| consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=[%22adult%22,%22porn%22,%22games%22,%22-%22,%22dikgames%22]&refer=https://dikgames.com/category/games/&res=14.31&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198:3:1 |  192.243.61.227 | 307 Temporary Redirect | 0 B |
URL User Request GET HTTP/1.1consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=[%22adult%22,%22porn%22,%22games%22,%22-%22,%22dikgames%22]&refer=https://dikgames.com/category/games/&res=14.31&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198:3:1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectconsistedlovedstimulate.com FingerprintF2:89:DF:50:4E:64:82:FC:23:C5:9F:72:0C:73:A2:EA:95:D5:47:E9 ValidityMon, 29 Apr 2024 12:51:51 GMT - Sun, 28 Jul 2024 12:51:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=[%22adult%22,%22porn%22,%22games%22,%22-%22,%22dikgames%22]&refer=https://dikgames.com/category/games/&res=14.31&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198:3:1 HTTP/1.1
Host: consistedlovedstimulate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sat, 04 May 2024 22:07:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://dikgames.com/category/games/
Access-Control-Allow-Origin: https://dikgames.com/category/games/
Access-Control-Allow-Credentials: true
Location: https://consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1
Set-Cookie: u_pl=16211754; expires=Sun, 05 May 2024 22:07:17 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.xsw4tftOe54kSr8yh7-VWjiwl2V9-CPmPf4d0ZfGwt8; expires=Sat, 04 May 2024 22:08:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 61513aa0a2e9222605b0884b92df8868
Strict-Transport-Security: max-age=0; includeSubdomains
|
| consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1 | 192.243.61.227 | 200 OK | 2.0 kB |
URL User Request GET HTTP/1.1consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectconsistedlovedstimulate.com FingerprintF2:89:DF:50:4E:64:82:FC:23:C5:9F:72:0C:73:A2:EA:95:D5:47:E9 ValidityMon, 29 Apr 2024 12:51:51 GMT - Sun, 28 Jul 2024 12:51:50 GMT
File typeJavaScript source, ASCII text, with very long lines (2524) Hashb3f6d13f0b71d81ba5d152ef8e7244c0 0135192db7eaf06f9859afd7a8cead7b65a82490 47db990ac8dde77f97ff995eea44a768cabdd0d8c3120c007016b50daabad4cd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1 HTTP/1.1
Host: consistedlovedstimulate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=16211754; ain=eyJhbGciOiJIUzI1NiJ9.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.xsw4tftOe54kSr8yh7-VWjiwl2V9-CPmPf4d0ZfGwt8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 22:07:18 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://dikgames.com/category/games/
Access-Control-Allow-Origin: https://dikgames.com/category/games/
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198:3:1; expires=Sat, 11 May 2024 22:07:18 GMT; secure; SameSite=None
iprc531f915544bafdcb19a71de257e4054a=5191357; expires=Sun, 05 May 2024 22:07:18 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 22:07:18 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 22:07:18 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 05 May 2024 22:07:18 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 05 May 2024 22:07:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2d77398a2f00059267bdd31269fb10aa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
| cdn.cloudimagesb.com/cti/17/19/34/171934cf2a024c013ac2c2b0805d9eae/1711620479.jpg | 45.133.44.9 | 200 OK | 75 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/17/19/34/171934cf2a024c013ac2c2b0805d9eae/1711620479.jpg IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1 CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 300x250, components 3 Hash156f3383d85fab2d082c4d0e64549de1 0b475fdfafa1cfae8ddd899beb3d2e7120f99d06 ae5f621f49ad4c3cd9b5c19f1e244097c627a02349dc9c50da49455f4c44a107
GET /cti/17/19/34/171934cf2a024c013ac2c2b0805d9eae/1711620479.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://consistedlovedstimulate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:07:18 GMT
content-type: image/jpeg
content-length: 75237
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:08:08 GMT
etag: "66054188-125e5"
expires: Mon, 06 May 2024 22:07:18 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| consistedlovedstimulate.com/favicon.ico | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1consistedlovedstimulate.com/favicon.ico IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1 CertificateIssuerLet's Encrypt Subjectconsistedlovedstimulate.com FingerprintF2:89:DF:50:4E:64:82:FC:23:C5:9F:72:0C:73:A2:EA:95:D5:47:E9 ValidityMon, 29 Apr 2024 12:51:51 GMT - Sun, 28 Jul 2024 12:51:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: consistedlovedstimulate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://consistedlovedstimulate.com/watch.701925902127.js?dev=r&key=cff14ed29f26c65ccc95807ff0d90482&kw=%5B%22adult%22%2C%22porn%22%2C%22games%22%2C%22-%22%2C%22dikgames%22%5D&pst=1714860497&refer=https%3A%2F%2Fdikgames.com%2Fcategory%2Fgames%2F&res=14.31&rmtc=t&shu=1ccac8d98e22b6084fe53b4997aafafc28ca98e12c25e7fca4bab1f9732051bc19849bf16c77311955cbdd5eb60a9f1fa2a3ac87c57d5541ae2693d499fa53a29ff800c99e94b89211482fdced701208f79fa93573071721c0fb834c40ee&tz=-4&uuid=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198%3A3%3A1
Cookie: u_pl=16211754; ain=eyJhbGciOiJIUzI1NiJ9.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.xsw4tftOe54kSr8yh7-VWjiwl2V9-CPmPf4d0ZfGwt8; uid_id2=2ff73e75-f6a7-4e57-a87a-8d0eeadf2198:3:1; iprc531f915544bafdcb19a71de257e4054a=5191357; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 22:07:18 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fd7c4a6dbb0c5e2b576b219c35a98b8d
Strict-Transport-Security: max-age=0; includeSubdomains
|