| dcshop.ma/panel/m_banks?Self_Registrations?CEX.IO | 185.178.208.141 | | 16 kB |
URL dcshop.ma/panel/m_banks?Self_Registrations?CEX.IO IP185.178.208.141:0
File typegzip compressed data, max speed, from Unix Hash5c826a6721142f75b9a2fe5198a4f961 d75e8cb63ed9219a323073b0bde0fba90df6e0be 0ee842e44b53159ebd9b547a9330f527406fe70cd8f071aee83e7e4f301d2162
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /panel/m_banks?Self_Registrations?CEX.IO HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; Domain=.dcshop.ma; HttpOnly; Path=/; Expires=Thu, 17-Apr-2025 06:10:08 GMT
PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/img/united-states.svg | 185.178.208.141 | 200 OK | 1.6 kB |
URL GET HTTP/2dcshop.ma/frontend/img/united-states.svg IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeSVG Scalable Vector Graphics image Hashf4cc0b5eff95481b1c900a1da2486029 c020b5d82338eef02bc8b242e3b3929780190161 ad9c7e75dfbcf358d5850e3f6dac41bad25d6da8984eca3224175b1d62c38cbb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/img/united-states.svg HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 10 Apr 2024 18:55:24 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 17:37:34 GMT
content-encoding: gzip
etag: "6334865e-3f9f"
age: 558886
content-length: 1581
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/css/datatables.bundle.css | 185.178.208.141 | 200 OK | 8.4 kB |
URL GET HTTP/2dcshop.ma/frontend/css/datatables.bundle.css IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeUnicode text, UTF-8 text, with very long lines (546), with CRLF line terminators Hashe9a4d7823ec80ca0b6c87dd21818bb6e 33bdaf319955b1a4b37165cb3c86baff14448539 604cc54ef971b571b3c544099661c26e40098b4b32f3fee608cfc11eb4d3e078
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/css/datatables.bundle.css HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 10:56:07 GMT
content-type: text/css
last-modified: Thu, 22 Dec 2022 12:12:42 GMT
etag: W/"63a449ba-9ff2"
content-encoding: gzip
age: 69242
content-length: 8397
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/img/ru.svg | 185.178.208.141 | 200 OK | 207 B |
URL GET HTTP/2dcshop.ma/frontend/img/ru.svg IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeSVG Scalable Vector Graphics image Hashe3ee3b099783ef393f2f4dabdc75d5bc fbe8adc1f75d896354345414a75cf5f847967ee7 bb2782a916b1a28eb081895afa90f4ed5dca5df320b9cc95f867bc2a26e29064
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/img/ru.svg HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 11:13:09 GMT
content-type: image/svg+xml
last-modified: Thu, 20 Jan 2022 17:33:52 GMT
etag: W/"61e99d00-122"
content-encoding: gzip
age: 154621
content-length: 207
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/css/plugins.css | 185.178.208.141 | 200 OK | 118 kB |
URL GET HTTP/2dcshop.ma/frontend/css/plugins.css IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeASCII text, with CRLF, CR line terminators Size118 kB (118417 bytes) Hashbff066c6932f0b6b0bad7500a03adcd1 b815edd3a690a939ca1ec611cf84d43969de01c6 d94ca665c3f47e003e5e108f909f78b430292955dd29a56d8417542b1589f51c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/css/plugins.css HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 11:03:14 GMT
content-type: text/css
last-modified: Tue, 20 Dec 2022 10:58:48 GMT
etag: W/"63a19568-9d70c"
content-encoding: gzip
age: 155215
ddg-cache-status: HIT,MISS
content-length: 118417
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/js/scripts.js | 185.178.208.141 | 200 OK | 54 kB |
URL GET HTTP/2dcshop.ma/frontend/js/scripts.js IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash2c3b9bc9c1501adc7ea547d8584eb84d 9598b32c395b4e9eb527e878a1dec054e7d2ef66 ea7e1e6fdde7f920bbf0d6175026f2f704cd9f4fd2b7b7a3687cbe1d9ac15749
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/js/scripts.js HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:20:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 17:09:21 GMT
content-encoding: gzip
etag: "63a1ec41-3ac63"
age: 679785
content-length: 53538
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/css/style.css | 185.178.208.141 | 200 OK | 174 kB |
URL GET HTTP/2dcshop.ma/frontend/css/style.css IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeUnicode text, UTF-8 text, with very long lines (560), with CRLF line terminators Size174 kB (174017 bytes) Hash17251f46dbabd70df968abf9c7181999 425a34579c6d708c81dc8390ab5ed555ecb21dd7 f8c354914218445ecd1a818c3affd15b1d1fa508706c955541425257f976be6a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/css/style.css HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 10 Apr 2024 02:32:24 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 21:44:09 GMT
content-encoding: gzip
etag: "63c32229-16c71e"
age: 617865
content-length: 174017
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/js/plugins.js | 185.178.208.141 | 200 OK | 1.1 MB |
URL GET HTTP/2dcshop.ma/frontend/js/plugins.js IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Size1.1 MB (1081291 bytes) Hash8e0861726db4f8117b260adfaba7d083 ba2ec4443a3206849c809ef8488a042f560d1e55 fb2112b2e399ba06f149f937c47de5cbb2da4191775dc4e1800570434972d064
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/js/plugins.js HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 13:21:30 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 09:55:11 GMT
content-encoding: gzip
content-length: 1081291
ddg-cache-status: HIT,HIT
etag: "63a1867f-39fd0c"
age: 146919
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js | 104.17.25.14 | 200 OK | 2.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.10/clipboard.min.js IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8941) Hashad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1
GET /ajax/libs/clipboard.js/2.0.10/clipboard.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 06:10:09 GMT
content-type: application/javascript; charset=utf-8
content-length: 2797
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61faba8a-aed"
last-modified: Wed, 02 Feb 2022 17:08:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 31524
expires: Mon, 07 Apr 2025 06:10:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1rIxz7mAEIwgDyZmkyjUrbO70oe19V3X9ZDj8YZeRAxkb%2B%2BdKHU77GraNaxD4M0CMSAW%2BzxYpmRNNFDsiDTxYm8s0WaeEK7nuAV4O3YdIzU3sjYWef5XlHCQO1GVO1rFXH9lZWBj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875a4018cb3392ee-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47 | 185.178.208.141 | 200 OK | 102 kB |
URL GET HTTP/2dcshop.ma/frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47 IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 102536, version 1.0 Size102 kB (102536 bytes) Hash1ed478a6b265d4b4f5c26bb063203588 1ca5e8c7d2fb8e9d60ad1a1feb2a46e98c248a3d c874e14c63db86c4c5318c77cb557fce7036645edc7d690dcc1d23b389631b13
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/fonts/bootstrap-icons.woff2?24e3eb84d0bcaf83d77f904c78ac1f47 HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/frontend/css/plugins.css
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 19:17:07 GMT
content-type: font/woff2
content-length: 102536
last-modified: Tue, 08 Feb 2022 04:54:22 GMT
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "6201f77e-19088"
age: 125583
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 82551
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| site-assets.fontawesome.com/releases/v5.15.4/css/all.css | 172.64.147.188 | 200 OK | 80 kB |
URL GET HTTP/2site-assets.fontawesome.com/releases/v5.15.4/css/all.css IP172.64.147.188:443
CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash008a3058f223e1a9a5ff1344c27c684f 5baa6480d2f2a934ace7d8a436a9b19c94a83d06 34956941a070b54307c0163fb40e46ae949c06645a452ba52e80ba3214e25bac
GET /releases/v5.15.4/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 06:10:09 GMT
content-type: text/css
x-amz-id-2: 9AM6bLC68SYgLysNkrj3vwpSmDGZMBSa2RGXOfRJdWiEnajDG8dCT7Gu1wgAJOkB+T5CPxjHyvml7sQjYhAyLw==
x-amz-request-id: RSSE9T1E6KWAZ9K7
last-modified: Mon, 07 Feb 2022 19:57:26 GMT
etag: W/"21f9f9f41222c9f2acec907529ea35a1"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 12711610
vary: Accept-Encoding
server: cloudflare
cf-ray: 875a401bbf5fabcc-CPH
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 82551
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| site-assets.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2 | 172.64.147.188 | 200 OK | 137 kB |
URL GET HTTP/2site-assets.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2 IP172.64.147.188:443
CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 137104, version 331.-31196 Size137 kB (137104 bytes) Hashdbf1fc91f1beec2915123257ea4d58ef d2a6d5d31334f6d0831f1c17d26e23fe0aa6a8db 8d4d29042c23b5fcbed3af690421776de0f8ad3d308d66e24a9d80bcc8ccb522
GET /releases/v5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 06:10:10 GMT
content-type: font/woff2
content-length: 137104
x-amz-id-2: CGXSc3wVsDnuLUktVpl+6PwcLTbSNDhb/hWbkVmmwqRxo0GatCehiRte0TepJqAZj/e2PFnN2+DhSi/O8eHEP7s2Bra1InWN
x-amz-request-id: Z62YQXTJ79FWJC6Q
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 19:58:47 GMT
etag: "dbf1fc91f1beec2915123257ea4d58ef"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 3143990
accept-ranges: bytes
server: cloudflare
cf-ray: 875a4020bdec9307-CPH
X-Firefox-Spdy: h2
|
|
| dcshop.ma/post?hnKGpdefPr | 185.178.208.141 | 200 OK | 11 kB |
URL POST HTTP/2dcshop.ma/post?hnKGpdefPr IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typePNG image data, 140 x 30, 8-bit/color RGBA, non-interlaced Hash18ce7fef0a41ec88edf3c94f36602fb2 6d8b43c0f9259a9b31238ba9c7f2362cc694d0cd 7668ca2ab880a786580b9c182315df158f575b82760db8c795752ef3e088f7a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /post?hnKGpdefPr HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
poren: g7knY2zFDb9pKjJ4sGb8tj
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:10 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
X-Firefox-Spdy: h2
|
|
| dcshop.ma/post?VlBBrrKlJJuvF | 185.178.208.141 | 200 OK | 14 kB |
URL POST HTTP/2dcshop.ma/post?VlBBrrKlJJuvF IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typegzip compressed data, max speed, from Unix Hashf3eb9a64632e5c2d0a9c1426aee3ffea 9d873111191031c8203424904e02117a2e3be569 86d09d46e16cead7a04d2992b1952a21c2e30e8e5e4fcc078f5a85b4fa26cf03
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /post?VlBBrrKlJJuvF HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:10 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=V4osXt8VeV3pbTHYOD_ry9byFurlOsRLBwTaEtehAjSvNEGGdjo3S4sUarTeaEVx7qQ-GnEApynKfB037Hc5LLkFDSO5OsF5QmGzEPnWBDC6zPGQSAlDYIv9odzpdgjq
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Wed, 17 Apr 2024 06:08:37 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 110
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| dcshop.ma/post?pKIhcCNGzPzRNhTtD | 185.178.208.141 | 200 OK | 0 B |
URL POST HTTP/2dcshop.ma/post?pKIhcCNGzPzRNhTtD IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /post?pKIhcCNGzPzRNhTtD HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 10
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:10 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| | 185.178.208.141 | 200 OK | 64 kB |
URL User Request GET HTTP/2IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/panel/m_banks?Self_Registrations?CEX.IO
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:09 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Inter:300,400,500,600,700 | 142.250.74.106 | 200 OK | 11 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Inter:300,400,500,600,700 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashc1386afc95470eaefaba66a4e130db53 24390b6e8b6ce929ee7ebae4eaa81305ce73606a 6090c70d9b6502fa2a70394e8bfaa18ceb768ff688718562d3ad4adf75bb068e
GET /css?family=Inter:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 06:10:09 GMT
date: Wed, 17 Apr 2024 06:10:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dcshop.ma/post?count_ticketUser | 185.178.208.141 | 200 OK | 162 B |
URL POST HTTP/2dcshop.ma/post?count_ticketUser IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash779c3e5100c5c2414ae30c6aea56cf18 183b3c3f385c1f0a4dcdfdfdc970307e5d70c36f a8d3778dd8737d8d2bb7e90d04dc0c36ce2105d9e9fc711c4410ad191090d1da
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /post?count_ticketUser HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://dcshop.ma
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 06:10:10 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dcshop.ma/frontend/img/l5N.png | 185.178.208.141 | 200 OK | 14 kB |
URL GET HTTP/2dcshop.ma/frontend/img/l5N.png IP185.178.208.141:443
CertificateIssuerLet's Encrypt Subjectdcshop.ma Fingerprint5C:3A:07:B9:E6:66:00:D8:79:B4:DD:C9:75:38:A6:68:E6:33:CA:A5 ValidityMon, 01 Apr 2024 18:20:30 GMT - Sun, 30 Jun 2024 18:20:29 GMT
File typePNG image data, 671 x 282, 8-bit/color RGBA, non-interlaced Hashcea033f680ff9687c71fe7142bfcb35d 92e570213856eea90e5c5f49bf1596da5531b898 db6bcdc1675fffb08bee667d69af0f178382674f5ae433436317d9a384a33fff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/img/l5N.png HTTP/1.1
Host: dcshop.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dcshop.ma/
Cookie: __ddg1_=qq2VVlFv0ZXGWMsH41t0; PHPSESSID=80b23d6f1e046e308e6a1555a2f7f451
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 15 Apr 2024 19:48:39 GMT
content-type: image/png
content-length: 14370
last-modified: Thu, 20 Jan 2022 17:33:52 GMT
etag: "61e99d00-3822"
accept-ranges: bytes
age: 123692
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
|
|