Report - gtswaltz.ga/

Report Overview

Visitedpublic

2024-05-14 11:53:06

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
gtswaltz.ga	unknown	unknown	2021-05-23 10:41:46	2023-06-07 17:32:57	3.6 kB	572 kB	198.252.106.147

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-14 11:52:40	low	Client IP	198.252.106.147	ET INFO Suspicious Domain (*.ga) in TLS SNI
2024-05-14 11:52:40	low	Client IP	198.252.106.147	ET INFO Suspicious Domain (*.ga) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	gtswaltz.ga/	ScriptElement	0 B	0001-01-01	2025-08-02
URL gtswaltz.ga/ IP / ASN 198.252.106.147 #20068 HAWKHOST Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606282 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	gtswaltz.ga/jquery-1.7.1.min.js	ScriptElement	99 kB	2024-08-19	2024-08-19
URL gtswaltz.ga/jquery-1.7.1.min.js IP / ASN 198.252.106.147 #20068 HAWKHOST Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 99 kB (98624 bytes) MD5 cf09528c792faddc3a2ec54770f42272 SHA1 61973e9383532eea7e323402912f6634e32482f9 SHA256 452f3282b0e630f4c484c8d7189a6ad289f84fe09c2a3df790045ae8f5284f41 Format Code Loading...

	unknown	EventHandler	14 B	2024-08-19	2024-08-19
URL IP / ASN 0.0.0.0 #0 Introduced by EventHandler Embedded false Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 14 B (14 bytes) MD5 51aab733022311a8ddc6cd30b8659b67 SHA1 2782efaf664d63ce8abcf43e1b3df7d29671e201 SHA256 9f2285170757ed093d735ec06e8dcf2b1a856ce3b99c1546697192184f6f2b2a Format Code Loading...

	gtswaltz.ga/supersized.3.2.7.min.js	ScriptElement	19 kB	2023-03-07	2025-07-05
URL gtswaltz.ga/supersized.3.2.7.min.js IP / ASN 198.252.106.147 #20068 HAWKHOST Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-05 Times Seen 52 Size 19 kB (18606 bytes) MD5 39715ee2944a5a797b5b2787c4b0bfc2 SHA1 7afefac676d7c891f084f17c56127e8dbe6a4543 SHA256 ae08499949fe69bacab408e2f744fcc172718f18cec78daed3966d17aae9ceda Format Code Loading...

HTTP Transactions (7)

	URL	IP	Response	Size
	GET gtswaltz.ga/	198.252.106.147	200 OK	1.4 kB
URL gtswaltz.ga/ IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byN/A Resource Info File typeJavaScript source, ASCII text First Seen2024-08-19 Last Seen2024-08-19 Times Seen1 Size1.4 kB (1436 bytes) MD57544d05ada0555eb27c968ecf22b2136 SHA15f43f9855426903a71e4a06783a01fb08207c889 SHA256eea7a2bffa9f051cb57fe54f5f508ca852decaf4dbca44610787ddacc28b3b97 Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers `GET / HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 14 May 2024 11:52:40 GMT content-length: 1436 cache-control: no-cache, no-store, must-revalidate, max-age=0, no-store, max-age=0 server: imunify360-webshield/1.21 X-Firefox-Spdy: h2`

	GET gtswaltz.ga/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=4329720	198.252.106.147	302 Found	0 B
URL gtswaltz.ga/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=4329720 IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byN/A Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5606282 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=4329720 HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gtswaltz.ga/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found date: Tue, 14 May 2024 11:52:41 GMT content-length: 0 x-forwarded-for: 91.90.42.154 x-real-ip: 91.90.42.154 x-remote-ip: 91.90.42.154 location: https://gtswaltz.ga set-cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1; Path=/; Domain=gtswaltz.ga; Max-Age=2592000; HttpOnly; SameSite=Lax server: imunify360-webshield/1.21 X-Firefox-Spdy: h2`

	GET gtswaltz.ga/	198.252.106.147	200 OK	2.6 kB
URL gtswaltz.ga/ IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byN/A Resource Info File typeHTML document, Unicode text, UTF-8 (with BOM) text First Seen2024-08-19 Last Seen2024-08-19 Times Seen1 Size2.6 kB (2581 bytes) MD5b7e619c3cc8cff9e2557d54ce54d7673 SHA1b3d4ca4db436a32233f7515b1325ab13ecf8bc3b SHA2560f8e6819c6d32efdafbfda2ddf34af2d77052940aad8564a943dc1b92a449e40 Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers GET / HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gtswaltz.ga/ DNT: 1 Connection: keep-alive Cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Tue, 14 May 2024 11:52:41 GMT content-type: text/html content-length: 2581 last-modified: Sat, 10 Jun 2023 15:57:06 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" x-turbo-charged-by: LiteSpeed server: imunify360-webshield/1.21 X-Firefox-Spdy: h2`

