| www.limetorrents.lol/home | 188.114.97.1 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1www.limetorrents.lol/home IP188.114.97.1:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /home HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 28 Mar 2024 17:05:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 28 Mar 2024 18:05:37 GMT
Location: https://www.limetorrents.lol/home
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w019PlTZQmXbGyeoSiICWxHtFhLTPMdDoCsErfsae58I4sXazq%2FIpq3%2B5qam0c%2B%2Fjn2F0zEpt3cLJvzMEM%2FelfcsE%2Fsk1ihaMJGNVlMH0%2BS1bHxtXpYadyu6d8El4iKT%2F2jnA5UtWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 86b934bf6d2b56c3-OSL
alt-svc: h2=":443"; ma=60
|
|
| www.limetorrents.lol/home | 188.114.96.1 | 301 Moved Permanently | 27 kB |
URL User Request GET HTTP/1.1www.limetorrents.lol/home IP188.114.96.1:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (30904) Hash4b8cfc091817fc2630a571ae422d9fd6 fb3974d18b292bd0aba9e647a07e4a6ea62b2dbf 1f39f71b8366d4bc429616e6f25ab5947f2758902e0c09859037ad4a33821675
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /home HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: text/html; charset=utf-8
expires: Thu, 28 Mar 2024 16:36:42 GMT
pragma: cache
cache-control: public, max-age=120, s-maxage=120, stale-if-error=300, stale-while-revalidate=30
link: </static/main-20.css>; rel="preload"; as="style", </js/javascript.js>; rel="preload"; as="application/javascript", </js/jquery.min.js>; rel="preload"; as="application/javascript"
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
front-end-https: on
x-cache-status: HIT
cf-cache-status: HIT
age: 60
last-modified: Thu, 28 Mar 2024 17:04:37 GMT
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yTFVccEo6MdRJNb0MxaNaIYTDX29r44TXQsY%2FP3qACbSmYLaNLHa6yI4kONa%2BKenuSY92x%2BNRlQcz5z%2BGQ7Ndl%2F8P4YDBdsBFnxxkt5D1vz10As%2FXWfrD108A4cxPbdWR2BwzTHbOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b934bf7e6f568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| itorrents.org/torrent/B40F5D6356190A68225B43B300299415B86DFB59.torrent?title=[Bitsearch.to]drawboard-pdf-2016-soft-for-pc%20-%20Downloader.exe | 104.26.14.170 | 302 Found | 503 B |
URL User Request GET HTTP/2itorrents.org/torrent/B40F5D6356190A68225B43B300299415B86DFB59.torrent?title=[Bitsearch.to]drawboard-pdf-2016-soft-for-pc%20-%20Downloader.exe IP104.26.14.170:443
CertificateIssuerLet's Encrypt Subjectitorrents.org Fingerprint15:A6:FA:48:2C:22:16:4A:AF:A2:6F:29:52:01:A9:E5:A6:14:08:3D ValidityFri, 15 Mar 2024 01:56:18 GMT - Thu, 13 Jun 2024 01:56:17 GMT
Hash88d39baf3c13cabd3ebad7696d9928f8 211d9f9c9b1a8c900221ac90959321e651aa061d a5ecf006124d328b17ec9505dc76d04f6a85547d7f268f2b47dea70c02297752
GET /torrent/B40F5D6356190A68225B43B300299415B86DFB59.torrent?title=[Bitsearch.to]drawboard-pdf-2016-soft-for-pc%20-%20Downloader.exe HTTP/1.1
Host: itorrents.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 17:05:35 GMT
content-type: text/html; charset=UTF-8
location: https://www.limetorrents.info/home/
torrent-missing: 1
cache-control: public, max-age=2592000
expires: Sat, 27 Apr 2024 17:05:35 GMT
x-cache-status: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7me7%2By%2FjJjGf7LQGTJ0i14O%2BlkTLf19aoVq7PWTMb3O4HK5BusYX3uIXECqV88TULlqdU7fnE%2B9n%2FPyQgJ73OUWeg1oCeOdXyaCZKOi1gfhjy%2Fyfn7TuaZhp9cye5Gg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934b59b0bb503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/js/jquery.min.js | 188.114.96.1 | 200 OK | 94 kB |
URL GET HTTP/3www.limetorrents.lol/js/jquery.min.js IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65483) Hash3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.min.js HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript
content-length: 93636
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
etag: "5e5eacb4-16dc4"
expires: Mon, 22 Apr 2024 05:16:22 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: MISS
cf-cache-status: HIT
age: 474554
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VI22D4K1elGksRiMlOtuUdzxsiqpl3QFzKRr1m9JWI0wt72%2FQXfCOB8ESMT8C6FnP9u%2FkrqFX0sd8C0ACtZk6Dn6mvwI5aMUNROJ4V%2F2QV22cVm1oqG1M9zoJz9Mww5X%2FrGkBGI%2FPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c14865568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.limetorrents.lol/js/javascript.js | 188.114.96.1 | 200 OK | 4.9 kB |
URL GET HTTP/3www.limetorrents.lol/js/javascript.js IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typeASCII text, with very long lines (320) Hash646cad4bc4c1ce3ef3f6f7a5db2a4a7a 4fbb17e9abbc01f5f73a2c1e73481063515e380b c77d7112ae4b3874d2cacce159181a40bec1f854568cc323546e7dfbb508b420
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/javascript.js HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript
content-length: 4947
last-modified: Tue, 03 May 2022 03:38:15 GMT
etag: "6270a3a7-1353"
expires: Tue, 23 Apr 2024 04:14:23 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: MISS
cf-cache-status: HIT
age: 391874
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uY5XUJlCFKW3Zuy8Wd7g%2BnuHuYfyaI24hhGkGZ%2Bt3oc%2FKgAHPpTf1s0Fz2Pj2sVoM32zw5sjWGA5JO1VJhaCgeWHqPB1i9bgDSg6N33lJhEgt8vZjYaE%2BgwGyUkI1LFzeKue016Eag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c14867568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.limetorrents.lol/static/images/lime123.png | 188.114.96.1 | 200 OK | 14 kB |
URL GET HTTP/3www.limetorrents.lol/static/images/lime123.png IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash587ad7f5a18cf5a6242d8bdfc694f4cd a7a9bb02ab630ce1cd7fe929dc0974336fa208f6 fe0d2eb273aeab2946d4a2ffe782254a546d799281428b22d2e483106b0e4db3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/images/lime123.png HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: image/png
content-length: 13619
last-modified: Sun, 08 Jul 2018 16:22:51 GMT
etag: "5b423a5b-3533"
expires: Sat, 30 Mar 2024 10:47:19 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: MISS
cf-cache-status: HIT
age: 2441898
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hH1vbtwNlMusvlsAOXBfC9oWXy%2BplvrdrqIu9F6UqehRs6bRi8HE0Sw1RT8IJ20RFwNlKWwL9YGZKXkqbCgpFcRZPoCh4qJNFGihDUXnXrYjYW6P7upV%2BS3zUFqDtSMah3pZeDC%2FEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c14866568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.limetorrents.lol/static/main-20.css | 188.114.96.1 | 200 OK | 2.9 kB |
URL GET HTTP/3www.limetorrents.lol/static/main-20.css IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typegzip compressed data, from Unix Hash098073ab90159cc353ccc6b4c10b5d7d 58197fdb66eca4d4c92f2f1b272515f4b900258c ba7b98a81837f9783284c7dada31cb199563028b70fbbe2bd752da705a41fc6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/main-20.css HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 03 Jan 2019 21:45:12 GMT
etag: W/"5c2e8268-3b08"
expires: Sat, 20 Apr 2024 04:15:35 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: STALE
content-encoding: gzip
cf-cache-status: HIT
age: 651002
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UKZQQGBYRgp0WKbSqFVXJt26CvYeNtCU5DXoCv%2Bu%2FdrzwNj61ceLN9gljISkFj5TfoNNSribtvYxjUzEC%2Fw8tIxkCu%2FnGRvagzoUyMuARBxf%2Fzg%2BRtSQVOp209HeLEJw%2FgTLw3gGzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b934c13863568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.limetorrents.lol/static/images/healthbars/healthbars2.png | 188.114.96.1 | 200 OK | 37 kB |
URL GET HTTP/3www.limetorrents.lol/static/images/healthbars/healthbars2.png IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typePNG image data, 798 x 330, 8-bit colormap, non-interlaced Hashab150393bcecce0f43a9220ca7baefd2 7d69a7e303c466034c9d5f50d6585bacd7d48eae d2ea0647db1dfe187b274b805287b4ead2bad8748577119f5a8f3c1384e20876
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/images/healthbars/healthbars2.png HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/static/main-20.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: image/png
content-length: 37126
last-modified: Sat, 04 Oct 2014 22:31:55 GMT
etag: "5430755b-9106"
expires: Fri, 29 Mar 2024 05:08:12 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: HIT
cf-cache-status: HIT
age: 2548645
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9jnHVY6Qk3WGhUN871RV0bidILDFnhIVwSCa%2F1WMYnc2RTmskFNoDUXnf7UiozYFHnE2mPJZV2M%2Bfip43WxtETnowMWRMmwZE6qK1MejOu9PiIinZ4BLOy5RO5SLVUoff1ZIpe99Vw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c1e916568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.limetorrents.lol/static/images/logo_new.png | 188.114.96.1 | 200 OK | 8.8 kB |
URL GET HTTP/3www.limetorrents.lol/static/images/logo_new.png IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typePNG image data, 459 x 59, 8-bit colormap, non-interlaced Hashc5b91a5ffa53cd3de8fa3685b52d3475 04f956d4481004176e695cb106e943f6d99a34dc 82ed84c7adffc95cb9d5e45c2c3acd136242666387c60060fcea6fa2de6a9daa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/images/logo_new.png HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/static/main-20.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: image/png
content-length: 8801
last-modified: Tue, 08 Mar 2016 20:18:55 GMT
etag: "56df33af-2261"
expires: Sat, 20 Apr 2024 05:45:09 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: HIT
cf-cache-status: HIT
age: 645628
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oQN15NB16irx%2FsNQYtV45o3oh0SU%2FLcwjWQ4TffaDGrDc%2BPZwawJD2X31UcXYiref3JB89uC7ZVY%2FvGj9ykCsBQzxprY8wMe4xZ7CctBbGlU8e1ZpyaSkbwf4wviCPi%2FvXP0Oj9RmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c1e919568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=UA-124169196-1 | 142.250.74.168 | 200 OK | 75 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-124169196-1 IP142.250.74.168:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintDE:42:E4:CC:E5:66:70:09:F3:E6:6E:57:B7:5E:22:0A:A3:03:C2:7C ValidityMon, 26 Feb 2024 08:03:40 GMT - Mon, 20 May 2024 08:03:39 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash27c163777cdd074d8a0d02e8390d9d03 3160367701fc56749c8cf37e9b8b85bb88d8c2df 102f624bacdf0d3dc84c121c7ddee0c9e26b98591c45b4a56ade0c22f0dd52be
GET /gtag/js?id=UA-124169196-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 28 Mar 2024 17:05:37 GMT
expires: Thu, 28 Mar 2024 17:05:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/js/jquery.min.js | 188.114.96.1 | 200 OK | 94 kB |
URL GET HTTP/3www.limetorrents.lol/js/jquery.min.js IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65483) Hash3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.min.js HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript
content-length: 93636
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
etag: "5e5eacb4-16dc4"
expires: Mon, 22 Apr 2024 05:16:22 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: MISS
cf-cache-status: HIT
age: 474554
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wb%2BxNKhVW3FJJ6M5rTaSAi7SAV9a0tVffK50H%2FwOFbhkVBhFZldhZhF4xSw1JADhdwF2MzW3xvHZW8gDrKSmjj3cau71Aa8B9Mwzrhlc51pZbTGYhHRpzbC5YZrAoWGWwxq4K9xC1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c26977568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| lmajm.lbylqeravmrmk.top/kwjbrrlejawmj/mjzwqy?d=1 | 23.109.170.86 | 200 OK | 20 B |
URL GET HTTP/1.1lmajm.lbylqeravmrmk.top/kwjbrrlejawmj/mjzwqy?d=1 IP23.109.170.86:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectlmajm.lbylqeravmrmk.top Fingerprint5C:BD:D2:4E:A0:21:AD:57:96:A8:4A:36:5E:F8:66:F9:5D:3F:92:D8 ValiditySat, 16 Mar 2024 14:09:50 GMT - Fri, 14 Jun 2024 14:09:49 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /kwjbrrlejawmj/mjzwqy?d=1 HTTP/1.1
Host: lmajm.lbylqeravmrmk.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 28 Mar 2024 17:05:37 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.limetorrents.lol
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 29-Mar-2024 17:05:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Fri, 29-Mar-2024 17:05:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| push-sdk.com/f/sdk.js?z=888955 | 157.90.33.72 | 200 OK | 15 kB |
