| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.slim.min.js | 104.17.24.14 | 200 OK | 22 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.slim.min.js IP104.17.24.14:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65241) Hash1276065911521c5c22037a31365d179d d1c6704e94efe2d465fc161b6381e127d35acd81 bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512
GET /ajax/libs/jquery/3.6.0/jquery.slim.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
Origin: https://serscotti148.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 22329
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-11ab4"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 701146
expires: Mon, 28 Apr 2025 19:21:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Pu8whLupDOT8abFgziHl2s1QVVFMLlWZjq1mGNCOs1yMh4GUgQ7cD%2Ba3wWuX270vxUP3EBKhkyLok%2FwMvseA3glj6bQg%2B1eZdfT63ZHdNUJR9mQuZdf6EDZws9GsH7HbuPAJUuW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880bcfeb9d9556c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.0/lazysizes.min.js | 104.17.24.14 | 200 OK | 3.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.0/lazysizes.min.js IP104.17.24.14:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7862) Hash96201abb62283557a9d7b97b4cab14ab a72f33d920d0ab863df4cb60edf44ec140304cdb 46112dbceed738f759d03f04b115d5256a7d73660b7795acb382192ad84d9f98
GET /ajax/libs/lazysizes/5.3.0/lazysizes.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
Origin: https://serscotti148.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 3150
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ff0b799-1ed1"
last-modified: Sat, 02 Jan 2021 18:12:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 697874
expires: Mon, 28 Apr 2025 19:21:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jXUtPBYCgCx4AbCh3qwGv3BbbJ1WZNGe2Y9rUr6%2BY4wLUvpCyV4AQKP2WxtDkfQxFMyA4AthuPfkNENHJOlEYrlkafMctjgk8t7sBsYc9doaCObBKvryaVn%2FcVXFM7IOO10rjNIe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880bcfebada256c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 3.bp.blogspot.com/-ZZSacDHLWlM/VhvlKTMjbLI/AAAAAAAAF2M/UDzU4rrvcaI/s1600/btn_close.gif | 142.250.74.161 | 200 OK | 362 B |
URL GET HTTP/23.bp.blogspot.com/-ZZSacDHLWlM/VhvlKTMjbLI/AAAAAAAAF2M/UDzU4rrvcaI/s1600/btn_close.gif IP142.250.74.161:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeGIF image data, version 89a, 52 x 15 Hashfd2c05a8c327ace309722b0a5fc4faf3 f446e97c43f8830be9f60644563dd846abe6b8e8 0450e2e1aa3c8b5435690d841f3e573c4f521864e1f8e01a5b6dbcdac922c8b4
GET /-ZZSacDHLWlM/VhvlKTMjbLI/AAAAAAAAF2M/UDzU4rrvcaI/s1600/btn_close.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="btn_close.gif"
x-content-type-options: nosniff
server: fife
content-length: 362
x-xss-protection: 0
date: Wed, 08 May 2024 17:47:09 GMT
expires: Thu, 09 May 2024 17:47:09 GMT
cache-control: public, max-age=86400, no-transform
age: 5651
etag: "v1764"
content-type: image/gif
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| earliesthuntingtransgress.com/a7adf9d52b6ef836c2a63bc70bb51a59/invoke.js | 172.240.108.84 | 200 OK | 12 kB |
URL GET HTTP/1.1earliesthuntingtransgress.com/a7adf9d52b6ef836c2a63bc70bb51a59/invoke.js IP172.240.108.84:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectearliesthuntingtransgress.com FingerprintD0:5D:19:40:99:6D:C9:CA:70:32:DF:29:86:64:CA:15:DC:7C:35:E7 ValiditySat, 04 May 2024 06:38:47 GMT - Fri, 02 Aug 2024 06:38:46 GMT
File typeJavaScript source, ASCII text, with very long lines (31329), with no line terminators Hash205663da22ff6d8cb0e19edab5b9e488 1fb1a3b418cb69f2d46e9b3a0759af7ad0d73fc4 a7eaa9eb2c9f610c77e5408537ca4f90be124ecb5fb584044a4f24c5014ecdd4
