Report - 9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/

Report Overview

Submitted URL
9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
IP
104.21.235.81
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 01:33:58
Access
public
Website Title
IPCAM - Teen girl give her boyfriend a jerk off on the sofa
Final URL
9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
9xbuddy.com	399695	2014-06-05	2014-10-07	2024-03-21	8.5 kB	232 kB	104.21.235.82
ab.9xbud.com	680170	unknown	2018-12-07	2024-03-24	2.1 kB	34 kB	188.114.97.1
dewerpicry.top	unknown	unknown	No data	No data	1.3 kB	1.9 kB	23.109.170.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	dewerpicry.top	Sinkholed
2024-05-04	medium	dewerpicry.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/	1.1 kB	2024-05-04	2024-05-04
Pretty URL 9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-04 03:34:05 Times Seen1 Hash 974923d31df3f020c735f7a39c728406 c130eacf366e7010508c2665f66340d2bf9e2679 7bbfba8ee5dd0d79e83331e774513ba7c84533721eccdc212a71c19603169954 Loading...

	9xbuddy.com/build/main.6ac395facebb07af7566.js	336 kB	2024-05-04	2024-05-13
Pretty URL 9xbuddy.com/build/main.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-13 14:51:23 Times Seen8 Hash 2d1130b47d460439a32428ad13adeb98 61541c0a5980007e94ff6e851e5be4c0695132a9 1b01dbe940879da9a0c7e86f0d912b0aa1dcffa2c247697a54c539cee242ddd4 Loading...

	9xbuddy.com/build/24.6ac395facebb07af7566.js	2.7 kB	2023-03-13	2024-05-16
Pretty URL 9xbuddy.com/build/24.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:16:26 Last Seen2024-05-16 20:57:12 Times Seen88 Hash 9e0c8ceced4c67d97bbfb7b5140c84ec 9846a26f19da27631f68c50302fcb834b75f4ab6 531d554235351c8ac0289b937de9d7238ff80d877a904045aa913920ee83e004 Loading...

	9xbuddy.com/build/19.6ac395facebb07af7566.js	21 kB	2023-03-13	2024-05-16
Pretty URL 9xbuddy.com/build/19.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:16:26 Last Seen2024-05-16 20:57:12 Times Seen150 Hash 0d89fe65f87cddedad6a912166e53208 a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6 f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8 Loading...

	9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-04	2024-05-04
Pretty URL 9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-04 03:34:05 Times Seen2 Hash 7a3eb01be0acd65c5e3932fd04bf57de 401cec79e0cc2c28ffa0d416334e19cf092c40f1 e343177c7909bee246744bf42965b27b03432dc5aa1d5e272c6e29656eed24ba Loading...

	9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/	13 kB	2024-05-04	2024-05-04
Pretty URL 9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-04 03:34:05 Times Seen1 Hash 5d36066da9c5cd5d76165672666655dd 2b64d05af11aac39b334adc59c9d073e5a682d4f 7c92df7692e6c3c0ad04ef6f626e062adf52d5588f9ec6d453392c224819c32b Loading...

	unknown	247 B	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-04 03:34:05 Times Seen1 Hash 1877af91b35002fd66843dec272a7448 cc77e33c81702f89b3102416574dc832c2d4836f b58f548c79955c83bcb54c1e2fea7485da185fe4e8e30d49ffb30b768e308cbf Loading...

	9xbuddy.com/build/7.6ac395facebb07af7566.js	8.2 kB	2024-05-04	2024-05-13
Pretty URL 9xbuddy.com/build/7.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-13 14:51:23 Times Seen8 Hash 5eea6ec2245ef30a583c0f8877bba359 079c2a541a04c968b29c28f083172cc16ef8f0e1 80303da6f6e9e66c5a89b08202e1dc22826b778edcc1d8c70f04e4e08d4414bf Loading...

