Report - littleparadise.shop/

Report Overview

Submitted URL
littleparadise.shop/
IP
104.21.60.12
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 23:32:21
Access
public
Website Title
Little Tikes | Shop Kids Toys
Final URL
littleparadise.shop/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
js.users.51.la	53024	2005-01-17	2012-05-30	2024-04-23	404 B	5.5 kB	47.246.44.243
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	1.1 kB	76 kB	142.250.74.106
translate.google.com	1156	1997-09-15	2012-05-30	2024-04-23	438 B	32 kB	216.58.211.14
ia.51.la	59607	2005-01-17	2017-10-31	2024-04-23	865 B	302 B	203.107.86.226
translate.googleapis.com	1005	2005-01-25	2012-05-31	2024-04-24	1.7 kB	75 kB	142.250.74.74
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2024-04-24	533 B	2.2 kB	142.250.74.106
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	433 B	737 B	142.250.74.164
cdn.shopify.com	2327	2005-03-11	2012-06-22	2024-04-24	1.5 kB	61 kB	23.227.60.200
littleparadise.shop	unknown	unknown	No data	No data	20 kB	1.4 MB	104.21.60.12
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	2.6 kB	120 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-24	1.7 kB	12 kB	142.250.74.35
cdn.shopifycdn.net	45469	2020-03-06	2020-05-26	2024-04-23	504 B	24 kB	23.227.60.200

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed
2024-04-24	medium	littleparadise.shop	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	littleparadise.shop/	63 B	2023-03-12	2024-04-25
Pretty URL littleparadise.shop/ IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 20:31:01 Last Seen2024-04-25 01:32:28 Times Seen5 Hash 2e530330996f750aceb61c15d7e61d17 98c94fc3e43058f3bd1d15f6b9fa3c7fe31ce5f6 b61d788b87b045b00f89d742f5b6d8bc5d0cb2de054fd3490fe52f618a391515 Loading...

	littleparadise.shop/statics/jscript/jquery-ui.min.js	24 kB	2023-03-10	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/jquery-ui.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:37:58 Last Seen2024-04-25 01:32:29 Times Seen11 Hash a677b60117bc171bf2e310e914bc7dfd 620e5308ca73e80d61b92f4be358e27c29bbe0b8 58accb427104e86a4eb4fa9aa0675b3f8f100f082e44e173f6b4e9dda77a55ee Loading...

	littleparadise.shop/statics/jscript/main.js	15 kB	2024-04-25	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/main.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 01:32:28 Last Seen2024-04-25 01:32:29 Times Seen2 Hash 2741ff86beda845ae280d5f71df67679 1b7c9623b23557207438722faf5f0e2451d7df92 8f6333d50fa30f11b79ce27d18399b2bb80b8c366c0fa30eb4c65a1778b54cf9 Loading...

	littleparadise.shop/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=wA/d=1/rs=AN8SPfr-WTiahqzjCeDZHBviGCwN0BZuxA/m=el_conf	89 kB	2024-04-25	2024-04-25
Pretty URL littleparadise.shop/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=wA/d=1/rs=AN8SPfr-WTiahqzjCeDZHBviGCwN0BZuxA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 01:32:28 Last Seen2024-04-25 01:32:28 Times Seen1 Hash 09af20311a2fc4b004890cc6b27e3cd6 e64a0be2fd366769758198e247e3d6cc6adee51a d372d6612e8107d5f1638887e219a3737597bc3eb8f38021b720436fddae5728 Loading...

	littleparadise.shop/statics/jscript/jquery.lazyload.min.js	1.9 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/jquery.lazyload.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen6 Hash 28e6727dcc1307216fd24e4e32562978 0b99a7d2886da1dcaf6324380eef224b6c4c47ee c83fbddebfb0f7816836c92c51b611953d66bac644e233a4b873e1627a6b95f6 Loading...

	littleparadise.shop/statics/jscript/jquery.min.js	97 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/jquery.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen6 Hash 58eb213a33f51eee2ef01ce82f8b1893 d8ff4101e7bcdf6859b7094648058f331e2f662b 7f76445affcc369a6aafff87a3632ad0e507f0ded2cfc8af0b98eaa42b38f047 Loading...

	littleparadise.shop/statics/jscript/design-top.js	435 B	2023-03-17	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/design-top.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 10:11:30 Last Seen2024-04-25 01:32:29 Times Seen7 Hash 433bd6bada819f86858d57aebd0cb151 c36ac0ff58a5fe56336bf5637abfd222f98fce6f 1c1e29d859510172cc39ad5efece27a6d58b9ac76ac2e4ba9da3a4d703c8552b Loading...

	littleparadise.shop/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-04
Pretty URL littleparadise.shop/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-04 12:16:13 Times Seen55911 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	littleparadise.shop/	404 B	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/ IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:28 Times Seen4 Hash eb2edc3fd23a4abb03fa93ac50ae6200 bf362e4ea49ab7b79a4e1a4d8dbd72b54ade76bd e8dc11e989e7259cbd628752803deb8981f3fc6646029e586d606b51833be0c2 Loading...

	littleparadise.shop/statics/jscript/pzen_ajxcart/pzen_ajxcart_functions.js	11 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/pzen_ajxcart/pzen_ajxcart_functions.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen6 Hash 5e0134b2056d9ff6d07a8f1ab409f67e 411ddddf872b57baa3ba9e2856e53a6116f0bb1e b7674e15aa5f8f79c7c3d20f7ad2a1fa52c16395ec0f2ceb0de9f8bd6e32d3c6 Loading...

	littleparadise.shop/statics/jscript/bootstrap.min.js	37 kB	2023-03-10	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/bootstrap.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:37:58 Last Seen2024-04-25 01:32:30 Times Seen11 Hash d9dd0042b8c5794a7c0232f1012c3b1c 3431840d95605b0bd6d63378b7e76e75bc08022f 79fafbb837f4bd7aa72633b88a1fa9dfbc678cedad6801775906d85a18792bfb Loading...

	littleparadise.shop/statics/jscript/fotorama.js	39 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/fotorama.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen6 Hash 3fa0419d50800c16c58bfdec9ce9cd05 15db04f1451a79fec1d9ec1f530598802b77fcb5 531de0886f17e90c9cf78fb329d158398a3364871899d2b3424d8e12db01dbfa Loading...

	littleparadise.shop/	5.1 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/ IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:28 Times Seen4 Hash bcd3ecce08ff4dfa31ef06ce874b310a 2d07bddad3192da2d5a1ba3aecab1fd80ca956dc 4cab7e5a6c68b28fb46b117b7b9a8aa2c19281009129f81133d77da59bebadf0 Loading...

	littleparadise.shop/	16 B	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/ IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen4 Hash 75fbfb4044593cd4627ecb0be012f1ed aaa4ae3c0d37a7779ba4212b55bb45a8a05bddac f4aced1d3cb964159eedfe533e12b1fbf7c02089f305c01d5a25214ba6000e74 Loading...

	littleparadise.shop/statics/jscript/jquery.countdown.min.js	5.3 kB	2023-03-07	2024-05-04
Pretty URL littleparadise.shop/statics/jscript/jquery.countdown.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-04 09:42:04 Times Seen8322 Hash 5d3ff3c3fbaa67cc639501f44eeb07be bd66e4cd58de09c198e7abc77fa4c883955d189e 2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f Loading...

