| insomniahack.fun/app/Insomnia.zip | 104.21.15.211 | 403 Forbidden | 167 B |
URL User Request GET HTTP/2insomniahack.fun/app/Insomnia.zip IP104.21.15.211:443
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /app/Insomnia.zip HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 26 Apr 2024 22:17:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 26 Apr 2024 23:17:31 GMT
Location: https://insomniahack.fun/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e0ZNN53VSATTNA30uORDZ2GX6JEeoMvP4RBHPBqfOjbMC4cJ2w05DEn7Op%2Bu%2Bc6hwxwud3S5Q%2B6gPfyLlc3xfJl9i%2Bk9r9hqEcrNJo4peOruiJ43n2cCXa0yWbl9Tn4eu2zI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 87a9f1866e8a0b31-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal | 104.17.2.184 | | 26 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (41702) Hashddce410508de9f59b6f94b53f4f63836 19be440f1c8a23a1b5a2d9225f81d7402a512d2a c453646c9d35d1a4cb92fb757f9c0ea4c6102b9c39fd27cd476abf5ff85e466f
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:32 GMT
content-type: text/html; charset=UTF-8
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 87a9f18a2e9356cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87a9f18a2e9356cc/1714169852846/bd51336f2227243d60e7e3569c77ecd79aaf789881cba39ea906c5b45b3a7464/TKuRF3VSI7zAyAF | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87a9f18a2e9356cc/1714169852846/bd51336f2227243d60e7e3569c77ecd79aaf789881cba39ea906c5b45b3a7464/TKuRF3VSI7zAyAF IP104.17.2.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87a9f18a2e9356cc/1714169852846/bd51336f2227243d60e7e3569c77ecd79aaf789881cba39ea906c5b45b3a7464/TKuRF3VSI7zAyAF HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 26 Apr 2024 22:17:33 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gvVEzbyInJD1g5-NWnHfs15qveJiBy6OeqQbFtFs6dGQAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIL1RM28iJyQ9YOfjVpx37Near3iYgcujnqkGxbRbOnRkABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 87a9f18e49d256cc-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a9f18a2e9356cc/1714169852850/j-GkQzWwkLzpI83 | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a9f18a2e9356cc/1714169852850/j-GkQzWwkLzpI83 IP104.17.2.184:0
File typePNG image data, 76 x 71, 8-bit/color RGB, non-interlaced Hashef0ef57af2e3b994da56f96cfaf4672e fcbb944e751daeda2ada948feb940e19e5391fa8 7975d0dd7e4539fa62f1dae3d2a2e0f8b6aa3bc2504d9a77b07709405f075ff0
GET /cdn-cgi/challenge-platform/h/b/i/87a9f18a2e9356cc/1714169852850/j-GkQzWwkLzpI83 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:33 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a9f1904b8456cc-OSL
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/favicon.ico | 172.67.164.63 | | 75 kB |
URL insomniahack.fun/favicon.ico IP172.67.164.63:0
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (21591) Hashdea06740d5e62b2197a899c77d3e29e3 5ec57da9af7e209d0d88ccb44ea2326b73474a2b 6d90ca3019960688458df4476f177f024ec8f3743783b2865022b37fb5b1241c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://insomniahack.fun/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 22:17:32 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zB6OBJg4ehAglTjd4Ysw1kvlkFs0JuLLkB2QCubPt08OSl%2FCzefG9EANtNE4KLuhqZhkQNEx95hOUyXze9XsoAeq0eaMh1aZKCUZhQBkyvPd1nyqIvEeXir9LrjuQLbpTLb0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f18879a4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit | 104.17.2.184 | | 24 kB |
URL challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit IP104.17.2.184:0
File typeJavaScript source, ASCII text, with very long lines (42414) Hashf94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b
GET /turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://insomniahack.fun
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 22:17:32 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9f188aa540b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| insomniahack.fun/cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 | 172.67.164.63 | | 25 kB |
URL insomniahack.fun/cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 IP172.67.164.63:0
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeASCII text, with very long lines (15896), with no line terminators Hash94742db171bd40964e3420edbe4c0516 05a8472ccd0624d90ca4e7c834a05a73825ea506 d9891992f49d8a3f0698214e8e65111180b8acca92c9c1c13a665abca82f0e09
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://insomniahack.fun/
Content-type: application/x-www-form-urlencoded
CF-Challenge: ddcc1017985ff77
Content-Length: 1890
Origin: https://insomniahack.fun
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:32 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: EfuZ498yg2RFNdtVbTeoyb3iSvjqWZnfusEcLBZMQSkuHaZj7/kiDHHDe2CaQJv8$Epx9Jc7LdLRQtuyNMNJiCA==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fd6KAsMGWKu2hfQojnWTdFgrGmGSUA2x%2F4Lvrop6NJh%2FPw3FVAY1DuMTUNnl18mVOm4j8%2FISYT7NuOkZE4m02yAE46Hz6Z9fNynFN0J6LAmFYj4yA4zR4LSkh61A8ucaeCqN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1895a52b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.164.63 | 302 Found | 0 B |
URL GET HTTP/3insomniahack.fun/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 22:17:39 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qsYBmEFeAPfHpRzYti8erO1yVYk7s9rwvVo5YQ%2By4Xr1fCFRPcfy9yJ8AipkkC4sDEw655t%2FFY93zwjxfsaW7ztq0U1651MIt6Wx1w8vXPKAusEcMbEnKNPqKPHM3azowyER"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b6ad29b4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/css/css2-2.css | 172.67.164.63 | 200 OK | 33 kB |
URL GET HTTP/3insomniahack.fun/css/css2-2.css IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
Hash7e8230e75510eff13169867c831296b8 046f2f492b5a14025ea115b9939d1f5da7ec7611 a9a447daec6fb494dc535c485a8b199156a981f25ad494d075f254211cf508cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/css2-2.css HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/styles.css
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 17:58:20 GMT
vary: Accept-Encoding
etag: W/"65f48c3c-1854"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aV1d%2BPH1z4h%2BcmVIdabQGpxJt7nBm1LGD%2FiMvuXYaN9HU%2Bz0iRGVCKxZcTMoAuinLYSYB2%2Btlbdwscxu7uD58teI4Dr1cR%2Fhr2Q0ybPuJP317Vk7z2VAf8ZLI3TMqkV2nnuc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b54c4cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2074482192:1714166939:UIq5n3EKC5d4uspYnZPOV7abtpup5RmNKjJxBvJFMTg/87a9f18a2e9356cc/b1b3c0a2d4fed0b | 104.17.2.184 | | 79 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2074482192:1714166939:UIq5n3EKC5d4uspYnZPOV7abtpup5RmNKjJxBvJFMTg/87a9f18a2e9356cc/b1b3c0a2d4fed0b IP104.17.2.184:0
File typeASCII text, with very long lines (22600), with no line terminators Hash98154ad5298a76daafefbf842bc806c0 f1b6b316930de692fefad3004e588566c59af0c4 3316db560f7f2a292940d1bbbaafe3359987f75c5281256cbcd0a574ea11011c
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/2074482192:1714166939:UIq5n3EKC5d4uspYnZPOV7abtpup5RmNKjJxBvJFMTg/87a9f18a2e9356cc/b1b3c0a2d4fed0b HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/iyroq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b1b3c0a2d4fed0b
Content-Length: 26315
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:34 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: r4P998b4gfZTdDIqI7w77viHdzEn8Q+NegoT5iaj1WRaCudK9wqqHYyWIgpYc95e$yRWPrS8Z+XlcnWt8eifhGg==
vary: accept-encoding
server: cloudflare
cf-ray: 87a9f193ee9756cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/cdn-cgi/challenge-platform/h/b/jsd/r/87a9f1b2eac2b4fd | 172.67.164.63 | 200 OK | 0 B |
URL POST HTTP/3insomniahack.fun/cdn-cgi/challenge-platform/h/b/jsd/r/87a9f1b2eac2b4fd IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/87a9f1b2eac2b4fd HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12146
Origin: https://insomniahack.fun
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=P6k_QqY9Lz_7FXqQyQOqnZb5RbjRKdPaPOsl8sgpu58-1714169859-1.0.1.1-EVvnYOaCa6zep4vK.kLKwMq3WlYZo6Dp4Y8x9mPdByTDSIs0.nQpEDW1ohZBZ5jEHFpS4QLdJB.pQYUeevDmgA; path=/; expires=Sat, 26-Apr-25 22:17:39 GMT; domain=.insomniahack.fun; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vh7uQE%2F%2FGH0r4JwHVE5bYzH2m%2BlnElEviHlExwhQb2y4hv2NAQWrfM22jY2BQ5qjORiFjfBAftj%2BvDtZIXzxvBAy0Cpc5HmTPpoW1xmo5nYoxK83sk21d3r2eAw0KxAS3uxl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b77dc0b4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/styles.css | 172.67.164.63 | 200 OK | 37 kB |
URL GET HTTP/3insomniahack.fun/styles.css IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
Hash98a373077b610bd4ac5d9586643aff94 960ce62203994b314f12f338031fa05519a90f7b c3dfaeda8de8bd548c093b36df6091153c4f6c142eca64da22256ead4db93643
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /styles.css HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/css
last-modified: Thu, 25 Apr 2024 13:13:44 GMT
vary: Accept-Encoding
etag: W/"662a5708-55a9"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EYEAN6zEvH4Kmbyhb7ev8kvjlgrA%2FUzwm56HaTm0cJqmvrHZ%2BXSEKUNAk1vGT9txB%2ByO0srIgRPB4mXAjGvuM79%2FUly24OPIR%2FHBL0B7uDySmhCOTGNyc4XIhO2yrFK02rxZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b45bb1b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/css/firstFontAddition.woff2 | 172.67.164.63 | 200 OK | 32 kB |
URL GET HTTP/3insomniahack.fun/css/firstFontAddition.woff2 IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32272, version 1.0 Hash91c1abde26995ed2f211f73c11f96047 0b10cff8bdbcba61d5b6797214627912bca4ae45 45447a2b45991ea4e67ff0866444ca07fcf62c28dbfd5fa072ab76d3d0c46390
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/firstFontAddition.woff2 HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/css/css2-2.css
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-length: 32272
last-modified: Wed, 28 Feb 2024 17:33:10 GMT
etag: "7e10-612748957c180"
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uoit18anMa3XLv2cChP1pZtJtKQ22I8Q8njf53Zs32Swax%2Fj9UAjz%2Belrw1I8yjbwB9JX4%2FAmJJXohdPnfZ8TwGMehf%2Bo%2FqzjHTFd59NsJCfxTqa3K7dIxlKdoI1OKJm8HEH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b66d0eb4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 | 172.67.164.63 | | 24 kB |
URL insomniahack.fun/cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 IP172.67.164.63:0
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeASCII text, with very long lines (3244), with no line terminators Hashf9ce70c4780001f19c8bb15e0edfcf8e 6b315c1b9cfcf31565be94b54a28e26ec77c1df7 2aec32c95f477df9bd9352111c870d165a83cfdc985208cebe3c359fe0696df2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/684798353:1714166793:jP6wyUAdx1FHjmEMDLd4bXLBs-CIVPFTmrCgUgRQO88/87a9f186882fb4fd/ddcc1017985ff77 HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://insomniahack.fun/
Content-type: application/x-www-form-urlencoded
CF-Challenge: ddcc1017985ff77
Content-Length: 3298
Origin: https://insomniahack.fun
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:38 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: yZM/aEemqzStaq1NijbBjOprb2lf8WEpvy1W/oKaBaXrXvBRwvTYniupNVGe66fAZ/xks+bVGikI2StCvlYNEX4VXYTBMUNXBrjgLi0Qh0fv5/LBNLCTQlrHw7ppebNb1nRbYKExFaM4RNiQTbeEWl4NT3ZmnnteBiviqvdPK4dAd2QsioISP235Ji36yCNrDvU3wVzS4ZLtbtqwK1XX7LoW1W3OJX1H3ptO0RZgtb5ovVV55r0IorL/SSjna2iP65zAsF98oweyBlo1RIuCpRq+joXK6wspMx3HUu3vF8M7Sz8YKn3mE6zgcC/YHxLle0parm5YIo9E3ZIoNDsjJB5f3OOEaGFYt82dR21XNCe6yHKVXAA1YlYhJan2iWq72Oc121xA1wjA+/VeCt/9lgXeD3RoMOpxxyVJmvgzJlfx4jtq6ivnclfSnmd+7CXIjVSvSs84vWg/ChINweNz0w==$GnjzdA8/ZJcB3geuPVDfYQ==
set-cookie: cf_chl_rc_i=;Expires=Thu, 25 Apr 2024 22:17:38 GMT;SameSite=Strict
cf-chl-out: ZdLHSRGNXub8xd3yFmarsTuepPtWOtBAv+PChocp5uuzDs4n0Wi0d1QWrRHTmYnLo9KNMccxK+h2qfrfCt2mpWo2YuP5uYiQMRMKkK8mXd5Bv9J5+hPArdhsEs5h6Ktk$hoiFhylqOKu57FPqdE6ITw==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YXIr1FINaM4cQWRbV4Xl%2BuY3PaEMvg%2Fkq54VE%2FzTEO1COVZSd%2BlHkAvibtRdAL9%2B61a3%2FiDxbgx6yAizzEvc1sAvTfp8lQ77tByU2W9%2FJK%2BeC1e83NxaHVA7A2eyn968wFDp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b23a4eb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/icons/icon.png | 172.67.164.63 | 200 OK | 4.3 kB |
URL GET HTTP/3insomniahack.fun/icons/icon.png IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hashd6ee4120e9c2857f7b06be5e2c9f4b8c 8ffa0d03e07669472b7c78fb14ce93aab500f91a fa9140ecfd0324c0544beda769fed2d6de474983916632aa0d02d4fd9c937440
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /icons/icon.png HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/
Cookie: cf_clearance=P6k_QqY9Lz_7FXqQyQOqnZb5RbjRKdPaPOsl8sgpu58-1714169859-1.0.1.1-EVvnYOaCa6zep4vK.kLKwMq3WlYZo6Dp4Y8x9mPdByTDSIs0.nQpEDW1ohZBZ5jEHFpS4QLdJB.pQYUeevDmgA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: image/png
content-length: 4305
last-modified: Wed, 28 Feb 2024 17:33:06 GMT
etag: "65df6e52-10d1"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ioV5VewWoA7YyjuSY1zqcRDzJj2V9eg2%2FKLlDMPPy25PsD2rfCl6K%2FjpxzbxX3LzIpOedUD3bEcKT4XSKsdaWzuUv027Xztz2gA4dyssV0QNaUg2mPI9wEd1FHKWdKkEYtog"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b7ee0eb4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/icons/key.svg | 172.67.164.63 | 200 OK | 31 kB |
URL GET HTTP/3insomniahack.fun/icons/key.svg IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeSVG Scalable Vector Graphics image Hash31f41d5bbafe13bd391dff9bb430ee8c 3c49f46cd8d81e5cec2c84012a5398a0fbac95f2 a6952c959a07fdbe9b61c80c6ffc94ae5a280a79c257f47b1fd3e161038f7550
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /icons/key.svg HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: image/svg+xml
last-modified: Fri, 15 Mar 2024 15:26:00 GMT
vary: Accept-Encoding
etag: W/"65f46888-783c"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lJqegCoCXK3eGH0%2BSVVN3AgQLz3O9dY2PAg68MIjm%2BO%2Fu8zeQ6rDJlYgUOVEz%2B58%2FtMDQVGJ7wBldw7Bf3SPqw1PU%2B0lVwx5%2BF3r92YI2UZdD332D9u%2B0ZjEUm2j087YreOG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b45bb2b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/css/css2-1.css | 172.67.164.63 | 200 OK | 351 B |
URL GET HTTP/3insomniahack.fun/css/css2-1.css IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeASCII text, with very long lines (362), with no line terminators Hasheffdc3ddbd121db0c176f98e25902632 9b3d8085314df937c10935f966179f110f1ff9e7 f8baff3d1dff46d0c1c0ca2dc09e73f3d64b16a9fd25c00e12fd24582cd63248
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/css2-1.css HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/styles.css
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 17:33:14 GMT
etag: W/"65df6e5a-15f"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VinBEQ0pZoa69OC9OVtC8c4w1HruM%2BfnyonHtNUD51KQfhtkvmVji0X%2FokMh3IexqYPpN%2FPnFPoZByB%2FrRttHMR%2BBiaZrC9zxcmlKnW3wiVgzTe%2Fm313VbrLIo%2F03bZzJeZi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b54c48b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 172.67.164.63 | 200 OK | 7.9 kB |
URL GET HTTP/3insomniahack.fun/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeJavaScript source, ASCII text, with very long lines (7859), with no line terminators Hash8c11c8ae2825b126f61fa1201f976baf da98d41e7de6bf5b3d0177598571140c522d36e9 9a8c9f150aae1c1094852b733fbe9989c462869eadd86028c3f0372d7baad7c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
content-encoding: br
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nLr1v29ctWLP2yo%2BK31qs1VuYJO%2BCd23t9S6HbEzj7uVoorcAcits1QYhRuvyWKsbRLB9Blz0FTo%2FF41kD0sXeYZ1mg7ppHP5l2Lg1CodiAAelwLv1oCY0Sl0dN5%2FKIrSTUO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
server: cloudflare
cf-ray: 87a9f1b6bd2fb4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.164.63 | 200 OK | 8.0 kB |
URL User Request POST HTTP/3IP172.67.164.63:443
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8190), with no line terminators Hash6d9d51a896e7313fa16dc23fbe78df6d 0865e800fae010d59487960d24b2b510d36b9d33 9798e8fb6891f91998945c079a57a827aef2b3a69e21e820b598df9eea09e093
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST / HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://insomniahack.fun/?__cf_chl_tk=xyFL8yQTgFdMtuNGwk4qonUBg3168n4hwPZgdpke6QY-1714169851-0.0.1.1-1279
Content-Type: application/x-www-form-urlencoded
Content-Length: 3972
Origin: https://insomniahack.fun
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw; path=/; expires=Sat, 26-Apr-25 22:17:39 GMT; domain=.insomniahack.fun; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dqlrPiXKRu4NEfQNdSOT7DvU1tvkeD4YozWN%2FWzMGW8CBwHUghC42iRwChqXXayUr0Mk1g8cyDBPefXlTsWAoUd3KNgdCNm3s4IxY7VGaoDqM5POECO735xa%2FBFNDmb2vdzI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b2eac2b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/icons/hackedmenu.png | 172.67.164.63 | 200 OK | 21 kB |
URL GET HTTP/3insomniahack.fun/icons/hackedmenu.png IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typePNG image data, 739 x 461, 8-bit/color RGBA, non-interlaced Hash422bc30e565dcd725cef7bb4052f16bf b8587bd27c189e454c9a541f5e4a6fbd856d8007 4e6ceb84f6e325fd8d3daa576f0f2d4ca75e89ccb41854319c783bf99531c301
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /icons/hackedmenu.png HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: image/png
content-length: 21192
last-modified: Wed, 03 Apr 2024 15:25:25 GMT
etag: "660d74e5-52c8"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PIH1d2Ck0eBUTSiECVmYc7Zk0OHt%2FURe8kEacNvmx3qeFgUb9dnzFdbMFpOl8nJiXvm8pvu5845tPikVbjg0SmKYGeiuYBWJv2z4OtJBpGFrE1CBPmMSwhZorw1ZNoRCTWS4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b69d23b4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.164.63 | 403 Forbidden | 16 kB |
URL User Request GET HTTP/3IP172.67.164.63:443
CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
File typeHTML document, ASCII text, with very long lines (15852), with no line terminators Hash6cdd3a137e0b0d29e4eb08053871db8e 04bf98ecde5b0e873d5c1a8253b3798739216501 8eb20a44b6f8cca4c708047f22a4b4dc35d2775e6ddadff0d2398c520c3f49de
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Fri, 26 Apr 2024 22:17:31 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: RFH2hGQRR2hDWXU53kjcjVQkM74ojDfWxGrfX8Cz/5iH0HBjxBnoASvNWNh9ZcOazICKWTeBliHD5cZfbchQGAHMd95g+ptPsx0QvyT3XUgGzX+3vo9gByW7Q5Tu8xJ+z3EuxAKreuAWKvoWWBPwIA==$av+R7uYdo1Pq4Bcj9Bvs6Q==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FE2OU4ZrHJDnA7P%2FjsLxrZvHo9sB5vI8%2Bkx8XcYOo3Kiv5wF%2FRT1O04DFspBil4TYngDgOBhye4gFVGbKRZUonAd9N37GUb5ucrxfDANoYnCxXv%2BpXOh7DpkAt2rjeT0dAiD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f186882fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| insomniahack.fun/css/css2.css | 172.67.164.63 | 200 OK | 22 kB |
URL GET HTTP/3insomniahack.fun/css/css2.css IP172.67.164.63:443
Requested byhttps://insomniahack.fun/ CertificateIssuerLet's Encrypt Subjectinsomniahack.fun Fingerprint56:AF:07:7A:AA:C7:2F:03:00:33:F6:62:30:57:EE:C4:1F:D9:13:18 ValiditySat, 16 Mar 2024 18:36:36 GMT - Fri, 14 Jun 2024 18:36:35 GMT
Hasha0580d823668fa574b8ca6355a996c3f 2e867ef4f4cefa36e414da555431d48be2ddd4a3 c66fcce31fa06a5e2169be8f6b97eda62c63b0243a21e9a90b4c7cee3dbc0bc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/css2.css HTTP/1.1
Host: insomniahack.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://insomniahack.fun/styles.css
Cookie: cf_clearance=aO_GHmmHkMiWN35EdN7922tGUzmF4iQXo__mVWwpOCs-1714169851-1.0.1.1-9Mvwmq3JXAgIAfMbtvhZ5W83N4EoJLlDU8qBhboGuI9O32kxqTR9ZAvyDL8dY8l6TlQewpc64rXFKr9OPGu7Xw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:17:39 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 17:33:14 GMT
vary: Accept-Encoding
etag: W/"65df6e5a-543c"
expires: Mon, 10 Jun 2024 22:17:39 GMT
cache-control: max-age=3888000
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kxpvz7pBUCCgIAAIY4o4Du2eNDp3TRixtTbWpBREHQKn%2BPBTssujnHhDqxhxW9C0T7YtZKrs8BchYpDWA0FFYt9pUX5LbtMguj8i2wl251VWMofmcBGHejwv6DVCXYWGhZzs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a9f1b54c46b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|