GET /a7adf9d52b6ef836c2a63bc70bb51a59/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 19:21:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a9283c554e29d22c31a6374858ffa448
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| earliesthuntingtransgress.com/c80e8cd7e7c6f58a14a8d729f8cdad80/invoke.js | 172.240.108.84 | 200 OK | 12 kB |
URL GET HTTP/1.1earliesthuntingtransgress.com/c80e8cd7e7c6f58a14a8d729f8cdad80/invoke.js IP172.240.108.84:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectearliesthuntingtransgress.com FingerprintD0:5D:19:40:99:6D:C9:CA:70:32:DF:29:86:64:CA:15:DC:7C:35:E7 ValiditySat, 04 May 2024 06:38:47 GMT - Fri, 02 Aug 2024 06:38:46 GMT
File typeJavaScript source, ASCII text, with very long lines (31311), with no line terminators Hash28982c03c5ca75ce730c206d620fbb41 526480e9de54cb660444a8434f87e2669123e73c 2a48c1eb09cd9f4726b1ff7d7ea4918ecda1991089e01d42f99c2f5aacff8a58
GET /c80e8cd7e7c6f58a14a8d729f8cdad80/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 19:21:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4bec664153647cd0d50f9650902c562e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| split.jaketkulit.web.id/get/site/js/5eece17d3538f80d2e76b7b3913aecfa | 172.67.138.103 | 200 OK | 663 B |
URL GET HTTP/2split.jaketkulit.web.id/get/site/js/5eece17d3538f80d2e76b7b3913aecfa IP172.67.138.103:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectjaketkulit.web.id Fingerprint80:8B:F9:62:27:FA:23:A8:54:26:C7:57:90:E0:EE:1C:F0:8C:9F:F5 ValidityMon, 01 Apr 2024 01:48:02 GMT - Sun, 30 Jun 2024 01:48:01 GMT
File typeASCII text, with CRLF line terminators Hash9e770a81e2dbb86de7fc425dfb96bfa0 ccb9ee9e7622c24cf9d5330853fa95df826bfdef a60e4bedaf17b1fe1e6b570c1a3bfab385aefaf1640e69b45ba8dd87e8d53aa8
GET /get/site/js/5eece17d3538f80d2e76b7b3913aecfa HTTP/1.1
Host: split.jaketkulit.web.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:20 GMT
content-type: application/javascript
vary: Accept-Encoding
set-cookie: PHPSESSID=c51qs64a4s8jvogpq0vit9idc0; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin:
access-control-allow-credentials: true
access-control-max-age: 86400
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VoOVV2%2FLHFYvtJ%2BWDMZhPBIvPw5QrebH7%2F3csDLRDuOx0aSOTAz4h3pXxyRzB9cEIUcmq4uDuyDq5mqGxyhaN3MiuhbNRY5GtCX6HtKZsIRVWBS5452FoTodTTDW9k%2BgCY0XR%2FGuN0DNhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880bcfec28ae712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.58.212.182 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.58.212.182:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd3a529a7d97a427e36dd167adace6945 1497deb5c8d0bf579bc2429e992fe9b2f8af9df0 bcf5055caa9da7d505ecef78c8eba505cfd320a2f9e11e6defa7fea9777f3f46
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
Origin: https://serscotti148.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:21 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://serscotti148.pages.dev
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=d9a406a3-0c8d-4792-8077-c48b576cb0f6:2:1; expires=Sat, 06 May 2034 19:21:21 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| split.jaketkulit.web.id/get/site/js/1d6def2e9b082f24c59c908dc9eba138 | 172.67.138.103 | 200 OK | 231 B |
URL GET HTTP/2split.jaketkulit.web.id/get/site/js/1d6def2e9b082f24c59c908dc9eba138 IP172.67.138.103:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectjaketkulit.web.id Fingerprint80:8B:F9:62:27:FA:23:A8:54:26:C7:57:90:E0:EE:1C:F0:8C:9F:F5 ValidityMon, 01 Apr 2024 01:48:02 GMT - Sun, 30 Jun 2024 01:48:01 GMT
File typeASCII text, with CRLF line terminators Hash0dd5e9f8fe647a2b50f24d675add5c7a b8c4bce2af4269844f253dd6a9be9304e5b84372 d4bb70f263015ee6e9254446f119f1f895f735f6b0097b43a4c5592b02efd367
GET /get/site/js/1d6def2e9b082f24c59c908dc9eba138 HTTP/1.1