	js.users.51.la/20305659.js	4.9 kB	2023-06-26	2024-04-25
Pretty URL js.users.51.la/20305659.js IP 47.246.44.243 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 18:50:24 Last Seen2024-04-25 01:32:29 Times Seen4 Hash c378030b643f3f65e593b0ccf3b3d085 346af336fbc9acd4814c0dd07810f4d80c156330 3839907ba707808f4ac6ba15d9ff1a374aa191a93e45db6d41731791690e4d3c Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=AAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfq92X1o0HH0hndEbECGlbI-dOTnmg/m=el_main	211 kB	2024-04-24	2024-04-29
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=AAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfq92X1o0HH0hndEbECGlbI-dOTnmg/m=el_main IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:36:57 Last Seen2024-04-29 10:46:57 Times Seen154 Hash 12487a9b7a04b957648956d8e195e2fa db8c446b1516d76be812ba7bc1ebf455c090ef01 b005774fd9d7ddf333c0c90b728c59db1a08be979a9d64a267e00c5fc37686c2 Loading...

	littleparadise.shop/statics/jscript/owl.carousel.min.js	43 kB	2023-03-10	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/owl.carousel.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:37:58 Last Seen2024-04-25 01:32:29 Times Seen21 Hash 8a60ee7670a7670d378b6a5897770c14 1694a94ea2051fd7697c151a5ebb0ae6f5ad115b 4291144ff735f97e2b54974f0f656fc4b88e98167a6064e36d2e7a895e09b5d9 Loading...

	littleparadise.shop/statics/jscript/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-05-04
Pretty URL littleparadise.shop/statics/jscript/jquery.magnific-popup.min.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-04 11:50:16 Times Seen19813 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	littleparadise.shop/statics/jscript/pzen_instantSearch.js	3.1 kB	2023-03-26	2024-04-25
Pretty URL littleparadise.shop/statics/jscript/pzen_instantSearch.js IP 104.21.60.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:04 Last Seen2024-04-25 01:32:29 Times Seen5 Hash 2615d8a9bc6b20e42b010e27dc92368c bd8c71f2fd0b362323bf8280ec8ab828e29fccd0 275bf1f62cd7e1e1ca2319187b5c7bdfb02e58e5b501bde7f5e15680a2d44a7a Loading...

		Size	First Seen	Last Seen
	#1 Write - d7de3322887c3559b68585534e341396	468 B	2023-12-20	2024-04-29
Pretty Observations First Seen2023-12-20 13:25:57 Last Seen2024-04-29 08:51:58 Times Seen398 Hash d7de3322887c3559b68585534e341396 6d5c11d3a5293aa1afa4469955c2bd0b55b74659 bea38c43003f1089b174c87f2c1c42a63f61137aad1cfb72b7dd05d3ec1cc9f1 Loading...

HTTP Transactions (60)

URL IP Response Size

js.users.51.la/20305659.js

47.246.44.243

200 OK

4.9 kB

URL GET HTTP/1.1
js.users.51.la/20305659.js
IP
47.246.44.243:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://littleparadise.shop/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
JavaScript source, ASCII text, with very long lines (4898), with no line terminators
Size
4.9 kB (4898 bytes)
Hash
c378030b643f3f65e593b0ccf3b3d085
346af336fbc9acd4814c0dd07810f4d80c156330
3839907ba707808f4ac6ba15d9ff1a374aa191a93e45db6d41731791690e4d3c

HTTP Headers

GET /20305659.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 24 Apr 2024 23:31:54 GMT
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1714001514
Via: cache20.l2de2[152,151,200-0,M], cache8.l2de2[153,0], ens-cache18.se2[175,174,200-0,M], ens-cache6.se2[175,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 24 Apr 2024 23:31:54 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9a17140015146964673e

littleparadise.shop/images/little/logo.gif

104.21.60.12

200 OK

11 kB

URL GET HTTP/3
littleparadise.shop/images/little/logo.gif
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
GIF image data, version 89a, 519 x 185
Size
11 kB (10771 bytes)
Hash
a9487e67f89c72a50a84ff496aa6e17c
6eb242bc0757f33b17ff783e73c9794df458652a
ae9dd9aa96dec647343c35d7f2b703c25ae2ade5cf181920ee5e256c86ee97c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/little/logo.gif HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: image/gif
content-length: 10771
last-modified: Wed, 30 Jun 2021 09:13:54 GMT
etag: "60dc35d2-2a13"
expires: Fri, 24 May 2024 23:31:54 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kBQsscMh8BmFT3fy3Lv3K27VKLfmKiyAG%2FJIG3XQY%2B0InsXUw0U0ft42wlLNI%2FZGwIt29otVGNJMRdkmbM%2BlT4bj10epcSYNISXrGKa0lrWhc%2FrhZtYFUzfbSTUKyVhpN7B8jYlk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba5983b523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/images/loading.gif

104.21.60.12

200 OK

722 B

URL GET HTTP/3
littleparadise.shop/images/loading.gif
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
GIF image data, version 89a, 16 x 16
Size
722 B (722 bytes)
Hash
618a14f4dca4f51100cd2400e7f9049c
c19c6b4df46f9e8cc3bd7b74663a13cf9ea3a449
caae15eec8bd2af1f0ee84b9aabef62a6fb1a2305f65ff4eb5d56773b159187f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/loading.gif HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: image/gif
content-length: 722
last-modified: Sat, 03 Apr 2021 17:43:26 GMT
etag: "6068a93e-2d2"
expires: Fri, 24 May 2024 23:31:54 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GCdV0QdKuyA%2FXb626soKFRMOApaJkmC%2Br8mwQvKpC7AagrrrGxB3%2FNjxh%2FqL23NwElU9fEgx3%2B8qo0ro9FFakIETRoDhdoNBTcB5foeRf3hbS895Nis5wZjh02PjA0BGe0l9xypJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba5986b523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/images/blank.png

104.21.60.12

200 OK

95 B

URL GET HTTP/3
littleparadise.shop/statics/images/blank.png
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Size
95 B (95 bytes)
Hash
71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/images/blank.png HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: image/png
content-length: 95
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
etag: "66143626-5f"
expires: Fri, 24 May 2024 23:31:54 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1NHfa3ExbH5o%2F1gmo4H%2BO4VVdgRgc%2BnsGJzKMKEtbnbCxdFt8B2v5Pa7RNRJscqbRAX4WCpYE4JwNxA9aqOSRJyybkf%2FxutKJmIOWtffcW8YEGbg0auHSqyLUJLsUS9MAGeX%2FYVl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba5988b523-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 540609
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

littleparadise.shop/statics/jscript/owl.carousel.min.js

104.21.60.12

200 OK

12 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/owl.carousel.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (32000)
Size
12 kB (11877 bytes)
Hash
8a60ee7670a7670d378b6a5897770c14
1694a94ea2051fd7697c151a5ebb0ae6f5ad115b
4291144ff735f97e2b54974f0f656fc4b88e98167a6064e36d2e7a895e09b5d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/owl.carousel.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-a6b4"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wsfOgQfKJQjdFCZWNVTM4ScPCbBR1vNqMItPg2cGZo9cXycLeUM2%2Fn7K1Oe0FRvmIW9BxRY9qgIqxbl9R4jYTdWBHGdzgS%2F6JxgE5YQqlyDnD0F6kkpqdDSX38KRdINFmRPX5IpK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba698fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 593633
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

littleparadise.shop/statics/jscript/pzen_ajxcart/pzen_ajxcart_functions.js

104.21.60.12

200 OK

27 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/pzen_ajxcart/pzen_ajxcart_functions.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (8995)
Size
27 kB (27177 bytes)
Hash
5e0134b2056d9ff6d07a8f1ab409f67e
411ddddf872b57baa3ba9e2856e53a6116f0bb1e
b7674e15aa5f8f79c7c3d20f7ad2a1fa52c16395ec0f2ceb0de9f8bd6e32d3c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/pzen_ajxcart/pzen_ajxcart_functions.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-2c5e"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hEPpfy3o1LLj2SZfsw6JouI2jxrcDh5Xw14mfhC6mXpGQ7NTO1d7Znj0g9qIHOsm%2ByIehaIprWQUoMyK6f0%2Flz%2BnOj7Ly5i5fTOT3OewIdKT%2B1IqTNO1XjRgOcV37Xg2nQo8jYGN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba598bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/images/loading.gif

104.21.60.12

200 OK

722 B

URL GET HTTP/3
littleparadise.shop/statics/images/loading.gif
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
GIF image data, version 89a, 16 x 16
Size
722 B (722 bytes)
Hash
618a14f4dca4f51100cd2400e7f9049c
c19c6b4df46f9e8cc3bd7b74663a13cf9ea3a449
caae15eec8bd2af1f0ee84b9aabef62a6fb1a2305f65ff4eb5d56773b159187f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/images/loading.gif HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/template.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: image/gif
content-length: 722
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
etag: "66143626-2d2"
expires: Fri, 24 May 2024 23:31:55 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cQp%2FADjr44t2cwjx4ByoX04GMF573a78pgeisRKbUxsO6eLnslvtOPQ6fKmfrwVya7i0LkB0CBmbn3CNhkHeyRSJv1A9Dkh%2B42VlLfNVv2XtRh3R7NabUnQZyyuOIrNm6o8AVuE5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3be1b39b523-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 593633
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

littleparadise.shop/statics/jscript/jquery-ui.min.js

104.21.60.12

200 OK

7.9 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/jquery-ui.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (23835), with no line terminators
Size
7.9 kB (7880 bytes)
Hash
a677b60117bc171bf2e310e914bc7dfd
620e5308ca73e80d61b92f4be358e27c29bbe0b8
58accb427104e86a4eb4fa9aa0675b3f8f100f082e44e173f6b4e9dda77a55ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/jquery-ui.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-5d1b"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BBar%2BwqP3GJ7i8JdTNYiQU2SVT9PJLZglU2n638rbDXQ%2B6f76OjN6Keqauzu9WZLjH05jPpBXin2aL0Lanyv%2FR1g6jGDVxO3xauAhpOUmsP0kQ4Sipic%2BGP4yDlR2ToE4uO2Jlvl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6991b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/bootstrap.min.css

104.21.60.12

200 OK

19 kB

URL GET HTTP/3
littleparadise.shop/statics/css/bootstrap.min.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (11955)
Size
19 kB (18645 bytes)
Hash
e5e76a19b2bb1602c7c31eb55b1726fc
3d53edd6890e2432dbbf4972f72e35a705d33f64
2c1a5e97091ff8ab4f64df8b0836efb3c28a9f1ffafa85fae089b84aef3a923b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/bootstrap.min.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:36 GMT
vary: Accept-Encoding
etag: W/"66143628-1abf4"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SEXI0MFEFbILMwVoQd2aVuZn%2BkcfVsljYMObtnOkY73JIZwj3O3EI0RPtKHjudAzUNsONcZcJRpw5mEuO2OiXc4SOImQIkRgLRXm8XzbDYStUEeEt0MkUgJMwrGJlmFl73kyEyr1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba396bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/fotorama.js

104.21.60.12

200 OK

23 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/fotorama.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (38949), with no line terminators
Size
23 kB (22636 bytes)
Hash
3fa0419d50800c16c58bfdec9ce9cd05
15db04f1451a79fec1d9ec1f530598802b77fcb5
531de0886f17e90c9cf78fb329d158398a3364871899d2b3424d8e12db01dbfa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/fotorama.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-9825"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0MEtjd3HFTEEKQ4gJeSLwpB6BE8TRaMNQdaRVj%2B8KHgdvS47FlSsV%2BjDlDw5m2TFotQ8Lzbhuc9UTks%2FAT5lAuW2z%2BSjAM84y3wF2HbbAtDKn9X12Yknp9Zy%2BgHdrdKCigMhPiBl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6993b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/jquery.countdown.min.js

104.21.60.12

200 OK

23 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/jquery.countdown.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (4136)
Size
23 kB (22630 bytes)
Hash
5d3ff3c3fbaa67cc639501f44eeb07be
bd66e4cd58de09c198e7abc77fa4c883955d189e
2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/jquery.countdown.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-14db"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IoYndxjJbq6%2BrGFqy%2FVcMuhq5TTtYCGLvCaXZpChKH3Ju7KOKRP9FcZre%2BWPmSACeQ9XM6IUiyGAinw1xZg%2FAvby0ADDIB4exj1H8jp1d3AE3%2BWNF2bKx%2F%2BXKLOK6%2BB2Wkb58JMl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6992b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.60.12

200 OK

18 kB

URL GET HTTP/3
littleparadise.shop/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
gzip compressed data, from Unix
Size
18 kB (18373 bytes)
Hash
23b7bacab1f9053e610290b2052f0ab6
6260b2e63c3eb3e0cf5e6197cfa52b3f64076cc0
9de748c84ffd9833f68bfc291eb666e6957f3856874f8889b3b4676edc64144b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 17:56:46 GMT
etag: W/"6627f65e-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3XX%2FVyum6Y3rispXhyK3qK3TaGnObvjrt0IXFCr%2FFFqIg7h%2FxAiDP6sjem9b9e3DVH144RbKXQ3iPKNOmR3zI1EHyLTpDQE%2BV63yNCLA%2FGSyfYaMBK%2Fuxv8xwI2%2FSn%2FyolbceQe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba5989b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 26 Apr 2024 23:31:54 GMT
cache-control: max-age=172800, public
content-encoding: gzip

littleparadise.shop/statics/fonts/fontawesome-webfont.woff2?v=4.7.0

104.21.60.12

200 OK

77 kB

URL GET HTTP/3
littleparadise.shop/statics/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/fonts-style.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: font/woff2
content-length: 77160
last-modified: Mon, 08 Apr 2024 18:23:36 GMT
etag: "66143628-12d68"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e8TLGzy5EgtkYPH9nhsH2anBLGrf2J%2BABJgHOFnSORMAYyCoRxGRxxDaIk3NoW9UfipyvYjKuCy1SWF3kujzED3wI1nQsfldlfc8afk2jM5DWD1UZ7jpeCEogEHV04xFXwNVXi09"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3be2b3eb523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/images/mpzen_ajaxcart_close.png

104.21.60.12

200 OK

184 B

URL GET HTTP/3
littleparadise.shop/statics/images/mpzen_ajaxcart_close.png
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
PNG image data, 15 x 28, 8-bit/color RGBA, non-interlaced
Size
184 B (184 bytes)
Hash
b89de8cefcbca10c48f30664863a22c9
af039bd93311994c642d460615f6a1e2c1c9e3f6
a209c8c90047203c8ad5c9defad0858b9c33e2bdbff9db742674abc05d41ac36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/images/mpzen_ajaxcart_close.png HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/pzen_ajxcart.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; __tins__20305659=%7B%22sid%22%3A%201714001515363%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714003315363%7D; __51cke__=; __51laig__=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: image/png
content-length: 184
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
etag: "66143626-b8"
expires: Fri, 24 May 2024 23:31:55 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=towz2R5J7bOktBiwktnTw%2F0FqcBLofRDU6ytZCR%2FvuwALjQsuEOwF2cIZNZxID%2F4nCxIo7DXApsw9VV9fcJLA0XxvS5XaCtSIvB%2BS1BIaieiCVDoI9hj0UvMa5bOtnojTPz1k8uN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3c02bc9b523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/jquery.magnific-popup.min.js

104.21.60.12

200 OK

30 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/jquery.magnific-popup.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (20087)
Size
30 kB (30209 bytes)
Hash
ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/jquery.magnific-popup.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-4ef8"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YRZvQkLnuVG6xMULU3KjHTWI6Vl%2FYJlb42O6pI3eyUjybPhsVlGVEdVKKM2PWNOqvyR%2BJyuDfgoSA2KcirquaA0fRQuIzqiVLU4ANghjueOX4Zl3QZ7UCpEmV1TWCE4FtgC4lFBB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6990b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Montserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic

142.250.74.106

200 OK

38 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
38 kB (37742 bytes)
Hash
f6b9f82f03c521fa10d60881d7737397
3b855bb14ef6b30d16457c956decf0cfb8ff58e5
b6a768e215e9ff234dfdf1ac475caad24602a54465563a8373f3509c37180ad9

HTTP Headers

GET /css?family=Montserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 23:31:54 GMT
date: Wed, 24 Apr 2024 23:31:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic

142.250.74.106

200 OK

37 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
37 kB (37372 bytes)
Hash
8aeb200a2f2aac26b3052a71fc5e3db1
dc09025465bea700ed8acac0e3e5209c73929fba
03cf3bec351cfde7cbf2f5b15a1466a12b7fbb2119315e1e3337f75d3f4266e5

HTTP Headers

GET /css?family=Lato%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 23:31:54 GMT
date: Wed, 24 Apr 2024 23:31:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

littleparadise.shop/statics/jscript/jquery.lazyload.min.js

104.21.60.12

200 OK

59 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/jquery.lazyload.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text
Size
59 kB (59202 bytes)
Hash
28e6727dcc1307216fd24e4e32562978
0b99a7d2886da1dcaf6324380eef224b6c4c47ee
c83fbddebfb0f7816836c92c51b611953d66bac644e233a4b873e1627a6b95f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/jquery.lazyload.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-73a"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qyPsxG5BUX6ImjmixtoFsS5j8CSlFPrkClA2gLkkhueJKLH4VPsFe7g7dCnmrm6azOnEmBXVc2%2BrVObgBeNg4lb2sIwByBQiZcKIhq8l7cvr3C8VhTlewP4nc09tfVRVRy3%2FlL1a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6996b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/design-top.js

104.21.60.12

200 OK

19 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/design-top.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (435), with no line terminators
Size
19 kB (18977 bytes)
Hash
433bd6bada819f86858d57aebd0cb151
c36ac0ff58a5fe56336bf5637abfd222f98fce6f
1c1e29d859510172cc39ad5efece27a6d58b9ac76ac2e4ba9da3a4d703c8552b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/design-top.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
etag: W/"66143626-1b3"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P%2BBIQQtUgX0jhr8VbIjyDlAWC7Iq%2F1HapMLEBf%2BU54xDfO%2FtfMMC9JrME7%2BVwkZdz6080yzdDIl3319soE4fGRB1aHBc6Sm2NC1uRgnvKbqXQiNj%2FyS5Osr9GQh1v8yVbfrAItBH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba497db523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/images/little/banner2.jpg

104.21.60.12

200 OK

332 kB

URL GET HTTP/3
littleparadise.shop/images/little/banner2.jpg
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=17, height=4096, bps=0, compression=LZW, PhotometricInterpretation=CMYK, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=6144], baseline, precision 8, 1320x700, components 3
Size
332 kB (331859 bytes)
Hash
181f06f7050e7c1dbe6990736c6a6d7e
27908bbc37147aa08642aef453f11a5b5fd7d3a4
665814f5c3c6e31e2663f095b2f40aba3a808c9fd0a5d375bf49f0313c4524f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/little/banner2.jpg HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; __tins__20305659=%7B%22sid%22%3A%201714001515363%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714003315363%7D; __51cke__=; __51laig__=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:56 GMT
content-type: image/jpeg
content-length: 331859
last-modified: Wed, 30 Jun 2021 09:13:54 GMT
etag: "60dc35d2-51053"
expires: Fri, 24 May 2024 23:31:55 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YjugcGkr8vY%2FdlSG93jdsw8Kf2h0A6RxFmtK8uk9gXI6%2BC%2BEuBjgZlL%2FNitiTK4dsfu4Km5HzEzctFfOoIymD37FN8C%2B671TINM8Apjz018Pepom4GYLOEvt%2FPnRcxArGe398J34"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3c04bd3b523-OSL
alt-svc: h3=":443"; ma=86400

translate.google.com/translate_a/element.js?cb=translateInit

216.58.211.14

200 OK

31 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=translateInit
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
gzip compressed data, max compression
Size
31 kB (31358 bytes)
Hash
60058024eea970930ca726af5ac0b548
11fb9119718e887cea6f47d0844f7d6620d3d1b6
3e1fda34c0d3b47c6a0c03a08ff337c17ad9cd5eeed21b8accda1daf00a04bb9

HTTP Headers

GET /translate_a/element.js?cb=translateInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 23:31:56 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:44:30 GMT
expires: Fri, 18 Apr 2025 02:44:30 GMT
cache-control: public, max-age=31536000
age: 593246
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ia.51.la/go1?id=20305659&rt=1714001515363&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys%2520&ing=1&ekc=&sid=1714001515363&tt=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys&kw=Active%2520Play%252CRide-ons%2520~_~%2520Wagons%252CPreschool%2520Toys%252CBaby%2520Toys%252CFurniture%252CAges%252CLittle%2520Tikes%252CToys%252C%2520Kids%2520&cu=https%253A%252F%252Flittleparadise.shop%252F&pu=

203.107.86.226

200

0 B

URL GET HTTP/1.1
ia.51.la/go1?id=20305659&rt=1714001515363&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys%2520&ing=1&ekc=&sid=1714001515363&tt=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys&kw=Active%2520Play%252CRide-ons%2520~_~%2520Wagons%252CPreschool%2520Toys%252CBaby%2520Toys%252CFurniture%252CAges%252CLittle%2520Tikes%252CToys%252C%2520Kids%2520&cu=https%253A%252F%252Flittleparadise.shop%252F&pu=
IP
203.107.86.226:443
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://littleparadise.shop/
Certificate
IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=20305659&rt=1714001515363&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys%2520&ing=1&ekc=&sid=1714001515363&tt=Little%2520Tikes%2520%257C%2520Shop%2520Kids%2520Toys&kw=Active%2520Play%252CRide-ons%2520~_~%2520Wagons%252CPreschool%2520Toys%252CBaby%2520Toys%252CFurniture%252CAges%252CLittle%2520Tikes%252CToys%252C%2520Kids%2520&cu=https%253A%252F%252Flittleparadise.shop%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Wed, 24 Apr 2024 23:31:56 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=a959fbb70157e7ec6fad7897c6374732f36cd3f1b76b3e5d97fabbb8260e0371; Path=/; HttpOnly
acw_tc=ac11000117140015165643253ea1e2bd0d53cca07bfe7f4e05c2efb17e6399;path=/;HttpOnly;Max-Age=1800

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=AAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfq92X1o0HH0hndEbECGlbI-dOTnmg/m=el_main

142.250.74.74

200 OK

73 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=AAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfq92X1o0HH0hndEbECGlbI-dOTnmg/m=el_main
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (2297)
Size
73 kB (72714 bytes)
Hash
12487a9b7a04b957648956d8e195e2fa
db8c446b1516d76be812ba7bc1ebf455c090ef01
b005774fd9d7ddf333c0c90b728c59db1a08be979a9d64a267e00c5fc37686c2

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.qSFe8Zd40bk.O/am=AAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfq92X1o0HH0hndEbECGlbI-dOTnmg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 72714
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 18:43:58 GMT
expires: Thu, 24 Apr 2025 18:43:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:10:37 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 17278
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 18:58:28 GMT
expires: Mon, 21 Apr 2025 18:58:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 275609
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 13:06:34 GMT
expires: Thu, 24 Apr 2025 13:06:34 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 37523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=wA/d=0/rs=AN8SPfpVjmduEbJeaKDPJmqpx8swJVpW8A/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:44:30 GMT
expires: Fri, 18 Apr 2025 02:44:30 GMT
cache-control: public, max-age=31536000
age: 593247
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.106

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 24 Apr 2024 23:31:57 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=513=NGr6JKankJiLqfK4qYl06fBPKiLCJErZBtw3EIXIcdZkNO5eYDpTyeMvjHcQ3cKnDiDI8ALB8HE_AinSQZaPp8ZwC4pbKhJrl8r_f4dHoVeJfKe-DGLCuqITIYMPwns_r90W_jYPPZUtIGZNGHPRq7GL5z8RbO_AIOKwduMiK2Q; expires=Thu, 24-Oct-2024 23:31:57 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
expires: Wed, 24 Apr 2024 23:31:57 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/images/cleardot.gif

142.250.74.164

200 OK

43 B

URL GET HTTP/2
www.google.com/images/cleardot.gif
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Wed, 24 Apr 2024 23:31:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.74

200 OK

0 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://littleparadise.shop/
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://littleparadise.shop
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Wed, 24 Apr 2024 23:32:07 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.74

200 OK

131 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://littleparadise.shop/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1186
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://littleparadise.shop
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 23:32:07 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

littleparadise.shop/statics/jscript/pzen_instantSearch.js

104.21.60.12

200 OK

3.1 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/pzen_instantSearch.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (3121), with no line terminators
Size
3.1 kB (3059 bytes)
Hash
4ee43c9a28e319fa374919445167265d
07bfa8efdd2ce6d58715d65e67e5a391e0b961cc
8e568f18d2ee2b5edc95bf8f3df7efe7e2a0f6ee1ecb7b0c478f26819374c4f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/pzen_instantSearch.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-bf3"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eECuDyir8uF8fQAWArGdDsWsHfsIc1YLMxxtHC9gTo%2BKfuKwaI%2BSYMqlGKf8rSE2Ree1VEorEsvYbrWKvz6ZdcW%2Br%2FkiRa8FSCDW2gi6XwVs6EuG9ilACdrs%2ByseznaPLoEVMHl0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6995b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/

104.21.60.12

200 OK

80 kB

URL User Request GET HTTP/2
littleparadise.shop/
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type

Size
80 kB (79790 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.1.33
set-cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; path=/; domain=.littleparadise.shop; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MvxZXd7ePkVI7gAKTak8nRFxRn9wLfC7NktNPNsnrAOQVvHX3NFyAs6m0%2BWS05NpPgWWSAFeF5s%2FF2112AovPBLkYEEbkETqAy2a3K0ezDoV7zMdAhV4ecZhSAirZ2QN9n5YIKs%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3b57a5fb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

littleparadise.shop/images/little/style.css

104.21.60.12

200 OK

410 B

URL GET HTTP/3
littleparadise.shop/images/little/style.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (424), with no line terminators
Size
410 B (410 bytes)
Hash
7526e0fe319af3e8bf345aa856c5f1f6
c4daa5922cde7b45b86b60f204d2b2c9e0742104
99f88fc944fa18425f701237283505de2f2451a00c74691629afb31bec845fab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/little/style.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Sat, 03 Jul 2021 09:32:19 GMT
etag: W/"60e02ea3-19a"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6rqccnHncXPiWexLLeyAdubH%2B%2B1TJCJndJkW1V8XncPeJkY%2By5ZVNGO9DDS3nWQYXX2HiVuYLy%2FdQY%2BD84ASOpEfikD32Wji%2Fu5Ee9wdZY86sKIYOIF8VX6iUUnoLmF3wJViGUVV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3ba4980b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/fonts/Pe-icon-7-stroke.woff?d7yf1v

104.21.60.12

200 OK

59 kB

URL GET HTTP/3
littleparadise.shop/statics/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
Web Open Font Format, TrueType, length 58556, version 1.0
Size
59 kB (58556 bytes)
Hash
b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/pe-icon-7-stroke.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: font/woff
content-length: 58556
last-modified: Mon, 08 Apr 2024 18:23:36 GMT
etag: "66143628-e4bc"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t8Xjaz9i1LsbrZvml%2BkP5WF9r97IaXW6whBToReJazQnVqNGjQt%2BzqAAuzMGgwPCcN%2Fp3q0HBoeEkEL2AuNS%2BwDa9CZWa3K%2BLs%2FV%2BqLTyRAKeBt82IeT6fZn75ChXq%2Fjuck99dyf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3be4b43b523-OSL
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/s/files/1/0539/4402/5275/products/4514_cdd3822f-d66a-423c-bad0-1648c44ce531_350x.jpg

23.227.60.200

200 OK

18 kB

URL GET HTTP/2
cdn.shopify.com/s/files/1/0539/4402/5275/products/4514_cdd3822f-d66a-423c-bad0-1648c44ce531_350x.jpg
IP
23.227.60.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (17718 bytes)
Hash
cfcc301e3146b6045a21ff4556ab9e11
b78c0352c0976e4fb2d7a1d6af5d1aa8d7a3ef68
d0ea51bda0490141e9ce61d18db866995720b31fb8ed7fb07c9f9b63b5aa4b7f

HTTP Headers

GET /s/files/1/0539/4402/5275/products/4514_cdd3822f-d66a-423c-bad0-1648c44ce531_350x.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: image/webp
content-length: 17718
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0539/4402/5275/products/4514_cdd3822f-d66a-423c-bad0-1648c44ce531_350x.jpg>; rel="canonical"
source-length: 527202
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 555ed0d0-1ed3-48f2-9f9a-181ceee142d0-1710186696
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 11 Mar 2024 19:51:36 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6%2FnY5Gro9k23qErHk5%2BLqKQ4EZN%2FGxk7l282b3Ex2cdZVSST6vOdsna3wTChwdZLcxR1pM6WMw73ns8XzdMA%2FF3rXoYyuBTshssWDAZqyBk9c9YHyN%2BGOboWwBvyqonA%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=171.512, imageryFetch;dur=73.420, imageryProcess;dur=97.375;desc="image", cfRequestDuration;dur=197.000027
server: cloudflare
cf-ray: 8799e3c0bf6b56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0539/4402/5275/products/6436_21c6895d-98b4-466f-b5f4-8d429d71caff_350x.jpg

23.227.60.200

200 OK

20 kB

URL GET HTTP/2
cdn.shopify.com/s/files/1/0539/4402/5275/products/6436_21c6895d-98b4-466f-b5f4-8d429d71caff_350x.jpg
IP
23.227.60.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT

File type
RIFF (little-endian) data, Web/P image
Size
20 kB (20198 bytes)
Hash
617eef090a193d18a6aa569e128302c0
19a7b9066cf8d58c6287eb42782c8908c3075022
86871534cd60fc0025604113c278f17f3bc369679a3bbb00bcc883fcc4b94336

HTTP Headers

GET /s/files/1/0539/4402/5275/products/6436_21c6895d-98b4-466f-b5f4-8d429d71caff_350x.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: image/webp
content-length: 20198
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0539/4402/5275/products/6436_21c6895d-98b4-466f-b5f4-8d429d71caff_350x.jpg>; rel="canonical"
source-length: 159248
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 32830fdd-e153-446a-8793-783067385373-1713037240
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Sat, 13 Apr 2024 19:40:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S6xcU9RZIsgEYTrBACUkUyw2URufBxc%2Fde4vqceFaxhK0x09sPR0UHOVQR20u3VjJKklNWRU6X21QFPmfGlEs%2FIS9qrAq5a9zgQy27FbR7pVif%2FDj98nsihWF4SZYJiltQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=159.785, imageryFetch;dur=56.594, imageryProcess;dur=102.074;desc="image", cfRequestDuration;dur=40.999889
server: cloudflare
cf-ray: 8799e3c0af6956c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

littleparadise.shop/statics/css/owl.carousel.css

104.21.60.12

200 OK

3.2 kB

URL GET HTTP/3
littleparadise.shop/statics/css/owl.carousel.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (3236), with no line terminators
Size
3.2 kB (3234 bytes)
Hash
b8f3ac42acef337dd576117a302b3c2b
9a1b46b1240f3584020cce3ead36d74d88334276
de7bbfdebef1c8d37d6b058980e5c869c2d65e776be13ff3202b6d686f8fc658

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/owl.carousel.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-ca2"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wGxP5we27ocuHLukYIbRr6XY3dKvNK5YxJZRpXNAIm5ExUVRHOe6blq8D7DBoxiBkTq9wkdWAqYZNym4HTt%2FR%2Bj6WfJ%2FQf4I5xNmpnbaJNuiwkjLTJhHHPxNsd3%2FnodAOUM2uL5V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba396fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/main.js

104.21.60.12

200 OK

15 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/main.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (14566), with no line terminators
Size
15 kB (14566 bytes)
Hash
2741ff86beda845ae280d5f71df67679
1b7c9623b23557207438722faf5f0e2451d7df92
8f6333d50fa30f11b79ce27d18399b2bb80b8c366c0fa30eb4c65a1778b54cf9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/main.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-38e6"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k0r88Ki8hexH0SL7lARASzFh%2B0C4%2BXPw6HeK%2BKM63dC5W348jvwhDIO%2FbopUzsq62f4DSFbTfq68rh%2FSMA8TpVI2OEWj921PpBXlLYNNx3pCLyFWfVLAL94d3In%2BlqU%2FmgCSjB98"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba6997b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/s/files/1/0539/4402/5275/products/2690_51ae0f72-b98d-4e18-b6fa-7fa36aa08b77_350x.jpg

23.227.60.200

200 OK

19 kB

URL GET HTTP/2
cdn.shopify.com/s/files/1/0539/4402/5275/products/2690_51ae0f72-b98d-4e18-b6fa-7fa36aa08b77_350x.jpg
IP
23.227.60.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT

File type
RIFF (little-endian) data, Web/P image
Size
19 kB (18766 bytes)
Hash
075e27a3e2eecf22b989b6cf5d791d29
6cee3aa88b26594c711e47c2eb752d01bd3d0127
132195978077eda3eb7b84d215449f76380419cde7851be48c49d49961294a44

HTTP Headers

GET /s/files/1/0539/4402/5275/products/2690_51ae0f72-b98d-4e18-b6fa-7fa36aa08b77_350x.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:31:56 GMT
content-type: image/webp
content-length: 18766
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0539/4402/5275/products/2690_51ae0f72-b98d-4e18-b6fa-7fa36aa08b77_350x.jpg>; rel="canonical"
source-length: 515277
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a829f8ff-4388-402d-aef9-2e76f6132b5c-1710185479
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 11 Mar 2024 19:31:19 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cmks6xAeq5UPmNNNwqB71hhLlYgtXJpNA517rNY%2F9KXg2TJ%2Bdi2w9aDHNv4tR7l%2BVe0Ojsfgkc9ZzHgV8kZDZMR8At5jLxemZqgJzie3QLFHCL8sqbAct5keGrYRBsuAtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=151.030, imageryFetch;dur=60.208, imageryProcess;dur=89.920;desc="image", cfRequestDuration;dur=522.000074
server: cloudflare
cf-ray: 8799e3c0cf7556c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

littleparadise.shop/statics/css/fotorama.css

104.21.60.12

200 OK

14 kB

URL GET HTTP/3
littleparadise.shop/statics/css/fotorama.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (10198)
Size
14 kB (14499 bytes)
Hash
41edce59e94dd8002a3a84f4bacca04a
06a6acb2a63cd3f44e65b5c9dcf915fea846506d
16fb19c1a1da82781e67c4487dbe66fdf4be33c54e2dd24a4ebc997520e8c853

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/fotorama.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-38a3"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GVG0jm27iUbTsBFHdj3ySyoz1BaQIj6tuNpRiwNo0R8rjLTtitGuVD8KHpNHaEn0bSs%2Br2nR9wT1uI9Mpx%2FlxsdCbRlQLe0nt6hsKVTJAtAjzG2%2BLY%2F%2B6TOuxY5RqkiE4j8BzCP2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba396eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/template.css

104.21.60.12

200 OK

35 kB

URL GET HTTP/3
littleparadise.shop/statics/css/template.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (566)
Size
35 kB (35048 bytes)
Hash
df58c162d98752c01181b1c34c122cec
4816dbe2af66dc26a264235868e718c12ccea0e0
b842609757e60b61da17f8ec6ad999ff2995e555c3975b19545ae9fa2fd1b609

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/template.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-88e8"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hu8TzZwmGmSKQxzpTWcYBK5UrQZppBeaCntz28QsmjHmqXzFuIl%2FbdtQXbe3apyJuLCksJS6F6hWcM7oUb%2BVSWMJ4S7mIRtvVt8Gc8Nw%2B6J8F7grHMvKsZ8iBBbIdzxInjOpQwt2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4978b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/fonts/MaterialIcons-Regular.woff2

104.21.60.12

200 OK

37 kB

URL GET HTTP/3
littleparadise.shop/statics/fonts/MaterialIcons-Regular.woff2
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 36888, version 1.131
Size
37 kB (36888 bytes)
Hash
9b590521ff1c8b9fa99942e2253a0f52
efa57bb7b30fc2ce1eb58ba3e03ebf8fe12db7d0
732ede8a2e23292a923db629fb4370dfd5dda64976d49f98d9f9ac548d9c3f4c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/fonts/MaterialIcons-Regular.woff2 HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/fonts-style.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; __tins__20305659=%7B%22sid%22%3A%201714001515363%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714003315363%7D; __51cke__=; __51laig__=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: font/woff2
content-length: 36888
last-modified: Mon, 08 Apr 2024 18:23:36 GMT
etag: "66143628-9018"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MCOlANFQF%2BKivl2MM%2B6BJynuzGtvHUqeKoqzTOi2qBIVqSeVFGkKoY8x7IcsWptvzLwJmgj1f7cGcvbD46Wc8E%2F4SfeCfifnpWIE5%2BjPixhu69UYY4XAefZx75Ltu0L4FvGG7kSj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3c04bd0b523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/fonts/MaterialIcons-Regular.woff2

104.21.60.12

200 OK

37 kB

URL GET HTTP/3
littleparadise.shop/statics/fonts/MaterialIcons-Regular.woff2
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 36888, version 1.131
Size
37 kB (36888 bytes)
Hash
9b590521ff1c8b9fa99942e2253a0f52
efa57bb7b30fc2ce1eb58ba3e03ebf8fe12db7d0
732ede8a2e23292a923db629fb4370dfd5dda64976d49f98d9f9ac548d9c3f4c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/fonts/MaterialIcons-Regular.woff2 HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/statics/css/fonts-style.css
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; __tins__20305659=%7B%22sid%22%3A%201714001515363%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714003315363%7D; __51cke__=; __51laig__=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: font/woff2
content-length: 36888
last-modified: Mon, 08 Apr 2024 18:23:36 GMT
etag: "66143628-9018"
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PlKpt%2Bnh%2F79%2B3Kx7F%2Bl8Is93xIz2pn2MKz0wEW8YqBxAS7J33h1WE9PgRg8lX%2BJGwIJxnXcomTg%2BfXvjzMNLG6hf%2FFW1TbmsDhvLrfGbgnycylQX8LeoHbcu52FHOYt6n0x3DNqM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3c18c58b523-OSL
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/pe-icon-7-stroke.css

104.21.60.12

200 OK

8.8 kB

URL GET HTTP/3
littleparadise.shop/statics/css/pe-icon-7-stroke.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (9459), with no line terminators
Size
8.8 kB (8848 bytes)
Hash
2f04eeaac0fa36718f26ecda5ba84080
4c305ee5725b60b2379ad4103fa46757f8f8b033
262f77ed658c4dfbd3016787b97dc637169029e9b748bb5f096a9ba7e986af24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/pe-icon-7-stroke.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-2290"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P26%2FNK5mziuCT8uZpnkAEYkwibubsitACST%2F%2FylqKeXuqPeor%2B%2BqtNl7L%2F2b7KwIPOAmwKqrz4vEcjcgdPRu0GTauUi2GYj7OSJf16g5psDKBuintQR56EPG2ZL%2FrmFCj1OlR94g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4972b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/jquery.min.js

104.21.60.12

200 OK

97 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/jquery.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
97 kB (97096 bytes)
Hash
58eb213a33f51eee2ef01ce82f8b1893
d8ff4101e7bcdf6859b7094648058f331e2f662b
7f76445affcc369a6aafff87a3632ad0e507f0ded2cfc8af0b98eaa42b38f047

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/jquery.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-17b48"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GNaQsNw%2B6tLLR7hAOpOk%2B8apCN7RcG%2FBn2w25lW3Wft60Bjy4FSKCe5bZWqZ5IuWWSYYRB5vmhUb1ecFVtczrxDsos14ZXpDp3gYRC%2BntLJ1aohRgw3v8L%2FVVYrHcyVixtj2M53c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba497cb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopifycdn.net/s/files/1/0539/4402/5275/products/5529_c82f1d8c-7a06-49f2-91be-969aff310736_350x.jpg

23.227.60.200

200 OK

23 kB

URL GET HTTP/2
cdn.shopifycdn.net/s/files/1/0539/4402/5275/products/5529_c82f1d8c-7a06-49f2-91be-969aff310736_350x.jpg
IP
23.227.60.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectcdn.shopifycdn.net
Fingerprint1B:67:3F:24:1B:9F:9B:88:1C:CD:6E:98:69:B1:13:7B:AF:8E:56:D7
ValidityWed, 06 Mar 2024 17:29:27 GMT - Tue, 04 Jun 2024 17:29:26 GMT

File type
RIFF (little-endian) data, Web/P image
Size
23 kB (22674 bytes)
Hash
38ca471576fdeb3c76ac74307478b18b
9bb32a702c3f37a38d78a64abb6dc66b701b29df
27f75019632181c3af6bd7456079cbc5d9c3486f6202e363e7b1d252e997996f

HTTP Headers

GET /s/files/1/0539/4402/5275/products/5529_c82f1d8c-7a06-49f2-91be-969aff310736_350x.jpg HTTP/1.1
Host: cdn.shopifycdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: image/webp
content-length: 22674
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopifycdn.net/s/files/1/0539/4402/5275/products/5529_c82f1d8c-7a06-49f2-91be-969aff310736_350x.jpg>; rel="canonical"
source-length: 174175
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 6a3f498e-7e14-4bf8-86cc-513278c6127a-1710187709
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 11 Mar 2024 20:08:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lbi%2FkzDglu5o3XujdW%2BfRdW7LjB7HHRx72QETgKqaJ85RNqM9wXMdA%2FTx1c3aJIjkkJzjjz863Ps9H%2Bc3oUoKk%2BPBGcLaXMc6bKSGfSOE3PiHrly80XgqfCARxDqKpseZbi1Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=138.285, imageryFetch;dur=75.911, imageryProcess;dur=61.605;desc="image", cfRequestDuration;dur=180.999994
server: cloudflare
cf-ray: 8799e3c10b881c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

littleparadise.shop/statics/css/fonts-style.css

104.21.60.12

200 OK

65 kB

URL GET HTTP/3
littleparadise.shop/statics/css/fonts-style.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (33765)
Size
65 kB (64619 bytes)
Hash
36dca9821ddd0e6549e23276479990cd
40ff3f7840a7b129eec9d2695f4c8a0793ea2fc3
faf6eb8c323a369b0dd6edfe2c31689e69b0b0533d99f13b9f29a9ab9ed9d4f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/fonts-style.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 03:11:47 GMT
vary: Accept-Encoding
etag: W/"661754f3-fc6b"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VrRKu55JhSyD8aZXpw2MVD5vC5zA5Iz%2BBJmSOzJD8iiPRQgxe3uuMGDSY0oX3YiVJ0Q8mxhD%2FH35EyL7OLAxpKuLdO2ZmttR%2FdPwKPHIRcwOU9xK%2Fo8sS%2Fp%2BlA06PT3cZu8S6Ruu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba3970b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/magnific-popup.css

104.21.60.12

200 OK

5.5 kB

URL GET HTTP/3
littleparadise.shop/statics/css/magnific-popup.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (5574), with no line terminators
Size
5.5 kB (5511 bytes)
Hash
63e2dbb0a4e7072e8496234e6c1c7635
11a09bb0b95ae3510d76881703854d31a5308f91
70a38ffedc565c3864c2a05eb0912567fc8696fc41abfe245eebcb6023bba0d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/magnific-popup.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-1587"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jtAIzQepu%2Fynhf6rnX3uaHVIZDelsoIAotI4pjvYNYt%2BEglKP8hLmGNGtoUWYyOsA6lilCKuLkcOGNLkcQh2q3GQ%2FeAH70eHaSsiqL1BEqChA3meVCo169KAZujlQXj6XAALg9wN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4973b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/pzen_ajxcart.css

104.21.60.12

200 OK

19 kB

URL GET HTTP/3
littleparadise.shop/statics/css/pzen_ajxcart.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (397)
Size
19 kB (19342 bytes)
Hash
21087859a3521c491c191bfdfead4a31
6d31674ec37e317c480b1ec80479df83617b81a4
d86f32785129f56ca9deaabb9900b10c12593de2b08ed3d0ed4b66dbefc7f672

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/pzen_ajxcart.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-4b8e"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aT4hf0IZLJHbdOeNiS5PlHza0vsj7PJuvuKFaTWu%2BYybCzxlYgCEouBtgCshdT77EtbLCuKIgXCMkdLRtvAPZ7snzz0b52uGfhk2WfFSlLXfaCrPLW%2By5p40tfsrzk0uTmiAw8Z%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4976b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://littleparadise.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://littleparadise.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 02:02:48 GMT
expires: Wed, 23 Apr 2025 02:02:48 GMT
cache-control: public, max-age=31536000
age: 163747
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

littleparadise.shop/images/little/favicon.ico

104.21.60.12

200 OK

15 kB

URL GET HTTP/3
littleparadise.shop/images/little/favicon.ico
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
9a1aa66e94cf96f2ecac7d478f123e40
26b0b3c7fa169de2a07c5d249b95dfb1d3a14992
970a87911b3eefe1e97ba97ed21d8ffedaab02bd244686288619fdb070eb6bf4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/little/favicon.ico HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b; __tins__20305659=%7B%22sid%22%3A%201714001515363%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714003315363%7D; __51cke__=; __51laig__=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:56 GMT
content-type: image/x-icon
last-modified: Wed, 30 Jun 2021 09:13:54 GMT
etag: W/"60dc35d2-3aee"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kfmJKlGMuh9XxhTP%2FNaQdx94eHwxeS%2BRTgMB875czjb92d3L2TNYU9bXzXw3QGnijw%2BAeoPXyEjVyflkTQy6hFo3v%2FCjJjM3dN7YtR1vaeWYnveupKhPG7O3AGsTm1bc%2BQ%2BY3Dy%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799e3c55e62b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/jquery-ui.min.css

104.21.60.12

200 OK

17 kB

URL GET HTTP/3
littleparadise.shop/statics/css/jquery-ui.min.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (15275)
Size
17 kB (16819 bytes)
Hash
678d0c8f33a91aaeb4ee8646681d36e8
63f6ce5bbf1ceef253fb8df64509a2c92e0cb93f
8f507b451f87772d80fdaa0ea40f4c5c43c67c6d15ff8f53ec5e514bb1d1d4f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/jquery-ui.min.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-41b3"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W2f2fdNn2lLzYiQHocNhXyewNqX%2B9MlMSszrJxes2gCpMBlv1iDAzponIcVMeeAqE9zzpvHJRQpzJ7asJgq8xZE5SX2znTDajXUaygjpRrFCVPVETPLVZ2VIy2x21orAm51udLKf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4975b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/main-style.css

104.21.60.12

200 OK

83 kB

URL GET HTTP/3
littleparadise.shop/statics/css/main-style.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (358)
Size
83 kB (82623 bytes)
Hash
3ecaa812ba3b27b0357c8472e2bb7dc6
4a87b60c2b3acd17b34d4ed05d5b3c20238eb8f7
93385311192c846f76ea48d24955204c9ff9cb1e3925523527ad46ae7241f712

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/main-style.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:55 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-142bf"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3PpsvooQwYhCq6WdaOlvIzFyKnA%2BnK4VQO9rnapczR7JYE4%2FG2l9SZKduy8XOW1PQsAbW6MXWHAzIl8%2FlP7Twrt%2F2RZcRk18ozASeByPVkQLlQMAxp0a22XTepzB8VKAOJrm9Wbw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4977b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/style_user_customcss.css

104.21.60.12

200 OK

15 kB

URL GET HTTP/3
littleparadise.shop/statics/css/style_user_customcss.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type

Size
15 kB (14557 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/style_user_customcss.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-38dd"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=noJdo%2Fyj2KMIjkEm1zmLQ61lzIXJbHgkIRbgLLT8xQri7ZHL9ASmW2HcoxEihztsyOXsDdBTqNRoXW%2FXR8WjGzeEQVPBmc1tyg7s%2F%2F4rL12hy72EM2d5T9csItq205wD5kRRhNBF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba497ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/jscript/bootstrap.min.js

104.21.60.12

200 OK

37 kB

URL GET HTTP/3
littleparadise.shop/statics/jscript/bootstrap.min.js
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
JavaScript source, ASCII text, with very long lines (32056)
Size
37 kB (36744 bytes)
Hash
d9dd0042b8c5794a7c0232f1012c3b1c
3431840d95605b0bd6d63378b7e76e75bc08022f
79fafbb837f4bd7aa72633b88a1fa9dfbc678cedad6801775906d85a18792bfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/jscript/bootstrap.min.js HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 18:23:34 GMT
vary: Accept-Encoding
etag: W/"66143626-8f88"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f9J4igs2LAaGQzDIblUYu7MlEsIY8aA%2FSlIRmFtyYwbx5ZF%2F6azFkpRGOn3p%2Bh4YBkhVtlDMydX4s7LES7JALJDQA2Lc810encP%2BtYMiSOfX4pBpfIRoGVwxxtApLvea5CxnuuEU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba698eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

littleparadise.shop/statics/css/responsive.css

104.21.60.12

200 OK

26 kB

URL GET HTTP/3
littleparadise.shop/statics/css/responsive.css
IP
104.21.60.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://littleparadise.shop/
Certificate
IssuerLet's Encrypt
Subjectlittleparadise.shop
FingerprintDF:82:BA:D9:59:FB:F8:1A:B2:86:A6:35:43:FE:0C:45:CB:A5:BA:63
ValiditySat, 23 Mar 2024 05:49:10 GMT - Fri, 21 Jun 2024 05:49:09 GMT

File type
ASCII text, with very long lines (575)
Size
26 kB (25931 bytes)
Hash
ebe4b7ac228579561e3e89e1cb426123
14c3a0364cef00b98216688332e98a11204cf741
43cfedf572aa2ce9674897743a2faa957891f76fc2f904b81754326f55c5db32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /statics/css/responsive.css HTTP/1.1
Host: littleparadise.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littleparadise.shop/
Cookie: zenid=lmm5n7877k5b1l8i0f6s95eh2b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:31:54 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 18:23:38 GMT
vary: Accept-Encoding
etag: W/"6614362a-654b"
expires: Thu, 25 Apr 2024 11:31:54 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qgjTcvCg2Q02p%2BlJe5R28RZLO3WdK%2Fbo5%2Fo%2FrSh9fjfW2%2FQ78J5v0WFPCFY277x%2B9KgFVRWbW8cbdf0fApTWJ1FVaqx2pIgOAy0tocIL1bwAukaDln05jZUOcFKzPAcJaVzomUKz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799e3ba4979b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML