Report - www.teamos.xyz/tags/adobe/

Report Overview

Submitted URL
www.teamos.xyz/tags/adobe/
IP
104.21.71.43
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 10:16:19
Access
public
Website Title
adobe | Team OS : Your Only Destination To Custom OS !!
Final URL
www.teamos.xyz/tags/adobe/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.teamos.xyz	unknown	2022-01-12	2022-04-13	2024-01-11	13 kB	1.0 MB	104.21.71.43
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-09	874 B	167 kB	142.250.74.168
instrumenttactics.com	unknown	2022-01-23	2022-01-23	2024-03-01	1.3 kB	54 kB	172.240.108.68
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	438 B	12 kB	142.250.74.106
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-09	429 B	32 kB	142.250.74.170
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-09	494 B	20 kB	104.16.79.73
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-09	411 B	87 kB	104.21.35.227
static.nulled.to	unknown	unknown	2015-08-27	2024-03-24	438 B	23 kB	104.22.27.201
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	1.6 kB	124 kB	142.250.74.131
restedfeatures.com	unknown	2024-05-06	2024-05-07	2024-05-09	2.6 kB	8.9 kB	192.243.61.227
locatedstructure.com	unknown	unknown	No data	No data	7.8 kB	22 kB	172.240.108.76
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-09	872 B	842 B	52.29.105.35
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-05-09	2.4 kB	503 kB	45.133.44.9

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	restedfeatures.com	Sinkholed
2024-05-10	medium	locatedstructure.com	Sinkholed
2024-05-10	medium	locatedstructure.com	Sinkholed
2024-05-10	medium	locatedstructure.com	Sinkholed
2024-05-10	medium	locatedstructure.com	Sinkholed
2024-05-10	medium	locatedstructure.com	Sinkholed
2024-05-10	medium	restedfeatures.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.teamos.xyz/js/vendor/vendor-compiled.js?_v=1d5fe3a2	43 kB	2023-03-07	2024-05-20
Pretty URL www.teamos.xyz/js/vendor/vendor-compiled.js?_v=1d5fe3a2 IP 104.21.71.43 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:34 Last Seen2024-05-20 20:29:31 Times Seen778 Hash 372b0c5f17990ad741c3d02593f63fe8 4e577cb859755cbf104a2334e6307a5291558689 ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1 Loading...

	unknown	109 B	2024-04-30	2024-05-12
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 13:38:56 Last Seen2024-05-12 16:49:43 Times Seen5 Hash 54ce6208bae15ef2583fe6ce4fd98cf2 b60d9fe7ecd7c6632a2ac5be9f2533a3eee4b598 2d456de677e422bacd21b3b6efa0e5fd3dceea9c8c3446d2046bb55543e2b6c5 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-20
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-20 21:09:39 Times Seen145948 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.teamos.xyz/js/xf/notice.min.js?_v=1d5fe3a2	3.7 kB	2023-03-09	2024-05-20
Pretty URL www.teamos.xyz/js/xf/notice.min.js?_v=1d5fe3a2 IP 104.21.71.43 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-05-20 04:15:27 Times Seen656 Hash b725cc9681612e5c4a6de094bbe33bd9 c2bd0760c401cf86e15fc2b941b14fa7901633e3 a5dcfd1d44af85302c19886c111e277273cca860febaae5f8cdb0de61733b44b Loading...

	www.teamos.xyz/js/xf/preamble.min.js?_v=1d5fe3a2	3.4 kB	2023-03-09	2024-05-20
Pretty URL www.teamos.xyz/js/xf/preamble.min.js?_v=1d5fe3a2 IP 104.21.71.43 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-05-20 04:15:27 Times Seen652 Hash 57c077607d1b4ba5bfeac6740d6e9576 8ce714d869d8f3b46eb3a7c7689920e1a85b0808 c803ce6d437915781a624a97755010f88deffd73bcf1a8e40fe98fc2d0e1ca3d Loading...

	unknown	14 kB	2023-03-07	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-20 04:15:27 Times Seen262 Hash b5bf3196e186c65f858bc7e486cf9cba 917caf23e7cac4ba0613ae06e6bf1b72c0e69c98 bb8411520f5e4a207375f13c7266dbdf5fb56fd58fa695c0d486ddf476346d02 Loading...

	instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js	27 kB	2024-05-10	2024-05-10
Pretty URL instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen2 Hash 5059328f0cb6a15473d02ca35dc2f7f2 c352f004fb3329dc04b164ac9f8ce964f2a87dd6 265ef335149d3061d0c0d22b4d7c657c9ab6f281de96e0bd7cb2f78c07e0dd2d Loading...

	www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c	257 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen2 Hash 38614df220ce683b980c52e9b276579c bbab65e899e8107d67f3dddd5254324580a9f480 1e1fcb5dd31d6f95dabec8aa0f2feffc2473ce0a9d2d90df7ec50a81e4163d29 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 21:09:58 Times Seen350863 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-20
Pretty URL www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.21.71.43 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-20 20:48:54 Times Seen44553 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387	19 kB	2024-04-24	2024-05-20
Pretty URL static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:56:41 Last Seen2024-05-20 20:58:18 Times Seen2742 Hash 4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 104.21.35.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	unknown	3.3 kB	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen1 Hash 1ffee861176b942a05a12515dd4fc8af dedaa603ef6b5d193d75e1a53fa233826f63b176 3caa3f20f38def4ccdb2a7b5c10f01f2416f4342029c10c7f5efc7aea9084722 Loading...

	www.googletagmanager.com/gtag/js?id=UA-77872044-1	208 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtag/js?id=UA-77872044-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen2 Hash 7b6fff673a832b9c9d159894a21f108a 4563c35f7bddbf023e4cbf3fcdd690edd557ba0a 07df9e5bb8e97378599c9dc5a60d076ad3c3b21ebe35482cc49c64879e3b80ef Loading...

	www.teamos.xyz/tags/adobe/sandbox%20eval%20code	147 B	2023-04-11	2024-05-20
Pretty URL www.teamos.xyz/tags/adobe/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 21:09:58 Times Seen351378 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js	84 kB	2024-05-10	2024-05-10
Pretty URL instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen2 Hash 2f2032270a195bdb2d7f77d7a907c45c 180265985a15c9c47ad3129d61662d7d079043b8 97891eaabeebd34d6bafabe468c6f44ebeccedd040efbdc999fd867702487667 Loading...

	unknown	357 B	2023-03-12	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:48 Last Seen2024-05-20 04:15:27 Times Seen262 Hash 00f88953f2d2d6770a8c26b60786c7a6 6cafe6508c1f114bf474f948fc6776a6131f3a72 1d996072b68082027d84ea8ccd0588497eb43fbfc4a2b2225bb443ff1424f4cc Loading...

	unknown	2.1 kB	2023-03-07	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-20 04:15:27 Times Seen265 Hash 3a3fa1f807c678e04fa94fa684069231 c26e333abe0f139338a79d09557d433bab245107 95464e5d88d803be95b2ee15ce8668f1dc99b75f6aadd4379bc9fbcfba665ba5 Loading...

	unknown	206 B	2023-03-07	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-20 04:15:27 Times Seen262 Hash 2700edffedbdaa40ab6a216ae8ced12f 573cb508bb36874954aa08c362370776cf73963c 35725d60531c253a1c499e18c6164aa07bcd1da0fa6e20e193b427e5970d8d09 Loading...

	unknown	710 B	2023-03-07	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-20 04:15:28 Times Seen262 Hash 44f474ad795f2c9a6ba3e00ba7d3e0ce fca7a12113dc770c62721146decd70697384e78f b23f5c96634b513c51b13397c53b235960fed3f771e72923c0d557e4e0830e5c Loading...

	unknown	4.8 kB	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen1 Hash c6bbf72cc0a18e96773245a4f9e449ed a2dc2fc1030b6d1750285abbebc8a469659b39d0 5bdcaaf4c1800734d1fed8436af8f1085e0e0c7d6a26650db4a85ab5f35ae850 Loading...

	unknown	145 B	2023-03-12	2024-05-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:49 Last Seen2024-05-20 04:15:27 Times Seen260 Hash 56345684a4f92ef41f648d4d85464d99 a8c16ba1be3fb3c3dc7eff8358d223fc86cc3bde aa59fc72954112cea004fa466abb1ad524db3fa8321764f9699745769aea8d95 Loading...

	instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js	31 kB	2024-05-10	2024-05-10
Pretty URL instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen2 Hash 791e32fadc4e8ab6c70e3e3910dc8dc0 1b4a6453947581c01cc358cde99d81a543b1938c bb787989215d295f004d78f0d90d177158bd60de3b3560b007469d4fd2341a4b Loading...

	www.teamos.xyz/js/xf/core-compiled.js?_v=1d5fe3a2	214 kB	2023-03-12	2024-05-20
Pretty URL www.teamos.xyz/js/xf/core-compiled.js?_v=1d5fe3a2 IP 104.21.71.43 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:31:50 Last Seen2024-05-20 04:15:28 Times Seen629 Hash d0ab265a4f68a45efc52408bd69a7f25 c57033113a290427c17a5cd1c94b1829aac06fed abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2711fceaffbc4adbdef1e52afbde54de	15 kB	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-20 04:15:28 Times Seen311 Hash 2711fceaffbc4adbdef1e52afbde54de 62a2235b484940a2478213c3ff460153c3071fc3 21d093407e762467a0eb2435e960d0848f2a22eaa9c174a751b0a2203ec0fff7 Loading...

	#2 Eval - 5fa956da6f12a6e91d32506622ea9b77	2.1 kB	2024-05-10	2024-05-10
Pretty Observations First Seen2024-05-10 12:16:27 Last Seen2024-05-10 12:16:27 Times Seen1 Hash 5fa956da6f12a6e91d32506622ea9b77 c0b425a6812b969fffad161472a8b4c12a5698cb 3684b3dcbde8f050f209a7930b91c8cf0165e7f1b508f1fb4af8786ebf35a529 Loading...