	9xbuddy.com/build/70.6ac395facebb07af7566.js	24 kB	2024-05-04	2024-05-16
Pretty URL 9xbuddy.com/build/70.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-16 20:57:12 Times Seen12 Hash 7def9fb61377f2cd87a96f42086d5c66 fea447a230810dd3f11ce609012229efe7251ea6 b61f3a61b6588516b2a589699b20689c04b5d91d4ce54eee4e116493e6715474 Loading...

	9xbuddy.com/build/682.6ac395facebb07af7566.js	41 kB	2024-05-04	2024-05-13
Pretty URL 9xbuddy.com/build/682.6ac395facebb07af7566.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 03:34:05 Last Seen2024-05-13 14:51:23 Times Seen8 Hash 758f72849bd5f1b5e14e0fb2ce1a5bad b7f2ecef93b6ad57d8d00803c327f71e3aa6603a 2198e710fdb497eb0384715a6468de6f3e2c1f0c72d199c6d2dcb940888129e4 Loading...

	dewerpicry.top/rHH727qVeN4r6/7972	0 B	2023-03-07	2024-05-18
Pretty URL dewerpicry.top/rHH727qVeN4r6/7972 IP 23.109.170.212 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 10:10:38 Times Seen37779285 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	dewerpicry.top/1clkn/9537	6 B	2023-03-07	2024-05-18
Pretty URL dewerpicry.top/1clkn/9537 IP 23.109.170.212 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-18 09:29:22 Times Seen15106 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

HTTP Transactions (21)

URL IP Response Size

9xbuddy.com/build/291f13891176f90733ca.png

104.21.235.82

200 OK

2.5 kB

URL GET HTTP/3
9xbuddy.com/build/291f13891176f90733ca.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
PNG image data, 217 x 55, 8-bit colormap, non-interlaced
Size
2.5 kB (2501 bytes)
Hash
f19a76e1de03a1ecb9c45dcfb96bce41
2156ba7ed189b2f22b87e87eb9ffcaa7ebb4db0c
55340830b75351b2ad4154871c488f34c0b66c8cef18719f3f7a8f9dc190cd58

HTTP Headers

GET /build/291f13891176f90733ca.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 2501
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-9c5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FbnIWyS6zp12Fgt1va1Kvnp%2FOumxyIh6rVo6YjXsaJTmhTf1oCINcYi6lnsPYy9EHhJy08Vz%2FD1b%2B3StYzIHwEk38kFGAj4Y%2Fwi5uBqEVJNE06NBL%2FpUn4EUVabttQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4aeb2a23f4-LHR
alt-svc: h3=":443"; ma=86400

9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.235.82

302 Found

0 B

URL GET HTTP/3
9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sat, 04 May 2024 01:33:33 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pgdh3%2FGk%2Bdz3pIJHCZFVK53AQyTsuQUHSOk8uaO7jVB2KnSLNe1b5NgfN5qroLf%2F79N8y52PJOAbuXSLDGKpmLUN9c7ixYxUhw%2B9iEJE4f%2ByeAf3aFneYbT2bIWGww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c3c6623f4-LHR
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/7.6ac395facebb07af7566.js

104.21.235.82

200 OK

3.5 kB

URL GET HTTP/3
9xbuddy.com/build/7.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (8243), with no line terminators
Size
3.5 kB (3516 bytes)
Hash
5eea6ec2245ef30a583c0f8877bba359
079c2a541a04c968b29c28f083172cc16ef8f0e1
80303da6f6e9e66c5a89b08202e1dc22826b778edcc1d8c70f04e4e08d4414bf

HTTP Headers

GET /build/7.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-2033"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UaEpgjmuH2Vb14WmT8fASVOHPskXVpM3Z83giK7OZOIPVAN%2FWLNtXmn1cbrESxB4AHl5VmLPPNuLMgRv5uTTVG2X9AnilylYmPaikJmS6aTeGYiRp3%2B0rzsMEj01Rg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c2c5e23f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/icons/apple-touch-icon.png

104.21.235.82

200 OK

5.3 kB

URL GET HTTP/3
9xbuddy.com/icons/apple-touch-icon.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
5.3 kB (5323 bytes)
Hash
2a1f354702de7eb8d63c8f10d2d0beaf
5f42ee8dc3c78184fba322c0288776c86841f25d
447d4a8b2ef5e876f4bf0145893d9f300dd62a3a49ebbc04a49282a6e4c5475a

HTTP Headers

GET /icons/apple-touch-icon.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 5323
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-14cb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vgBC3PXYpw0Q6ofocfStWmYF8Bzp9%2Fd3g2FHI3yaX5vB4owuRAF5R5u%2F54Ns4vDGBcyrmpPenEeZ%2Fc1Jz%2BUBdCifeRYUc6HL90euBvhTRcrB%2B72b5ZXJq5LCArpw7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c6c8823f4-LHR
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/70.6ac395facebb07af7566.js

104.21.235.82

200 OK

7.8 kB

URL GET HTTP/3
9xbuddy.com/build/70.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (24012), with no line terminators
Size
7.8 kB (7768 bytes)
Hash
7def9fb61377f2cd87a96f42086d5c66
fea447a230810dd3f11ce609012229efe7251ea6
b61f3a61b6588516b2a589699b20689c04b5d91d4ce54eee4e116493e6715474

HTTP Headers

GET /build/70.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-5dcc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GKXKQZfabharvpYZXd2nus2FJEKjUWHidA0mHsC9g7iuC9o%2BocI9P8F6pbsWRd280TnBhMkqMKKfPzBXEnjfmyG8Ul6NEbPQUc9HsIg%2BrRj%2FrMOATSfFaU6y5CGxgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc423f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/main.6ac395facebb07af7566.js

104.21.235.82

200 OK

110 kB

URL GET HTTP/3
9xbuddy.com/build/main.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
110 kB (110487 bytes)
Hash
2d1130b47d460439a32428ad13adeb98
61541c0a5980007e94ff6e851e5be4c0695132a9
1b01dbe940879da9a0c7e86f0d912b0aa1dcffa2c247697a54c539cee242ddd4

HTTP Headers

GET /build/main.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-51e93"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZGjKIcNTnSqeAg3Ct%2BTCIZRhQdUNbJg%2B9YnEFoTDFwhRkunq0QLVwm8snBtSpnU0%2F8Se4AgoTf6FhctFqwUKnT9qcNm0ApCPxxK9AzEOmBAZGDjI1FfAla0vsIoPcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4aeb2d23f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

ab.9xbud.com/token

188.114.97.1

200 OK

12 kB

URL POST HTTP/2
ab.9xbud.com/token
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbud.com
Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD
ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT

File type
JSON text data
Size
12 kB (12270 bytes)
Hash
f7c9d1e747076a0ef2f345150159571f
790853e7175e92f6091674a6c2f65b97320d6c21
6cccedc81fa7574c0eaead1ac80b5ab9c26d5e9c0d7377a596165c4f5083db18

HTTP Headers

POST /token HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: b66YqpvK2mWT0c+bmZadm5pqk8OYm5mWnZuaapPDmJGky7JnpK2vlW+JhYeJv8CEcban3dvD25mdrJDXbmdmY22UmQ==
x-requested-domain: 9xbuddy.com
x-access-token: false
Content-Length: 2
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:34 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1q2rtBKQukk%2Bf%2FbOH6%2FTo1gtkCe%2BB4NiOPhHRDf7cP9KsryP%2B%2F5fK2FTYZyUcicWdgBEavrMfkuT%2FQR1%2F7h3M%2FqvGv0Nd6SWCa5s0ehL989mbPCn0H4oU9BYSCwygCg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be4f4b7e56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