Host: split.jaketkulit.web.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:20 GMT
content-type: application/javascript
vary: Accept-Encoding
set-cookie: PHPSESSID=h0hv9v5nns8q6568ljq9vntl5s; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin:
access-control-allow-credentials: true
access-control-max-age: 86400
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dgDLna2awTDsqOY5ekL9bjHDtPBL8ga7KPuIactPg1OPx6CqWJQnqLY3oiPHHvkp%2Fp%2FMmLjWQpCtMhYj4ikR83KZteP9GLii7Jk%2F4ytmeC24%2BxZqf6166EvO%2BekzFAwBDmLp6iBT1v7%2FaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880bcfec1894712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tse1.mm.bing.net/th?q= | 13.107.21.200 | 404 Not Found | 727 B |
IP13.107.21.200:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint02:83:27:F9:50:D8:BE:B9:5E:DF:1A:4A:45:3B:6D:3C:BC:30:F2:58 ValidityWed, 01 May 2024 01:58:25 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 80x80, components 3 Hash5116706c119475f5ae2fc135c3358037 7e5bdf3585153e317ebef05a9b8241d311e44cb3 7edda2585f580c167fd4e3a6c162534548cda437f8bef67c544f3aa9c162a17c
GET /th?q= HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cache-control: no-cache
pragma: no-cache
content-length: 727
expires: -1
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FA56A4D37CEE434F92C0B73786D4DB17 Ref B: OSL30EDGE0105 Ref C: 2024-05-08T19:21:21Z
date: Wed, 08 May 2024 19:21:21 GMT
X-Firefox-Spdy: h2
|
|
| understandassure.com/watch.1456312892443.js?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=d9a406a3-0c8d-4792-8077-c48b576cb0f6%3A2%3A1 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1understandassure.com/watch.1456312892443.js?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=d9a406a3-0c8d-4792-8077-c48b576cb0f6%3A2%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectunderstandassure.com Fingerprint77:7A:86:0D:25:36:AC:8C:40:06:BA:07:3A:1B:C0:5E:30:40:96:24 ValidityMon, 06 May 2024 12:42:40 GMT - Sun, 04 Aug 2024 12:42:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1456312892443.js?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=d9a406a3-0c8d-4792-8077-c48b576cb0f6%3A2%3A1 HTTP/1.1
Host: understandassure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
Origin: https://serscotti148.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 08 May 2024 19:21:21 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd21480e8d1b8fc248fb73d5fdd064a7
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| understandassure.com/watch.1456312892443?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1understandassure.com/watch.1456312892443?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectunderstandassure.com Fingerprint77:7A:86:0D:25:36:AC:8C:40:06:BA:07:3A:1B:C0:5E:30:40:96:24 ValidityMon, 06 May 2024 12:42:40 GMT - Sun, 04 Aug 2024 12:42:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1456312892443?key=a7adf9d52b6ef836c2a63bc70bb51a59&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 HTTP/1.1
Host: understandassure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 08 May 2024 19:21:22 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1acb7717d75590b95fc31aa80026a42d
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| suggestqueries.google.com/complete/search?jsonp=autoRelated&hl=en&client=firefox&q= | 142.250.74.142 | 200 OK | 24 B |
URL GET HTTP/2suggestqueries.google.com/complete/search?jsonp=autoRelated&hl=en&client=firefox&q= IP142.250.74.142:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeASCII text, with no line terminators Hashfdbaede1a8136a6bd589d54e2f69fff8 883905e057c9b758a95c9ece940d089e3af85e0a 5ffae3c0e627b6a2083d67639bfa32ecfe695671ee25f8e1315d2067a4e28df4
GET /complete/search?jsonp=autoRelated&hl=en&client=firefox&q= HTTP/1.1
Host: suggestqueries.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:21 GMT
pragma: no-cache
expires: -1
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-lcexv-1-aYMKZ_FKh1ONCw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: gws
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shayscholz.blogspot.com/favicon.ico | 216.58.207.193 | | 412 B |
URL GET shayscholz.blogspot.com/favicon.ico IP216.58.207.193:0
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel Hash59a0c7b6e4848ccdabcea0636efda02b 30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340 a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: shayscholz.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
expires: Wed, 08 May 2024 19:21:22 GMT
date: Wed, 08 May 2024 19:21:22 GMT
cache-control: private, max-age=86400
last-modified: Fri, 08 Mar 2024 19:12:27 GMT
etag: W/"53e1bb00e6929e879a040ee00d8ddd9c6a9b1f6c6c79cd1077a9390901619218"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kidjackson.com/watch.1151900935202?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1kidjackson.com/watch.1151900935202?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 IP172.240.108.68:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectkidjackson.com Fingerprint11:38:2D:E6:9A:F0:71:4B:AC:FD:5D:8B:45:11:09:4F:14:0C:11:A3 ValidityMon, 06 May 2024 08:05:47 GMT - Sun, 04 Aug 2024 08:05:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1151900935202?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 HTTP/1.1
Host: kidjackson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 19:21:22 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 602ed442a2a163e992ba884ad1acd6bc
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| kidjackson.com/watch.1151900935202.js?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1kidjackson.com/watch.1151900935202.js?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 IP172.240.108.68:443
Requested byhttps://serscotti148.pages.dev/ CertificateIssuerLet's Encrypt Subjectkidjackson.com Fingerprint11:38:2D:E6:9A:F0:71:4B:AC:FD:5D:8B:45:11:09:4F:14:0C:11:A3 ValidityMon, 06 May 2024 08:05:47 GMT - Sun, 04 Aug 2024 08:05:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1151900935202.js?key=c80e8cd7e7c6f58a14a8d729f8cdad80&kw=%5B%5D&refer=https%3A%2F%2Fserscotti148.pages.dev%2F&tz=0&dev=e&res=14.2071&uuid=434f2761-fb70-4f6c-a5e3-63cf3182e7cb%3A2%3A1 HTTP/1.1
Host: kidjackson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://serscotti148.pages.dev/
Origin: https://serscotti148.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 19:21:22 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 819c287ba2e39d22d5c174efa7f88475
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| | 188.114.97.1 | 200 OK | 30 kB |
URL User Request GET HTTP/2IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectserscotti148.pages.dev Fingerprint63:71:4F:E9:98:D1:D8:5F:E8:BF:D6:27:66:63:85:6A:8D:AF:F1:70 ValidityTue, 07 May 2024 08:49:59 GMT - Mon, 05 Aug 2024 08:49:58 GMT
File typeHTML document, ASCII text, with very long lines (11253), with CRLF line terminators Hashe4949a988961c0d3381f86257ee33ac6 f8d8d3d40d98e39da2dafc79a8eab7409de95b4b 3ca497ef7fbde8465d7f8e438794fa6feb89af25d4217a61fd075903a2008587
GET / HTTP/1.1
Host: serscotti148.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 19:21:19 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4419275b0aabf02d931a161f4b29266f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KP7LboirH7V7hEpmPCW6TgOFkEzoQ4Vxc1ZxqyU1Dg1vBY6DlF0%2Bw4HyIDz1gZZ8vjtX1Ql7%2BrELPAvuGObg5a%2BHtZUh4k7UwtaX%2FMiyXisQu1s2dKGigm75uCosnQNSnCYDNDDfqHGA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880bcfe7bd83b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|