URL GET HTTP/2push-sdk.com/f/sdk.js?z=888955 IP157.90.33.72:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectpush-sdk.com Fingerprint6C:29:5F:20:AE:C1:DC:30:84:F6:78:24:24:5D:3D:B3:EF:85:A5:A2 ValidityThu, 15 Feb 2024 03:33:57 GMT - Wed, 15 May 2024 03:33:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (53344), with no line terminators Hashf25dc1587ebc5a30e3ba48b7b40f7b42 f5729d7b87661e4a0eb540163437b888739a3887 00cc1d6f8359763349a09d2c5b32b6d1de9b0642a6838c22ee34e9b329447da5
GET /f/sdk.js?z=888955 HTTP/1.1
Host: push-sdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Angie
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 14884
content-encoding: gzip
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-G7T69NTZLT&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-G7T69NTZLT&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintDE:42:E4:CC:E5:66:70:09:F3:E6:6E:57:B7:5E:22:0A:A3:03:C2:7C ValidityMon, 26 Feb 2024 08:03:40 GMT - Mon, 20 May 2024 08:03:39 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hashf00441ba08c2bf9d562ea4bc67d3511a 8bc78ac41c1cd7d105c5634f232a57f415b4627b 0a1c4a3dcdf1e102e4cfe45591e606ff3cf04b7fb2df9ef44209141063cf98e7
GET /gtag/js?id=G-G7T69NTZLT&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 28 Mar 2024 17:05:37 GMT
expires: Thu, 28 Mar 2024 17:05:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87983
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| na.nawpush.com/tags/155441?version_name=c | 45.133.44.24 | 200 OK | 1.3 kB |
URL GET HTTP/2na.nawpush.com/tags/155441?version_name=c IP45.133.44.24:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectna.nawpush.com FingerprintE4:8A:6D:1E:95:BA:50:33:94:D3:16:FE:4C:61:AA:DE:72:B1:70:87 ValidityThu, 28 Mar 2024 03:00:38 GMT - Wed, 26 Jun 2024 03:00:37 GMT
Hash7baa8fea708a9e90327d7265bdfbe14d bb6d36a571e383b15d867bd099a62fb50a0c4e8c b8de79b5215919e3900c3c7f6026253a8ecf3c41ec17fca7acdbae580147929f
GET /tags/155441?version_name=c HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/json
content-length: 1317
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| push-sdk.com/event?z=888955 | 157.90.33.72 | 200 OK | 0 B |
URL POST HTTP/2push-sdk.com/event?z=888955 IP157.90.33.72:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectpush-sdk.com Fingerprint6C:29:5F:20:AE:C1:DC:30:84:F6:78:24:24:5D:3D:B3:EF:85:A5:A2 ValidityThu, 15 Feb 2024 03:33:57 GMT - Wed, 15 May 2024 03:33:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event?z=888955 HTTP/1.1
Host: push-sdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Angie
date: Thu, 28 Mar 2024 17:05:37 GMT
content-length: 0
access-control-allow-origin: https://www.limetorrents.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/favicon.ico | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3www.limetorrents.lol/favicon.ico IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash3f684395269b25f113ab99742e17376c 486d541a4fee4a1abfc66bf1a3d598ea8877c665 44ce0ebc4d7b6c3568505da4ec0bc926fb42c39d3804862e7eba736eb4686d01
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Cookie: _ga_G7T69NTZLT=GS1.1.1711645538.1.0.1711645538.0.0.0; _ga=GA1.1.949169476.1711645538
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Tue, 31 Jul 2018 14:12:40 GMT
etag: "5b606e58-47e"
expires: Sun, 21 Apr 2024 05:29:07 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: HIT
cf-cache-status: HIT
age: 560191
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XEMGyUhoNB9dQQY8od1g2WPqTRskDe4b6BTBnx8cwacrxweydOTfPgikTrA%2BhWeAaRxly9N0ehoRSQ21D%2FmqgJ1ORG4QR9M0pdtp3H3UfqWvFLsdHLJ5e%2FqQAOS7440wgiEWPRfSVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c53c74568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| js.capndr.com/advertising.js | 45.133.44.53 | 200 OK | 0 B |
URL GET HTTP/2js.capndr.com/advertising.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectjs.capndr.com Fingerprint62:A4:EA:AD:53:4D:AB:37:8E:A1:66:48:0B:25:9A:4C:AB:69:72:2D ValidityWed, 21 Feb 2024 03:00:58 GMT - Tue, 21 May 2024 03:00:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Thu, 28 Mar 2024 17:10:38 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/cdn-cgi/rum? | 188.114.96.1 | 204 No Content | 0 B |
URL POST HTTP/3www.limetorrents.lol/cdn-cgi/rum? IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/rum? HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1056
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Cookie: _ga_G7T69NTZLT=GS1.1.1711645538.1.0.1711645538.0.0.0; _ga=GA1.1.949169476.1711645538
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 28 Mar 2024 17:05:38 GMT
access-control-allow-origin: https://www.limetorrents.lol
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 86b934c5bcf1568b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| fp.metricswpsh.com/fp?tag_id=155441 | 157.90.84.242 | 200 OK | 0 B |
URL POST HTTP/1.1fp.metricswpsh.com/fp?tag_id=155441 IP157.90.84.242:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net FingerprintA2:EC:CC:FD:67:81:87:1E:A9:74:D0:4F:59:97:A1:FF:E5:80:46:35 ValidityFri, 09 Feb 2024 09:02:05 GMT - Thu, 09 May 2024 09:02:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=155441 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.limetorrents.lol/
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Thu, 28 Mar 2024 17:05:38 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www.limetorrents.lol
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
|
|
| ntvpforever.com/keywords | 157.90.84.246 | 200 OK | 0 B |
IP157.90.84.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net FingerprintA2:EC:CC:FD:67:81:87:1E:A9:74:D0:4F:59:97:A1:FF:E5:80:46:35 ValidityFri, 09 Feb 2024 09:02:05 GMT - Thu, 09 May 2024 09:02:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /keywords HTTP/1.1
Host: ntvpforever.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.limetorrents.lol/
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.20.1