9xbuddy.com/build/bddcb5cd2357411ec12c.png

104.21.235.82

200 OK

1.4 kB

URL GET HTTP/3
9xbuddy.com/build/bddcb5cd2357411ec12c.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
PNG image data, 320 x 180, 8-bit colormap, non-interlaced
Size
1.4 kB (1351 bytes)
Hash
0c669ae648cad87524bbd2f813f19456
c7157d3fa492f0538a94c40e78f64cdf073385ab
be0fb81b1e6a4c784bae40dd35e460aa956802ef7a292f41fe6b973bfe9786ca

HTTP Headers

GET /build/bddcb5cd2357411ec12c.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: image/png
content-length: 1351
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-547"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1987
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FndQynZh3mRaHXKyrKFa2kM0w2LW%2FV9eCHoupB0SgI9oT%2B9zn%2BsgIl7XRtO27NVGNvtPmbetIm6Vr8zY%2Ftj9zZSA%2FIQqRezPzi523qvluMQCeLM8%2FivwIkzLbyFfEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be585d2723f4-LHR
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/bddcb5cd2357411ec12c.png

104.21.235.82

200 OK

1.4 kB

URL GET HTTP/3
9xbuddy.com/build/bddcb5cd2357411ec12c.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
PNG image data, 320 x 180, 8-bit colormap, non-interlaced
Size
1.4 kB (1351 bytes)
Hash
0c669ae648cad87524bbd2f813f19456
c7157d3fa492f0538a94c40e78f64cdf073385ab
be0fb81b1e6a4c784bae40dd35e460aa956802ef7a292f41fe6b973bfe9786ca

HTTP Headers

GET /build/bddcb5cd2357411ec12c.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: image/png
content-length: 1351
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-547"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1987
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2BrWRjaX1Z7VHLSaypbzxXn7VTHTZMx1RvAUPDP%2Fvls2QNvPE1MaJK9LCJmAWk9p5dj3tISAbh53zQiQq13RioMXYxTmCaKSAdBSgVdo0RTV0u2otXKJd%2BN%2B1oRHAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be58ad5d23f4-LHR
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/682.6ac395facebb07af7566.js

104.21.235.82

200 OK

9.7 kB

URL GET HTTP/3
9xbuddy.com/build/682.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (41085), with no line terminators
Size
9.7 kB (9657 bytes)
Hash
758f72849bd5f1b5e14e0fb2ce1a5bad
b7f2ecef93b6ad57d8d00803c327f71e3aa6603a
2198e710fdb497eb0384715a6468de6f3e2c1f0c72d199c6d2dcb940888129e4

HTTP Headers

GET /build/682.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-a07d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOeCdhRSP4fm5bsBoj5P7r0xYTgrqT4izAAhok1bxyqW%2FopRsZmRI3urWpgKzxtcSnlz44izRJ6IMF%2FxcrP7ijsixg668k2SaBHd6d8zN%2Bl%2F9kACdf5ezGNpuxqhxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc523f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/19.6ac395facebb07af7566.js

104.21.235.82

200 OK

7.8 kB

URL GET HTTP/3
9xbuddy.com/build/19.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (20973), with no line terminators
Size
7.8 kB (7810 bytes)
Hash
0d89fe65f87cddedad6a912166e53208
a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6
f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8

HTTP Headers

GET /build/19.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-51ed"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dT84fw5j0eVrqRSnrMOsSd5jYcJI%2Flo9WbFK06hcVOVow2Ong0O4Mo1RNLGnAnDIFWjJxlDxpQX49pEjs35LsnwijjoCmjwC0H4P60ladjFYRkqelp8SrmgWOgfk6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc123f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/24.6ac395facebb07af7566.js

104.21.235.82

200 OK

5.9 kB

URL GET HTTP/3
9xbuddy.com/build/24.6ac395facebb07af7566.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (2728), with no line terminators
Size
5.9 kB (5943 bytes)
Hash
9e0c8ceced4c67d97bbfb7b5140c84ec
9846a26f19da27631f68c50302fcb834b75f4ab6
531d554235351c8ac0289b937de9d7238ff80d877a904045aa913920ee83e004

