IP 3.64.163.50:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash cbb6dce8376dd0a1557b26773a304ca0
63c7c71d75a637146f2bc3cd4c2a663f79c4a745
a37b80fb7b4e1ff5240c10589bde8ea79b6b1969b84e7f2fef30345e25048876
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.world Domain
GET / HTTP/1.1
Host: themagic.world
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Sat, 10 Jun 2023 07:26:39 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://dan.com/buy-domain/themagic.world?redirected=true
Cache-Control: no-cache
X-Request-Id: 3b3a4a47-4982-46d9-a8f7-318891d06046
X-Runtime: 0.499323
dan.com/buy-domain/themagic.world?redirected=true
104.84.152.57 16 kB URL dan.com/buy-domain/themagic.world?redirected=true
IP 104.84.152.57:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9102)
Hash 9af3c91d173350d1a3f9f7204bcde3d8
6b1de8aea93a6e57d464847542cb22cda5155b89
95f9ae210120777586f8d3aab2dfac498e4fd835c0e3316d63d291757f32c871
GET /buy-domain/themagic.world?redirected=true HTTP/1.1
Host: dan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Accept-Encoding,Accept
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
link: <https://cdn1.dan.com/packs/js/runtime~public/product-aac5e8f76dd4b087b0dd.js>; rel=preload; as=script; nopush,<https://cdn0.dan.com/packs/js/vendors~backoffice/backoffice~backoffice/support~development/style-guide~old/backoffice~old/product~~88ed6740-ea143300df5e982581b9.chunk.js>; rel=preload; as=script; nopush,<https://cdn3.dan.com/packs/js/vendors~public/buyer_control_panel~public/product~public/sitemap-6480dc1f895a55f84ad0.chunk.js>; rel=preload; as=script; nopush,<https://cdn0.dan.com/packs/js/public/product-9c967d404c544f15f530.chunk.js>; rel=preload; as=script; nopush,<https://cdn1.dan.com/assets/for_sale-796fa2349ec5a1918714a6dbe88d1c0b192ca0f4adf7ce9d3dfeed538efe82e2.css>; rel=preload; as=style; nopush,<https://cdn1.dan.com/assets/cookie_manage-f8c84f38efb1432e5b510364238bf9f2f1b759f4a3143f2eb38874b74f467351.css>; rel=preload; as=style; nopush,<https://cdn2.dan.com/assets/vendor/svg4everybody-1f5a41bf858a5454d7923542e3380530fc2c4faaaf6ab58f29da7c6b2ebe2313.js>; rel=preload; as=script; nopush,<https://cdn1.dan.com/packs/js/runtime~public/shared-f07b150280ddeae53893.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/vendors~public/shared-bd812e4881a319f21185.chunk.js>; rel=preload; as=script; nopush,<https://cdn0.dan.com/packs/js/public/shared-bbcd9b35fabeda752794.chunk.js>; rel=preload; as=script; nopush
etag: W/"b9e274625871a970c2b670f489a16bce"
x-request-id: 6d1dff8d-1793-9b33-ab1b-7f3dd1938bcd
x-runtime: 0.055642
content-security-policy: frame-ancestors 'self';
x-envoy-upstream-service-time: 63
x-akamai-transformed: 9 14146 0 pmb=mRUM,2
content-encoding: gzip
expires: Sat, 10 Jun 2023 07:26:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Jun 2023 07:26:39 GMT
content-length: 16232
set-cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=gqRNsTwMUYg3OiLTOXTdVgk4Uicu2WfJ2inIGHVkkDFPygmvJhvh0pjEGAo1C5xJz1iOEmdG1BaRQ0c9Fg8OB9FkavOkagfJhUds981RWBbv6QHW4hZQBhLrrKSvvAliw78VARcZlGriJ4AW5hOdSXRz%2FZ%2FcrkRSqEVjqp9sF7z4CnckRABYoBH%2FawTdrN6FcmdjL%2BT7nnFufgNjlsNZK1lWbaLA1a42fywFzZ2Bbw928jnapppsgPqs8eSPaUWn4z7xuXYdLzKk558PRh3VhvjGECH07foPP%2BJ7oX9wS8BkOtM%2F1tv%2FnEvv1j9rCJQb2aD%2BPbgO4Kgs5Hr8jA4hFSq7vZj%2FLeAYlW1HjVqtom%2BJsAqzhNWFhUaWXSrfW3BQMuW0WvvG1RW9E8hlao7soJEezYZTbomE01tTVwXfh1aQvOHbNXgFl5yejYnDkhmPV8jsdx2bhVe%2BVq9FEd%2BJrQ%3D%3D--mrBTOVE4%2F4F9M58D--NQiI3xSdvLi8Ys5HvL2j4Q%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
fb_sessiontraffic=S_TOUCH=&pathway=e092d2d7-58d2-4e90-9cfa-37dfd2150a41&V_DATE=&pc=0; Path=/; Domain=dan.com; Expires=Sat, 10 Jun 2023 07:46:39 GMT
pathway=e092d2d7-58d2-4e90-9cfa-37dfd2150a41; Path=/; Domain=dan.com; Expires=Sat, 10 Jun 2023 07:46:39 GMT
visitor=vid=e092d2d7-58d2-4e90-9cfa-37dfd2150a41; Path=/; Domain=dan.com; Expires=Sat, 08 Jun 2024 07:26:39 GMT
_policy={"restricted_market":true,"tracking_market":"explicit"}; Path=/; Domain=dan.com; Expires=Sun, 09 Jun 2024 07:26:39 GMT
ak_bmsc=F2D4A133B8CC448D064EE54A5E7DBA5C~000000000000000000000000000000~YAAQNZhUaFwNtZ2IAQAAWzYzpBQGdyX1LMI0n+PJOH6yudt600Ww9vJcBm3zp6wzIf3cSL8//fu7B14DQs8yL4ZehLa6VtIQcrMV0SQcLoFzH516O5ALK0JQjxbNrKD4JQIrj5bIKIpQ5fAUdEuu3KI14iKKJEJVZqJl3m2yL3cSHWKhty9BGZqxhHgNli+O3/gARhH2mEaSvRUKLINEdqGwNad2se2FHvbPGeoklx3GWoVvLLX5/FIurnlSPVYkzrppLSQTyqnxlqBFhUqqR7TVpeTWNdFWYdtSaV5MQTxK6mGo+brdiwTsmde9vaDgFr5FSsg4tO79XGBEGhp78nWlOJNeehNBq86jjIwuEvEidhM0OHjJdmpdJSP1YUTvDOgy; Domain=.dan.com; Path=/; Expires=Sat, 10 Jun 2023 09:26:39 GMT; Max-Age=7200; HttpOnly
server-timing: cdn-cache; desc=MISS, edge; dur=53, origin; dur=66, ak_p; desc="1686381999551_1750374453_201703272_13204_10485_13_0_21";dur=1
strict-transport-security: max-age=86400 ; includeSubDomains ; preload
X-Firefox-Spdy: h2