date: Thu, 28 Mar 2024 17:05:38 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| 6df90c4978.0eade9dd8d.com/in/track?data=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 | 45.133.44.53 | 200 OK | 0 B |
URL GET HTTP/26df90c4978.0eade9dd8d.com/in/track?data=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 IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subject6df90c4978.0eade9dd8d.com Fingerprint01:34:0E:1C:C5:1C:B9:F4:1D:35:C2:39:3D:5C:7C:13:DE:73:C3:CD ValidityMon, 25 Mar 2024 02:50:25 GMT - Sun, 23 Jun 2024 02:50:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/track?data=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 HTTP/1.1
Host: 6df90c4978.0eade9dd8d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| js.wpushsdk.com/npc/sdk/wpu/npush.m.js | 45.133.44.52 | 200 OK | 46 kB |
URL GET HTTP/2js.wpushsdk.com/npc/sdk/wpu/npush.m.js IP45.133.44.52:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectjs.wpushsdk.com Fingerprint79:0D:66:14:F6:A5:38:F8:56:11:BB:D8:90:A0:BB:AD:89:47:0E:2B ValidityTue, 12 Mar 2024 05:00:39 GMT - Mon, 10 Jun 2024 05:00:38 GMT
File typegzip compressed data, from Unix Hashfa549f6dce2fee5b143a491fc57f7b41 bc0b03d46f8bacb1c496e3aebaf9a63cb6fa6de6 d0fc2178c7ca55594454af56837def9f50587d61feb4b02c18fa297d252455f5
GET /npc/sdk/wpu/npush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 26 Mar 2024 10:50:33 GMT
etag: W/"6602a879-28936"
content-encoding: gzip
expires: Thu, 28 Mar 2024 17:10:38 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ntvpforever.com/keywords | 157.90.84.246 | 200 OK | 15 B |
IP157.90.84.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net FingerprintA2:EC:CC:FD:67:81:87:1E:A9:74:D0:4F:59:97:A1:FF:E5:80:46:35 ValidityFri, 09 Feb 2024 09:02:05 GMT - Thu, 09 May 2024 09:02:04 GMT
Hash32323194b8b07fd0aa9b6f7fc79a7b30 ea248c45722bff267b55a453dc794bc42171cef6 080040b4937f3f423f32cd7f19b2a79ba1e1e213f1d9f4f4db4f609d4ad778d8
POST /keywords HTTP/1.1
Host: ntvpforever.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 279
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: application/json
content-length: 15
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| nereserv.com/in/dip?site=native-push&wl=0&event_id=f16ebb95-c05d-4866-97e7-04a81017cff8&subid=1903296316&sid=1597951745&spot_id=519596&created_at=2024-03-28&timezone=0&ver=8.155.1&is_native=1 | 157.90.84.246 | 200 OK | 0 B |
URL GET HTTP/2nereserv.com/in/dip?site=native-push&wl=0&event_id=f16ebb95-c05d-4866-97e7-04a81017cff8&subid=1903296316&sid=1597951745&spot_id=519596&created_at=2024-03-28&timezone=0&ver=8.155.1&is_native=1 IP157.90.84.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net FingerprintA2:EC:CC:FD:67:81:87:1E:A9:74:D0:4F:59:97:A1:FF:E5:80:46:35 ValidityFri, 09 Feb 2024 09:02:05 GMT - Thu, 09 May 2024 09:02:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=0&event_id=f16ebb95-c05d-4866-97e7-04a81017cff8&subid=1903296316&sid=1597951745&spot_id=519596&created_at=2024-03-28&timezone=0&ver=8.155.1&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 28 Mar 2024 17:05:38 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| zerossl.ocsp.sectigo.com/ | 172.64.149.23 | | 316 B |
URL zerossl.ocsp.sectigo.com/ IP172.64.149.23:0
Hash6cb7a64d59ee3b90833e442330dd3f06 2b02b62e7aa3259d72973b0aa4656d29f887903d 040973caf6429663cf98779a5b524fdfabd3a35d9df3fc8152b9bec4fd0b4226
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 17:05:38 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Tue, 26 Mar 2024 07:43:19 GMT
Expires: Tue, 02 Apr 2024 07:43:18 GMT
Etag: "2b02b62e7aa3259d72973b0aa4656d29f887903d"
Cache-Control: max-age=399100,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 86b934c96cf1569c-OSL
|
|
| zerossl.ocsp.sectigo.com/ | 172.64.149.23 | | 316 B |
URL zerossl.ocsp.sectigo.com/ IP172.64.149.23:0
Hash6cb7a64d59ee3b90833e442330dd3f06 2b02b62e7aa3259d72973b0aa4656d29f887903d 040973caf6429663cf98779a5b524fdfabd3a35d9df3fc8152b9bec4fd0b4226
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 17:05:38 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Tue, 26 Mar 2024 07:43:19 GMT
Expires: Tue, 02 Apr 2024 07:43:18 GMT
Etag: "2b02b62e7aa3259d72973b0aa4656d29f887903d"
Cache-Control: max-age=399336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 86b934c9686e56ca-OSL
|
|
| accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube | 64.233.165.84 | 302 Found | 0 B |
URL GET HTTP/2accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube IP64.233.165.84:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectaccounts.google.com Fingerprint6B:18:FE:43:B5:AE:33:D0:BE:D8:99:83:5B:4E:A1:90:40:F1:06:1B ValidityMon, 04 Mar 2024 07:19:09 GMT - Mon, 27 May 2024 07:19:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:ooldBpoMtaFcksSwx-2BUvTGoahihw:ME6r1w-iJVBHyudE; Expires=Sat, 28-Mar-2026 17:05:38 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 28 Mar 2024 17:05:38 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKJVFT3LZLWxEpRfJgQdq77z8ml60wW6IcZTREaaUv_iqY9NaqCZTefWtKkGEP_B5Z3BJUnVFg
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-HhiqyCORo_y_khxMDUZUBQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| a18707820b.20001d1a3a.com/in/multy | 168.119.25.102 | 204 No Content | 0 B |
URL OPTIONS HTTP/2a18707820b.20001d1a3a.com/in/multy IP168.119.25.102:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerZeroSSL Subject20001d1a3a.com FingerprintD7:28:FE:A3:07:32:E6:33:3C:CF:1D:0A:DC:A4:40:9B:9B:75:A9:57 ValidityTue, 26 Mar 2024 00:00:00 GMT - Mon, 24 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /in/multy HTTP/1.1
Host: a18707820b.20001d1a3a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.limetorrents.lol/
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.18.0
date: Thu, 28 Mar 2024 17:05:38 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKJVFT3LZLWxEpRfJgQdq77z8ml60wW6IcZTREaaUv_iqY9NaqCZTefWtKkGEP_B5Z3BJUnVFg | 64.233.165.84 | 302 Found | 432 B |
URL GET HTTP/2accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKJVFT3LZLWxEpRfJgQdq77z8ml60wW6IcZTREaaUv_iqY9NaqCZTefWtKkGEP_B5Z3BJUnVFg IP64.233.165.84:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectaccounts.google.com Fingerprint6B:18:FE:43:B5:AE:33:D0:BE:D8:99:83:5B:4E:A1:90:40:F1:06:1B ValidityMon, 04 Mar 2024 07:19:09 GMT - Mon, 27 May 2024 07:19:08 GMT
File typeHTML document, ASCII text, with very long lines (406) Hash9f37d572e91752d10dcabb7963541617 202cc0057c26e1af2c8a3dfd45e149dc1a992938 0a71c658117215fbf89058c84dc222a56e1496a8b2a1423eb9f4a0acb83d85a7
GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKJVFT3LZLWxEpRfJgQdq77z8ml60wW6IcZTREaaUv_iqY9NaqCZTefWtKkGEP_B5Z3BJUnVFg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:STu7TnhiCEpMAGx5naVzpD8NhkrLoQ:IZ1PpL3ZW9aWCPRd;Path=/;Expires=Sat, 28-Mar-2026 17:05:38 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 28 Mar 2024 17:05:38 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKJMS0winTL_djwPEF1-42kRJDMWhdX6MnV2qzexzEo-gQ1jcZdKClaqvz_P-KLjE2SCmCVZSQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140657293%3A1711645538927641&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-bAezv2sodCWOnfg4GFsVTA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 432
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| a18707820b.20001d1a3a.com/in/multy | 168.119.25.102 | 204 No Content | 3.8 kB |
URL OPTIONS HTTP/2a18707820b.20001d1a3a.com/in/multy IP168.119.25.102:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerZeroSSL Subject20001d1a3a.com FingerprintD7:28:FE:A3:07:32:E6:33:3C:CF:1D:0A:DC:A4:40:9B:9B:75:A9:57 ValidityTue, 26 Mar 2024 00:00:00 GMT - Mon, 24 Jun 2024 23:59:59 GMT
Hashf1b5b8cd11c211439f7600ca81d9cf60 322f790dba47c7c9d54597a90a0f09492e4ab5de ed6931c58a73cab5dc6cbae15658e3ad11b8fe6084f27893df4ef372c799d71e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /in/multy HTTP/1.1
Host: a18707820b.20001d1a3a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1878
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 28 Mar 2024 17:05:39 GMT
content-type: application/json
content-length: 3762
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| a18707820b.20001d1a3a.com/in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=&crtid=a2fb565214fd8ce4dec5e22576ea962f&url=https%3A%2F%2Fvv-film.com%2Fcheck-check-bots%3Furl%3Dhttps%253A%252F%252Fengine.blehcourt.com%252FRedirect.eng%253FMediaSegmentId%253D0%2526TempMediaId%253De09092a7-c175-44a7-bf7a-d2135d1b4a44%2526dcid%253D1_ctx_667a6998-4b86-40c6-bfcd-637ae435ee67%2526timeZoneOffset%253D%2526xml%253D1%2526feedId%253D150&icons=JMfJqN5L69wuYX83KtRCqn3odPogK9oJ6V7Ib3Z96-Af8k5_yuoxx3dAuRblLfHaWYae-nTE9n7_ryb_Ad8bHsg3l_BCSjx0EIxpTWguPOo2K9WPqT1bmg9maKmqWFEn519pn_Eu9JdJ3zLI3inq_ojLRRe8h8gv2uvqGt17pD8WgKepfw&ext_cid=0&px_id=65519596&min_cpm=0.00046099138180594787&out_id=1&campaign_type=lq-pop&aid=401&cid=15380&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0023773329304026623&cpm=0&verify_hash=1ffd4b1127baa671fc6f83c33b50975f&is_native=2&real_bid=0.0003000239932537098&original_bid_usd=0.00054&original_bid=0.00054&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,5,27,129,108,0,83&need_redirect_show=0&applied_features=main-skins-settings,coef_098&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp&site=native-push-mainstream&price=0.00054&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.00000054&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=6b6a59d6-4689-4fb2-b84e-06d0b5d181af&prev_step_diff=918 | 168.119.25.102 | 200 OK | 0 B |
URL GET HTTP/2a18707820b.20001d1a3a.com/in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=&crtid=a2fb565214fd8ce4dec5e22576ea962f&url=https%3A%2F%2Fvv-film.com%2Fcheck-check-bots%3Furl%3Dhttps%253A%252F%252Fengine.blehcourt.com%252FRedirect.eng%253FMediaSegmentId%253D0%2526TempMediaId%253De09092a7-c175-44a7-bf7a-d2135d1b4a44%2526dcid%253D1_ctx_667a6998-4b86-40c6-bfcd-637ae435ee67%2526timeZoneOffset%253D%2526xml%253D1%2526feedId%253D150&icons=JMfJqN5L69wuYX83KtRCqn3odPogK9oJ6V7Ib3Z96-Af8k5_yuoxx3dAuRblLfHaWYae-nTE9n7_ryb_Ad8bHsg3l_BCSjx0EIxpTWguPOo2K9WPqT1bmg9maKmqWFEn519pn_Eu9JdJ3zLI3inq_ojLRRe8h8gv2uvqGt17pD8WgKepfw&ext_cid=0&px_id=65519596&min_cpm=0.00046099138180594787&out_id=1&campaign_type=lq-pop&aid=401&cid=15380&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0023773329304026623&cpm=0&verify_hash=1ffd4b1127baa671fc6f83c33b50975f&is_native=2&real_bid=0.0003000239932537098&original_bid_usd=0.00054&original_bid=0.00054&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,5,27,129,108,0,83&need_redirect_show=0&applied_features=main-skins-settings,coef_098&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp&site=native-push-mainstream&price=0.00054&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.00000054&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=6b6a59d6-4689-4fb2-b84e-06d0b5d181af&prev_step_diff=918 IP168.119.25.102:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerZeroSSL Subject20001d1a3a.com FingerprintD7:28:FE:A3:07:32:E6:33:3C:CF:1D:0A:DC:A4:40:9B:9B:75:A9:57 ValidityTue, 26 Mar 2024 00:00:00 GMT - Mon, 24 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=&crtid=a2fb565214fd8ce4dec5e22576ea962f&url=https%3A%2F%2Fvv-film.com%2Fcheck-check-bots%3Furl%3Dhttps%253A%252F%252Fengine.blehcourt.com%252FRedirect.eng%253FMediaSegmentId%253D0%2526TempMediaId%253De09092a7-c175-44a7-bf7a-d2135d1b4a44%2526dcid%253D1_ctx_667a6998-4b86-40c6-bfcd-637ae435ee67%2526timeZoneOffset%253D%2526xml%253D1%2526feedId%253D150&icons=JMfJqN5L69wuYX83KtRCqn3odPogK9oJ6V7Ib3Z96-Af8k5_yuoxx3dAuRblLfHaWYae-nTE9n7_ryb_Ad8bHsg3l_BCSjx0EIxpTWguPOo2K9WPqT1bmg9maKmqWFEn519pn_Eu9JdJ3zLI3inq_ojLRRe8h8gv2uvqGt17pD8WgKepfw&ext_cid=0&px_id=65519596&min_cpm=0.00046099138180594787&out_id=1&campaign_type=lq-pop&aid=401&cid=15380&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0023773329304026623&cpm=0&verify_hash=1ffd4b1127baa671fc6f83c33b50975f&is_native=2&real_bid=0.0003000239932537098&original_bid_usd=0.00054&original_bid=0.00054&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,5,27,129,108,0,83&need_redirect_show=0&applied_features=main-skins-settings,coef_098&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp&site=native-push-mainstream&price=0.00054&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.00000054&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=6b6a59d6-4689-4fb2-b84e-06d0b5d181af&prev_step_diff=918 HTTP/1.1
Host: a18707820b.20001d1a3a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 28 Mar 2024 17:05:39 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| a18707820b.20001d1a3a.com/in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=Brainberries&crtid=1a37c57d395de90be2f5eeacedf0d14f&url=https%3A%2F%2Fclck.adskeeper.com%2Fghits%2F14649912%2Fi%2F57874188%2F2%2Fsrc%2F73519596%2Fpp%2F1%2F1%3Fh%3DrlaXoYdiW4aZ2yR3sNqF9kjRNs_OvpFTYeKo9BxXUmlceK9pYMihf7ZIHtwbAcmnrfk7oeaZwwoo0_7J_qv1gpBFRyg0nNAgKuLcIRgeY_c%2A%26rid%3D66d36713-ed25-11ee-89ab-c84bd6836428%26tt%3DDirect%26att%3D3%26pubsrcid%3D73519596%26afrd%3D8%26ct%3D1%26st%3D60%26h2%3Dbjao6ykRJ-s3uDIzFfBH-NnU-3mmuWhozg9yROI7M5sYyE124Iu-of28Vf-9CpL_&icons=PYYjReSFf9nDaTwZ2hfv4HDNgbhgvpUZcJXKmaPLS7qKikz6dApVdfOOrOMftkxpwyEZ7vNDnqNcekPw1cvV-k_3y3O4Fw7VwGph-2MN4hE2gsB4v-YzEtaHxGlY9VWHmSBt1CdbUhErABN1GLXwF1RRF1SFuEj5zGUZ_FLd-cngRPKjNQSmh3k5YSwZpoueDFvKhf-o1XBNp1j_Ffd5PrWcBas9aCZmX_gEC5Za37YDiA5F6Sestn3DS0VS44dAIRSaS1Sh_MebICYGSlHfBZxYb85Dh4UbzX-aeH5S-nM4qzl54sgZOygxqZMGdYn6OwJ7WMHPXH3dgpDCb8YgZ2YVxXXT2dqwRmWAXMgKWHs5BB0lXRC6PDG9POIQt76n0-vFmkcGgnUJOWacKjtdDtZY_03oFVHtedAB3MFtZKyh2mPZxBc&ext_cid=613502&px_id=73519596&min_cpm=4.6559757289871287e-05&out_id=0&campaign_type=hq&aid=62&cid=17127&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.00040146326061103163&cpm=0&verify_hash=b4b57e84e5e48008b1292b1bfd80d2d5&is_native=1&real_bid=0.0005016419959068298&original_bid_usd=0.00058&original_bid=0.00058&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,108,0,90&need_redirect_show=0&applied_features=coef_098,main-skins-settings&show_count=1&expiration_timestamp=1711681538&image_url=https%3A%2F%2Fs-img.adskeeper.com%2Fg%2F14649912%2F200x200%2F-%2FaHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTAvMTAxOTI0L2JhNmFlZTliY2NjNWIxYjY4YzRiMzA0N2M4ZjUwNTAwLmpwZWc.webp%3Fv%3D1711645538-ALCuYRO05XxfIHcTZt9a_cnPXP2nT7LV26VHSdsnbBk&site=native-push-mainstream&price=0.00058&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000005800000000000001&ext_campaign_id_str=613502&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.03&cpa=87dfe8d8-93f9-46ec-aac5-e56cc78845e2&prev_step_diff=918 | 168.119.25.102 | 200 OK | 0 B |
URL GET HTTP/2a18707820b.20001d1a3a.com/in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=Brainberries&crtid=1a37c57d395de90be2f5eeacedf0d14f&url=https%3A%2F%2Fclck.adskeeper.com%2Fghits%2F14649912%2Fi%2F57874188%2F2%2Fsrc%2F73519596%2Fpp%2F1%2F1%3Fh%3DrlaXoYdiW4aZ2yR3sNqF9kjRNs_OvpFTYeKo9BxXUmlceK9pYMihf7ZIHtwbAcmnrfk7oeaZwwoo0_7J_qv1gpBFRyg0nNAgKuLcIRgeY_c%2A%26rid%3D66d36713-ed25-11ee-89ab-c84bd6836428%26tt%3DDirect%26att%3D3%26pubsrcid%3D73519596%26afrd%3D8%26ct%3D1%26st%3D60%26h2%3Dbjao6ykRJ-s3uDIzFfBH-NnU-3mmuWhozg9yROI7M5sYyE124Iu-of28Vf-9CpL_&icons=PYYjReSFf9nDaTwZ2hfv4HDNgbhgvpUZcJXKmaPLS7qKikz6dApVdfOOrOMftkxpwyEZ7vNDnqNcekPw1cvV-k_3y3O4Fw7VwGph-2MN4hE2gsB4v-YzEtaHxGlY9VWHmSBt1CdbUhErABN1GLXwF1RRF1SFuEj5zGUZ_FLd-cngRPKjNQSmh3k5YSwZpoueDFvKhf-o1XBNp1j_Ffd5PrWcBas9aCZmX_gEC5Za37YDiA5F6Sestn3DS0VS44dAIRSaS1Sh_MebICYGSlHfBZxYb85Dh4UbzX-aeH5S-nM4qzl54sgZOygxqZMGdYn6OwJ7WMHPXH3dgpDCb8YgZ2YVxXXT2dqwRmWAXMgKWHs5BB0lXRC6PDG9POIQt76n0-vFmkcGgnUJOWacKjtdDtZY_03oFVHtedAB3MFtZKyh2mPZxBc&ext_cid=613502&px_id=73519596&min_cpm=4.6559757289871287e-05&out_id=0&campaign_type=hq&aid=62&cid=17127&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.00040146326061103163&cpm=0&verify_hash=b4b57e84e5e48008b1292b1bfd80d2d5&is_native=1&real_bid=0.0005016419959068298&original_bid_usd=0.00058&original_bid=0.00058&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,108,0,90&need_redirect_show=0&applied_features=coef_098,main-skins-settings&show_count=1&expiration_timestamp=1711681538&image_url=https%3A%2F%2Fs-img.adskeeper.com%2Fg%2F14649912%2F200x200%2F-%2FaHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTAvMTAxOTI0L2JhNmFlZTliY2NjNWIxYjY4YzRiMzA0N2M4ZjUwNTAwLmpwZWc.webp%3Fv%3D1711645538-ALCuYRO05XxfIHcTZt9a_cnPXP2nT7LV26VHSdsnbBk&site=native-push-mainstream&price=0.00058&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000005800000000000001&ext_campaign_id_str=613502&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.03&cpa=87dfe8d8-93f9-46ec-aac5-e56cc78845e2&prev_step_diff=918 IP168.119.25.102:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.limetorrents.lol/home CertificateIssuerZeroSSL Subject20001d1a3a.com FingerprintD7:28:FE:A3:07:32:E6:33:3C:CF:1D:0A:DC:A4:40:9B:9B:75:A9:57 ValidityTue, 26 Mar 2024 00:00:00 GMT - Mon, 24 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /in/show/?tag_ab=c&site_id=31519596&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fwww.limetorrents.lol%2Fhome&refdom=www.limetorrents.lol&auction_time=1711645538&subid=1903296316&sid=1597951745&tcid=0&ver=8.155.1&ver_c=&spot_id=519596&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-03-28&iabcat=IAB1-6&keywords=&user_fp=2123310362204909706&score=27.05408138609704&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1903296316%26spot_id%3D519596%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww.limetorrents.lol%252Fhome%26idzone%3D0%26sid%3D1552&is_cpm=0&resp_type=&crid=Brainberries&crtid=1a37c57d395de90be2f5eeacedf0d14f&url=https%3A%2F%2Fclck.adskeeper.com%2Fghits%2F14649912%2Fi%2F57874188%2F2%2Fsrc%2F73519596%2Fpp%2F1%2F1%3Fh%3DrlaXoYdiW4aZ2yR3sNqF9kjRNs_OvpFTYeKo9BxXUmlceK9pYMihf7ZIHtwbAcmnrfk7oeaZwwoo0_7J_qv1gpBFRyg0nNAgKuLcIRgeY_c%2A%26rid%3D66d36713-ed25-11ee-89ab-c84bd6836428%26tt%3DDirect%26att%3D3%26pubsrcid%3D73519596%26afrd%3D8%26ct%3D1%26st%3D60%26h2%3Dbjao6ykRJ-s3uDIzFfBH-NnU-3mmuWhozg9yROI7M5sYyE124Iu-of28Vf-9CpL_&icons=PYYjReSFf9nDaTwZ2hfv4HDNgbhgvpUZcJXKmaPLS7qKikz6dApVdfOOrOMftkxpwyEZ7vNDnqNcekPw1cvV-k_3y3O4Fw7VwGph-2MN4hE2gsB4v-YzEtaHxGlY9VWHmSBt1CdbUhErABN1GLXwF1RRF1SFuEj5zGUZ_FLd-cngRPKjNQSmh3k5YSwZpoueDFvKhf-o1XBNp1j_Ffd5PrWcBas9aCZmX_gEC5Za37YDiA5F6Sestn3DS0VS44dAIRSaS1Sh_MebICYGSlHfBZxYb85Dh4UbzX-aeH5S-nM4qzl54sgZOygxqZMGdYn6OwJ7WMHPXH3dgpDCb8YgZ2YVxXXT2dqwRmWAXMgKWHs5BB0lXRC6PDG9POIQt76n0-vFmkcGgnUJOWacKjtdDtZY_03oFVHtedAB3MFtZKyh2mPZxBc&ext_cid=613502&px_id=73519596&min_cpm=4.6559757289871287e-05&out_id=0&campaign_type=hq&aid=62&cid=17127&uniq=&mid=3279912754052722934&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.00040146326061103163&cpm=0&verify_hash=b4b57e84e5e48008b1292b1bfd80d2d5&is_native=1&real_bid=0.0005016419959068298&original_bid_usd=0.00058&original_bid=0.00058&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,108,0,90&need_redirect_show=0&applied_features=coef_098,main-skins-settings&show_count=1&expiration_timestamp=1711681538&image_url=https%3A%2F%2Fs-img.adskeeper.com%2Fg%2F14649912%2F200x200%2F-%2FaHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTAvMTAxOTI0L2JhNmFlZTliY2NjNWIxYjY4YzRiMzA0N2M4ZjUwNTAwLmpwZWc.webp%3Fv%3D1711645538-ALCuYRO05XxfIHcTZt9a_cnPXP2nT7LV26VHSdsnbBk&site=native-push-mainstream&price=0.00058&hostname=auc-inpage-hz-8-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000005800000000000001&ext_campaign_id_str=613502&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.03&cpa=87dfe8d8-93f9-46ec-aac5-e56cc78845e2&prev_step_diff=918 HTTP/1.1
Host: a18707820b.20001d1a3a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 28 Mar 2024 17:05:39 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKJMS0winTL_djwPEF1-42kRJDMWhdX6MnV2qzexzEo-gQ1jcZdKClaqvz_P-KLjE2SCmCVZSQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140657293%3A1711645538927641&theme=mn&ddm=0 | 64.233.165.84 | 403 Forbidden | 1.3 kB |
URL GET HTTP/3accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKJMS0winTL_djwPEF1-42kRJDMWhdX6MnV2qzexzEo-gQ1jcZdKClaqvz_P-KLjE2SCmCVZSQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140657293%3A1711645538927641&theme=mn&ddm=0 IP64.233.165.84:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typegzip compressed data, max compression Hash98f52a0c7b78bc9d0641ed173069357c 4eb0ef67bcc33ad0f220680e6198e8c130e944fc df4918c0ff656eb7b7ed9450f7d9100e191df9624dee75401fb105052636cfd8
GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKJMS0winTL_djwPEF1-42kRJDMWhdX6MnV2qzexzEo-gQ1jcZdKClaqvz_P-KLjE2SCmCVZSQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140657293%3A1711645538927641&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 28 Mar 2024 17:05:38 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-DSWPSxLWEmYa0Sg9d5AiMw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.bookmsg.com/creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=a6272262-af38-4e08-80de-134476cb355c&prev_step_diff=918 | 45.133.44.25 | 200 OK | 854 B |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=a6272262-af38-4e08-80de-134476cb355c&prev_step_diff=918 IP45.133.44.25:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com Fingerprint67:07:D8:AF:5F:82:46:7A:3E:55:7A:C7:4B:1A:D5:03:78:62:BB:AC ValidityMon, 05 Feb 2024 03:00:59 GMT - Sun, 05 May 2024 03:00:58 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hash9e78fc8a3a16892ac8632f839583b78f 4287fa011e60b92b4e0c9ebb7238603eff1a0bb9 302283c5a2bcb8b0c1fb74987429c43dd3492f16bbadae738eb1f618e77096a8
GET /creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.03&cpa=a6272262-af38-4e08-80de-134476cb355c&prev_step_diff=918 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:39 GMT
content-type: image/webp
content-length: 854
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-356"
expires: Fri, 28 Mar 2025 17:05:39 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.bookmsg.com/creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp | 45.133.44.25 | 200 OK | 4.4 kB |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp IP45.133.44.25:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com Fingerprint67:07:D8:AF:5F:82:46:7A:3E:55:7A:C7:4B:1A:D5:03:78:62:BB:AC ValidityMon, 05 Feb 2024 03:00:59 GMT - Sun, 05 May 2024 03:00:58 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp Hashf17ea08e8f0c9eb948026e36c19cbe86 a5fcc612e9e6e62c3c9b222933db995223484ea6 a3b6d6cf27b67adefe587926e0e65da4c13844710b960c5e9fc2425320345ecc
GET /creatives/SG/SG_e84aa6bcb31e41f75b3f8459de6a0ab9fd35b9b2.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:39 GMT
content-type: image/webp
content-length: 4364
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-110c"
expires: Fri, 28 Mar 2025 17:05:39 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| js.wpadmngr.com/static/adManager.m.js | 45.133.44.53 | 200 OK | 40 kB |
URL GET HTTP/2js.wpadmngr.com/static/adManager.m.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectjs.wpadmngr.com Fingerprint60:8B:32:7F:ED:77:26:33:0E:F0:C1:0F:02:66:F5:DB:C6:0D:1F:70 ValidityMon, 11 Mar 2024 04:00:58 GMT - Sun, 09 Jun 2024 04:00:57 GMT
File typegzip compressed data, from Unix Hash782dd70d13e71827725b2cd1da503540 61f478988b25ea045f1dda47e6b4c1a278b34953 9480392d746434fa5d77b9c26e77dde0bd19c469d6fa0bf5fc70dbe42e6f4a37
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 28 Mar 2024 10:50:15 GMT
etag: W/"66054b67-1aa6b"
content-encoding: gzip
expires: Thu, 28 Mar 2024 17:10:37 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/cdn-cgi/rum? | 188.114.96.1 | 204 No Content | 0 B |
URL POST HTTP/3www.limetorrents.lol/cdn-cgi/rum? IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/rum? HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 462
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/home
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Thu, 28 Mar 2024 17:05:59 GMT
access-control-allow-origin: https://www.limetorrents.lol
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 86b9354c4c11568b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| storage.multstorage.com/log/count.html | 172.67.174.51 | 200 OK | 882 B |
URL GET HTTP/2storage.multstorage.com/log/count.html IP172.67.174.51:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectmultstorage.com Fingerprint63:F0:24:29:21:22:E5:42:33:61:B5:20:05:1B:EF:36:81:F5:7B:0A ValiditySun, 17 Mar 2024 08:38:54 GMT - Sat, 15 Jun 2024 08:38:53 GMT
File typeHTML document, ASCII text, with very long lines (919), with no line terminators Hash053b1fe641da8057571d40ebaf1624ab 09b2648b7d08c84621298f0b939cea5170a65022 6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: ae5f4234806ace3cc36bb167b9be0d43
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WgdXOdm2SLVrapLzQGaAZL9a1V6TXBN8Ux4ZB0Y7GDYCFSc5AknVbvwWZHTYvJ0O4O3T8%2FHNEWlKhrrHraUa8uxseRKP5JOAm6sdXfg%2By77mk4uYyzxgwCF3OsrXam8k9AMdxz0Mtbv%2FgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b934c61aea56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.limetorrents.info/home/ | 104.31.16.125 | 301 Moved Permanently | 107 kB |
URL User Request GET HTTP/2www.limetorrents.info/home/ IP104.31.16.125:443
CertificateIssuerLet's Encrypt Subjectlimetorrents.info Fingerprint1E:DA:95:EA:07:79:C1:54:3D:F4:36:4A:F8:5C:9E:CC:47:5B:2F:6F ValiditySun, 04 Feb 2024 01:33:46 GMT - Sat, 04 May 2024 01:33:45 GMT
Size107 kB (107091 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /home/ HTTP/1.1
Host: www.limetorrents.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 28 Mar 2024 17:05:35 GMT
location: https://www.limetorrents.lol/home/
cache-control: max-age=3600
expires: Thu, 28 Mar 2024 18:05:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T341%2BSfQ9zGl1uMKwG1Xv2aD%2FA0zqoZzH37zQxoREG%2BIqtUGsIBc%2FW%2FrXxf89xsZKQL1bLenPy8tg4pgOJhkYPVatcLQJ%2BfRQNImrZRILBmpapThzUrSj19L1S6HrRxS3IBgbWnyQCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934b7fffab4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/home/ | 188.114.96.1 | 301 Moved Permanently | 107 kB |
URL User Request GET HTTP/2www.limetorrents.lol/home/ IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
Size107 kB (107091 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /home/ HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: text/html
location: http://www.limetorrents.lol/home
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
front-end-https: on
x-cache-status: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6wsNyqVwiJ0MWpevP8VoixsyFa0xMjKrEHb9OFg%2BVRpBiZFj6D4hzubODm0RO8jm%2BabnyzkvaIX616SnFgH85vmPP6Wzk%2Fjq%2BOj9AqW4SegNeZ9SaARFp2tdLQPxLo0PvSDvb0Y2sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b934b84966b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| js.wpushsdk.com/skins/nmain.m.js | 45.133.44.52 | 200 OK | 470 kB |
URL GET HTTP/2js.wpushsdk.com/skins/nmain.m.js IP45.133.44.52:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectjs.wpushsdk.com Fingerprint79:0D:66:14:F6:A5:38:F8:56:11:BB:D8:90:A0:BB:AD:89:47:0E:2B ValidityTue, 12 Mar 2024 05:00:39 GMT - Mon, 10 Jun 2024 05:00:38 GMT
Size470 kB (470346 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /skins/nmain.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:38 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 26 Mar 2024 11:31:07 GMT
etag: W/"6602b1fb-72d4a"
content-encoding: gzip
expires: Thu, 28 Mar 2024 17:10:38 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.limetorrents.lol/static/images/headerbg.png | 188.114.96.1 | 200 OK | 177 B |
URL GET HTTP/3www.limetorrents.lol/static/images/headerbg.png IP188.114.96.1:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectlimetorrents.lol Fingerprint82:79:38:94:8B:0E:1D:F5:19:13:40:54:5E:42:B0:F5:B6:32:7A:B1 ValidityTue, 19 Mar 2024 09:15:17 GMT - Mon, 17 Jun 2024 09:15:16 GMT
File typePNG image data, 1 x 170, 8-bit/color RGB, non-interlaced Hash296a0a446cf0edafa0633ffdc3787cc0 084cd120574b43b65ea73244008e7b6c3ad4aa9a a9d42784da30d32f17498d2bbc6441ed08bd07c0848125075259cd0627e9385e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/images/headerbg.png HTTP/1.1
Host: www.limetorrents.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/static/main-20.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: image/png
content-length: 177
last-modified: Sat, 20 Nov 2010 02:21:51 GMT
etag: "4ce730bf-b1"
expires: Fri, 26 Apr 2024 05:59:52 GMT
cache-control: public, max-age=2592000, no-transform
x-cache-status: STALE
cf-cache-status: HIT
age: 126345
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kt8ENpUV686Jz29NjTvwxneZ4iAq5HA0%2FU6fROmAdJo19oWHrqC6CXnXUqWOgW1Zv7neR7UtdKDnfhM7CaT3SV%2Fd9NAVq3GPP4pBDaDR3W2m%2FnpYFJtY8nTjAeOniwlx9nfqRd%2FgQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c188cd568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 | 104.16.80.73 | 200 OK | 20 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP104.16.80.73:443
Requested byhttps://www.limetorrents.lol/home CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typeJavaScript source, ASCII text, with very long lines (19986), with no line terminators Hashdd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101
GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.limetorrents.lol
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b934c16f1556c3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| js.wpadmngr.com/static/adManager.js | 45.133.44.53 | 200 OK | 1.7 kB |
URL GET HTTP/2js.wpadmngr.com/static/adManager.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.limetorrents.lol/home CertificateIssuerLet's Encrypt Subjectjs.wpadmngr.com Fingerprint60:8B:32:7F:ED:77:26:33:0E:F0:C1:0F:02:66:F5:DB:C6:0D:1F:70 ValidityMon, 11 Mar 2024 04:00:58 GMT - Sun, 09 Jun 2024 04:00:57 GMT
File typeJavaScript source, ASCII text, with very long lines (1870), with no line terminators Hash8802682087a4f362206e0b68188da700 9d6aa6a6b14704b90e404b2d8cccee2778b2d64e 0832ccd77cd17752421511334e17cb4ec7b5b176f7e20ab3ee4849a7027b72b1
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.limetorrents.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 17:05:37 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 28 Mar 2024 10:50:09 GMT
etag: W/"66054b61-6ba"
content-encoding: gzip
expires: Thu, 28 Mar 2024 17:10:37 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|