HTTP Transactions (49)

URL IP Response Size

www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3

104.21.71.43

200 OK

169 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 168768, version 331.-31261
Size
169 kB (168768 bytes)
Hash
d8689b99dce7c881d3130f3c91cfefdf
fb005c93930c13b3a5f449bbc75ba5ee23f609fa
4de49631fe60b17010f7cda29a6236ca6ad6102ea204e5c31d2c1e79ee276938

HTTP Headers

GET /styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/tags/adobe/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: font/woff2
content-length: 168768
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-29340"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4476
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uFAZXOeHK2tFdwI1b4IyNpaUq%2F4OaqM23R9YrLFWDVNRL71DgaKjRHeHhXPoDQKJH8xg0PGRYj6vBmPAjeIBpK90e6XxEngiCGr1LknIx5NJ6fk5Nd5mYyWeQ%2BmhUy5dBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba90dde56a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3

104.21.71.43

200 OK

137 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 136824, version 331.-31261
Size
137 kB (136824 bytes)
Hash
978b27ec5d8b81d2b15aa28aaaae1fcb
76625967fe113a088e0627605b9d1bbfb8a5e47c
943efdb4b38963df0653d778f233b55db3e19f44794e4ff944e33b8849dcdb3c

HTTP Headers

GET /styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/tags/adobe/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: font/woff2
content-length: 136824
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-21678"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 772
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2BMjG%2F3SOSXLNnLNwQwS4PT3OUICGs7rlZ4TRxMuK0UwP0Dx66o3EcT1IXcp1gL27dJ4u3NP3SnMCiVaYqPDfrqaLJXCJpnuVLIMYt8cm2FFleDbzyqIfeFbRkqbxLci5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba90de256a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3

104.21.71.43

200 OK

77 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76740, version 331.-31261
Size
77 kB (76740 bytes)
Hash
0511670fe2f5405105a6760294c5c51d
61cb879dec4fa97ece0d2a26cd6767c66117841b
c2497d559960ba9e1c68f41674e8bc980d3b229155e068bc7f42f157f81c4388

HTTP Headers

GET /styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/tags/adobe/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: font/woff2
content-length: 76740
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-12bc4"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 772
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ao%2FVrGhN4Iwd9dfxUALcJOp5ERg1pGq3Qiw1EjHD3LaSDXeTmkpTeFvUD6Q2ca68YMfxNqVsLnqub2fISojyq%2FmxrdI%2BW7ud7i%2BW3Qt5jBdgyFnSha%2BIAfvjC6Xe8QJifw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba91df056a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/assets/logo/TeamOSBanner.png

104.21.71.43

200 OK

42 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOSBanner.png
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 440 x 190, 8-bit/color RGBA, non-interlaced
Size
42 kB (41495 bytes)
Hash
6d2647b327cb54f616dcbec207599df0
4e3e0baad833e44a3eb1e2052d3e78fd828180bf
b6201f6ed7ee1358eaad1b0dc43a16dd215f1175ceef43a3169c2e51b3a737a8

HTTP Headers

GET /data/assets/logo/TeamOSBanner.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/png
content-length: 41495
last-modified: Sun, 08 Jan 2023 06:26:05 GMT
etag: "63ba61fd-a217"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 772
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PoHHgAjQhlZcm4nh8HLvzvdxha1I45Bh7mIQ4lUvgpR0Sbn4agHcGNNXhlh4DQpGF87TLPNvBjrS1xjquF36GLdoiHNkZkckhK3VTtwM1p3xiUHlEIabOLOO1dQmHunqvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba91e0956a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/xfa/customusernameicons/icons/award_star_bronze_3.png

104.21.71.43

200 OK

754 B

URL GET HTTP/3
www.teamos.xyz/data/xfa/customusernameicons/icons/award_star_bronze_3.png
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
754 B (754 bytes)
Hash
e0f1ca429f69bce053887f5b2d6277c3
5553b3e71653a9293e4666248db8b0f62d44276a
c9af4cee1f127bf6fcc71df50a2c73c31dd1f11194561b5c0a8e8723fabe59b4

HTTP Headers

GET /data/xfa/customusernameicons/icons/award_star_bronze_3.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/png
content-length: 754
last-modified: Sun, 07 May 2023 17:28:57 GMT
etag: "6457dfd9-2f2"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BEoVzh0i8BxNxBEvrgbaImYDWbEJj9btsYgt0fJzCKVdN7rhdfN7mORWT19FsHJC2b%2FtZPcVNwYlkx9TkpSE5LHQYUkoCRrbQASaMVQ7PvtA3DBcj4Yc5JYOH5s8FCxGOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba91e0b56a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anotices.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714918768&k=42826b773b10bd54f592ddcc01f13ed392f82035

104.21.71.43

200 OK

14 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anotices.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714918768&k=42826b773b10bd54f592ddcc01f13ed392f82035
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
ASCII text, with very long lines (58798)
Size
14 kB (13932 bytes)
Hash
410f0cc6909f91b8dc16950e6c4d9b07
40d01cbf2026c4233fac5f91b40a2327f945a5db
ec59ac29595250d76a4c95595a1c2a2615a102f9e37f6e19e0a66499efed32e5

HTTP Headers

GET /css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anotices.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714918768&k=42826b773b10bd54f592ddcc01f13ed392f82035 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: text/css; charset=utf-8
content-length: 13932
x-frame-options: SAMEORIGIN
expires: Sat, 10 May 2025 10:15:52 GMT
last-modified: Sun, 05 May 2024 14:19:28 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5XxUfPBN2m%2FDcnnIMXUkHMO%2FzSwOuE1Uib50wF7h0EMrLntcbbo8vZsa7BMeC4cvdWwqXKfmtPnHWInFgBuliyNcdMwPZcUTiVGHgqn1pEnu%2FQ5S94Ny9Tnbibop4aWE5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192ba91e0756a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714918768&k=034405c740f279c15adbbc41dfccb627ca90db04

104.21.71.43

200 OK

66 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714918768&k=034405c740f279c15adbbc41dfccb627ca90db04
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
ASCII text, with very long lines (63233)
Size
66 kB (66218 bytes)
Hash
ca8b60ddaf8efe6e6e2c8238947a2a20
7efd8f6ce98cf1dbe6f55729d7be5eea309846a4
86d0e326cd98c5c555669c9d8621176c085ca0646bb10479a4a8e1e8244b96e5

HTTP Headers

GET /css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714918768&k=034405c740f279c15adbbc41dfccb627ca90db04 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: text/css; charset=utf-8
content-length: 66218
x-frame-options: SAMEORIGIN
expires: Sat, 10 May 2025 10:15:52 GMT
last-modified: Sun, 05 May 2024 14:19:28 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v0kPwb4xC%2FOe51oFFT7mdD3YNrO4ARESzHRWxfTPX%2FB4Az%2FJjo90zI7bLpe3vUyVGZEP69WjtylSssGWEISlgOIDg1W14b2ef8CcyYtdwxFYTpEQBcHdtxitIfyehHpY8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192ba91dfb56a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/images/dUy8t.gif

104.21.71.43

200 OK

23 kB

URL GET HTTP/3
www.teamos.xyz/images/dUy8t.gif
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
GIF image data, version 89a, 90 x 68
Size
23 kB (22768 bytes)
Hash
38be94eee10c04d248dc14b49a940b93
9d4fece605fc55c0ca18443c3018da3c34e40f05
8928b33dafb9036f74c4298b1e4097b90844fbed60bd41b8b9e3bbe4dcbda25b

HTTP Headers

GET /images/dUy8t.gif HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714918768&k=034405c740f279c15adbbc41dfccb627ca90db04
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/gif
content-length: 22768
last-modified: Sun, 07 May 2023 10:55:46 GMT
etag: "645783b2-58f0"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4328
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3UMSrQeA6V9Jw0vUlicJNnhsSG3CmITH%2FGIQ1Kklvh9HTMNf6shY5mTOhA4p0QWEwPDrgfbsIBtuSAH%2F976OHm9O3hQQkuy5PCNqs%2B%2FRbmLMMv0gYzrao34tnsqR%2BQ8aJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192baae92256a9-OSL
alt-svc: h3=":443"; ma=86400

static.nulled.to/public/assets/sparkling.gif

104.22.27.201

200 OK

22 kB

URL GET HTTP/2
static.nulled.to/public/assets/sparkling.gif
IP
104.22.27.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectnulled.to
Fingerprint44:46:C8:BF:F9:14:DB:72:14:4D:F3:79:E8:D7:7B:B1:15:54:01:DB
ValidityMon, 25 Mar 2024 17:49:52 GMT - Sun, 23 Jun 2024 17:49:51 GMT

File type
GIF image data, version 89a, 90 x 68
Size
22 kB (22261 bytes)
Hash
9d12fda22494e741af8e7bac0ce59cd3
a44f4760c90068f8ad753e198a8d9b4987888cec
d053beda954a4ecaef2c6aea4c68aa7a524d8c79056f68ec44c96636a1fe18f5

HTTP Headers

GET /public/assets/sparkling.gif HTTP/1.1
Host: static.nulled.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/gif
content-length: 22261
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "57570fc0-56f5"
last-modified: Tue, 07 Jun 2016 18:17:36 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=2678400
cf-cache-status: HIT
age: 833220
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192bab0cfdb4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.teamos.xyz/data/avatars/s/276/276885.jpg?1616782285

104.21.71.43

200 OK

2.1 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/276/276885.jpg?1616782285
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2092 bytes)
Hash
c94cf352a83eda3336eb2d19d14cc4c5
f497f20842c8b4dc36be8a1247db62d7bf59b839
5bf5820b361d93647c7d1d6d74311cf4cdfb8ba1ffd7eddec0526c8a217e17c8

HTTP Headers

GET /data/avatars/s/276/276885.jpg?1616782285 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/jpeg
content-length: 2092
last-modified: Fri, 26 Mar 2021 18:11:25 GMT
etag: "605e23cd-82c"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6486
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DYyWjoQgJI9MhW8f67tRdSPLaru3kGLWtn6rZDIpIdSr0vQvAuLsG1dfp9ObC%2BeVdlvHVxflTItBb%2F0xXy9vS%2FsKzqeg05e%2Bvk%2BCCMl7CP1bdvgzSZJxBfqhNj0%2BR26qkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192bab79e456a9-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:27:35 GMT
expires: Sat, 10 May 2025 02:27:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 28097
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.131

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 04:59:42 GMT
expires: Sun, 04 May 2025 04:59:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 537370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-77872044-1

142.250.74.168

200 OK

75 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-77872044-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
75 kB (74961 bytes)
Hash
7b6fff673a832b9c9d159894a21f108a
4563c35f7bddbf023e4cbf3fcdd690edd557ba0a
07df9e5bb8e97378599c9dc5a60d076ad3c3b21ebe35482cc49c64879e3b80ef

HTTP Headers

GET /gtag/js?id=UA-77872044-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 10:15:52 GMT
expires: Fri, 10 May 2024 10:15:52 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74961
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

142.250.74.131

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
Size
25 kB (24984 bytes)
Hash
303a79d404d97ccbb3d803088fc387d8
66e3525b79a1a58a63fe0934f31676dd40c7f033
7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:06:36 GMT
expires: Sat, 10 May 2025 01:06:36 GMT
cache-control: public, max-age=31536000
age: 32956
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/data/avatars/s/956/956238.jpg?1701415062

104.21.71.43

200 OK

5.2 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/956/956238.jpg?1701415062
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
5.2 kB (5227 bytes)
Hash
b4ab11917b7367e352362454616e8273
35276bcfa60689daacb50c3f679e454376c11e7e
733de9475ca680022acf7c0182154f745170a54dcdc0fd3846f0e58d0d99268e

HTTP Headers

GET /data/avatars/s/956/956238.jpg?1701415062 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: image/jpeg
content-length: 5227
last-modified: Fri, 01 Dec 2023 07:17:43 GMT
etag: "65698897-146b"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s75FPAVN7k5pgREzYrxVEgXtGFp6nuTRo5thRVn6kx6f%2FvE18hE%2BCm31fO5ZCUWz25nmv1C4SdcJ86PLEl7tZ2R2whmJeXYocPWjU0NS%2Fa7Yl9NT%2FiOLHh7rZgdNl4Bfkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192bab79ea56a9-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.131

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 04:59:42 GMT
expires: Sun, 04 May 2025 04:59:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 537371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/data/assets/logo/TeamOS.png

104.21.71.43

200 OK

21 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOS.png
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
21 kB (20927 bytes)
Hash
86270c1741a9db8f95b7d6fdef2c62b4
17a3a90ec7e9d33dd84a77509446bf64d73d2e9e
83c1feff94030b6ddf0e2105ef24f444520c4e0fe3a0e6bf618eced3d2725bd2

HTTP Headers

GET /data/assets/logo/TeamOS.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:53 GMT
content-type: image/png
content-length: 20927
last-modified: Fri, 14 May 2021 15:05:04 GMT
etag: "609e91a0-51bf"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 773
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jy2h705jKhXkeB1Ks8YxIjICabPL3kq%2FDzLNM4kTXAMxBvVU8x7Ype7ITIe5%2Bs6s0Ir4%2F2WrCdfdg0GJYUTosKaPLeo6FEn4Glr61EjkshaDJEPsUee4laZLa3UmcD6eZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192badee6956a9-OSL
alt-svc: h3=":443"; ma=86400

instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js

172.240.108.68

200 OK

9.8 kB

URL GET HTTP/1.1
instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26594), with no line terminators
Size
9.8 kB (9795 bytes)
Hash
5059328f0cb6a15473d02ca35dc2f7f2
c352f004fb3329dc04b164ac9f8ce964f2a87dd6
265ef335149d3061d0c0d22b4d7c657c9ab6f281de96e0bd7cb2f78c07e0dd2d

HTTP Headers

GET /7326f362b41f2b6bdb387bd9014ae95b/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d52a070f64a0ca01725882013b025d9d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js

172.240.108.68

200 OK

31 kB

URL GET HTTP/1.1
instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30620 bytes)
Hash
2f2032270a195bdb2d7f77d7a907c45c
180265985a15c9c47ad3129d61662d7d079043b8
97891eaabeebd34d6bafabe468c6f44ebeccedd040efbdc999fd867702487667

HTTP Headers

GET /a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e93d815b9d7ae4df5c9e998c4e9d7e1f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
d695f6eae6e0eec487e8315f5ce4fcad
a6d7937eb24b01a639a0ffd6e823ea267022addf
3de9da6e1f4d3b52bc26a461afa6f285aec934c4b854d2a5d42c3932caca6b5a

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.teamos.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b93e3e63-738f-4729-83e6-f866481ca5db:3:1; expires=Mon, 08 May 2034 10:15:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
324bad33a50db88a519d4c1e82b5a1d5
ed4d001497f2304a7a207de5e8f4336bc5193274
bf6e2b2c7fb1b37ebca224dc9b7fb914e530c89ad57706b137ac667583ea8b66

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.teamos.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=0eb14171-678b-457a-bd1d-c0482be50cfa:1:1; expires=Mon, 08 May 2034 10:15:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js

172.240.108.68

200 OK

12 kB

URL GET HTTP/1.1
instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (31292), with no line terminators
Size
12 kB (11841 bytes)
Hash
791e32fadc4e8ab6c70e3e3910dc8dc0
1b4a6453947581c01cc358cde99d81a543b1938c
bb787989215d295f004d78f0d90d177158bd60de3b3560b007469d4fd2341a4b

HTTP Headers

GET /ae333e82cfaead9ba22e64954c139352/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d29a99a3a9ec2ebab2cac23d8f6365cd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c

142.250.74.168

200 OK

90 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
90 kB (90517 bytes)
Hash
38614df220ce683b980c52e9b276579c
bbab65e899e8107d67f3dddd5254324580a9f480
1e1fcb5dd31d6f95dabec8aa0f2feffc2473ce0a9d2d90df7ec50a81e4163d29

HTTP Headers

GET /gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 10:15:53 GMT
expires: Fri, 10 May 2024 10:15:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90517
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.teamos.xyz/cdn-cgi/rum?

104.21.71.43

204 No Content

0 B

URL POST HTTP/3
www.teamos.xyz/cdn-cgi/rum?
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1052
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Fri, 10 May 2024 10:15:53 GMT
access-control-allow-origin: https://www.teamos.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 88192bb11c9756a9-OSL
x-frame-options: DENY
x-content-type-options: nosniff

www.teamos.xyz/tags/adobe/page-2

104.21.71.43

200 OK

23 kB

URL GET HTTP/3
www.teamos.xyz/tags/adobe/page-2
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (13587)
Size
23 kB (22907 bytes)
Hash
a379b7cf6c00c40ed02950309a3f3cba
365f6ac90f1cacd99746e1a27cbc551b29ae9f7e
6cfb4baaebd3e87d5b6e4b08a8dae4b6afe54bc8404e05dc67862f87b3926f1f

HTTP Headers

GET /tags/adobe/page-2 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:53 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 10 May 2024 10:15:53 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Zmqx1KWUaBJg6JMrH%2F7gyYdcaiuAauROIq%2BJ43CjdOVN%2Bw4pa6mh4RZU%2F0WmKCT8B08kM9OG1wknZSM0iYesL2ecsqKMtBXiYKDB%2FaUdRg6TeEbAUiJuvfNdkVfFF8ebA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192baeb83256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

restedfeatures.com/watch.1543881468925.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1715336214&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&res=14.2071&rmtc=t&shu=f7005bfbbbc23e48f521a5f2afdf016059ebab04d0ca9aadb9d1d57266419137fad7da843788d7d952fa91c8a6f4b6d8239a81ad0de542defdf5e1108e8242ad89b5019f00d05675d5815d6bbc44d4a56c8c0107ed9ab5708187ab4726ec9d&tz=0&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1

192.243.61.227

200 OK

2.0 kB

URL GET HTTP/1.1
restedfeatures.com/watch.1543881468925.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1715336214&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&res=14.2071&rmtc=t&shu=f7005bfbbbc23e48f521a5f2afdf016059ebab04d0ca9aadb9d1d57266419137fad7da843788d7d952fa91c8a6f4b6d8239a81ad0de542defdf5e1108e8242ad89b5019f00d05675d5815d6bbc44d4a56c8c0107ed9ab5708187ab4726ec9d&tz=0&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectrestedfeatures.com
Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA
ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT

File type
JavaScript source, ASCII text, with very long lines (2436)
Size
2.0 kB (1975 bytes)
Hash
1e78f3fe0c7adf7c944a9f559ff43372
67b4b1ed48dac01c0a443a73ce22f7161063ac5b
845fd72fac06aa13ac315434c319dd07c129e6f9fefb99ec263b98b3a9f30611

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1543881468925.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1715336214&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&res=14.2071&rmtc=t&shu=f7005bfbbbc23e48f521a5f2afdf016059ebab04d0ca9aadb9d1d57266419137fad7da843788d7d952fa91c8a6f4b6d8239a81ad0de542defdf5e1108e8242ad89b5019f00d05675d5815d6bbc44d4a56c8c0107ed9ab5708187ab4726ec9d&tz=0&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17155452; ain=eyJhbGciOiJIUzI1NiJ9.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.mcX91C3udflNM3VJyL-1vQoQEF8HPlRtdPmjwHif01Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=0eb14171-678b-457a-bd1d-c0482be50cfa:1:1; expires=Fri, 17 May 2024 10:15:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5e3536ae0fb0cbc6854963bd3089e89e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.teamos.xyz/job.php

104.21.71.43

200 OK

537 B

URL POST HTTP/3
www.teamos.xyz/job.php
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
gzip compressed data, from Unix
Size
537 B (537 bytes)
Hash
f499bec2c9c28a92f5a0cbceeb61866a
2f426c9e3ac390e1679a8eea2ddcc9cb3fe46a4f
630229a527f31908275d06f90a7bea1b1fb5bd03be1d1976ed31d50a149eb8b1

HTTP Headers

POST /job.php HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1; _ga_ZMK4J7B2XT=GS1.1.1715336153.1.0.1715336153.0.0.0; _ga=GA1.1.435728390.1715336154; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Fri, 10 May 2024 10:15:54 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BWvewNJ77AmyRSEvMQN5BzGVZ8JUy%2Fx%2FN7k%2F34zPXpPnxKtBTqX423imKufP8fIV27RiK1%2B7LNW9UoRUF9YitFh6yn%2FGmD4xTBVw5foIcm6DTABCy2VPk2ajibqjSDrolg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192bb54b5d56a9-OSL
alt-svc: h3=":443"; ma=86400

cdn.cloudimagesb.com/cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png

45.133.44.9

200 OK

56 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Size
56 kB (56505 bytes)
Hash
231d615f0b920b0f0c8758342141193b
ca68f0f6e4c9124bbe61c49d789d0447076b0332
3e24999c26c1c68485e879756ea30639ccee4d7f30f1e2c0e5190818cbab8996

HTTP Headers

GET /cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: image/png
content-length: 56505
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:14:41 GMT
etag: "61080be1-dcb9"
expires: Sun, 12 May 2024 10:15:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

locatedstructure.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4

172.240.108.76

200 OK

18 kB

URL GET HTTP/1.1
locatedstructure.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectlocatedstructure.com
Fingerprint41:BB:62:A1:37:6E:A9:D9:50:96:F7:06:AF:B0:BF:FC:7D:15:F7:DC
ValidityMon, 06 May 2024 08:40:08 GMT - Sun, 04 Aug 2024 08:40:07 GMT

File type
JSON text data
Size
18 kB (17716 bytes)
Hash
25827bc3517c3c1b6749b2bd5205eef1
63454d1d37ac6e18da769078f7d0191ac3fa3e4f
c55773dab6ab30d47a47a9f20447eea0b7f26779a406797be5621d94971d65ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4 HTTP/1.1
Host: locatedstructure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:54 GMT
Content-Type: application/json
Content-Length: 17716
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17773605; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
uncs49=1; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
nlec7326f362b41f2b6bdb387bd9014ae95b=[4991488,4991489,4991490]; expires=Fri, 10 May 2024 10:15:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c678977a73874dd4b591e679bff2e609
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/cti/1d/3d/c6/1d3dc60244ee659e81e80820beadec6f/1708443838.jpg

45.133.44.9

200 OK

36 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/1d/3d/c6/1d3dc60244ee659e81e80820beadec6f/1708443838.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Size
36 kB (36382 bytes)
Hash
8a6b90fb05bd0936cc71bd2a921aa897
34f23833f580670c8a5b4d56d3673bed528c5e81
c1ae8bfa3298155e82f7a601fca53bcc37367ec3c23f140df67b652296caecc6

HTTP Headers

GET /cti/1d/3d/c6/1d3dc60244ee659e81e80820beadec6f/1708443838.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: image/jpeg
content-length: 36382
server: nginx/1.21.6
last-modified: Tue, 20 Feb 2024 15:44:07 GMT
etag: "65d4c8c7-8e1e"
expires: Sun, 12 May 2024 10:15:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png

45.133.44.9

200 OK

184 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
184 kB (183812 bytes)
Hash
adc709f858c8b4ff4ce26a2757b75131
c91b170aba4aafdca5690d29e17f61b6505e15c1
ad475e95022da6d65aec3479ad3b4ff6d36dc85bbc634d750cdd575ea1a985ce

HTTP Headers

GET /si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: image/png
content-length: 183812
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 19:50:20 GMT
etag: "65cd197c-2ce04"
expires: Sun, 12 May 2024 10:15:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuzBwwhe9NT5Jtnguiz6B7jIZEEkIKRvETbgzftCztJjcPRB9%2Ftefa%2Fge%2B%2BrL%2FbsGfFh6ena22okpKRLyw23%2FtIHnne13hWJHdaHK8GHQetqXQ9e7QQN9%2BX69SjcVku%2B67mu53r1daGjnhouVSRE%2BqDjNTpuo%2BU3vOUWhvq%2FtbEODHXAB2dkAYKXtcfOIkQ4RRL%2FsBaZ7Uylr7wZW0kzpTHgh%2B8l24nKE8Rz2NMOesnhRTeUOVl%2FBJUczORCDf5pZKIkzi%2BPwJLDC5Fgg%2F2ZTiYRJWD8WeSDKSI5haBThOoOBD8hQMhxYxNJfO%2BG0jnd%2BZulFVuS2vlTiLwktSeLSOKHq1IM67eVtJlQicGwV0AMpxD9KVJ7hGx0CSI%2FQph9BsF%2FI0vnXSTx%2FqaRCoIXs9mFmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhJW%2BMLB0jlGOEehep3sW2%2BOpkeQHa%2FgyzVcBwByYrifPOLga8QB4R5IYgpwS5IMgzgnxQHHBpfFPc49JY5l1k%2FyI3i4nK%2Bnv0QGX9KCGgegzNi730jLxQrch5vvUitqPTervpB71m4LOW1%2FNZwDhrrrQZ77hei0adZQYjCghzaTb1SJTk8vnHSEVJ%2Fv9nCkaPYOQRQrEAaj3QvADdKjBK7mcRjZVpDHdG4KpAmtWQ7Th78oxcnlnUvUIQhcfXstEf1x8ufoJQF0h1gY%2FEY4K%2BvDu5pXKyf0vlhvy4mWYiFiNa2Xc7o1n0v%2FtvRTu50nxjzYy%2Fez2siAo%2BeDcyWZcmXCR9Q75fFZxHel3pMCI%2FbZj3I3bTmq1VqxObdm%2B%2Bsb4RpzoyRqhkCipKUjveQShK8tyTT2cv84r9EkJPoW2B2B6Ti4BQRwjTXZh0rt8oAi3nPSx1kNtion02P5SCQEbzmrIC5l81m%2BOJptVtKoo9cxd9XQPN7iCJCwx0gYEsQOUYxj4zyVJ9fO3Xb6r4FkzWJkzq2j6TWn49W3P1c0rSTT6v0CUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F%2Brm6b3fQQAAA%3D%3D

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuzBwwhe9NT5Jtnguiz6B7jIZEEkIKRvETbgzftCztJjcPRB9%2Ftefa%2Fge%2B%2BrL%2FbsGfFh6ena22okpKRLyw23%2FtIHnne13hWJHdaHK8GHQetqXQ9e7QQN9%2BX69SjcVku%2B67mu53r1daGjnhouVSRE%2BqDjNTpuo%2BU3vOUWhvq%2FtbEODHXAB2dkAYKXtcfOIkQ4RRL%2FsBaZ7Uylr7wZW0kzpTHgh%2B8l24nKE8Rz2NMOesnhRTeUOVl%2FBJUczORCDf5pZKIkzi%2BPwJLDC5Fgg%2F2ZTiYRJWD8WeSDKSI5haBThOoOBD8hQMhxYxNJfO%2BG0jnd%2BZulFVuS2vlTiLwktSeLSOKHq1IM67eVtJlQicGwV0AMpxD9KVJ7hGx0CSI%2FQph9BsF%2FI0vnXSTx%2FqaRCoIXs9mFmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhJW%2BMLB0jlGOEehep3sW2%2BOpkeQHa%2FgyzVcBwByYrifPOLga8QB4R5IYgpwS5IMgzgnxQHHBpfFPc49JY5l1k%2FyI3i4nK%2Bnv0QGX9KCGgegzNi730jLxQrch5vvUitqPTervpB71m4LOW1%2FNZwDhrrrQZ77hei0adZQYjCghzaTb1SJTk8vnHSEVJ%2Fv9nCkaPYOQRQrEAaj3QvADdKjBK7mcRjZVpDHdG4KpAmtWQ7Th78oxcnlnUvUIQhcfXstEf1x8ufoJQF0h1gY%2FEY4K%2BvDu5pXKyf0vlhvy4mWYiFiNa2Xc7o1n0v%2FtvRTu50nxjzYy%2Fez2siAo%2BeDcyWZcmXCR9Q75fFZxHel3pMCI%2FbZj3I3bTmq1VqxObdm%2B%2Bsb4RpzoyRqhkCipKUjveQShK8tyTT2cv84r9EkJPoW2B2B6Ti4BQRwjTXZh0rt8oAi3nPSx1kNtion02P5SCQEbzmrIC5l81m%2BOJptVtKoo9cxd9XQPN7iCJCwx0gYEsQOUYxj4zyVJ9fO3Xb6r4FkzWJkzq2j6TWn49W3P1c0rSTT6v0CUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F%2Brm6b3fQQAAA%3D%3D
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectlocatedstructure.com
Fingerprint41:BB:62:A1:37:6E:A9:D9:50:96:F7:06:AF:B0:BF:FC:7D:15:F7:DC
ValidityMon, 06 May 2024 08:40:08 GMT - Sun, 04 Aug 2024 08:40:07 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuzBwwhe9NT5Jtnguiz6B7jIZEEkIKRvETbgzftCztJjcPRB9%2Ftefa%2Fge%2B%2BrL%2FbsGfFh6ena22okpKRLyw23%2FtIHnne13hWJHdaHK8GHQetqXQ9e7QQN9%2BX69SjcVku%2B67mu53r1daGjnhouVSRE%2BqDjNTpuo%2BU3vOUWhvq%2FtbEODHXAB2dkAYKXtcfOIkQ4RRL%2FsBaZ7Uylr7wZW0kzpTHgh%2B8l24nKE8Rz2NMOesnhRTeUOVl%2FBJUczORCDf5pZKIkzi%2BPwJLDC5Fgg%2F2ZTiYRJWD8WeSDKSI5haBThOoOBD8hQMhxYxNJfO%2BG0jnd%2BZulFVuS2vlTiLwktSeLSOKHq1IM67eVtJlQicGwV0AMpxD9KVJ7hGx0CSI%2FQph9BsF%2FI0vnXSTx%2FqaRCoIXs9mFmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhJW%2BMLB0jlGOEehep3sW2%2BOpkeQHa%2FgyzVcBwByYrifPOLga8QB4R5IYgpwS5IMgzgnxQHHBpfFPc49JY5l1k%2FyI3i4nK%2Bnv0QGX9KCGgegzNi730jLxQrch5vvUitqPTervpB71m4LOW1%2FNZwDhrrrQZ77hei0adZQYjCghzaTb1SJTk8vnHSEVJ%2Fv9nCkaPYOQRQrEAaj3QvADdKjBK7mcRjZVpDHdG4KpAmtWQ7Th78oxcnlnUvUIQhcfXstEf1x8ufoJQF0h1gY%2FEY4K%2BvDu5pXKyf0vlhvy4mWYiFiNa2Xc7o1n0v%2FtvRTu50nxjzYy%2Fez2siAo%2BeDcyWZcmXCR9Q75fFZxHel3pMCI%2FbZj3I3bTmq1VqxObdm%2B%2Bsb4RpzoyRqhkCipKUjveQShK8tyTT2cv84r9EkJPoW2B2B6Ti4BQRwjTXZh0rt8oAi3nPSx1kNtion02P5SCQEbzmrIC5l81m%2BOJptVtKoo9cxd9XQPN7iCJCwx0gYEsQOUYxj4zyVJ9fO3Xb6r4FkzWJkzq2j6TWn49W3P1c0rSTT6v0CUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F%2Brm6b3fQQAAA%3D%3D HTTP/1.1
Host: locatedstructure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e730d4d377856ca0ce60428753e7109a
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png

45.133.44.9

200 OK

120 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
120 kB (119965 bytes)
Hash
c5a83c3079df6439410f74f3e8de6930
66dab231922cc92db7c41f49d7bdb7da1dfde08a
ee0745b5678c7e4277047ba8f87d53ee77e60a4985dace65c73b970521dbf1f8

HTTP Headers

GET /si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: image/png
content-length: 119965
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:15 GMT
etag: "65f95767-1d49d"
expires: Sun, 12 May 2024 10:15:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png

45.133.44.9

200 OK

105 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
105 kB (104949 bytes)
Hash
440d0ebcc9ae01aba77f74d9015ff0b3
9065b873ac93b45da1765682071eaaf6efe12e5c
7834596c29b94d74435163b3875c5042082912c1aff529986b0235cd9b7b27cc

HTTP Headers

GET /si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: image/png
content-length: 104949
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:37 GMT
etag: "65f9577d-199f5"
expires: Sun, 12 May 2024 10:15:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.teamos.xyz/favicon.ico

104.21.71.43

200 OK

74 kB

URL GET HTTP/3
www.teamos.xyz/favicon.ico
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
gzip compressed data, from Unix
Size
74 kB (74407 bytes)
Hash
cb9b8def9cfa6ffa123e63a621d6307c
ec1ac6e19100599b3f4cbbe2c5fb2f0cd7faaa5d
6fc0ee4d468f24e7ecccf652eb7c07d22b4c5cc68c80c6f86f1d2d303a6129cc

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:53 GMT
content-type: image/x-icon
last-modified: Sun, 05 May 2019 15:07:05 GMT
vary: Accept-Encoding
etag: W/"5ccefc19-2c0ac"
expires: Wed, 22 May 2024 02:44:48 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: HIT
age: 837510
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FAKvrGhqFilWM4UZHcPD9G8MhfNbtuOMvjh2fWHdO4jTA%2FUGGVgnHPKFMxIgaHdzKzw6oD6oeTLo2%2FKmCSrsi0hjpevHv1aKc54ElgOnTMuAKDXZ37O1AwHubHk1UhHAwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192badee6c56a9-OSL
alt-svc: h3=":443"; ma=86400

locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3n9%2BDwqKy972MhdBF5l090x6Mi4ixhgJjpt1V9GbVHVVT8pUd7VV3dOTOQVXZI8jeFlPnW%2BSDa6L6EW8uEhnQWRByFwkgjl7Xwgepcfg6IPu933vew3fe68%2F3ctPiY%2Bcnqy9pcdSKbq03HKbz7%2FveVebfZnko%2BZoJfgg6FxtmuFLvaDlvtB8Q4Tbesl3Pdf1XK%2B5Lo2I9GipFiHT%2Bz2v1XNbHb%2FlLXcwMv%2FlNndgqQM%2BPCUXIfms8dC5BBlWSOJv1oTdznT64utxrmimDYb88N1kO9FFgngBI%2BMgSg7Pu6Ht8foD6ORgbhd6%2BE8jkzPi%2FPQALDk8Nwk23J%2F7ZAoiAeNPoRhWEKqCpBVCfQuSHxMg5Li2iSS%2Be02bgu78rdJanZHG2WPIYkYav19CEn%2B9quSoeVOrPJM6sRhFJeSoghxUSPMjZOMLkMURwuxjSP4LWTrrI4n3N63SkLyczy5lBRlVUGICah3k9SMd5JGDPHUQ85Nm6Hle1%2BUhdVd6YdjmXcEC7nq0G3nUc4MV5GFtb4IsnSBUE4RmF6nZxbb87Hj5Ikz%2BI%2BxWCcsd2GxGnLd3MeQlCkFQWIKCEhSSoMgIimF5wJX1bXmXK5sz7zz757ldTnU22KMHOhuIhICaCQwv99JT8my9IueZznPYFifNbtsPonbgs44X%2BSxgnLVXuoz3XK9DRW%2BZwcoS0l6YTz2WM3L57COkckb%2B%2F0cKRo9g1RFCeRE090CLEnSrxDi5lwkaa9sa7YzBdYk0ayDbcfbUKbk8P1E%2F%2BQQifETOA6EpkZoSH8qHBAN1e3pDF2T%2Fhi4s%2BXYzzWQsx7Q%2B382MZuKJe2%2BKnUIbvrFmJ1%2B%2BGtZCDe%2B%2FI2zWpwmXycCSr1Yl58KsaxMK8sOGfU%2Bw67ndWs1Nkqf966%2Btb8SpEdZKnVSg8njzT4RyRp7%2B9bv5f3nlzveQpoLJS8T5wqnUFcJ0FzZd1KwmMGrBWfo%2FFHk5NT5bFJUkUGLBKSth%2F8XZAk8Nrb%2BmstyztzEwDdDsFpK4xNCUGKoSVE1g8yenWWoevfLznTq%2BAFONKVOmsc%2BUUZ%2FPSP8KqV%2FOfN01ugAr65u3XRr0lr1ul4ou6%2FgrUeBxSv1O4AcBbSOzs%2Bjlx7%2F9BQAA%2F%2F8BAAD%2F%2F2snqZd7BAAA

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3n9%2BDwqKy972MhdBF5l090x6Mi4ixhgJjpt1V9GbVHVVT8pUd7VV3dOTOQVXZI8jeFlPnW%2BSDa6L6EW8uEhnQWRByFwkgjl7Xwgepcfg6IPu933vew3fe68%2F3ctPiY%2Bcnqy9pcdSKbq03HKbz7%2FveVebfZnko%2BZoJfgg6FxtmuFLvaDlvtB8Q4Tbesl3Pdf1XK%2B5Lo2I9GipFiHT%2Bz2v1XNbHb%2FlLXcwMv%2FlNndgqQM%2BPCUXIfms8dC5BBlWSOJv1oTdznT64utxrmimDYb88N1kO9FFgngBI%2BMgSg7Pu6Ht8foD6ORgbhd6%2BE8jkzPi%2FPQALDk8Nwk23J%2F7ZAoiAeNPoRhWEKqCpBVCfQuSHxMg5Li2iSS%2Be02bgu78rdJanZHG2WPIYkYav19CEn%2B9quSoeVOrPJM6sRhFJeSoghxUSPMjZOMLkMURwuxjSP4LWTrrI4n3N63SkLyczy5lBRlVUGICah3k9SMd5JGDPHUQ85Nm6Hle1%2BUhdVd6YdjmXcEC7nq0G3nUc4MV5GFtb4IsnSBUE4RmF6nZxbb87Hj5Ikz%2BI%2BxWCcsd2GxGnLd3MeQlCkFQWIKCEhSSoMgIimF5wJX1bXmXK5sz7zz757ldTnU22KMHOhuIhICaCQwv99JT8my9IueZznPYFifNbtsPonbgs44X%2BSxgnLVXuoz3XK9DRW%2BZwcoS0l6YTz2WM3L57COkckb%2B%2F0cKRo9g1RFCeRE090CLEnSrxDi5lwkaa9sa7YzBdYk0ayDbcfbUKbk8P1E%2F%2BQQifETOA6EpkZoSH8qHBAN1e3pDF2T%2Fhi4s%2BXYzzWQsx7Q%2B382MZuKJe2%2BKnUIbvrFmJ1%2B%2BGtZCDe%2B%2FI2zWpwmXycCSr1Yl58KsaxMK8sOGfU%2Bw67ndWs1Nkqf966%2Btb8SpEdZKnVSg8njzT4RyRp7%2B9bv5f3nlzveQpoLJS8T5wqnUFcJ0FzZd1KwmMGrBWfo%2FFHk5NT5bFJUkUGLBKSth%2F8XZAk8Nrb%2BmstyztzEwDdDsFpK4xNCUGKoSVE1g8yenWWoevfLznTq%2BAFONKVOmsc%2BUUZ%2FPSP8KqV%2FOfN01ugAr65u3XRr0lr1ul4ou6%2FgrUeBxSv1O4AcBbSOzs%2Bjlx7%2F9BQAA%2F%2F8BAAD%2F%2F2snqZd7BAAA
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectlocatedstructure.com
Fingerprint41:BB:62:A1:37:6E:A9:D9:50:96:F7:06:AF:B0:BF:FC:7D:15:F7:DC
ValidityMon, 06 May 2024 08:40:08 GMT - Sun, 04 Aug 2024 08:40:07 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3n9%2BDwqKy972MhdBF5l090x6Mi4ixhgJjpt1V9GbVHVVT8pUd7VV3dOTOQVXZI8jeFlPnW%2BSDa6L6EW8uEhnQWRByFwkgjl7Xwgepcfg6IPu933vew3fe68%2F3ctPiY%2Bcnqy9pcdSKbq03HKbz7%2FveVebfZnko%2BZoJfgg6FxtmuFLvaDlvtB8Q4Tbesl3Pdf1XK%2B5Lo2I9GipFiHT%2Bz2v1XNbHb%2FlLXcwMv%2FlNndgqQM%2BPCUXIfms8dC5BBlWSOJv1oTdznT64utxrmimDYb88N1kO9FFgngBI%2BMgSg7Pu6Ht8foD6ORgbhd6%2BE8jkzPi%2FPQALDk8Nwk23J%2F7ZAoiAeNPoRhWEKqCpBVCfQuSHxMg5Li2iSS%2Be02bgu78rdJanZHG2WPIYkYav19CEn%2B9quSoeVOrPJM6sRhFJeSoghxUSPMjZOMLkMURwuxjSP4LWTrrI4n3N63SkLyczy5lBRlVUGICah3k9SMd5JGDPHUQ85Nm6Hle1%2BUhdVd6YdjmXcEC7nq0G3nUc4MV5GFtb4IsnSBUE4RmF6nZxbb87Hj5Ikz%2BI%2BxWCcsd2GxGnLd3MeQlCkFQWIKCEhSSoMgIimF5wJX1bXmXK5sz7zz757ldTnU22KMHOhuIhICaCQwv99JT8my9IueZznPYFifNbtsPonbgs44X%2BSxgnLVXuoz3XK9DRW%2BZwcoS0l6YTz2WM3L57COkckb%2B%2F0cKRo9g1RFCeRE090CLEnSrxDi5lwkaa9sa7YzBdYk0ayDbcfbUKbk8P1E%2F%2BQQifETOA6EpkZoSH8qHBAN1e3pDF2T%2Fhi4s%2BXYzzWQsx7Q%2B382MZuKJe2%2BKnUIbvrFmJ1%2B%2BGtZCDe%2B%2FI2zWpwmXycCSr1Yl58KsaxMK8sOGfU%2Bw67ndWs1Nkqf966%2Btb8SpEdZKnVSg8njzT4RyRp7%2B9bv5f3nlzveQpoLJS8T5wqnUFcJ0FzZd1KwmMGrBWfo%2FFHk5NT5bFJUkUGLBKSth%2F8XZAk8Nrb%2BmstyztzEwDdDsFpK4xNCUGKoSVE1g8yenWWoevfLznTq%2BAFONKVOmsc%2BUUZ%2FPSP8KqV%2FOfN01ugAr65u3XRr0lr1ul4ou6%2FgrUeBxSv1O4AcBbSOzs%2Bjlx7%2F9BQAA%2F%2F8BAAD%2F%2F2snqZd7BAAA HTTP/1.1
Host: locatedstructure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 04e0af6985f1dd792cef972fae8a8060
Strict-Transport-Security: max-age=0; includeSubdomains

locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKS217mIugik%2B6eSU%2FGRRZjzBIcN%2Buuojep6uqZlKnuaqu6picjSHBF9iQjeNFT55tkg%2Buy6A9wkcmCSEBI3yJswJv3hZylZ4OjD6re%2B973Cr73Xn21a0%2BJD0tPVt9VIyElXVxquPVXPvK8K%2FWuSOywPlwOPg5aV%2Bp68HonaLiv1q9F4ZZa9F3PdT3Xq68JHfXUcLEiIdL7Ha%2FRcRstv%2BEttTDU%2F8fGOjDUAR%2BckosQvKw9chYgwimS%2BKfVyGxlKn3t7dhKmimNAT%2F4INlKVJ4gnoc97aCXHJxXQ5njtYdQyf5MLtTg30ImSuL89hAsOTgXCTbYm%2BlkElECxp9HPpgiklMIOkWobkPwYwKEHNc3kMR3ryud0%2B2nLK3YktTOnkDkJak9XkASP1iRYli%2FpaTNhEoMhr0CYjiF6E%2BR2kNkowsQ%2BSHC7AsI%2FgdZPOsiifc2jFQQvJj1LsQUojeFjMagxoGtjnBgew5s6iDmJ%2FXQ87y2y0PqLnfCsMnbEQu469F2z6OeGyzDhpW8MbJ0jFCOEeodpHoHW%2BKb46WL0PZXmM0ChjswWUmc93Yw4AXyiCA3BDklyAVBnhHkg2KfS%2BOb4i6XxjLv3PvnvllMVNbfpfsq60cJAdVjaF7spqfkpWpEzoutl7EVndTbTT%2FoNQOftbyezwLGWXO5zXjH9Vo06iwxGFFAmAuzrkeiJJfOPkUqSvLs3ykYPYSRhwjFRVDrgeYF6GaBUXIvi2isTGO4PQJXBdKshmzb2ZWn5NJsRd3LFxCFR1ez0V%2FXHix8hlAXSHWBT8Qjgr68M7mpcrJ3U%2BWG%2FLyRZiIWI1qt71ZGs%2BiZe%2B9E27nSfH3VjH94M6yIKrz%2FfmSyLk24SPqG%2FLgiOI%2F0mtJhRH5ZNx9G7IY1mytWJzbt3nhrbT1OdWSMUMkUVJSkdrSNUJTkhcefz37mZfs1hJ5C2wKxPSLnBqEOEaY7MOk8ZxSBlnPM0hpyW0y0z%2BZJKQhkNMeUFTD%2FwWweTzStXlNR7Jo76OsaaHYbSVxgoAsMZAEqxzD2uUmW6qOrv39X2fdgsjZhUtf2mNTy22rMpLqcknSTL59O3Yhq602XBp0lr92mUZu1%2FOVe4HFK%2FVbgBwFtIjNl740nf%2F4DAAD%2F%2FwEAAP%2F%2FlJM0pX0EAAA%3D

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKS217mIugik%2B6eSU%2FGRRZjzBIcN%2Buuojep6uqZlKnuaqu6picjSHBF9iQjeNFT55tkg%2Buy6A9wkcmCSEBI3yJswJv3hZylZ4OjD6re%2B973Cr73Xn21a0%2BJD0tPVt9VIyElXVxquPVXPvK8K%2FWuSOywPlwOPg5aV%2Bp68HonaLiv1q9F4ZZa9F3PdT3Xq68JHfXUcLEiIdL7Ha%2FRcRstv%2BEttTDU%2F8fGOjDUAR%2BckosQvKw9chYgwimS%2BKfVyGxlKn3t7dhKmimNAT%2F4INlKVJ4gnoc97aCXHJxXQ5njtYdQyf5MLtTg30ImSuL89hAsOTgXCTbYm%2BlkElECxp9HPpgiklMIOkWobkPwYwKEHNc3kMR3ryud0%2B2nLK3YktTOnkDkJak9XkASP1iRYli%2FpaTNhEoMhr0CYjiF6E%2BR2kNkowsQ%2BSHC7AsI%2FgdZPOsiifc2jFQQvJj1LsQUojeFjMagxoGtjnBgew5s6iDmJ%2FXQ87y2y0PqLnfCsMnbEQu469F2z6OeGyzDhpW8MbJ0jFCOEeodpHoHW%2BKb46WL0PZXmM0ChjswWUmc93Yw4AXyiCA3BDklyAVBnhHkg2KfS%2BOb4i6XxjLv3PvnvllMVNbfpfsq60cJAdVjaF7spqfkpWpEzoutl7EVndTbTT%2FoNQOftbyezwLGWXO5zXjH9Vo06iwxGFFAmAuzrkeiJJfOPkUqSvLs3ykYPYSRhwjFRVDrgeYF6GaBUXIvi2isTGO4PQJXBdKshmzb2ZWn5NJsRd3LFxCFR1ez0V%2FXHix8hlAXSHWBT8Qjgr68M7mpcrJ3U%2BWG%2FLyRZiIWI1qt71ZGs%2BiZe%2B9E27nSfH3VjH94M6yIKrz%2FfmSyLk24SPqG%2FLgiOI%2F0mtJhRH5ZNx9G7IY1mytWJzbt3nhrbT1OdWSMUMkUVJSkdrSNUJTkhcefz37mZfs1hJ5C2wKxPSLnBqEOEaY7MOk8ZxSBlnPM0hpyW0y0z%2BZJKQhkNMeUFTD%2FwWweTzStXlNR7Jo76OsaaHYbSVxgoAsMZAEqxzD2uUmW6qOrv39X2fdgsjZhUtf2mNTy22rMpLqcknSTL59O3Yhq602XBp0lr92mUZu1%2FOVe4HFK%2FVbgBwFtIjNl740nf%2F4DAAD%2F%2FwEAAP%2F%2FlJM0pX0EAAA%3D
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectlocatedstructure.com
Fingerprint41:BB:62:A1:37:6E:A9:D9:50:96:F7:06:AF:B0:BF:FC:7D:15:F7:DC
ValidityMon, 06 May 2024 08:40:08 GMT - Sun, 04 Aug 2024 08:40:07 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKS217mIugik%2B6eSU%2FGRRZjzBIcN%2Buuojep6uqZlKnuaqu6picjSHBF9iQjeNFT55tkg%2Buy6A9wkcmCSEBI3yJswJv3hZylZ4OjD6re%2B973Cr73Xn21a0%2BJD0tPVt9VIyElXVxquPVXPvK8K%2FWuSOywPlwOPg5aV%2Bp68HonaLiv1q9F4ZZa9F3PdT3Xq68JHfXUcLEiIdL7Ha%2FRcRstv%2BEttTDU%2F8fGOjDUAR%2BckosQvKw9chYgwimS%2BKfVyGxlKn3t7dhKmimNAT%2F4INlKVJ4gnoc97aCXHJxXQ5njtYdQyf5MLtTg30ImSuL89hAsOTgXCTbYm%2BlkElECxp9HPpgiklMIOkWobkPwYwKEHNc3kMR3ryud0%2B2nLK3YktTOnkDkJak9XkASP1iRYli%2FpaTNhEoMhr0CYjiF6E%2BR2kNkowsQ%2BSHC7AsI%2FgdZPOsiifc2jFQQvJj1LsQUojeFjMagxoGtjnBgew5s6iDmJ%2FXQ87y2y0PqLnfCsMnbEQu469F2z6OeGyzDhpW8MbJ0jFCOEeodpHoHW%2BKb46WL0PZXmM0ChjswWUmc93Yw4AXyiCA3BDklyAVBnhHkg2KfS%2BOb4i6XxjLv3PvnvllMVNbfpfsq60cJAdVjaF7spqfkpWpEzoutl7EVndTbTT%2FoNQOftbyezwLGWXO5zXjH9Vo06iwxGFFAmAuzrkeiJJfOPkUqSvLs3ykYPYSRhwjFRVDrgeYF6GaBUXIvi2isTGO4PQJXBdKshmzb2ZWn5NJsRd3LFxCFR1ez0V%2FXHix8hlAXSHWBT8Qjgr68M7mpcrJ3U%2BWG%2FLyRZiIWI1qt71ZGs%2BiZe%2B9E27nSfH3VjH94M6yIKrz%2FfmSyLk24SPqG%2FLgiOI%2F0mtJhRH5ZNx9G7IY1mytWJzbt3nhrbT1OdWSMUMkUVJSkdrSNUJTkhcefz37mZfs1hJ5C2wKxPSLnBqEOEaY7MOk8ZxSBlnPM0hpyW0y0z%2BZJKQhkNMeUFTD%2FwWweTzStXlNR7Jo76OsaaHYbSVxgoAsMZAEqxzD2uUmW6qOrv39X2fdgsjZhUtf2mNTy22rMpLqcknSTL59O3Yhq602XBp0lr92mUZu1%2FOVe4HFK%2FVbgBwFtIjNl740nf%2F4DAAD%2F%2FwEAAP%2F%2FlJM0pX0EAAA%3D HTTP/1.1
Host: locatedstructure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: eadbcf8630e2327ab237515a6fbb4357
Strict-Transport-Security: max-age=0; includeSubdomains

www.teamos.xyz/cdn-cgi/rum?

104.21.71.43

204 No Content

0 B

URL POST HTTP/3
www.teamos.xyz/cdn-cgi/rum?
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 497
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1; _ga_ZMK4J7B2XT=GS1.1.1715336153.1.0.1715336153.0.0.0; _ga=GA1.1.435728390.1715336154; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Fri, 10 May 2024 10:16:17 GMT
access-control-allow-origin: https://www.teamos.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 88192c437bad56a9-OSL
x-frame-options: DENY
x-content-type-options: nosniff

www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.21.71.43

200 OK

12 kB

URL GET HTTP/3
www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2024 09:31:53 GMT
etag: W/"663b4689-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vy21T3a5HJjHgzCw%2BS9o8BZFq2dcbvaPrGknE1ryjgwes%2F2PXt%2BGNYcwhrPYDWiToDl7wKNfxBuGmcG41VjCgl%2B1yg7xO2czHVF6lxiRNK6MjVkLyA1rjkt0qlIjf8LG%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba92e1156a9-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 12 May 2024 10:15:52 GMT
cache-control: max-age=172800, public
content-encoding: gzip

www.teamos.xyz/js/vendor/vendor-compiled.js?_v=1d5fe3a2

104.21.71.43

200 OK

43 kB

URL GET HTTP/3
www.teamos.xyz/js/vendor/vendor-compiled.js?_v=1d5fe3a2
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (15908)
Size
43 kB (42926 bytes)
Hash
372b0c5f17990ad741c3d02593f63fe8
4e577cb859755cbf104a2334e6307a5291558689
ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1

HTTP Headers

GET /js/vendor/vendor-compiled.js?_v=1d5fe3a2 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=43704
etag: W/"63926c70-aab8"
expires: Sun, 12 May 2024 14:17:20 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 226183
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gjfZ1JkloLRib2E7rYtO5%2BedDMLEBXmfbTNrh7V1pned0UCCKWhu55wwquJhZc9d0FbiJGWhN8L3ZpkrCbKI11M4ahggHdwA9LK9SHTtuyqobVkZX9DqRgD6jlTnbZ%2F1rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192baaf95956a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFJbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuxFGMGLnjrfJBtcl0X%2FABeZLIgEhPQtwga8eV%2FIWXoMjj4o3vfqewXfe199sWfPiA9LT9feViMhJV1abrj1lz7wvKv1rkjssD5cCT4MWlfrevBqJ2i4L9evR%2BG2WvJdz3U916uvCx311HCpIiHSBx2v0XEbLb%2FhLbcw1P%2BtjXVgqAM%2BOCOXIHhZe%2BwsQoRTJPEPa5HZzlT6ypuxlTRTGgN%2B%2BF6ynag8QTyHPe2glxxedEOZk%2FVHUMnBTC7U4J9GJkri%2FPIILDm8EAk22J%2FpZBJRAsafRT6YIpJTCDpFqO5A8BMChBw3NpHE924ondOdv1lasSWpnT%2BFyEtSe7KIJH64KsWwfltJmwmVGAx7BcRwCtGfIrVHyEYLEPkRwuwzCP4bWTrvIon3N41UELyYzS7EFKI3hYzGoMaBrY5wYHsObOog5qf10PO8tstD6q50wrDJ2xELuOvRds%2BjnhuswIaVvDGydIxQjhHqXaR6F9viq5PlS9D2Z5itAoY7MFlJnHd2MeAF8oggNwQ5JcgFQZ4R5IPigEvjm%2BIel8Yy7yL7F7lZTFTW36MHKutHCQHVY2he7KVn5IVqRc7zrRexHZ3W200%2F6DUDn7W8ns8Cxllzpc14x%2FVaNOosMxhRQJiF2dQjUZLL5x8jFSX5%2F58pGD2CkUcIxSVQ64HmBehWgVFyP4torExjuDMCVwXSrIZsx9mTZ%2BTyzKLuFQdReHwtG%2F1x%2FeHiJwh1gVQX%2BEg8JujLu5NbKif7t1RuyI%2BbaSZiMaKVfbczmkX%2Fu%2F9WtJMrzTfWzPi718OKqOCDdyOTdWnCRdI35PtVwXmk15UOI%2FLThnk%2FYjet2Vq1OrFp9%2BYb6xtxqiNjhEqmoKIkteMdhKIkzz35dPYzr9gvIfQU2haI7TG5CAh1hDDdhUnn%2Bo0i0HLew9IF5LaYaJ%2FNL6UgkNG8pqyA%2BVfN5niiafWaimLP3EVf10CzO0jiAgNdYCALUDmGsc9MslQfX%2Fv1myq%2BBZO1CZO6ts%2Bkll9XayazXZekm3xeoQUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F8oA%2FTafQQAAA%3D%3D

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
locatedstructure.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFJbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuxFGMGLnjrfJBtcl0X%2FABeZLIgEhPQtwga8eV%2FIWXoMjj4o3vfqewXfe199sWfPiA9LT9feViMhJV1abrj1lz7wvKv1rkjssD5cCT4MWlfrevBqJ2i4L9evR%2BG2WvJdz3U916uvCx311HCpIiHSBx2v0XEbLb%2FhLbcw1P%2BtjXVgqAM%2BOCOXIHhZe%2BwsQoRTJPEPa5HZzlT6ypuxlTRTGgN%2B%2BF6ynag8QTyHPe2glxxedEOZk%2FVHUMnBTC7U4J9GJkri%2FPIILDm8EAk22J%2FpZBJRAsafRT6YIpJTCDpFqO5A8BMChBw3NpHE924ondOdv1lasSWpnT%2BFyEtSe7KIJH64KsWwfltJmwmVGAx7BcRwCtGfIrVHyEYLEPkRwuwzCP4bWTrvIon3N41UELyYzS7EFKI3hYzGoMaBrY5wYHsObOog5qf10PO8tstD6q50wrDJ2xELuOvRds%2BjnhuswIaVvDGydIxQjhHqXaR6F9viq5PlS9D2Z5itAoY7MFlJnHd2MeAF8oggNwQ5JcgFQZ4R5IPigEvjm%2BIel8Yy7yL7F7lZTFTW36MHKutHCQHVY2he7KVn5IVqRc7zrRexHZ3W200%2F6DUDn7W8ns8Cxllzpc14x%2FVaNOosMxhRQJiF2dQjUZLL5x8jFSX5%2F58pGD2CkUcIxSVQ64HmBehWgVFyP4torExjuDMCVwXSrIZsx9mTZ%2BTyzKLuFQdReHwtG%2F1x%2FeHiJwh1gVQX%2BEg8JujLu5NbKif7t1RuyI%2BbaSZiMaKVfbczmkX%2Fu%2F9WtJMrzTfWzPi718OKqOCDdyOTdWnCRdI35PtVwXmk15UOI%2FLThnk%2FYjet2Vq1OrFp9%2BYb6xtxqiNjhEqmoKIkteMdhKIkzz35dPYzr9gvIfQU2haI7TG5CAh1hDDdhUnn%2Bo0i0HLew9IF5LaYaJ%2FNL6UgkNG8pqyA%2BVfN5niiafWaimLP3EVf10CzO0jiAgNdYCALUDmGsc9MslQfX%2Fv1myq%2BBZO1CZO6ts%2Bkll9XayazXZekm3xeoQUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F8oA%2FTafQQAAA%3D%3D
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectlocatedstructure.com
Fingerprint41:BB:62:A1:37:6E:A9:D9:50:96:F7:06:AF:B0:BF:FC:7D:15:F7:DC
ValidityMon, 06 May 2024 08:40:08 GMT - Sun, 04 Aug 2024 08:40:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFJbe9zEXQRSbdPZOejIssxpglOG7WXUVvUtXVMylT3dVWdU1PRpDgiuxFGMGLnjrfJBtcl0X%2FABeZLIgEhPQtwga8eV%2FIWXoMjj4o3vfqewXfe199sWfPiA9LT9feViMhJV1abrj1lz7wvKv1rkjssD5cCT4MWlfrevBqJ2i4L9evR%2BG2WvJdz3U916uvCx311HCpIiHSBx2v0XEbLb%2FhLbcw1P%2BtjXVgqAM%2BOCOXIHhZe%2BwsQoRTJPEPa5HZzlT6ypuxlTRTGgN%2B%2BF6ynag8QTyHPe2glxxedEOZk%2FVHUMnBTC7U4J9GJkri%2FPIILDm8EAk22J%2FpZBJRAsafRT6YIpJTCDpFqO5A8BMChBw3NpHE924ondOdv1lasSWpnT%2BFyEtSe7KIJH64KsWwfltJmwmVGAx7BcRwCtGfIrVHyEYLEPkRwuwzCP4bWTrvIon3N41UELyYzS7EFKI3hYzGoMaBrY5wYHsObOog5qf10PO8tstD6q50wrDJ2xELuOvRds%2BjnhuswIaVvDGydIxQjhHqXaR6F9viq5PlS9D2Z5itAoY7MFlJnHd2MeAF8oggNwQ5JcgFQZ4R5IPigEvjm%2BIel8Yy7yL7F7lZTFTW36MHKutHCQHVY2he7KVn5IVqRc7zrRexHZ3W200%2F6DUDn7W8ns8Cxllzpc14x%2FVaNOosMxhRQJiF2dQjUZLL5x8jFSX5%2F58pGD2CkUcIxSVQ64HmBehWgVFyP4torExjuDMCVwXSrIZsx9mTZ%2BTyzKLuFQdReHwtG%2F1x%2FeHiJwh1gVQX%2BEg8JujLu5NbKif7t1RuyI%2BbaSZiMaKVfbczmkX%2Fu%2F9WtJMrzTfWzPi718OKqOCDdyOTdWnCRdI35PtVwXmk15UOI%2FLThnk%2FYjet2Vq1OrFp9%2BYb6xtxqiNjhEqmoKIkteMdhKIkzz35dPYzr9gvIfQU2haI7TG5CAh1hDDdhUnn%2Bo0i0HLew9IF5LaYaJ%2FNL6UgkNG8pqyA%2BVfN5niiafWaimLP3EVf10CzO0jiAgNdYCALUDmGsc9MslQfX%2Fv1myq%2BBZO1CZO6ts%2Bkll9XayazXZekm3xeoQUYUbnedGnQWfbabRq1Wctf6QUep9RvBX4Q0CYyU%2FZee%2Fr7XwAAAP%2F%2FAQAA%2F%2F8oA%2FTafQQAAA%3D%3D HTTP/1.1
Host: locatedstructure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ee0d764df31647a233a264929ac6697f
Strict-Transport-Security: max-age=0; includeSubdomains

www.teamos.xyz/tags/adobe/

104.21.71.43

200 OK

92 kB

URL User Request GET HTTP/2
www.teamos.xyz/tags/adobe/
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
92 kB (92275 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tags/adobe/ HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 10 May 2024 10:15:52 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
vary: Accept-Encoding
set-cookie: xf_csrf=L1E6MY4q86XbXQhV; path=/; secure
xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0; path=/; secure; HttpOnly
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTT%2FLJ92t7cXvmajeJWKaqaF%2FTbsT%2BLEeLb4btLJ%2FNHx1hokm%2FlIMsWBKRpabcBhvCtcb%2BSOXH%2BeNjS6jysliZJiLX6TiD%2BvkwhvEobJr3yE30Tu1QIUfll28gP0I9Ej9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192ba6df7a712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387

104.16.79.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
FingerprintCE:62:08:77:7A:C9:4F:2B:EB:19:EA:54:43:3D:9F:10:06:33:69:E8
ValidityWed, 08 May 2024 03:07:03 GMT - Tue, 06 Aug 2024 03:07:02 GMT

File type
JavaScript source, ASCII text, with very long lines (19189), with no line terminators
Size
19 kB (19189 bytes)
Hash
4c980ee97cb5c001b4d19e2895fa5603
2c6fe998aa7486c4becd74cf253bdd82666a64c3
d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192

HTTP Headers

GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192ba94800b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,700

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
11 kB (11194 bytes)
Hash
b69c29c8c917c014d6f4b79752d8ce0b
71a580b2e8792ba930815bcca3bda73e7715ca3f
5cccc465f4c8cdcec789a0b28846823f18646206351bc9ff794f1aec7f58f5b0

HTTP Headers

GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 10:15:52 GMT
date: Fri, 10 May 2024 10:15:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/js/xf/core-compiled.js?_v=1d5fe3a2

104.21.71.43

200 OK

214 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/core-compiled.js?_v=1d5fe3a2
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (16424)
Size
214 kB (213517 bytes)
Hash
d0ab265a4f68a45efc52408bd69a7f25
c57033113a290427c17a5cd1c94b1829aac06fed
abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3

HTTP Headers

GET /js/xf/core-compiled.js?_v=1d5fe3a2 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=213917
etag: W/"63926c70-3439d"
expires: Tue, 14 May 2024 03:44:50 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 233617
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o7D12L70R9Rmlqofbs3h7wbGTKctpr86XvVlc%2Bx1H%2B74awrmAj7CeNS%2F0zxm2WlHzcft%2FZoNa6mhKdi0glmxBoL7stcwdf7Z1qE%2Bo7%2B2pqpinY0Ze0TnzibtabnUmf4Ytw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192baaf95656a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

restedfeatures.com/watch.1543881468925.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&tz=0&dev=e&res=14.2071&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1

192.243.61.227

307 Temporary Redirect

3.3 kB

URL GET HTTP/1.1
restedfeatures.com/watch.1543881468925.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&tz=0&dev=e&res=14.2071&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectrestedfeatures.com
Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA
ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT

File type

Size
3.3 kB (3312 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1543881468925.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&tz=0&dev=e&res=14.2071&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 10:15:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Location: https://restedfeatures.com/watch.1543881468925.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22adobe%22%2C%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1715336214&refer=https%3A%2F%2Fwww.teamos.xyz%2Ftags%2Fadobe%2F&res=14.2071&rmtc=t&shu=f7005bfbbbc23e48f521a5f2afdf016059ebab04d0ca9aadb9d1d57266419137fad7da843788d7d952fa91c8a6f4b6d8239a81ad0de542defdf5e1108e8242ad89b5019f00d05675d5815d6bbc44d4a56c8c0107ed9ab5708187ab4726ec9d&tz=0&uuid=0eb14171-678b-457a-bd1d-c0482be50cfa%3A1%3A1
Set-Cookie: u_pl=17155452; expires=Sat, 11 May 2024 10:15:54 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.mcX91C3udflNM3VJyL-1vQoQEF8HPlRtdPmjwHif01Q; expires=Fri, 10 May 2024 10:16:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2079f4ac2f110a625873d2d3d7d333c4
Strict-Transport-Security: max-age=0; includeSubdomains

downstairsnegotiatebarren.com/sfp.js

104.21.35.227

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
104.21.35.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 10:15:54 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 627615e30922d8e0c3002cf6dc93cb50
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 10:15:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rlMsVy7wTGPEpLqYIXChTC3cgkRZMeBKAhyMbnbGyn4%2F9%2F0N0d3jMbYQmPDv%2BFn1KjqwzWiivU6BJMpPCH%2FbolqNScs6dD6Zkru6G7FHba2306uecTG%2BEKGkBBuvXOKNbH0%2F1KXCtHPixIOOoQtETg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88192baf390c7130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.teamos.xyz/js/xf/preamble.min.js?_v=1d5fe3a2

104.21.71.43

200 OK

3.4 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/preamble.min.js?_v=1d5fe3a2
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (3549), with no line terminators
Size
3.4 kB (3379 bytes)
Hash
cb73021081c1542f2179421a07600c5f
3e1a9cfbcceabb20985ad1d294754a0cda74defe
497c070b11794ae6950d47f244ac42c4669cb9b4126162ad7417ea970a21da3b

HTTP Headers

GET /js/xf/preamble.min.js?_v=1d5fe3a2 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-d33"
expires: Tue, 14 May 2024 03:44:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: HIT
age: 221484
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2FfmIO%2FfMcooivTbMoJ0KPCfMtiefQwOF8Om%2BXfjlPqiBmGwKQws9%2BSb7u49mX9XaWWHhlWyDBp5q35cq0cjAeUpHqrnFxO4eUl5kWKRVqWtTaP63bM8iQAXKR2HNFVSPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192bab097056a9-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/js/xf/notice.min.js?_v=1d5fe3a2

104.21.71.43

200 OK

3.7 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/notice.min.js?_v=1d5fe3a2
IP
104.21.71.43:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/tags/adobe/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (3758), with no line terminators
Size
3.7 kB (3662 bytes)
Hash
dfe0222d5d182d0d6a9b43d5a6c7a39e
f0455388d72298f16ca08c8dcf5b85e18d54f659
c9a0822314b301039409542c323db4e053f62525ce8c5aa63c46a9c3a8a46ceb

HTTP Headers

GET /js/xf/notice.min.js?_v=1d5fe3a2 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/tags/adobe/
Cookie: xf_csrf=L1E6MY4q86XbXQhV; xf_session=w1a5aVSJmUjIB6P9Y_skf_8GLlGTrxF0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 10:15:52 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-e4e"
expires: Tue, 14 May 2024 03:48:01 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: HIT
age: 226183
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jM9zjpfLl5jqRkrSEa0EegIjXwVsuPpFlnjQAf9GEBIO6Gc%2BU%2Fy4um4qxmy7fIDE2R4rb%2F8mef8Kz39oXpYRI3%2BkuaOAcGX096eBKnlGO58c7FYUO5o0FQO7rTBU1VyQeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88192baaf95356a9-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by