Report - dcshop.us/panel/m_banks?Brute

Report Overview

Submitted URL
dcshop.us/panel/m_banks?Brute_Logs?stcu.org
IP
185.178.208.144
ASN
#57724 Ddos-Guard Ltd
Submitted
2024-04-16 14:21:16
Access
public
Website Title
DOC-SHOP | Sign in
Final URL
dcshop.us/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-16	1.6 kB	143 kB	142.250.74.99
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-16	512 B	1.2 kB	35.244.181.201
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-16	441 B	12 kB	142.250.74.74
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	435 B	3.8 kB	104.17.24.14
dcshop.us	unknown	2022-01-21	2022-04-22	2024-04-15	7.7 kB	3.3 MB	185.178.208.144
site-assets.fontawesome.com	299062	2012-10-18	2022-02-10	2024-04-16	974 B	313 kB	104.18.40.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	dcshop.us/	Detects hex encoded code that has been base64 encoded

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	dcshop.us/	777 B	2023-06-30	2024-04-24
Pretty URL dcshop.us/ IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen106 Hash 2c612aab91668de1663b81933ffded2f a08df3954cdd0da12baab024a6cb8c12a0bc9f01 f67370a55b410ea04dc304c19ccfe069fca20f052b31c67f8677eaca43a14865 Loading...

	dcshop.us/	55 kB	2023-12-04	2024-04-24
Pretty URL dcshop.us/ IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 10:01:18 Last Seen2024-04-24 16:14:54 Times Seen104 Hash ee45e0a7cf9977dfe6f667b10071735a 102b222b56583c97a1dd8efa2835565b5fc1a44e 7734c258ec72429d8fd354505ab48ef25bc3f9a0d7e8735f0c1b6941d86c00c7 Loading...

	dcshop.us/frontend/js/scripts.js	241 kB	2023-06-30	2024-04-24
Pretty URL dcshop.us/frontend/js/scripts.js IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen209 Hash 2c3b9bc9c1501adc7ea547d8584eb84d 9598b32c395b4e9eb527e878a1dec054e7d2ef66 ea7e1e6fdde7f920bbf0d6175026f2f704cd9f4fd2b7b7a3687cbe1d9ac15749 Loading...

	dcshop.us/	964 B	2023-06-30	2024-04-24
Pretty URL dcshop.us/ IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen114 Hash 61b177f531079bb093d55e74207c5c93 6b91c5695284a30a76d0320e7167d375dfbbeaf7 a8b448fd07ed852dbbf34eb7d9549505c3ff78e996756cb3d8139621e9f88e28 Loading...

	dcshop.us/frontend/js/plugins.js	3.8 MB	2023-06-30	2024-04-24
Pretty URL dcshop.us/frontend/js/plugins.js IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen208 Hash 8e0861726db4f8117b260adfaba7d083 ba2ec4443a3206849c809ef8488a042f560d1e55 fb2112b2e399ba06f149f937c47de5cbb2da4191775dc4e1800570434972d064 Loading...

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js	9.0 kB	2023-03-07	2024-04-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:35 Last Seen2024-04-28 20:31:05 Times Seen636 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	dcshop.us/	20 B	2023-06-30	2024-04-24
Pretty URL dcshop.us/ IP 185.178.208.144 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen114 Hash a41c812412e06b2b59f9b6a795229228 1c30aa81d03e0cc0a412e9237e015fd95460d63c 32317d565f77f4e5596a27f05975e76c0851f0b49c7a45f085649873145bd47d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3c59f17bd65c01950ac0d72267cf1ab7	2.9 kB	2023-06-30	2024-04-24
Pretty Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen106 Hash 3c59f17bd65c01950ac0d72267cf1ab7 13a0440114f810a63a9196fd7465bfa3452b2b8e 4d07c203e680f64970c7b5397446edebefc6f35ecd091dba17b366817fd9270c Loading...

