| elongatedmiddle.com/68f5a38c?adb=n&dev=r&key=f9f04e429487bb9ba54c1aa49ea7bed4&kw=[%22video%22,%22player%22]&psid=CF-2967-new_1&refer=https://shitcjshit.com/e/D3AJxk5CzFwF?http_referer=https://xxxprotect.com/&c1_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-661070e3a72bf6.27693357.vtt&c1_label=CZ&c2_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-en-660fea921f6e01.77720125.ass&c2_label=EN%23iss=NDYuMzQuMjI5LjE2NQ==&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1&v=24.4.3467&zgir=100 | 192.243.59.13 | | 1.9 kB |
URL elongatedmiddle.com/68f5a38c?adb=n&dev=r&key=f9f04e429487bb9ba54c1aa49ea7bed4&kw=[%22video%22,%22player%22]&psid=CF-2967-new_1&refer=https://shitcjshit.com/e/D3AJxk5CzFwF?http_referer=https://xxxprotect.com/&c1_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-661070e3a72bf6.27693357.vtt&c1_label=CZ&c2_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-en-660fea921f6e01.77720125.ass&c2_label=EN%23iss=NDYuMzQuMjI5LjE2NQ==&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1&v=24.4.3467&zgir=100 IP192.243.59.13:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (1176) Hashc85c2b47a9e048b46d827df5d5c53ace b479d6b057ff492404d78f4c3a4bbf124a8e683c f4a2bd01f242ef1680648bdc9c8ac709ce400158de5bdde4039b44075c2fd3e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /68f5a38c?adb=n&dev=r&key=f9f04e429487bb9ba54c1aa49ea7bed4&kw=[%22video%22,%22player%22]&psid=CF-2967-new_1&refer=https://shitcjshit.com/e/D3AJxk5CzFwF?http_referer=https://xxxprotect.com/&c1_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-661070e3a72bf6.27693357.vtt&c1_label=CZ&c2_file=https://www.sledujserialy.io/subtitles/madome-2024-s01e02-en-660fea921f6e01.77720125.ass&c2_label=EN%23iss=NDYuMzQuMjI5LjE2NQ==&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1&v=24.4.3467&zgir=100 HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 18 Apr 2024 04:11:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17336349; expires=Fri, 19 Apr 2024 04:11:54 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.h5xhuznB0VoRfq_tGQ3GeCkALv3ayfybNDtH98x1nHo; expires=Thu, 18 Apr 2024 04:12:54 GMT
uid_id2=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1; expires=Thu, 25 Apr 2024 04:11:54 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d59908b787cde41b49c29c48ea53cd2c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| elongatedmiddle.com/api/users?token=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&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7%3A2%3A1&pii=&in=false | 192.243.59.13 | 302 Found | 0 B |
URL User Request GET HTTP/1.1elongatedmiddle.com/api/users?token=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&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7%3A2%3A1&pii=&in=false IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectelongatedmiddle.com Fingerprint05:C9:E8:FB:02:88:F9:44:68:36:D3:24:F8:24:E2:CA:1E:BB:9A:90 ValidityTue, 16 Apr 2024 14:02:33 GMT - Mon, 15 Jul 2024 14:02:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=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&uuid=aafcf453-23d6-42e1-a728-211589ce8ca7%3A2%3A1&pii=&in=false HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://elongatedmiddle.com/api/users?token=LzY4ZjVhMzhjP2tleT0wZjIyYzFmZDYwOWYxM2NiNzk0N2M4Y2FiZmUxYTkwZCZzdWJtZXRyaWM9MTczMzYzNDk
Cookie: u_pl=17336349; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzMzNjM0OSwiayI6ImY5ZjA0ZTQyOTQ4N2JiOWJhNTRjMWFhNDllYTdiZWQ0Iiwic2lkIjoiQ0YtMjk2Ny1uZXdfMSIsImlzaWQiOjIsImFzaWQiOjEsInppZCI6MTg4MzQzNSwicGlkIjo0ODI3ODAsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MzcsImFpZCI6MjgsInB0Ijo0LCJwayI6IjY4ZjVhMzhjIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3NoaXRjanNoaXQuY29tL2UvRDNBSnhrNUN6RndGP2h0dHBfcmVmZXJlcj1odHRwczovL3h4eHByb3RlY3QuY29tLyIsImFyIjpbXX19.h5xhuznB0VoRfq_tGQ3GeCkALv3ayfybNDtH98x1nHo; uid_id2=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Thu, 18 Apr 2024 04:11:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349
Set-Cookie: uid_id2=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1; expires=Thu, 25 Apr 2024 04:11:54 GMT
pdhtkv=true; expires=Fri, 19 Apr 2024 04:11:54 GMT
uncs=1; expires=Fri, 19 Apr 2024 04:11:54 GMT
pdhtkv28=true; expires=Fri, 19 Apr 2024 04:11:54 GMT
uncs28=1; expires=Fri, 19 Apr 2024 04:11:54 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ee1a0a6f40f4964116ba3afbb744305
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| elongatedmiddle.com/favicon.ico | 172.240.108.68 | | 0 B |
URL elongatedmiddle.com/favicon.ico IP172.240.108.68:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://elongatedmiddle.com/api/users?token=LzY4ZjVhMzhjP2tleT0wZjIyYzFmZDYwOWYxM2NiNzk0N2M4Y2FiZmUxYTkwZCZzdWJtZXRyaWM9MTczMzYzNDk
Cookie: u_pl=17336349; ain=eyJhbGciOiJIUzI1NiJ9.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.h5xhuznB0VoRfq_tGQ3GeCkALv3ayfybNDtH98x1nHo; uid_id2=aafcf453-23d6-42e1-a728-211589ce8ca7:2:1; cjs=t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 04:11:55 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b1221baeab6dfe2bfe757e37a3425490
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349 | 13.107.213.53 | 403 Forbidden | 409 B |
URL User Request GET HTTP/2adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349 IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerTrustwave Holdings, Inc. Subjectaffiliates.kindredplc.com Fingerprint9C:1F:91:86:77:41:76:62:71:CD:11:FD:80:70:B7:83:58:47:BF:4F ValidityThu, 17 Aug 2023 06:39:43 GMT - Fri, 16 Aug 2024 06:38:43 GMT
File typeASCII text, with CRLF line terminators Hash081abe502145249511ecc100908babf6 5401e76418466a066c798fb8de2bf99ee7492a90 3af4a505e6cf18d309062990a5b23a976593d9b3d1b7046c9f588df37e447cad
GET /redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349 HTTP/1.1
Host: adserving.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://elongatedmiddle.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 18 Apr 2024 04:11:55 GMT
content-type: text/html
content-length: 409
x-azure-ref: 20240418T041155Z-17f9dd4c48bvsmhc0mrzzebckc00000001m0000000002sg4
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| adserving.unibet.com/favicon.ico | 13.107.213.53 | 403 Forbidden | 409 B |
URL GET HTTP/2adserving.unibet.com/favicon.ico IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349 CertificateIssuerTrustwave Holdings, Inc. Subjectaffiliates.kindredplc.com Fingerprint9C:1F:91:86:77:41:76:62:71:CD:11:FD:80:70:B7:83:58:47:BF:4F ValidityThu, 17 Aug 2023 06:39:43 GMT - Fri, 16 Aug 2024 06:38:43 GMT
File typeASCII text, with CRLF line terminators Hash3e91e5abda497856e7de73c819ff43fe 199f852114489ef46c80351ee24e124fec90c283 d8a07089e3fde1cff303f63b6c3a59ed7356adae23466fa1318137333475c57e
GET /favicon.ico HTTP/1.1
Host: adserving.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=17336349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 18 Apr 2024 04:11:55 GMT
content-type: text/html
content-length: 409
x-azure-ref: 20240418T041155Z-17f9dd4c48bpw5gpvd09qb5x4400000001t0000000001ady
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|