Report - abbaspc.net/

Report Overview

Submitted URL
abbaspc.net/
IP
172.67.69.237
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-09 01:40:12
Access
public
Website Title
AbbasPC | Cracked PC Software
Final URL
abbaspc.net/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stats.wp.com	2711	1997-03-28	2017-01-30	2024-05-08	396 B	7.8 kB	192.0.76.3
abbaspc.net	54516	2018-11-10	2019-01-30	2024-02-23	6.0 kB	395 kB	104.26.14.242
pixel.wp.com	2545	1997-03-28	2017-01-30	2024-05-08	540 B	249 B	192.0.76.3
i0.wp.com	3021	1997-03-28	2013-09-17	2024-05-08	3.0 kB	54 kB	192.0.77.2
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-08	488 B	20 kB	104.16.79.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed
2024-05-09	medium	abbaspc.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	abbaspc.net/	476 B	2023-03-07	2024-05-20
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:50 Last Seen2024-05-20 06:25:20 Times Seen15871 Hash ce71388c2d441cfb9ef0985bc4e5bb71 1e74c490ed76f671eb45ab0b45c9c9f5b9b89f0f efb5a648656ae8f944fbf74e5644126464160ab50197a288c8b587e74edd575a Loading...

	abbaspc.net/	10 kB	2024-03-20	2024-05-20
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 20:06:13 Last Seen2024-05-20 06:25:20 Times Seen96 Hash 9ecacb6622e8cbd4771a60ee35e7e478 2045ce3c795148fd53384fcf38617b3ee2d3df72 3357ad493b0b4d8ca2a3d79661ae3be3d79e575bc1bbcc1c46bbe1b96719282e Loading...

	stats.wp.com/e-202419.js	7.3 kB	2024-01-05	2024-05-20
Pretty URL stats.wp.com/e-202419.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-05 19:19:44 Last Seen2024-05-20 05:54:57 Times Seen2724 Hash bd2d67186594b0e32223b293fdfcca55 b797a9d012c850b53a7ccc12211adcfbcd9ae0be 4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641 Loading...

	static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387	19 kB	2024-04-24	2024-05-20
Pretty URL static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:56:41 Last Seen2024-05-20 06:34:39 Times Seen2633 Hash 4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192 Loading...

	abbaspc.net/	468 B	2023-10-14	2024-05-09
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-14 21:20:21 Last Seen2024-05-09 03:40:12 Times Seen7 Hash 511be231a7ddcc94edadc063ae30dc9d a8bda89431dfd4e7b7164e27f22345bbbe24a852 b61c946912bdbb10ac4f04c8a999277a9d7562aabb4d4babe6af651602de06c4 Loading...

	abbaspc.net/	79 B	2023-09-12	2024-05-18
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-12 09:37:17 Last Seen2024-05-18 21:40:52 Times Seen255 Hash ee1411a19a7c268fab8be31f19b6d929 dbcc079137d5e7a04eeb60a3e44f667a3399789f af86e574d24947ff5269bc22464052d88c5f4c502e6c635b7ea2c5fbdfe8ca91 Loading...

	abbaspc.net/	1.9 kB	2024-01-12	2024-05-18
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-12 11:08:09 Last Seen2024-05-18 21:40:52 Times Seen87 Hash 19c4f4a5b40d01b32a5bb93422b73440 147d918144f38174d1d4cd3ff96343a82a2bc6f0 9fbea36dcd69e0f36b4eae43543848550b8e78f9f17acc8fb08b9642436e49ce Loading...

	abbaspc.net/	115 B	2023-03-07	2024-05-09
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:17:59 Last Seen2024-05-09 03:40:12 Times Seen13 Hash 36c1fa07c8f44924ec462182aecf7957 17127bd0840faa12923f914e86a6601d72892c17 ab667677f167a10817af13dcdde4f71e2fb1d3c412db2ec5dc9d954300ef5c34 Loading...