	#2 Eval - 11cfed14ce5f261b3d4bb832b38b1b1c	627 B	2023-06-30	2024-04-24
Pretty Observations First Seen2023-06-30 03:16:47 Last Seen2024-04-24 16:14:54 Times Seen107 Hash 11cfed14ce5f261b3d4bb832b38b1b1c 318fe251520aaa1ce526852a4c3dd102251eb607 e951422e3766a6ca3c502efa4923b42cc88a8c4c14e891eb0701280bd46592e7 Loading...

	#3 Eval - 31f7aad8099fbc80c5799bbd5edf7d1a	700 B	2023-06-30	2024-04-24
Pretty Observations First Seen2023-06-30 03:16:47 Last Seen2024-04-24 16:14:54 Times Seen111 Hash 31f7aad8099fbc80c5799bbd5edf7d1a ca82082fb9680d8325ac61204f6ede5f91c20952 ef8adacb5c551c020d77ced8833899c2d5069642d95d1de798de3ff00c8f6122 Loading...

	#4 Eval - c336b81240c862c14c29980ef402d3d8	644 B	2023-06-30	2024-04-18
Pretty Observations First Seen2023-06-30 03:16:47 Last Seen2024-04-18 06:48:23 Times Seen62 Hash c336b81240c862c14c29980ef402d3d8 a013f269c5bf75156230be6c6ad1349082e29917 2e9be7d8152736f5f2109cee55b0c98b4c14656d51067fd8e0b3116e8ad80c86 Loading...

	#5 Eval - 815f9ae6b813a7f3ce6b40c78f54ea8c	67 B	2023-06-30	2024-04-24
Pretty Observations First Seen2023-06-30 03:16:46 Last Seen2024-04-24 16:14:54 Times Seen108 Hash 815f9ae6b813a7f3ce6b40c78f54ea8c 48c84440ceb468b9aec10cb9a0de3ac8d595a144 605dd11c1489a3b8ef6ac3e7a5d466493072a96378810fa75208471bcaa95a89 Loading...

	#6 Eval - 460c4fddbd1fc74793bf40c145372ac0	41 kB	2023-12-04	2024-04-24
Pretty Observations First Seen2023-12-04 10:01:19 Last Seen2024-04-24 16:14:54 Times Seen96 Hash 460c4fddbd1fc74793bf40c145372ac0 fc8bf7aad378abec9fcf3bfb4483a9a3c560fee5 be486bf99a1d9a80f26b0cfe337f6177b90031821be645c42deba92914310e40 Loading...

HTTP Transactions (22)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js

104.17.24.14

200 OK

2.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dcshop.us/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8941)
Size
2.8 kB (2797 bytes)
Hash
ad98572d415d2f2452845a6068a913c0
6674f81dd01c76be986cf0a8172d1073e56d7ef4
baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1

HTTP Headers

GET /ajax/libs/clipboard.js/2.0.10/clipboard.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 14:20:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 2797
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61faba8a-aed"
last-modified: Wed, 02 Feb 2022 17:08:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 494108
expires: Sun, 06 Apr 2025 14:20:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hi0QLpprLGt0wA3J7lA0iu6bTmJWwKqY00HpYve8aWrAB9WVo1bSr2D6u5wSgd5n5qTjj5qCozp3yFn%2FVisE3ot1jHIg7XpwbRXGNH5OiYkUfNNriSMUd6G%2BtwjtCfsbJeTQ7xCe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8754d179fd21b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dcshop.us/frontend/img/united-states.svg

185.178.208.144

200 OK

1.6 kB

URL GET HTTP/2
dcshop.us/frontend/img/united-states.svg
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1581 bytes)
Hash
f4cc0b5eff95481b1c900a1da2486029
c020b5d82338eef02bc8b242e3b3929780190161
ad9c7e75dfbcf358d5850e3f6dac41bad25d6da8984eca3224175b1d62c38cbb

HTTP Headers

GET /frontend/img/united-states.svg HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 14 Apr 2024 10:40:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 17:37:34 GMT
etag: W/"6334865e-3f9f"
content-encoding: gzip
age: 186003
content-length: 1581
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/frontend/css/datatables.bundle.css

185.178.208.144

200 OK

8.4 kB

URL GET HTTP/2
dcshop.us/frontend/css/datatables.bundle.css
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (546), with CRLF line terminators
Size
8.4 kB (8397 bytes)
Hash
e9a4d7823ec80ca0b6c87dd21818bb6e
33bdaf319955b1a4b37165cb3c86baff14448539
604cc54ef971b571b3c544099661c26e40098b4b32f3fee608cfc11eb4d3e078

HTTP Headers

GET /frontend/css/datatables.bundle.css HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 12 Apr 2024 06:45:47 GMT
content-type: text/css
last-modified: Thu, 22 Dec 2022 12:12:42 GMT
etag: W/"63a449ba-9ff2"
content-encoding: gzip
age: 372903
content-length: 8397
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/frontend/img/ru.svg

185.178.208.144

200 OK

207 B

URL GET HTTP/2
dcshop.us/frontend/img/ru.svg
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
SVG Scalable Vector Graphics image
Size
207 B (207 bytes)
Hash
e3ee3b099783ef393f2f4dabdc75d5bc
fbe8adc1f75d896354345414a75cf5f847967ee7
bb2782a916b1a28eb081895afa90f4ed5dca5df320b9cc95f867bc2a26e29064

HTTP Headers

GET /frontend/img/ru.svg HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 11:15:04 GMT
content-type: image/svg+xml
last-modified: Thu, 20 Jan 2022 17:33:52 GMT
etag: W/"61e99d00-122"
content-encoding: gzip
age: 97546
content-length: 207
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/frontend/css/plugins.css

185.178.208.144

200 OK

118 kB

URL GET HTTP/2
dcshop.us/frontend/css/plugins.css
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
ASCII text, with CRLF, CR line terminators
Size
118 kB (118417 bytes)
Hash
bff066c6932f0b6b0bad7500a03adcd1
b815edd3a690a939ca1ec611cf84d43969de01c6
d94ca665c3f47e003e5e108f909f78b430292955dd29a56d8417542b1589f51c

HTTP Headers

GET /frontend/css/plugins.css HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 12:36:10 GMT
content-type: text/css
last-modified: Tue, 20 Dec 2022 10:58:48 GMT
etag: W/"63a19568-9d70c"
content-encoding: gzip
age: 92680
content-length: 118417
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/frontend/js/scripts.js

185.178.208.144

200 OK

54 kB

URL GET HTTP/2
dcshop.us/frontend/js/scripts.js
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
54 kB (53538 bytes)
Hash
2c3b9bc9c1501adc7ea547d8584eb84d
9598b32c395b4e9eb527e878a1dec054e7d2ef66
ea7e1e6fdde7f920bbf0d6175026f2f704cd9f4fd2b7b7a3687cbe1d9ac15749

HTTP Headers

GET /frontend/js/scripts.js HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 14 Apr 2024 16:47:56 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 17:09:21 GMT
etag: W/"63a1ec41-3ac63"
content-encoding: gzip
age: 163974
content-length: 53538
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/

185.178.208.144

200 OK

193 kB

URL User Request GET HTTP/2
dcshop.us/
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (54995), with CRLF line terminators
Size
193 kB (193423 bytes)
Hash
7d8a6b70def367f9c13619de3a1c1873
bd58451f63441dc2c21f297f83bab82f14434223
acc0df38b5c70c43d46f109fe15600c2ad5a33d492d7fbaec594ae153d74b728

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Detects hex encoded code that has been base64 encoded

HTTP Headers

GET / HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/panel/m_banks?Brute_Logs?stcu.org
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 14:20:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

dcshop.us/frontend/js/plugins.js

185.178.208.144

200 OK

1.1 MB

URL GET HTTP/2
dcshop.us/frontend/js/plugins.js
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
1.1 MB (1081291 bytes)
Hash
8e0861726db4f8117b260adfaba7d083
ba2ec4443a3206849c809ef8488a042f560d1e55
fb2112b2e399ba06f149f937c47de5cbb2da4191775dc4e1800570434972d064

HTTP Headers

GET /frontend/js/plugins.js HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 06:43:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 09:55:11 GMT
etag: W/"63a1867f-39fd0c"
content-encoding: gzip
age: 113857
content-length: 1081291
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47

185.178.208.144

200 OK

102 kB

URL GET HTTP/2
dcshop.us/frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 102536, version 1.0
Size
102 kB (102536 bytes)
Hash
1ed478a6b265d4b4f5c26bb063203588
1ca5e8c7d2fb8e9d60ad1a1feb2a46e98c248a3d
c874e14c63db86c4c5318c77cb557fce7036645edc7d690dcc1d23b389631b13

HTTP Headers

GET /frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47 HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/frontend/css/plugins.css
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 13:11:58 GMT
content-type: font/woff2
content-length: 102536
last-modified: Tue, 08 Feb 2022 04:54:22 GMT
etag: "6201f77e-19088"
accept-ranges: bytes
age: 90533
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2

104.18.40.68

200 OK

137 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dcshop.us/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 137104, version 331.-31196
Size
137 kB (137104 bytes)
Hash
dbf1fc91f1beec2915123257ea4d58ef
d2a6d5d31334f6d0831f1c17d26e23fe0aa6a8db
8d4d29042c23b5fcbed3af690421776de0f8ad3d308d66e24a9d80bcc8ccb522

HTTP Headers

GET /releases/v5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 14:20:50 GMT
content-type: font/woff2
content-length: 137104
x-amz-id-2: M6cxfXTz1alCNvNisVDoa5BEGb8/e0oX9VhZJLr/WVoWxSx310MOdEOsHXwGeI4oCISpFyDQhz5VfRcRbRugebf5iOudv+ExLutH4YdEIFQ=
x-amz-request-id: 3T6T3VYQSJNSTHJE
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 19:58:47 GMT
etag: "dbf1fc91f1beec2915123257ea4d58ef"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1000262
accept-ranges: bytes
server: cloudflare
cf-ray: 8754d181ea1d56bf-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.99

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://dcshop.us/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:18:14 GMT
expires: Wed, 16 Apr 2025 00:18:14 GMT
cache-control: public, max-age=31536000
age: 50556
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.99

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://dcshop.us/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:18:14 GMT
expires: Wed, 16 Apr 2025 00:18:14 GMT
cache-control: public, max-age=31536000
age: 50556
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.99

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://dcshop.us/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:18:14 GMT
expires: Wed, 16 Apr 2025 00:18:14 GMT
cache-control: public, max-age=31536000
age: 50556
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dcshop.us/post?pKIhcCNGzPzRNhTtD

185.178.208.144

200 OK

0 B

URL POST HTTP/2
dcshop.us/post?pKIhcCNGzPzRNhTtD
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /post?pKIhcCNGzPzRNhTtD HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 10
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 14:20:51 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
X-Firefox-Spdy: h2

dcshop.us/frontend/img/l5N.png

185.178.208.144

200 OK

14 kB

URL GET HTTP/2
dcshop.us/frontend/img/l5N.png
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
PNG image data, 671 x 282, 8-bit/color RGBA, non-interlaced
Size
14 kB (14370 bytes)
Hash
cea033f680ff9687c71fe7142bfcb35d
92e570213856eea90e5c5f49bf1596da5531b898
db6bcdc1675fffb08bee667d69af0f178382674f5ae433436317d9a384a33fff

HTTP Headers

GET /frontend/img/l5N.png HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 13:11:58 GMT
content-type: image/png
content-length: 14370
last-modified: Thu, 20 Jan 2022 17:33:52 GMT
etag: "61e99d00-3822"
accept-ranges: bytes
age: 90533
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

dcshop.us/post?count_ticketUser

185.178.208.144

200 OK

257 kB

URL POST HTTP/2
dcshop.us/post?count_ticketUser
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
gzip compressed data, max speed, from Unix
Size
257 kB (257142 bytes)
Hash
ad164bc9caf237fb4125ebee3f116f8a
834be61034929d91a6c36c5cd5a324f29740900b
428ef1d2caa6c1109abe655f2d25273e9f5f8c1809adc34b86a460cf322981ae

HTTP Headers

POST /post?count_ticketUser HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 14:20:50 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=umBbF8L3V-2uwyWOruFgHxaHp1jAhaSON83DE8Ncq9RIp7D9eebnhKUT1BgQHGfwvFT8thh8gHI2I3YubilxFNM0ocS9LyZfZ0SML3HEGkHcGMjL_qPQtNSTAIOdZ4K8
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Tue, 16 Apr 2024 14:19:57 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 70
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Inter:300,400,500,600,700

142.250.74.74

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Inter:300,400,500,600,700
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://dcshop.us/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
11 kB (11300 bytes)
Hash
c1386afc95470eaefaba66a4e130db53
24390b6e8b6ce929ee7ebae4eaa81305ce73606a
6090c70d9b6502fa2a70394e8bfaa18ceb768ff688718562d3ad4adf75bb068e

HTTP Headers

GET /css?family=Inter:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 14:20:50 GMT
date: Tue, 16 Apr 2024 14:20:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dcshop.us/post?VlBBrrKlJJuvF

185.178.208.144

200 OK

162 B

URL POST HTTP/2
dcshop.us/post?VlBBrrKlJJuvF
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
779c3e5100c5c2414ae30c6aea56cf18
183b3c3f385c1f0a4dcdfdfdc970307e5d70c36f
a8d3778dd8737d8d2bb7e90d04dc0c36ce2105d9e9fc711c4410ad191090d1da

HTTP Headers

POST /post?VlBBrrKlJJuvF HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 14:20:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v5.15.4/css/all.css

104.18.40.68

200 OK

174 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v5.15.4/css/all.css
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dcshop.us/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65393)
Size
174 kB (174294 bytes)
Hash
21f9f9f41222c9f2acec907529ea35a1
418719c07b53e2ca55ae8bf8406ab8cdd67ce0ee
89b2462070a1a639c693794bc1d8d9131e6eb9274fc7fb0fb854943e58940a22

HTTP Headers

GET /releases/v5.15.4/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 14:20:49 GMT
content-type: text/css
x-amz-id-2: 9AM6bLC68SYgLysNkrj3vwpSmDGZMBSa2RGXOfRJdWiEnajDG8dCT7Gu1wgAJOkB+T5CPxjHyvml7sQjYhAyLw==
x-amz-request-id: RSSE9T1E6KWAZ9K7
last-modified: Mon, 07 Feb 2022 19:57:26 GMT
etag: W/"21f9f9f41222c9f2acec907529ea35a1"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 12658375
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754d179ed4156c0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dcshop.us/post?hnKGpdefPr

185.178.208.144

200 OK

1.6 kB

URL POST HTTP/2
dcshop.us/post?hnKGpdefPr
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type
PNG image data, 140 x 30, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1591 bytes)
Hash
4628200b4a0d78788ee869e547427402
40b4fc4722d531a1011dae52134bd021bcebcc91
60cff4486521f54538ba9d292f4bcc799e2ad5628a4df4f37e3cbd6dc13a5ffa

HTTP Headers

POST /post?hnKGpdefPr HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
poren: hJxx6QOpi8D6YaRc08fHni
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.us
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 14:20:51 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
X-Firefox-Spdy: h2

dcshop.us/frontend/css/style.css

185.178.208.144

200 OK

1.5 MB

URL GET HTTP/2
dcshop.us/frontend/css/style.css
IP
185.178.208.144:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://dcshop.us/
Certificate
IssuerLet's Encrypt
Subjectdcshop.us
FingerprintB0:AB:15:50:A8:3B:E3:85:5A:06:94:B6:C8:25:7A:76:BF:F6:E5:AB
ValidityTue, 09 Apr 2024 03:51:00 GMT - Mon, 08 Jul 2024 03:50:59 GMT

File type

Size
1.5 MB (1492766 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /frontend/css/style.css HTTP/1.1
Host: dcshop.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.us/
Cookie: __ddg1_=zmtv8Mc17DntsWuAWpTP; PHPSESSID=ddfb71e0a82d74af39e45b3483cd8645
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 06:43:12 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 21:44:09 GMT
etag: W/"63c32229-16c71e"
content-encoding: gzip
age: 113857
content-length: 174017
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations