URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectgrodsauptoom.com Fingerprint4E:6E:97:29:C4:B6:80:24:3F:84:32:66:75:80:7B:63:5D:D9:D0:FB ValidityMon, 08 Apr 2024 21:06:38 GMT - Sun, 07 Jul 2024 21:06:37 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feed HTTP/1.1
Host: grodsauptoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 26 Apr 2024 23:44:28 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 27 Apr 2024 00:44:28 GMT
Location: https://grodsauptoom.com/feed
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3l%2FkhOU9OKTpguWBDpa8gWOTeD9UQqG5be3xctJ5p887%2FDoIyI%2FCCYC9VprZYCGQxLNKK7b63LJDB1o1jtYpttU6exHgWDQgZaNHdmVVRVxknW4vAR37QyZjTpzOWj7AA%2B%2Fs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87aa70e0ffe2b4f1-OSL
alt-svc: h2=":443"; ma=60
|
| grodsauptoom.com/favicon.ico | 188.114.97.1 | 204 No Content | 0 B |
URL GET HTTP/3grodsauptoom.com/favicon.ico IP188.114.97.1:443
Requested byhttps://grodsauptoom.com/feed CertificateIssuerGoogle Trust Services LLC Subjectgrodsauptoom.com Fingerprint4E:6E:97:29:C4:B6:80:24:3F:84:32:66:75:80:7B:63:5D:D9:D0:FB ValidityMon, 08 Apr 2024 21:06:38 GMT - Sun, 07 Jul 2024 21:06:37 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: grodsauptoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grodsauptoom.com/feed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 Apr 2024 23:44:28 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=86400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A7%2BzNpt833yAK5qAdVc7DDKfA8aL8vEY0IQ%2Bfc0B1z4GEY%2BNoyzv8x%2FsAFWJqk121SoYlXREfa9diC%2B5xrIGRkiH6fkBsuuk6U%2F9CUWrcrJ6SdaDYAQoHWqic6NJd506alZS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa70e25831b50b-OSL
alt-svc: h3=":443"; ma=86400
|
URL User Request GET HTTP/2IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectgrodsauptoom.com Fingerprint4E:6E:97:29:C4:B6:80:24:3F:84:32:66:75:80:7B:63:5D:D9:D0:FB ValidityMon, 08 Apr 2024 21:06:38 GMT - Sun, 07 Jul 2024 21:06:37 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: grodsauptoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 23:44:28 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
location: /feed
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QvFgFF8K6a5Zft9TMaGolN%2BS%2BS575qj83INN62Kty8Bmk9qpYOwXlY5QSe7YzwO1C8q%2B4qClcRPBlsE5MTjOYD7P8%2FE75lGSDGJ%2BtHfD0zDNEHtpp7822MCoX3zoV9D1l1jp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa70de6a7b56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|