	abbaspc.net/	254 B	2024-05-08	2024-05-09
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 08:57:25 Last Seen2024-05-09 03:40:12 Times Seen3 Hash 7364625c6fbf3b5fe995dca4fdf815f7 ab2ae35387decaada2b87ea70578c9fdb3f81df4 8a576c9bf3d42f61cdda9f13a0ec58557dbdd7e0816b0912480cff273f35de11 Loading...

	abbaspc.net/	1.8 kB	2023-03-07	2024-05-20
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:48 Last Seen2024-05-20 06:25:20 Times Seen15206 Hash d8c8affb8db50a19f545450d49ec3509 c3b2998aff813284ea71334180093b95f53d5d5d 7cf5deb705b1e36e7c8cbdb9e8eacdb50432bc5551e3f068b647992ad7e4e784 Loading...

	abbaspc.net/	1.6 kB	2024-03-20	2024-05-20
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 20:06:13 Last Seen2024-05-20 06:25:20 Times Seen40 Hash 4bfbcaf0b217114a0e3c66477408700b 36726963f2d9e350fd735c05e556355cb508ea66 dac2f0f8723d0ed33ee0aaa852bb4667fb5f519397bdabf8add1e09e427c5238 Loading...

	abbaspc.net/	1.1 kB	2024-05-09	2024-05-09
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 03:40:12 Last Seen2024-05-09 03:40:12 Times Seen1 Hash b1c024b302afe1e9a933f93a55b2c0ad e87e71234237249c9ac339497525c71a5038f538 d7812cd92a2570592b3d646dd7aef2b57c72552c0acc3b42d040e90cdc4d902c Loading...

	abbaspc.net/	0 B	2023-03-07	2024-05-20
Pretty URL abbaspc.net/ IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 07:02:49 Times Seen37860049 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	abbaspc.net/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js	8.9 kB	2023-03-07	2024-05-20
Pretty URL abbaspc.net/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:39 Last Seen2024-05-20 06:25:20 Times Seen21640 Hash fb15a10a641a318f91e7e912e4f9c184 bd41f67233facb96976ed7b8e7207d52c03d340e f40767552e5e94b2d5f9a65d7f640cfa7d225298023dbd682095e040809a3d1a Loading...

	unknown	247 B	2024-05-09	2024-05-09
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 03:40:12 Last Seen2024-05-09 03:40:12 Times Seen1 Hash 3ac36060e393f9ce740998b5b525e8d8 a9be37588b8c0b6e6f39e11f28ae3bea8a130b05 7df14a636096693a73be97c49ece9c02cc7ac469e83195caa48e6500bc2495eb Loading...

	abbaspc.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-09	2024-05-09
Pretty URL abbaspc.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.14.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 03:40:12 Last Seen2024-05-09 03:45:02 Times Seen4 Hash f195d7b026be8b724b0e20c797aed8a1 905a2cc85147d8cd2e1af565a9aa2f302092a7eb aa5b2cae648361b795738fcdd265fb740203b3a7bbf6a7d0fe409ceb05e4caa2 Loading...

HTTP Transactions (21)

URL IP Response Size

abbaspc.net/wp-content/themes/hitmag-pro/fonts/fa-solid-900.woff2

104.26.14.242

200 OK

156 kB

URL GET HTTP/3
abbaspc.net/wp-content/themes/hitmag-pro/fonts/fa-solid-900.woff2
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 156496, version 773.768
Size
156 kB (156496 bytes)
Hash
6c4eee562650e53cee32496bdfbe534b
1aae708e3b94ee981b452a918d28ed037fbb5e18
9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hitmag-pro/fonts/fa-solid-900.woff2 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abbaspc.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: font/woff2
content-length: 156496
last-modified: Mon, 26 Feb 2024 03:15:04 GMT
cache-control: max-age=16070400
expires: Tue, 03 Sep 2024 20:04:14 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 192526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KFlveBx0CBXWLMuf5jhOcSVj3M0U9C3GxKP5t1qaVx6yeKrcVb1TB1%2BNhMG8sJh1a2cu24qrjDF45I33kbYPg09YBlrN%2BB76vRZo6Do%2BcdLfVjN%2B1MFl5t0SriD%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c7ab4f1-OSL
alt-svc: h3=":443"; ma=86400

abbaspc.net/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2

104.26.14.242

200 OK

18 kB

URL GET HTTP/3
abbaspc.net/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18260, version 1.0
Size
18 kB (18260 bytes)
Hash
36f81686bbf993fbfe3aed9ae2f55e5b
5d18e2d5e48e0f5ba172e7477eed432541087402
114f872abf6cae70383b09ca2168821991fde718702d79cdc457a49b03560cb0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abbaspc.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: font/woff2
content-length: 18260
last-modified: Wed, 20 Dec 2023 03:45:53 GMT
cache-control: max-age=16070400
expires: Mon, 02 Sep 2024 15:08:48 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 297059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTqi8%2FQ1PhXhJ6xAXtg6ApfNer0CJqVGqzcjO5mix32HUEuE9JGMsmlAtCzmoOKlqM45pELSXHjVbI%2FrpJGjuvSunbwJFR4YNxjWN5Oo0KMiSjhrmfAGqwR5xOS%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c7cb4f1-OSL
alt-svc: h3=":443"; ma=86400

abbaspc.net/wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2

104.26.14.242

200 OK

24 kB

URL GET HTTP/3
abbaspc.net/wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abbaspc.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: font/woff2
content-length: 23580
last-modified: Wed, 03 May 2023 03:40:57 GMT
cache-control: max-age=16070400
expires: Mon, 02 Sep 2024 15:08:48 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 297059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FKFGTwoc95sB4in%2F4nW8gSqWDFXcwnHN2lxRiH3ew7qOYLllqW5tjIBnovtqLg5wm84w2YNxkLTn%2F3N51LLOSL2016ACRuwHET%2BW23wqIrbJZaPKujjLBkPjxHkm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c7eb4f1-OSL
alt-svc: h3=":443"; ma=86400

abbaspc.net/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2

104.26.14.242

200 OK

23 kB

URL GET HTTP/3
abbaspc.net/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abbaspc.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: font/woff2
content-length: 23040
last-modified: Wed, 03 May 2023 03:40:57 GMT
cache-control: max-age=16070400
expires: Mon, 02 Sep 2024 15:08:48 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 297059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JSDM8yIw%2FOzq16RJiguoYVp7AM0FwmfLAEyPGplA0tVowntd0fxKsY2C7PwaNhyfSJ4GvMhjrm4D8iamNKAJHzlBtYcb7blRThNipG4I2BIz9Xqfj%2FomdxOsg0XE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c7fb4f1-OSL
alt-svc: h3=":443"; ma=86400

abbaspc.net/wp-content/fonts/ubuntu/4iCv6KVjbNBYlgoCxCvjsGyN.woff2

104.26.14.242

200 OK

30 kB

URL GET HTTP/3
abbaspc.net/wp-content/fonts/ubuntu/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
Size
30 kB (29752 bytes)
Hash
ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/fonts/ubuntu/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abbaspc.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: font/woff2
content-length: 29752
last-modified: Wed, 15 Feb 2023 03:40:14 GMT
cache-control: max-age=16070400
expires: Mon, 02 Sep 2024 15:08:48 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 297059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Llol9IDM0r1MacUhtFk2Bd2jNN09iiKmRu7TDL8%2BonzzNrDdvn7l%2FBLMnjun0oi8zQlZ4FK%2FgpujnJqdviyV9i%2BsD%2FtMjA5ozheymk%2FFFQGNq0xm%2B4SMaRyDbqAT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c81b4f1-OSL
alt-svc: h3=":443"; ma=86400

pixel.wp.com/g.gif?v=ext&blog=160615302&post=0&tz=5&srv=abbaspc.net&j=1%3A13.3.1&host=abbaspc.net&ref=&fcp=938&rand=0.40152735647269333

192.0.76.3

200 OK

50 B

URL GET HTTP/3
pixel.wp.com/g.gif?v=ext&blog=160615302&post=0&tz=5&srv=abbaspc.net&j=1%3A13.3.1&host=abbaspc.net&ref=&fcp=938&rand=0.40152735647269333
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=160615302&post=0&tz=5&srv=abbaspc.net&j=1%3A13.3.1&host=abbaspc.net&ref=&fcp=938&rand=0.40152735647269333 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400

abbaspc.net/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.14.242

302 Found

0 B

URL GET HTTP/3
abbaspc.net/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 09 May 2024 01:39:47 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d1jwxDBtdfxxf73EhdV%2BL1zCkiUOa8uCJEvGHxAbu92Um7RpzkTAgbBnH3RVFUS1n5sr1mL0J0aaQroHL0LvcyaymI%2FEwa4FfBHwHgeoLErf449BUxzsaf3%2BJIsI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880dfa4f6d21b4f1-OSL
alt-svc: h3=":443"; ma=86400

i0.wp.com/abbaspc.net/wp-content/uploads/2019/08/Wondershare-Filmora-Crack.png?resize=250%2C220&ssl=1

192.0.77.2

200 OK

5.4 kB

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/08/Wondershare-Filmora-Crack.png?resize=250%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.4 kB (5412 bytes)
Hash
ed613a3eff7125f881089c84402b5728
3503a32213fe2c2aa7171670c91b5200b1adeeb6
365180851ecfd760aa7efdfc63d4978aae5485fe93e098689e092ead50de105b

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/08/Wondershare-Filmora-Crack.png?resize=250%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 5412
last-modified: Sun, 19 Jun 2022 21:08:00 GMT
expires: Wed, 19 Jun 2024 09:08:00 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/08/Wondershare-Filmora-Crack.png>; rel="canonical"
x-content-type-options: nosniff
etag: "074755a56810f41a"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/abbaspc.net/wp-content/uploads/2019/12/ApowerMirror-Crack-Free-Download.png?resize=250%2C220&ssl=1

192.0.77.2

200 OK

9.5 kB

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/12/ApowerMirror-Crack-Free-Download.png?resize=250%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
9.5 kB (9478 bytes)
Hash
db9e0e38ead45595e069a659753233e0
6a87cbc97c1e626fd72989b3cccf04c5a9d3d62c
f8fb5f4e6cd066075b14e428a3e9fb557384a15636c8c6bd03523118a0b13fe0

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/12/ApowerMirror-Crack-Free-Download.png?resize=250%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 9478
last-modified: Sun, 10 Mar 2024 17:42:12 GMT
expires: Wed, 11 Mar 2026 05:42:12 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/12/ApowerMirror-Crack-Free-Download.png>; rel="canonical"
x-content-type-options: nosniff
etag: "552f5d23790c3de8"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/abbaspc.net/wp-content/uploads/2019/09/Smadav-Pro-Crack.jpg?resize=250%2C220&ssl=1

192.0.77.2

200 OK

2.5 kB

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/09/Smadav-Pro-Crack.jpg?resize=250%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 250x220, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.5 kB (2524 bytes)
Hash
122f01363e72dc19c08d11958a87348b
b7a495b79333a3b8b53180ff58d4dc35b8976637
fb42b3b02ebddb21621e30edabea7c251307a04d7e41a1a155c5d61fd8095b6d

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/09/Smadav-Pro-Crack.jpg?resize=250%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 2524
last-modified: Fri, 15 Mar 2024 10:27:18 GMT
expires: Sun, 15 Mar 2026 22:27:18 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/09/Smadav-Pro-Crack.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "92e46a7f62570564"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/abbaspc.net/wp-content/uploads/2019/07/IDM-Crack.png?resize=250%2C220&ssl=1

192.0.77.2

200 OK

29 kB

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/07/IDM-Crack.png?resize=250%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (28632 bytes)
Hash
499acd242bf83c76ce60ff5d6ace2842
ff87ef889a0f35a9aa6ee465577aaf32ae5e9240
ddaeca002ab2712ffd4cfe00cf292c37c77dde49610a6a94940a2ede762c40b0

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/07/IDM-Crack.png?resize=250%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 28632
last-modified: Wed, 25 Oct 2023 09:52:10 GMT
expires: Fri, 24 Oct 2025 21:52:10 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/07/IDM-Crack.png>; rel="canonical"
x-content-type-options: nosniff
etag: "b32f5f4664edbde9"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=192%2C192&ssl=1

192.0.77.2

200 OK

3.5 kB

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=192%2C192&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.5 kB (3492 bytes)
Hash
d2978881beafa397f65778c908bf444f
c0ca3f3e23ae1115d1ad9ec0f3f2829b580f9e61
de8672b0e603221bd1ac82f0b789b6243b2b5bafd6f321fa9c13d5aeca361f12

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 3492
last-modified: Wed, 25 Oct 2023 03:14:55 GMT
expires: Fri, 24 Oct 2025 15:14:55 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ca3ee141cfe5c99a"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=32%2C32&ssl=1

192.0.77.2

200 OK

574 B

URL GET HTTP/2
i0.wp.com/abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=32%2C32&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp
Size
574 B (574 bytes)
Hash
376ffc0b150f008662b1cdebb600730c
ce95e733f766c1b7a2f81c8398ba5c24aa688a14
5c1d63f4c5cfe6a674a76df9641ff0246280a4f577538e880874b0041551d708

HTTP Headers

GET /abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: image/webp
content-length: 574
last-modified: Fri, 07 Apr 2023 02:07:37 GMT
expires: Sun, 06 Apr 2025 14:07:37 GMT
cache-control: public, max-age=63115200
link: <https://abbaspc.net/wp-content/uploads/2019/04/cropped-icon_AbbasPC.Net_.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2323c2f540219ff3"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

abbaspc.net/cdn-cgi/challenge-platform/h/b/jsd/r/880dfa49c8325693

104.26.14.242

200 OK

0 B

URL POST HTTP/3
abbaspc.net/cdn-cgi/challenge-platform/h/b/jsd/r/880dfa49c8325693
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/880dfa49c8325693 HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12137
Origin: https://abbaspc.net
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:48 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=7aNPgVLBj9L5PXLojr0PBEnScXREVfDq7q9hZtGImrk-1715218788-1.0.1.1-eXQPrEP.SFSKvV2EBzAvM4tQUnwJ.KXUlgqo7TvI7CVt8yzEikOce6EcrZnhCK9793LIkdkRrZVIWuXoVULB.w; Path=/; Expires=Fri, 09-May-25 01:39:48 GMT; Domain=.abbaspc.net; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EoEcspPfazZB5c7V89Wy75MVnk5Nkpd6X0QwGOVxf6osAWAbOnYgIqg6ba3Y7WGwpPZuXmWPy3O7%2FZIcHmZy8mrwyF1JwBzs6feesoYZ0Deu6T7qd07KO5%2FFIyzp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa510e0cb4f1-OSL
alt-svc: h3=":443"; ma=86400

abbaspc.net/cdn-cgi/rum?

104.26.14.242

204 No Content

0 B

URL POST HTTP/3
abbaspc.net/cdn-cgi/rum?
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1031
Origin: https://abbaspc.net
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Cookie: cf_clearance=7aNPgVLBj9L5PXLojr0PBEnScXREVfDq7q9hZtGImrk-1715218788-1.0.1.1-eXQPrEP.SFSKvV2EBzAvM4tQUnwJ.KXUlgqo7TvI7CVt8yzEikOce6EcrZnhCK9793LIkdkRrZVIWuXoVULB.w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Thu, 09 May 2024 01:39:48 GMT
access-control-allow-origin: https://abbaspc.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880dfa512e1db4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff

abbaspc.net/cdn-cgi/rum?

104.26.14.242

204 No Content

0 B

URL POST HTTP/3
abbaspc.net/cdn-cgi/rum?
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 450
Origin: https://abbaspc.net
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Thu, 09 May 2024 01:40:10 GMT
access-control-allow-origin: https://abbaspc.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880dfadbdbdcb4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff

static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387

104.16.79.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
FingerprintCE:62:08:77:7A:C9:4F:2B:EB:19:EA:54:43:3D:9F:10:06:33:69:E8
ValidityWed, 08 May 2024 03:07:03 GMT - Tue, 06 Aug 2024 03:07:02 GMT

File type
JavaScript source, ASCII text, with very long lines (19189), with no line terminators
Size
19 kB (19189 bytes)
Hash
4c980ee97cb5c001b4d19e2895fa5603
2c6fe998aa7486c4becd74cf253bdd82666a64c3
d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192

HTTP Headers

GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abbaspc.net
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 880dfa4e89c356c1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

abbaspc.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js

104.26.14.242

200 OK

7.9 kB

URL GET HTTP/3
abbaspc.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7878), with no line terminators
Size
7.9 kB (7878 bytes)
Hash
f195d7b026be8b724b0e20c797aed8a1
905a2cc85147d8cd2e1af565a9aa2f302092a7eb
aa5b2cae648361b795738fcdd265fb740203b3a7bbf6a7d0fe409ceb05e4caa2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=51O%2F1%2Fs1oWfqSRhXP3BCp%2Bpx%2BjvvCs8RZGwl6zjw2pQD%2F5fiQIZsH7ux0E316SVE0kY%2Bj14T9R6HpcZ6pEkDCx9rPUiM647czMzt67CNVMENHcFDlei6%2BQwIhnsr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880dfa4fbd48b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

stats.wp.com/e-202419.js

192.0.76.3

200 OK

7.3 kB

URL GET HTTP/2
stats.wp.com/e-202419.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://abbaspc.net/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7504), with no line terminators
Size
7.3 kB (7329 bytes)
Hash
43bf680c0caba9b62f1c46e128d40360
e8950271ef6af3759a7429b45a7e583e6e24e305
21ef883e41d9b0fc02bd11801d9823daf93a2b294a6f05b6080bad1b689facab

HTTP Headers

GET /e-202419.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 01:39:47 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402358485.9985
content-encoding: br
expires: Sat, 03 May 2025 15:12:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

abbaspc.net/

104.26.14.242

200 OK

119 kB

URL User Request GET HTTP/2
abbaspc.net/
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type

Size
119 kB (119179 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Thu, 09 May 2024 00:09:22 GMT
cache-control: max-age=16070400
expires: Thu, 09 May 2024 01:39:47 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hIW%2FjjFPOUCFai7%2BFZypjNRydU%2Fkg29xigH48RvPmXG9FXCSDb2qmFJxKCbTMXEAMUYtIwA01J%2BC6jamO2c3zeUs0uhU78KUPdkwNtglXP7F2wpE3NM%2FxdbDT0iQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa49c8325693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

abbaspc.net/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js

104.26.14.242

200 OK

8.9 kB

URL GET HTTP/3
abbaspc.net/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js
IP
104.26.14.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abbaspc.net/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:42:5D:39:6C:CF:A6:F8:A3:99:42:FE:70:8F:75:B1:5A:FB:9D:CA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9056), with no line terminators
Size
8.9 kB (8892 bytes)
Hash
797c2156a7211100e9aceff7365be7a4
b70b89caf8cc05c7cbef1077e06994085331c5cc
812cdb2da5fee86d2f5a423fb5010af68f20c594f081b40f3b7f0050736e9ea8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js HTTP/1.1
Host: abbaspc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abbaspc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 01:39:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Wed, 20 Mar 2024 14:10:36 GMT
cache-control: public, max-age=31536000
expires: Wed, 30 Apr 2025 18:18:54 GMT
cf-cache-status: HIT
age: 714905
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KxSLEDE3%2BbfeZTSWJqG%2BBNr%2FsoTX6fjTQtYyn8yF%2B18O3A5JfbwPu9794UvMful8n2lrtJBqt%2FexLnVBwlX6TYHdlfqQXVbYH9rs0ypX1tibZxLxUryxauPI%2Fw6Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880dfa4e2c85b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML