| kemono.su/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip | 190.115.16.14 | | 138 B |
URL User Request GET kemono.su/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=mAO8lo8Xb0SsOs4qUKsS; Domain=.kemono.su; HttpOnly; Path=/; Expires=Sat, 19-Apr-2025 16:05:40 GMT
date: Fri, 19 Apr 2024 16:05:40 GMT
content-type: text/html
content-length: 138
location: https://c1.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
|
|
| c1.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip | 91.149.227.1 | | 138 B |
URL User Request GET c1.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip IP91.149.227.1:0
CertificateIssuerLet's Encrypt Subjectc1.kemono.su Fingerprint1D:44:91:C6:BF:4D:9C:20:62:B3:35:4D:D6:4B:DD:D9:2F:2B:99:61 ValidityWed, 17 Apr 2024 23:46:18 GMT - Tue, 16 Jul 2024 23:46:17 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip HTTP/1.1
Host: c1.kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=mAO8lo8Xb0SsOs4qUKsS
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 19 Apr 2024 16:05:41 GMT
content-type: text/html
content-length: 138
location: https://c6.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip
access-control-allow-origin: https://kemono.su
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: *
cache-control: public, max-age=2592000, s-maxage=2592000
X-Firefox-Spdy: h2
|
|
| kemono.su/ | 190.115.16.14 | | 568 B |
IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators Hash2761b98db33884ab29711096ab315edb 8cea6e53464aea178b72e06a906205d040f14ca5 9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET / HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Fri, 19 Apr 2024 16:05:43 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://kemono.su/
Content-Type: text/html; charset=utf8
Content-Length: 568
|
|
| kemono.su/ | 190.115.16.14 | | 2.4 kB |
IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, ASCII text Hash237327a463fb774ada2d2c6314a6e22c c14ffdee18f157bfd69189397f55e14898d062c0 ab647006868a99cf22663d0c441552e2be06cb7b3c9fe05bb6a90da5e4be36f0
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET / HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=ZmJvyj0M6KUVelRSDazZ; Domain=.kemono.su; HttpOnly; Path=/; Expires=Sat, 19-Apr-2025 16:05:43 GMT
date: Fri, 19 Apr 2024 16:05:43 GMT
content-type: text/html; charset=utf-8
content-length: 2370
cache-control: s-maxage=60
content-encoding: gzip
vary: Cookie, Accept-Encoding
age: 90
accept-ranges: bytes
xv-cache: HIT
xv-cache-hits: 941
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| c6.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip | 0.0.0.0 | | 0 B |
URL User Request GET c6.kemono.su/data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectc6.kemono.su FingerprintB4:A3:15:40:DD:AE:FB:31:18:31:70:E7:36:24:52:78:9F:BB:A9:BA ValidityWed, 17 Apr 2024 23:21:20 GMT - Tue, 16 Jul 2024 23:21:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /data/d7/93/d793f74a9b2d2000d57dcf5525ef2582d1eee866da63af59a5dd5cb13fb4808c.zip HTTP/1.1
Host: c6.kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=mAO8lo8Xb0SsOs4qUKsS
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 16:05:53 GMT
content-type: application/zip
content-length: 1315625496
last-modified: Sat, 16 Mar 2024 07:26:13 GMT
etag: "65f54995-4e6ada18"
access-control-allow-origin: https://kemono.su
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: *
cache-control: public, max-age=2592000, s-maxage=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|