	GET gtswaltz.ga/supersized.3.2.7.min.js	198.252.106.147	200 OK	3.2 kB
URL gtswaltz.ga/supersized.3.2.7.min.js IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byhttps://gtswaltz.ga/ Resource Info File typeJavaScript source, ASCII text, with very long lines (18372) First Seen2023-03-07 Last Seen2025-07-05 Times Seen52 Size3.2 kB (3240 bytes) MD539715ee2944a5a797b5b2787c4b0bfc2 SHA17afefac676d7c891f084f17c56127e8dbe6a4543 SHA256ae08499949fe69bacab408e2f744fcc172718f18cec78daed3966d17aae9ceda Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers `GET /supersized.3.2.7.min.js HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gtswaltz.ga/ Cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 14 May 2024 11:52:41 GMT content-type: application/javascript content-length: 3240 cache-control: public, max-age=604800 expires: Tue, 21 May 2024 11:52:41 GMT last-modified: Sat, 10 Jun 2023 14:57:35 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" x-turbo-charged-by: LiteSpeed server: imunify360-webshield/1.21 X-Firefox-Spdy: h2

	GET gtswaltz.ga/jquery-1.7.1.min.js	198.252.106.147	200 OK	33 kB
URL gtswaltz.ga/jquery-1.7.1.min.js IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byhttps://gtswaltz.ga/ Resource Info File typeJavaScript source, ASCII text, with very long lines (32769) First Seen2024-08-19 Last Seen2024-08-19 Times Seen1 Size33 kB (32954 bytes) MD5cf09528c792faddc3a2ec54770f42272 SHA161973e9383532eea7e323402912f6634e32482f9 SHA256452f3282b0e630f4c484c8d7189a6ad289f84fe09c2a3df790045ae8f5284f41 Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers `GET /jquery-1.7.1.min.js HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gtswaltz.ga/ Cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 14 May 2024 11:52:41 GMT content-type: application/javascript content-length: 32954 cache-control: public, max-age=604800 expires: Tue, 21 May 2024 11:52:41 GMT last-modified: Sat, 10 Jun 2023 14:57:35 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" x-turbo-charged-by: LiteSpeed server: imunify360-webshield/1.21 X-Firefox-Spdy: h2

	GET gtswaltz.ga/favicon.ico	198.252.106.147	404 Not Found	796 B
URL gtswaltz.ga/favicon.ico IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byhttps://gtswaltz.ga/ Resource Info File typeHTML document, ASCII text, with CRLF, LF line terminators First Seen2024-02-05 Last Seen2025-08-02 Times Seen11066 Size796 B (796 bytes) MD5265e51037981a14ed99a5fc8c5ec1b51 SHA1d12ac588953298fdaf46dd5b4af8eb4cf6b06f0a SHA256c4b07931b3fc37bc80d56a367783e7fa7c04ced4befec7f57ed079c38c960400 Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers `GET /favicon.ico HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gtswaltz.ga/ Cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 404 Not Found cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-type: text/html content-length: 796 date: Tue, 14 May 2024 11:52:42 GMT server: LiteSpeed`

	GET gtswaltz.ga/biggirl3.jpg	198.252.106.147	200 OK	528 kB
URL gtswaltz.ga/biggirl3.jpg IP / ASN 198.252.106.147 #20068 HAWKHOST Requested byhttps://gtswaltz.ga/ Resource Info File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2400, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=3840], progressive, precision 8, 3840x2400, components 3 First Seen2024-08-19 Last Seen2024-08-19 Times Seen1 Size528 kB (528323 bytes) MD578a8801a42e654b69d75a748aa700d66 SHA1579ee7a9eba13146cc406087a2a52af04ceb0cd8 SHA2561f4fb327156884e3cf1c691248c4fd4bf8ee16211d1a19f3ee71f1911aed330e Certificate Info IssuerLet's Encrypt Subject.gtswaltz.ga Fingerprint2C:F6:B8:27:42:3F:AD:D4:AF:79:2F:54:59:83:49:0C:98:DD:47:32 ValiditySat, 11 May 2024 08:24:17 GMT - Fri, 09 Aug 2024 08:24:16 GMT HTTP Headers `GET /biggirl3.jpg HTTP/1.1 Host: gtswaltz.ga User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gtswaltz.ga/ Cookie: wssplashuid=1868e553d50f244cf6efc8915d51a505b7e30594.1715691161.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 200 OK cache-control: public, max-age=604800 expires: Tue, 21 May 2024 11:52:42 GMT content-type: image/jpeg last-modified: Sat, 10 Jun 2023 14:57:37 GMT accept-ranges: bytes content-length: 528323 date: Tue, 14 May 2024 11:52:42 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"`

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

HTTP Transactions (7)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers