmLSMuYh7gI%2FeIghedhO4iTq0aTPtj4aLJra2IZYuyTJrM7dkYGPFGKMMHqFw8jsRTOVkJ63hRifAz67Cp6GwVTzi2X3%2B8A2aQygJ1h%2BzKhmzQdGS6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f7f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1713103558 | 104.21.56.90 | 200 OK | 149 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size149 kB (148872 bytes) Hasha2be8aff80c20adf839c0d565135430f b15d2e7a719223b070c5970bc92d28f8a914cb20 cb63cef0943a3e07afde4bdf8cee3d9e0fcac13d42e05aec6dce109c0ec23eec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-24588"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AZJhpMf%2FlyeSDaxntym4ffbF8bjtj8UT5jgaugqB3imDjuTtMX2GrHDHWlg1vz9ON%2B9iJcNZ%2BHSBQpjOkK6Csc9eg5w1JAqulDxjJRP3yipcdSVFRupOtt%2BoiBN%2B%2BlgyDjFuJC4dM0P3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae969f875689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.10.0 | 104.21.56.90 | 200 OK | 14 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.10.0 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (14405), with no line terminators Hash69755c22ccfd7140a75ae545417329c5 b031e2d2ae42ed6364a1dab3818527b0df62eb6e 649fbe6f32931a56674267436d1ce81ad12c012db4d2a2d2b72e69531f89f3d7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.10.0 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-3845"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57fkH4Xa%2FZPpEIPcrFv9g2e%2Bobg3OolyHNecgXvWQAwOTlsEiqx6ozIna5nE1U8xCS9%2B%2F%2FaF4vUjQen5QKF5MsoR0RnbaN6x3rXoPqLLrSGLFnsKv2dH%2FcVPApkuQnYFkXs2uyWTv4lS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9778795689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1713103558 | 104.21.56.90 | 200 OK | 30 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (29595), with no line terminators Hash2dbdafd85a7037c6e6baa9683b2df642 6f5e128535075df09b43ed5c9cd85a4b1a0f4ceb ea2d00f4413b9ea5b23ee8e66e5b848c73de05da2af8efce8f8cc649722115ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-739b"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FnOVCRtH%2F1kEW2R3iRk6VlJeksS%2FcGRS%2B1egY%2BBFJN2H7FvoL40d0FaJC7T3PaJYrlVUdmVUUMzJ1CK%2BFgzU1knRnb2sJ8iCFrm1bCW8SSqzC868yU1ljo26C3AB%2BX2XhlNsKTBO1ZA1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f665689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/bootstrap.js?ver=1713103558 | 104.21.56.90 | 200 OK | 122 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/bootstrap.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (3002) Size122 kB (121613 bytes) Hash5c83b117f67a3ae7e53f52d21132ca49 55849ffe7ffe55c21c537e0b64118c25db1eb0f3 3ca30b893f6b3df57cbc786a6428eecce3b524295e1533c04846648fab6d1bfd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/bootstrap.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1db0d"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oqxQLP9EJDC49sOadXCuFsLm%2BZHLCcysHk1f9eKF5J8C3w23C03B%2FXh3eLBtsSwa%2BjzOdZ8fwI4YXreUSNhG%2FtjZ79d6xs4zNmct7g8PEb8KonL%2BOIZxqrxhrA6QJNldhxMdaKy6mKZ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9788945689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1713103558 | 104.21.56.90 | 200 OK | 84 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (2091) Hash59bd7259dbe0f83a7b57ce24da966bf6 fe632ea01a6cbd96220b41707c51dc726a2ae65b 2fea1a3de8fcbd970a05b96d5a0933f9f5c9cac7b4f6a45bdec4d6bf7c9ba650
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-149b9"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pBOcHnPAOmY8AHj8Fqn7OVb7A5YslTd7Gcut4g0zECMNB%2BDUmLkESWPEV3j3Q3F79KC1HNHlcmV15sAXVQxli20%2FHJrdtVHzYPV3ydM3jLWVfDQmyLSdJUOGD%2BS14taGx0%2FOM1alJtUe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798a85689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 104.21.56.90 | 200 OK | 21 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-53be"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qNSMKDOKyBHkDunUDm9jEIexTT8Q5Ml1X4kFuHRLMNdKTI3vtf%2BNXDAy9x%2BcvwQqX7jx8hsZ6FfHVaET8J1vSqJBBs4dUBzOw0%2Fl5fojZ0HG3JS2Tn61f4WEft1ucMdZBQ9yZiPCX5Q6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8bf5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| collect-v6.51.la/v6/collect?dt=4 | 163.181.154.138 | 403 Forbidden | 0 B |
URL POST HTTP/1.1collect-v6.51.la/v6/collect?dt=4 IP163.181.154.138:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGlobalSign nv-sa Subject*.51.la Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79 ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 263
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Fri, 10 May 2024 05:55:44 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://www.amanornaments.shop
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1715320544
Via: cache5.l2de2[181,181,403-0,M], cache5.l2de2[182,0], ens-cache25.gb4[199,199,403-1280,M], ens-cache25.gb4[200,0]
Cache-Control: no-cache
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-Error: orig response 4XX error
X-Swift-SaveTime: Fri, 10 May 2024 05:55:44 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: a3b59aad17153205447126580e
|
|
| www.amanornaments.shop/wp-content/uploads/elementor/css/post-143.css?ver=1712686664 | 104.21.56.90 | 200 OK | 6.7 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/elementor/css/post-143.css?ver=1712686664 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (6724), with no line terminators Hashd7ff6d2def3d002c85c151d70c421c2b ec127450fb3dce2b8e0fd79b014fb9d79b109275 73240e648a737b03b39c40f7f36c4f513899b0316e8b2a400fb7a91b2e8597ff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-143.css?ver=1712686664 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1a44"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Gv%2FCWq%2F%2B5yI63wg7N1fIltlrlAZPkD6NDpE1kzy2BeqsHF9XhWRF9yGDsZxlq1ZDOS7y50i%2BP54wi5i%2BRQ9BZ6%2FugakNZEJfAI5RetK630hnVxVLjPKAC%2Brjf9lqcxqE4m6wh5swWux"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae96af9f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 | 104.21.56.90 | 200 OK | 20 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (20113), with CRLF line terminators Hash9f55a34716e844184babd2dbeb441011 d6d2df510c0dc74ca24327ac48686d590451d8b4 c8eac9a3262dd857cc52d05a4fc4f1e4da96691e546d837a6ecf0a2c260d4bc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-4f15"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ktpbEUduGp5VAFkRgr48OPMa82m9oQcoboH830B%2B%2BjZ2Rjg322mTYmWT7JRd%2FeF1T5%2FtmQ7V5QvyfnGfXSBp2Ut1l0c60zJtxecZzqTiT65glnTBJM%2FEjqHJryd%2BLm7fVTVmMyIOWlJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798a35689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 | 104.21.56.90 | 200 OK | 5.0 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (5094), with no line terminators Hashe205d860dd27e4149619db10ab40fb96 02a4a3353cece3c7a70989d2306f67155100f8c3 ef87c72ae9210b1b1dbee55df7ee3529ec57a01e638b6ee5e6a820a51ba04365
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1385"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EqIpYFqPd3G6ZMUv3fyJ3aNMVTS97XLiIERPzn%2F6RVdFbARnuhAi1kdVulCneMxQzYVyhXcRuIbSfWjq0bzFvl9oWAqHB71x2IFU%2F8XXVDCJIb%2FMUT08hwhYRigf0V6szfSiVg%2FNsvDA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8b85689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/wp-util.min.js?ver=6.5.3 | 104.21.56.90 | 200 OK | 1.4 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/wp-util.min.js?ver=6.5.3 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (1469), with no line terminators Hash4cfa97208f3196db8343dab3061e3599 538b31a3ee7b795af2a2687e1558d0bcf579e949 ce1c908010099b7d7d15bfab3630252fd30d6aa29951121f98eaa46ead8cd1a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-util.min.js?ver=6.5.3 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-592"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F4Sc4kxc%2FXUs%2FznSE%2BJhlmhZGgZ3WmZ6DeWYkYroCJ7oc5jz7ReLM2wSGL2ENHNgQNcZEjS13hwx0U5lsmzkewldJBofEwgoP%2FDfOi26kvw%2BV3k74NgZ7oyhEtWloWekZ8phIifQrQ7V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798b55689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1713103558 | 104.21.56.90 | 200 OK | 2.5 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (2506), with no line terminators Hashd39ec26aec768b24f60becc8295c14bc 4fb82584f671018bb6c3fbab1c5979fe8e62dd06 27997f7d4f75689619db31a07cb6c486a5905512759705b8ddc0e1a67357178c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-9c3"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v5ZJNMbxDmrUyp61INMb3bP15NE1pf3kwPRcSi5l3eM3dmw2SYw%2FlUty3LTWHTmbfwlsZWC%2FXORk%2F%2FOxjC6kgfu3UTxpXjI4OhS%2Fdog03W1kKZY8mnopW7xR4OnjOTm1olS9OpKNnmvo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae969f985689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 | 142.250.74.106 | 200 OK | 50 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 IP142.250.74.106:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash313a6232699b2f02296b5be9f4a0a5f8 d9aa6f8de96b123ea9f0546e062e340657ef0191 94f0cb222975e7939a4b4c283376fc06fbcdfcfced990a4cfbb37bf74a29567f
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 05:55:43 GMT
date: Fri, 10 May 2024 05:55:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins:400,500,600,700,800 | 142.250.74.106 | 200 OK | 3.7 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Poppins:400,500,600,700,800 IP142.250.74.106:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (3797), with no line terminators Hash873cb1160984700ad28e14fdf1c917de 3e37d696a333a93b2b730fe265c2b33fc0962ef2 a98dfaa779bd1280339d3d4ddd83c102615a0cde4a5378fc92cf998123540958
GET /css?family=Poppins:400,500,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 05:55:45 GMT
date: Fri, 10 May 2024 05:55:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1713103558 | 104.21.56.90 | 200 OK | 97 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (1948) Hash5824087692f0d34e066728dac5f6e0c8 cbc89937bfa644b43af6964de6c1b1d26f0c1afc 2a8d45352e974b9e3d9161bf7be128488ae3422ec72755b3fcf5a784ce93e6d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-17c37"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IOkCiBzUXALBugeJHJQerqYOLDex0Dc3MVhvKXDq3IMDJAOukvRxx7imGZn%2FNzsgby8MjWPYEfo27jwJQzuXzJr%2BFWzzB2JOlCAHpyjmgExVQovAool2AmSqMnQCD8OCYGDRVGZKBhAl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798ab5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/js/libs/webfont.js | 104.21.56.90 | 200 OK | 13 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/js/libs/webfont.js IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (2134), with CRLF line terminators Hasha29599549c40a5d41326d95650d33639 fa5127c50898eb42c64186a843c57312a447ed0f b3ca7d262a9370115f0cb5af00ed49f738e43ab587246c6aef865f1894c891d7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/webfont.js HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-33a5"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=74NbUAp3uNLvtRZY%2BqlV5JNkPKb8grLOiVGCgCP6v8qsdx59iNQLRLIJyLT4nmvWjvjFJyimBIAfLh8yANqPhI4X2aGK4GQUkB%2FIU9ydYwAEuXvpn23Fjwy9zZxzzbwGMu3yskMpGHk8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9bdc105689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/?wc-ajax=get_refreshed_fragments | 104.21.56.90 | 200 OK | 942 B |
URL POST HTTP/3www.amanornaments.shop/?wc-ajax=get_refreshed_fragments IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1062), with no line terminators Hashe03c6d9d58688ee1e0d57eb3c6474d45 63724ea1787c446481df7c50732e1ba766dfd7e6 c8d474521b66c8026e652e8b2ed4967268a6c3ef72073bc4bb13423da38a63a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:46 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
cache-control: max-age=0
expires: Fri, 10 May 2024 05:55:45 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gZ4zYcCRe%2BLzfeXCwV3zWv8%2BFX0dxB4ZP17Rqc3pI3MVXrE62pqAyQ1iHT4CVVlafJtm2i%2FEsYE%2FIGSejGIQTFFZ%2BmrHcnaf1olq7MWazwOUibZPGBlXyIIdZ4x%2FQiqn%2BGQ38%2BB4Iw3L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817aea209395689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/bootstrap.css?ver=1713103558 | 104.21.56.90 | 200 OK | 147 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/bootstrap.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Size147 kB (146921 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/bootstrap.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-23de9"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S4xcHDFUK4yvMbgsvv4Ab%2FSyUo%2BWIt4SD9%2BlYLNn3c8h0JaweqcVhT%2F4Bl9TMY0Bf6sSnmFnnxQ9OGmBGs3TXvdpj7WKl3lP2NlvSKMPk7k466GadjvaFHxprW9zwl2V3fPot9ERht1s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae968f795689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 104.21.56.90 | 200 OK | 12 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-2fa6"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gce8GX%2FxtP5yNzKVAizWNsI%2B%2FNWHUHL9ysX3%2FLUzinyBbRl0ET9KOWbsggSqgKweGK%2Fx3y4DIrtIm%2Fz6tM4jRIjFMZdVglcl%2BwYY%2FIsx8k5DvVtCwb4HJ4OPcTiGTNmanP3%2Fe8zLgTpz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8be5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 | 104.21.56.90 | 200 OK | 1.4 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (1479), with no line terminators Hashf52f4f105760b97c65a34d5d08d6cd55 ec635d27940f2fb8d11f99cc4e945cc7fb2b06c6 03379c07a2783f0340be898f58fb74ecdaf2e45f40701313e92bc980b2865a0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-586"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cNHQhXdABXAB%2BRt0SPG2WNRCMpgVXNlpODZR6BlTPm8gU6Xk4xRvKdFL7r%2B%2BiAae3abLtL9qa6JXfrri3hbNpi2qV1oov%2BkCJgxQupM6flhRh77qU5U68lXnfC2cZ28JiY5s57sPubqq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9788975689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_0-300x300.jpg | 104.21.56.90 | 200 OK | 7.3 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash4378ad24f032c109c9d2f2f76a43afe2 87576b3029fe34822a3daf16a3e4c9ad65fd6977 595f76352635e23b6e2a7fd601b26653a3541ec997bac258edd6b0a5f88e5b2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 7298
last-modified: Tue, 16 Apr 2024 15:37:06 GMT
etag: "661e9b22-1c82"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XwUyb7OT5sN66pzB1%2Bw6w04X8AJ48Jf3lqiex1If6twowfHG%2Bo8HH8TlA1bmMf7dfGVaTWk27pVBxoWR%2BPeOHnsu3vc3BBJn2pquLVRaQ98ZdVFxee31PvLcQiyaKO3%2F4kNWmhz6EoRW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f7ee25689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_0-300x300.jpg | 104.21.56.90 | 200 OK | 9.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash2fd3c9b33254e23d391b0b3eaa86b771 6190b4bcb9d212a4567a99a93fb226dcfa1d15db dd5a5bfce3a47a7356c9c786983336c74c70e5328215ea81d73422de78526541
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 9120
last-modified: Tue, 16 Apr 2024 16:16:58 GMT
etag: "661ea47a-23a0"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RMCExWNr5%2BLvAoGDdufeUYfedI4yYFuyeLgASvb49Rnl4PBloyXGyAAHoRRYJCowErk7o2JTSNXsYy0OC9jhLcwazSW17x%2BfTHk6PC%2B6xB53VsI0RwNiAJqy%2B6IkrbtSYxUugr%2FrASLF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f8ee85689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_0-300x300.jpg | 104.21.56.90 | 200 OK | 6.2 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash3474bee607f9ae20fdd9f82f682498f5 37099a1258f237f53c1df06f29274efdb25924bc dcb639ea550ab7ee05fbf326ecc847b8c2c12a959a9b858a363f303b4f290591
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 6237
last-modified: Fri, 19 Apr 2024 07:04:31 GMT
etag: "6622177f-185d"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yBidUBPk58wvgfAWDZfQBN%2F%2Bqk5fRdSx2sHn9%2BsU%2BjCWt6Jdwo%2B9ZR5NcqD06Urx27Egzk3VRQ%2F1ivfoLlVRIT%2BhEaHilRK55tuhl9vOSScjb%2B9RVOGw9CvHyxHvCOiR%2FONk9rovxFx8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9faf045689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6 | 104.21.56.90 | 200 OK | 7.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (7362), with no line terminators Hashd19fe944ddfc77163f2f2c6a266ee7d3 b7455128f60bdbcde0825baed3e21cd2023c5029 8a87042470f63dd6b598f483fef7c10e654be3a0af532d344fde7d15245a9bba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1bbc"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dAuHGr7POUDv1t%2BGJXm%2BVXPvVbN2EnKGUqkBFG3q66MbxRh1WxV2QWS8e2b%2F0vt4aPjaJ7Cc0Gy9ofHdBg4HNKrT3a29SEZH3TUH9%2F0mA%2BuiM5x6rRu9x2iazogyr21z6sYQaA6a4v2a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798ae5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_1-300x300.jpg | 104.21.56.90 | 200 OK | 10 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash895f9b805d38edc098c4fcb83ff2515d e7a5146b2411ad8c491919bc627d99203673431d aac55ab8ebca6bd8eefd795a4b329a7a3c74d823492ae0e2ff237108e9fc6fef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/84/1928-jewelry-glass-rondell-copper-glare-bel-fiore-beaded-drop-earrings-matching-jewelry-sets_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 9962
last-modified: Tue, 16 Apr 2024 16:17:04 GMT
etag: "661ea480-26ea"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l8M6moq%2FfxxUIRgBlf9lxvDf7sU40g3ggwKi590lDI9rBvQ7NdC%2BOAM6zVHJdabnKarsBTOtOU0Z2CP8yPSgrtyKrsLMBtxnLWwUCQr498kmUCrPIE37mQS9BFintyPimvt%2FogspFXrj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f8eeb5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.1 | 104.21.56.90 | 200 OK | 9.6 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (9963), with no line terminators Hash7ed2c573e85b2b4e5fb8b4131e95e469 140691f29cb181849892640d1b237fa6a4e5beae a637f7d3e1ca8aeb1d7d4499419916cca6c18a2b625a616f6950f2b978a91ba6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-25a4"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dcJCsnpLswNpbM51N3BysjX7IrmxwbZPCvPQ2JxxkMNRqjED74zdlJdKBgEICIPTCexIAgXf6f1tJB66PywFM41i9VqJa%2BntLNO%2Bd9JPA%2BF9EbcBr5se%2FR0sGusWEzrQ6Aza0oXoWpla"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9778735689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1713103558 | 104.21.56.90 | 200 OK | 2.3 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (2354), with no line terminators Hashe443e3855ddd8f60d834674401fc3e96 b297028730a1d5c6ca8a0b1a36532398fcec14ee b300629eff2088b7e3a9e34a65b21d24c483ea3f05bf85a2fcbd1d0e5a5b9da6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-926"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XmrdvvTAzp%2B5HyQYZmtCoBA4cEkQhCl5bngouH50YppXMxHdM%2B2BRb%2FStm%2B9YsNtunzJnN%2Ff5MWsjAFxbsqhn7O8B1cvmkeuSxw5S1INPhZ5dZYhwGlw0Of8fRROB%2BdlsGqbh8r8CHeX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f695689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_1-300x300.jpg | 104.21.56.90 | 200 OK | 19 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hashc6f086a1667f95f30d6565feaf3cc8ee 0c88e2907de70ba2b9fbe1add8554fc8110757e3 78ae574c397a0548f1f89f38c3ef2885c8334fd32f97b4a99dc4eb9a30a63bd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/thick-ass-hoops-1-silver-handcrafted-earrings_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 18787
last-modified: Fri, 19 Apr 2024 07:04:35 GMT
etag: "66221783-4963"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yh9LBWrDqNNe17KqpXo0kZY3OhhvHmWwjLMrNLndeExFA0t6uWbAO9EIrH%2BhzHGsOTr5WqvvgsXr12M76U6tzW5Sl16hLTXMG%2Bf7cyZJT3JSatw0wSMDMQRnJ%2FzA%2F46hF6s3pinL6tpO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9faf065689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 | 104.21.56.90 | 200 OK | 116 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Size116 kB (115888 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-1c4b0"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mXefAEt5irXKWLXryKnUlmdaD4cmkBN%2F2azppT%2BBj%2FSgFzpSFfFRncvp7iWBIaHrb8D4gylX7bLALxg6%2Fx0XiNB9YR%2FULHLsVAn9beaxVfQ%2BbjoBuhffWJgkCY7TP90IQ8dg%2BSJfbHOe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9788985689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2 | 104.21.56.90 | 200 OK | 77 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77400, version 331.17301 Hashcac68c831145804808381a7032fdc7c2 62584b9868428fd75af3fc5ee2f9918dda428be5 1c87d2b26de7d55c66037916bbb4cba6c791da0e2adfa378332678ff13e12d9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: font/woff2
content-length: 77400
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-12e58"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uk7xx6OD0I%2BfWs3ynkPqNPoBwH4WK2KgUqubpUPlp33V5fK%2FvKv3KoHwbBtRYbLgBVFWpI9f5YdZIxlJGiB32LOCPA2DgJ0sUEOwzD1yL7OCBJKob94vt%2Fbs57e%2FVt5Kgkmd4fMul5tY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9c3c6e5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW | 104.21.56.90 | 200 OK | 76 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-127d3"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VhLXNj%2FHDGvGJZvz4mv6v68rcLUZqhpEDYJfGAFMjn8o%2BwRWTQ9wu2gPRhV6XLqwfE3VYexFsYQb%2Fc0l%2F6N8mdGrr0qfAzYa3nQeLepVgAY0mfU1%2FSgHowT03np8aUqsj9THqJ7rbIS%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9c0c305689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/silencer-necklace-armament_1-300x300.jpg | 104.21.56.90 | 200 OK | 7.7 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/silencer-necklace-armament_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash92444183c22198899ad189900e78fc50 8587af232cf57654ae5451e48a985fb1700059a6 868b748cd9d11e1feef860dfff92219814e953d52f06f238462a654a9dd7d3bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/silencer-necklace-armament_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 7729
last-modified: Fri, 19 Apr 2024 07:06:17 GMT
etag: "662217e9-1e31"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GVf8PZa92asGchUjGDPvKDPyo3sPJy4Yp57c5r8IDaJL6JToywzJ9v65AXYrO28fGT4ug3i2rRdYuNjQbieDWE4J01zci%2F9gQef3HpUsi%2FQacvQ96%2FtKpt5tbCeZu1CQvFWVbJV2FA66"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9faf025689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-includes/js/underscore.min.js?ver=1.13.4 | 104.21.56.90 | 200 OK | 19 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/underscore.min.js?ver=1.13.4 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (18798) Hashf88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-4991"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d82b3qSTic92iGe6Lrdte18LljMoj%2BOdTy%2FkkUEE5fm6p4319CX34IcLrL7ILeu2f5tb45SjexM1z2iT82DJW%2F9IiJWuyEknQOyq62ZdtBAIbr19%2FYfxkEBu2ROk7HFOB0gEYLUnX6aA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9798b25689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_0-300x300.jpg | 104.21.56.90 | 200 OK | 4.9 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash93ad3c5b1eac277842d1249723838411 e3b41c5c1262818def8c7f62792164ddd8aeedcd 382f1ee9c9063905b930691d0d0cbb8d776d68323dbe9179e367393414ad588f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/fss-109-40mm-sterling-silver-20-gauge-marquise-shape-elegant-clean-wire-simply-the-best-stylish-earwire-beads-findings-collection_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 4890
last-modified: Fri, 19 Apr 2024 07:08:01 GMT
etag: "66221851-131a"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2V6TcDPVa3WHtz8SnwcJl8Qime621NV1UVMnLLfJn0keCKZ0FtwFSZPLDWKKCk%2FR0nRZ4UPAEoHzsfLX7T12TBDy89%2BntY2PzpWndgMXgZzEGJcrq395Qi6tHOTkjrhpVGmdFfgWsWUW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9efc5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/br-356-black-rhodium-overlay-bali-bead-beads-findings-collection_0-300x300.jpg | 104.21.56.90 | 200 OK | 12 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/br-356-black-rhodium-overlay-bali-bead-beads-findings-collection_0-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash8e5205a9b6d10d72ef47de124b11d37a 9b09752f01deb94e67bf1b17c7e897e8f555004b 656740631e957db11b5e354d20be095f10e6c72caf5201a859f6c6bd938c9879
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/br-356-black-rhodium-overlay-bali-bead-beads-findings-collection_0-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 12328
last-modified: Fri, 19 Apr 2024 07:11:07 GMT
etag: "6622190b-3028"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FHhMBwAGEkXFk5UexB55wWG8o8R8H1zWfVs5z62KuXPI%2F0hjMezF7rvg1Le1YOKhOqgbrjixNItZNHERuf2TigiiIkFXRSSo5hsnOB1239zCL4Y%2BK8RIJKPKgppuBYqJN1ZeGLZ6fHLP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9efa5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2 | 104.21.56.90 | 200 OK | 80 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 80148, version 331.17301 Hashc500da19d776384ba69573ae6fe274e7 6290834672aba86d5b6c1c73b30b57c9c53996f7 cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: font/woff2
content-length: 80148
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-13914"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ujVTWeKKtsZvdscL%2Bq84tpzwHbdanYReQSg5FIAZwZ3uFUilQ9C2%2FLYnKn6LbDK8gleiMJ97rzKBRbMaZYugza1XRN7MC5xen9Vbv7iJv5QaC4bEri3NUiAQXcjwcctiTwBUm%2FX9Mo6J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9d0d195689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 | 104.21.56.90 | 200 OK | 59 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-e5ec"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=envP2kv43aDqGSZRRpeEc8YdHDEcndgxwRuEfUSOZnOop73eHy9rtLOJa9kvtuPhqDmpsLZP%2FhOYcy0D80V3bAud0ynCSkt3Z3aqEZgnMZo4pCvJOv62wjGZbEDWuyCoHhXjoRQlR4y%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8bb5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/10/yasmine-hoops-all_1-300x300.jpg | 104.21.56.90 | 200 OK | 22 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/10/yasmine-hoops-all_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hasha12181d486491b95239ddd822979b932 5481d5fd3ed68b6a62d4c2e2c6b148751f0e9130 aed2f111f6e7269890bcba9df387a2ce2b9dbc63311d2842889946d700b00d8c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/10/yasmine-hoops-all_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 22386
last-modified: Fri, 19 Apr 2024 07:12:33 GMT
etag: "66221961-5772"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EtUMpm9ZevrBBcsnv8YtbSxU5paEY07mYwXjSvJsKw1rI0Es%2B%2FwFP1Eo%2B%2BARn3%2Fm0HjT5enRJrHSocOs5GXYWRIB9cqZuf3Ub9FUnLdnFS2A42e2GQqBBEWQzk9xW%2F8LKq1dZ7k2Gkmd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f9ef65689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_1-300x300.jpg | 104.21.56.90 | 200 OK | 6.9 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_1-300x300.jpg IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3 Hash945136632a1a944bd9930df9d4c75016 6a7155435a988ad7676984ca1fa3403f8c26d19c b3d5b2128ba10933589c3a7c638a2b749dc922e148daee61a99352b17e15d25e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1713/81/symbols-of-faith-interlocking-rings-round-cufflinks-cufflinks_1-300x300.jpg HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/jpeg
content-length: 6941
last-modified: Tue, 16 Apr 2024 15:37:09 GMT
etag: "661e9b25-1b1d"
expires: Sun, 09 Jun 2024 05:55:45 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kpXs0w0ByUXh3vGAuVKroMa5E1qCWkgp9RinyUIBANk1V9o%2BG43NxjsfTiic7tARQ54XybbSDkTw2T0KwYAS%2B%2F%2FI34KFxODTKko3VWw2iU%2B8%2F2R5MKgbIO6V3PnmulckPXYuIKMwgWlN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9f8ee75689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-json/contact-form-7/v1/contact-forms/1453/feedback/schema | 104.21.56.90 | 200 OK | 235 B |
URL GET HTTP/3www.amanornaments.shop/wp-json/contact-form-7/v1/contact-forms/1453/feedback/schema IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash1cdd42b127e4fe7f624536e46667efa6 19d5eea894d8c3bebbc11ed51f28c3e2d8f0f804 0d73b6a29f81ca103ce6590cd6e01dfe507c5baf06431ed4b44b686bfeb731ad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-json/contact-form-7/v1/contact-forms/1453/feedback/schema HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amanornaments.shop/
DNT: 1
Connection: keep-alive
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:46 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
x-robots-tag: noindex
link: <https://www.amanornaments.shop/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
cache-control: max-age=0
expires: Fri, 10 May 2024 05:55:45 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4ugMU2Cax1TsJqxLsTccIj0j%2F4JlU4DoOvamiGjfl7h1QGyuX53doHNnOjhguGrt3zJ9%2BzHBV6XmFi485YacfUFVPnbTk%2FCmJNaV4WFUJMvwFvK%2FwtDXYpSPlBhgxPZoHfzF2yZu1fvF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9fcf1a5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 19:57:12 GMT
expires: Fri, 09 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
age: 35913
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 104.21.56.90 | 200 OK | 88 kB |
URL GET HTTP/3www.amanornaments.shop/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:59 GMT
vary: Accept-Encoding
etag: W/"661be2c7-15601"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6UPBTgU1BUgFBzGTmN4cUQCzHlBZAQaZ8nWFv3mJL3MMtTgr7Diwc0XoLNWedFQ3%2BT8SSBZII9Ej2T%2FZGetK6Bq9LM86cSK8OIXb%2BVT4YkIR7Ibl5te0YmGhVSoqHRL%2Ff5YZGOY9gbDS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae96afb45689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.1 | 104.21.56.90 | 200 OK | 2.1 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (2257), with no line terminators Hash846a24981bff9217c95389e6dc346313 e03631b8e1438e09c8d7876ab20b0d69d0c4d819 29327d5b926dcc7de82c087f261b00355dce3492f0b9721887819b5f54cf8486
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-85b"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vO8VAynDV1wFrDd5myP1XySTQPGz0YY3Z52gqRVBL4%2B6O432Q3X35pQH8RECEUuDk8Pb592wvMjJG10TVdBiCAFbEs6NusvN7tBVKcbBrutzyKO3SN59sXKMQdnz33AoFhpcPXPVQ%2Fcr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae9778765689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 | 104.21.56.90 | 200 OK | 14 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (13786), with no line terminators Hashc3825b9d2bb7e067a90db543db343f68 7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa 70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-35da"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jvqfad%2FCXkJARl%2BRSC8doGouMWBE4l91lYPZbHuFVH1%2FqrLvAhfvI13260qgysXKZq8zGsxap%2BS2w4%2B3RMssCM%2BHFIfWOBeO%2F2xKmY5nD0hARoAdIMAZkpXm%2BAHjQ2vnFh8eqqUkVlBc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8b65689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5 | 104.21.56.90 | 200 OK | 40 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (40396) Hashac7624f04566920dae03f91eb66dd97b d9b51553e1aaa1440a16437050f496277fc10bc5 07571bc50f1998b305037b073daebec638f70ad32390a63d151cdbac2180d386
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-9df4"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jd0p1fbmeL%2B3oYy3chf8QBq%2FglGSvUFHdger4ireu4UpY2CQyKCVkSxaOnmkK4Oh1SvKynI6O4hSWfOxGgmY9PdjFuLgnXx5T1ydVLKTrxGFWoisD%2B%2BSZc2J2KtcTLcdu1DZkWjdVnfk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae97a8c05689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amanornaments.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:53:08 GMT
expires: Fri, 09 May 2025 01:53:08 GMT
cache-control: public, max-age=31536000
age: 100957
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-all-blocks-style.css?ver=1713103558 | 104.21.56.90 | 200 OK | 273 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-all-blocks-style.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
Size273 kB (273026 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-all-blocks-style.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-42a82"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ED1YBgjzr%2BDUTq9ALcOSFw%2Bfd851jusI%2FzgWiEhFoEgZL5djj0Uy4y0vl8k9NZuhXbkid8aBgsofAjUfOgUQKr7%2BJaIo5tn0wOv9Nn6z0DxfgprbLE%2Bc8e9o5De1afN46nLCBX2huQz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae967f5f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1713103558 | 104.21.56.90 | 200 OK | 50 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1713103558 IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typeASCII text, with very long lines (50108), with no line terminators Hash8e8752d4b458e341e51096f009f1b69b e194c69f6ee4fa7bed977980c75e5ea9f2cb95d4 c6b0be2564fcde7bca0e7bc93fe336421e7bc4cad4ffb5080ce13a79a95846dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1713103558 HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:44 GMT
content-type: text/css
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
vary: Accept-Encoding
etag: W/"661be2c6-c3bc"
expires: Fri, 10 May 2024 17:55:44 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ge%2F0Psalq2OO2Y3yKw%2FZ72IofeIY9GIOE8LV86zbZsO9CdSBS9sjvyYbNYzOs%2FEBdelMtT8DwvNtlUj1jsmrxBrM8fBhjWwxvbdbJnUHskhnUXzGse%2BJ0SMTnaj9gFCh2S%2BJrPVcDhJt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817ae969f8f5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amanornaments.shop/wp-content/themes/porto/images/flags.png | 104.21.56.90 | 200 OK | 24 kB |
URL GET HTTP/3www.amanornaments.shop/wp-content/themes/porto/images/flags.png IP104.21.56.90:443
Requested byhttps://www.amanornaments.shop/ CertificateIssuerGoogle Trust Services LLC Subjectamanornaments.shop FingerprintD3:31:2B:79:C2:71:12:3B:06:DF:A2:E9:CC:5D:E6:04:37:63:3B:FC ValidityMon, 15 Apr 2024 04:49:43 GMT - Sun, 14 Jul 2024 04:49:42 GMT
File typePNG image data, 256 x 176, 8-bit colormap, non-interlaced Hash04928df0f0bee1344874f2d89ac3783c 5421b494a6cc32b37e39c229c53961d8fc1296c5 0b51dc4b77e0d7b660e388ffbaa188d751fb22905d7b529a2825b24fd416b797
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/images/flags.png HTTP/1.1
Host: www.amanornaments.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amanornaments.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1713103558
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%220cc24985-3d19-5d74-a5b3-eca0059283de%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715322344618%2C%20%22ct%22%3A%201715320544618%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=0c124e46-b4c9-5f6b-ada2-c7632d4bf654; __51vuft__KHkbEi6sh2jJsBBW=1715320544624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 05:55:45 GMT
content-type: image/png
content-length: 23902
last-modified: Sun, 14 Apr 2024 14:05:58 GMT
etag: "661be2c6-5d5e"
expires: Sun, 09 Jun 2024 05:55:44 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bw6U1TEZd2t1NCUb6pO1LBGBGSFDR5pGrEoTi%2BGCdZIiwwwgax4PqeW0eCQOjyAET1YNT7xZX8Bh%2FAYXqYQNxVrjZp8kAW1Wu2J3qIKuW8fmERFJ0oouojMtXl8ngCcCXZHb5beetOOS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817ae9c0c3a5689-OSL
alt-svc: h3=":443"; ma=86400
|
|