HTTP Headers

GET /build/24.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-aa8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TTU%2Fh6g16ci5FeThyOLL04UM4XUK7NKKaQ2n3lPDiEGrl5%2Bfg6ULPDhxjkFDOVUjFlcKFtmEfYyGhn4CKjIcY901%2BmNpOIqFokzpg0UZwQatAnRult%2BjF7GlhXSL7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc223f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js

104.21.235.82

200 OK

7.9 kB

URL GET HTTP/3
9xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
JavaScript source, ASCII text, with very long lines (7852), with no line terminators
Size
7.9 kB (7852 bytes)
Hash
7a3eb01be0acd65c5e3932fd04bf57de
401cec79e0cc2c28ffa0d416334e19cf092c40f1
e343177c7909bee246744bf42965b27b03432dc5aa1d5e272c6e29656eed24ba

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HD8hO17Pd7NBiQ9CC0Bmfc8hiGHp4%2FAoNQpGbccSC5kdnIxb8JvcsKRNM025jR0pc9rFyV6mJV9bztFon7wCf0obOyCaAKcolX4F8aUOYik80fX8SLPN0Ri6Y34p1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e4be4cccda23f4-LHR
alt-svc: h3=":443"; ma=86400

ab.9xbud.com/extract

188.114.97.1

200 OK

0 B

URL OPTIONS HTTP/2
ab.9xbud.com/extract
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbud.com
Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD
ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /extract HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FmgShX%2FMpwusc4wxa%2Fj52dDdgRvT8SIFd%2BsOH95y6J2bnpR2QLlMW8GllfFmPBN6ipBxQjE2ZCQXLUn8Kuujs4JLnCaDqavTn7fkjq9Zeh6B57EcQ6zIhoRsNA%2FM49Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be4fcba756a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ab.9xbud.com/extract

188.114.97.1

200 OK

19 kB

URL POST HTTP/3
ab.9xbud.com/extract
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbud.com
Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD
ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT

File type
JSON text data
Size
19 kB (18756 bytes)
Hash
c48a8a0e6a7271ac015738cbbd7a7189
d01b1194a4ea7cdb165ead8173ac09d92850b9b8
37e81e4ce2f33e06b674b00f11bb22d00078911435b3448ff99cf942704f3979

HTTP Headers

POST /extract HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: b66YqpvK2mWT0c+bmZadm5pqk8OYm5mWnZuaapPDmJGky7JnpK2vlW+JhYeJv8CEcban3dvD25mdrJDXbmdmY22UmQ==
x-requested-domain: 9xbuddy.com
x-access-token: cWePnGNnaZiPlJqWyqSr0dlxZGVvqZKjmpKxZMTSoGlehqjIyM3RX2mRl2dlZ2ZiUHSfoJ2c0NticmuUkZOckpY=
Content-Length: 248
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LGnkf5WmEE2wqoyAw7ACKtrO%2BR88yignCQTtoBKr3dsJ7ReZdVArQWO2sM4oc7ctKCWiMx4x6oYe7Zb6rHchWYgXyDvECkvNdmZYZ6651R248EZ7ld97lS5KsaV%2FE30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be503ecb568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/build/main.6ac395facebb07af7566.css

104.21.235.82

200 OK

34 kB

URL GET HTTP/3
9xbuddy.com/build/main.6ac395facebb07af7566.css
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
ASCII text, with very long lines (33979)
Size
34 kB (34043 bytes)
Hash
77c104a4d6d731ef1d0a576f44229d26
f9c7f7c6dbaa981a8f08a8fe7868e78042d71ae1
c92c7409b5bae6e8b27d3cb8aff612ad5412dda418aa4f201e653efcea6150c1

HTTP Headers

GET /build/main.6ac395facebb07af7566.css HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/css
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-84fb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eZqovYD7gPkuZqsJvUIMAUNZQ5cUFUzM5G44O5OClazz5WwmjelvJfxz8WaRqd%2BU4nGLdSsOLCSmi8bzZIqy39lz0UWaQ6iaTXosNJVQSjvXDlaNasRiOCddI%2FMD6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4adb2823f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557

104.21.235.82

200 OK

0 B

URL POST HTTP/3
9xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557 HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12231
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag; path=/; expires=Sun, 04-May-25 01:33:33 GMT; domain=.9xbuddy.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Na71ekNH2088x5scLi0sb2wbvHJUEr8Kstt4yPI5a8sZLxLTaxYKazcgr5vAivK7ftk3yv6dinLSgSDD6NGG3yLnLeHDbiy1hD1WSNp4kmyw23JVxQRZ0p00IqDGNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4dfd9b23f4-LHR
alt-svc: h3=":443"; ma=86400

dewerpicry.top/rHH727qVeN4r6/7972

23.109.170.212

200 OK

0 B

URL GET HTTP/1.1
dewerpicry.top/rHH727qVeN4r6/7972
IP
23.109.170.212:443
ASN
#7979 SERVERS-COM

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subjectdewerpicry.top
Fingerprint26:89:4F:4E:AD:A8:97:43:7A:80:93:3B:41:74:A3:22:9F:DA:E3:25
ValidityMon, 15 Apr 2024 06:57:35 GMT - Sun, 14 Jul 2024 06:57:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rHH727qVeN4r6/7972 HTTP/1.1
Host: dewerpicry.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 01:33:36 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://9xbuddy.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 05-May-2024 01:33:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 05-May-2024 01:33:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/

104.21.235.82

200 OK

20 kB

URL User Request GET HTTP/2
9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
HTML document, ASCII text, with very long lines (13324)
Size
20 kB (20167 bytes)
Hash
43b2f22e9564419dadab687c40fcee10
44d8a735686e0f5efe8054e821eac441c2799eb5
188f716bbe61fda62da00ca3ac34febeaf9707f07ec0675cfcd6591783663cb5

HTTP Headers

GET /process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RA%2B87qlvOIXdqbGI%2FGySb6jkum7ixqw2A6V%2BlvD5Bdr2DJuMc9qH5hEVDH6R%2BFFTk7LYaRv1qQJ%2FlohF2H1%2FE3ZhKYvpEs0g4ZNKZqg4NObCfBi%2BZ0dXK0F4xCuBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be492fe39557-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

9xbuddy.com/icons/favicon-16x16.png

104.21.235.82

200 OK

680 B

URL GET HTTP/3
9xbuddy.com/icons/favicon-16x16.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subject9xbuddy.com
Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86
ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
680 B (680 bytes)
Hash
f310dc4b30e94e078aa3d8ce14a93a7d
f6b2f0419a8bb65aafd4c185079584494439cf4a
5261947833061f72396f2e0f6b27598ae37585d8de6da4bed8df9f683181aaab

HTTP Headers

GET /icons/favicon-16x16.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 680
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-2a8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1985
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6tp25gKUz%2F6h3CJQ8l83GwGxJgJKR1m8FoW6BaOl5wjtH5RgnnFz5sQref4Tdi%2B82BOVQQXtiYTxlr275OOY1x9tnk5BtGwWCzJJwTvMjO3gfVHSOeEWVYciWzAvgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c6c8c23f4-LHR
alt-svc: h3=":443"; ma=86400

dewerpicry.top/1clkn/9537

23.109.170.212

200 OK

6 B

URL GET HTTP/1.1
dewerpicry.top/1clkn/9537
IP
23.109.170.212:443
ASN
#7979 SERVERS-COM

Requested by
https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Certificate
IssuerLet's Encrypt
Subjectdewerpicry.top
Fingerprint26:89:4F:4E:AD:A8:97:43:7A:80:93:3B:41:74:A3:22:9F:DA:E3:25
ValidityMon, 15 Apr 2024 06:57:35 GMT - Sun, 14 Jul 2024 06:57:34 GMT

File type
ASCII text, with no line terminators
Size
6 B (6 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/9537 HTTP/1.1
Host: dewerpicry.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 01:33:36 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL