| minn056.shop/register?i=ipbjsy |  172.67.181.163 | 200 OK | 1.4 kB |
URL User Request GET HTTP/1.1minn056.shop/register?i=ipbjsy IP172.67.181.163:80
File typeHTML document, Unicode text, UTF-8 text Hash2639984e377fc015fbeb5c2d155ab300 cfbebe5b537d51814e279366384f450ccacb9fee 03d78a31c55825c96fe52c843359cf41e002d98f269037650add77fbf8080f0e
GET /register?i=ipbjsy HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 21 Jan 2025 04:45:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NTgAi%2BtNDQ7pX3ko7Bb4%2BtUvX1mCPakG2LsMgdzXvYjb%2BNH4%2FwAwPsP58lO2%2B5MD5V6DKgPxdYV6GYYddqAq6gqb94B%2Bb6hNOSMbzBCSKvsJkWOxNUjE2BHOKEVe8CE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9054a74e0f6c712a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=463&min_rtt=463&rtt_var=231&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=402&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| minn056.shop/template/temp/js/jquery.min.js |  104.21.96.138 | 200 OK | 38 kB |
URL GET HTTP/1.1minn056.shop/template/temp/js/jquery.min.js IP104.21.96.138:80
Requested byhttp://minn056.shop/register?i=ipbjsy
File typeJavaScript source, ASCII text, with very long lines (32038) Hash895323ed2f7258af4fae2c738c8aea49 276c87ff3e1e3155679c318938e74e5c1b76d809 ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8
GET /template/temp/js/jquery.min.js HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://minn056.shop/register?i=ipbjsy
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 21 Jan 2025 04:45:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2025 14:06:42 GMT
Vary: Accept-Encoding
ETag: W/"677a91f2-176d5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QO%2FgnpI%2F4eKU54%2FbOW%2FeCjwaZJ523xmJ%2B5bOF%2F3ahXixNPcC6nZv1aWlqCKpTZ2zoMuVEARYtsO%2Fq8gCT4X6GbJ5ody78nGiUVvvTD0PiX5%2Fmth9P6suS9nKlu%2BQZNI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9054a7523dcd56c3-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=482&min_rtt=482&rtt_var=241&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=351&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| minn056.shop/template/temp/css/register.css | 172.67.181.163 | 200 OK | 654 B |
URL GET HTTP/1.1minn056.shop/template/temp/css/register.css IP172.67.181.163:80
Requested byhttp://minn056.shop/register?i=ipbjsy
File typeASCII text, with CRLF line terminators Hash57135ffd58094d92fd140e5d9203f09d 8348509537bbf7c8e7850c195f2ad6d8247f5279 3f46da6187eed89d2fa119a751581c26b7df06a56ea37362a61b42fda469d313
GET /template/temp/css/register.css HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://minn056.shop/register?i=ipbjsy
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 21 Jan 2025 04:45:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2025 14:06:42 GMT
Vary: Accept-Encoding
ETag: W/"677a91f2-779"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ma0smXqJRZRCS%2BQjZ8nIyO%2BBeqCLDVMQ8021GR842pzPgklwA1GWieITa7HwIt0sJlck4JusIcEAESfVSnKpw8FK1M7q406Td7gttEU4NDfcF0vf599dTZB0eP%2B1MvA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9054a75238be712a-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=505&min_rtt=463&rtt_var=160&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2259&recv_bytes=768&delivery_rate=6906200&cwnd=252&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| minn056.shop/verify/index.html | 104.21.96.138 | 200 OK | 649 B |
URL GET HTTP/1.1minn056.shop/verify/index.html IP104.21.96.138:80
Requested byhttp://minn056.shop/register?i=ipbjsy
File typePNG image data, 128 x 40, 4-bit colormap, non-interlaced Hash8e42ae79efe8dd09f986f391d05c1752 7f12cec9da59c908ca541d551e923be7404a6d19 4acfaa6e53cc066ddceae5c836c6728ed2f10ea1c71d603abc05127e76ec3a69
GET /verify/index.html HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://minn056.shop/register?i=ipbjsy
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 21 Jan 2025 04:45:14 GMT
Content-Type: image/png; charset=utf-8
Content-Length: 649
Connection: keep-alive
Set-Cookie: PHPSESSID=ku1gu3lcdg24c0gd1fhe26aa7i; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hj0w73wm4kE3VKJujuwbXsXbdp2anLS6YiVor5l%2BExkNAd3HFXTboLVlaIV4JAGolwBVtwB%2FCRZ8OfEej%2FeHVi9TGYyH9%2BJYiQfVb%2FaoEBYjJedKvZBzjP0%2FO2zBTBc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9054a7543e7b56c3-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=1005&min_rtt=482&rtt_var=396&sent=30&recv=23&lost=0&retrans=0&sent_bytes=38456&recv_bytes=711&delivery_rate=26568807&cwnd=257&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| minn056.shop/upload/site/20250117-1/699991aa4ee93df7ac1ca0201f84027d.jpg | 104.21.96.138 | 200 OK | 39 kB |
URL GET HTTP/1.1minn056.shop/upload/site/20250117-1/699991aa4ee93df7ac1ca0201f84027d.jpg IP104.21.96.138:80
Requested byhttp://minn056.shop/register?i=ipbjsy
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 325x490, components 3 Hasha5729ecfa6f6497e905664e6cebb51fe c72e9187b3339fd22fad57f7c858e29afb97eb7f 40c809339f95c3a61d6eb0e61edccd0cf967f583236b0bc9b0e8510244b67cc7
GET /upload/site/20250117-1/699991aa4ee93df7ac1ca0201f84027d.jpg HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://minn056.shop/register?i=ipbjsy
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 21 Jan 2025 04:45:14 GMT
Content-Type: image/jpeg
Content-Length: 38948
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2025 11:04:08 GMT
ETag: "678a3928-9824"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3sMVFdgphTp%2BFfrSb0LGa3IjZFw1qeI45e7dKQmx1mU02rV2aVP%2BgNK8UgBQt5rPJ%2Bww6G3P%2BoZCCdL2rxpfURy5DEFU6G65W2XafaXVzTBQUfbUYWP7UHm%2BMo%2B5HKw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 9054a7543ab6b4fa-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=530&min_rtt=530&rtt_var=265&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=402&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| minn056.shop/favicon.ico | 104.21.96.138 | 404 Not Found | 1.8 kB |
IP104.21.96.138:80
Requested byhttp://minn056.shop/register?i=ipbjsy
File typeHTML document, Unicode text, UTF-8 text Hashcadea9088faed7f1f493a2d72ffc5a7f 06270cfc0a44bb32fe6f851fa1e8f027182ec2c5 ff761d4960cb0813b67e3350f4e97c0dfbbb1a52eeb8d035de157f22d10e81fe
GET /favicon.ico HTTP/1.1
Host: minn056.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://minn056.shop/register?i=ipbjsy
Cookie: PHPSESSID=ku1gu3lcdg24c0gd1fhe26aa7i
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Tue, 21 Jan 2025 04:45:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XMjQnptEesQ7uTOeq%2FRk6Ycz9Mt3EUiqQDRLkE0nH30bJAlOOEHpBLTvuf%2FDgE7oAdwHQEef%2FT5Vvivdtgs9o4dXcafHF43XWH7TZmBNsNjp5cgg44uyciJnwL4UaVQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9054a755fefa56c3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=950&min_rtt=482&rtt_var=397&sent=33&recv=25&lost=0&retrans=0&sent_bytes=40058&recv_bytes=1111&delivery_rate=26568807&cwnd=257&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| poix341.xyz/register?i=ipbjsy | 104.21.112.1 | 301 Moved Permanently | 4.2 kB |
URL User Request GET HTTP/2poix341.xyz/register?i=ipbjsy IP104.21.112.1:443
CertificateIssuerGoogle Trust Services Subjectpoix341.xyz Fingerprint68:A6:19:A3:99:05:DA:37:21:44:EC:B5:22:47:32:CD:6E:54:B5:90 ValidityThu, 09 Jan 2025 15:31:04 GMT - Wed, 09 Apr 2025 16:29:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /register?i=ipbjsy HTTP/1.1
Host: poix341.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 21 Jan 2025 04:45:13 GMT
content-type: text/html
location: http://minn056.shop/register?i=ipbjsy
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z1tYuByea05vquiILgWLVPUJdSREGVXAIpKUcJ6uJDAfODU5eZs6PQklxapua9vfyiWmLTZqn4nqAqDE2vilSZUOSVCQr7OdSKDqPb7FDrVZ%2BCUK0Rk9vYYrHSy3wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9054a74bd8d87129-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5851&min_rtt=467&rtt_var=10768&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3197&recv_bytes=1128&delivery_rate=6621951&cwnd=254&unsent_bytes=0&cid=2d4793b023859c43&ts=320&x=0"
X-Firefox-Spdy: h2
|
|