| blackdragonwear.com/login.php?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a | 3.33.130.190 | | 164 B |
URL blackdragonwear.com/login.php?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a IP3.33.130.190:0
File typeHTML document, ASCII text, with no line terminators Hashfa5e57db9efabe1e93c79fe1c3039d7e 4b814e2b3079b19374fdf9ec6d8245f21c4bcd10 6a01173d86d206f75e6cd12ad439b5fa64f4614f2c6c70fd854ad80d05774044
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a HTTP/1.1
Host: blackdragonwear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 164
date: Thu, 28 Mar 2024 10:29:46 GMT
X-Firefox-Spdy: h2
|
|
| blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a | 3.33.130.190 | 200 OK | 525 B |
URL User Request GET HTTP/2blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a IP3.33.130.190:443
CertificateIssuerGoDaddy.com, Inc. Subjectblackdragonwear.com Fingerprint31:EC:8D:8F:58:47:3E:40:23:00:BE:1A:62:97:EA:C8:BF:50:04:42 ValidityFri, 08 Dec 2023 02:24:17 GMT - Sun, 08 Dec 2024 02:24:17 GMT
File typeHTML document, ASCII text, with very long lines (524) Hash40b9122d2dbac902b41900f48445ee9b 379c7f503ea28d62e53f8676c09da1f0bef258aa efc2cb7bea587eda94fee71fa961043d1d8dbd20d3fd3a941a8ad02f2f398325
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a HTTP/1.1
Host: blackdragonwear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blackdragonwear.com/login.php?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=86400
content-type: text/html
date: Thu, 28 Mar 2024 10:29:46 GMT
server: openresty
set-cookie: traffic_target=gd;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="Oslo";Path=/;Max-Age=86400;
lander_type=parkweb;Path=/;Max-Age=86400;
_policy={"restricted_market":true,"tracking_market":"explicit"};Path=/;Max-Age=86400;
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_kYQfNC3409BR8MOe4oK+Rko/8Q2VBXTEE1t5REdqMg2yU4lfF8jMnxhAP7NwDRk6J7iSFmf33UCf+o+E6MrcdQ
x-content-type-options: nosniff
content-length: 525
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/static/css/main.1b609023.css | 23.36.79.43 | 200 OK | 768 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/static/css/main.1b609023.css IP23.36.79.43:443 ASN#20940 Akamai International B.V.
Requested byhttps://blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typeASCII text, with very long lines (2736) Hash71209b0bd8f6138dafd143fcfa77c6b4 bfcdfa56a30d2d730cd7583851d8101a2bedbcd9 fe56d067a03c4c2dc4c325d1caa4e16e1c0b4b2348b4995ee01b6d8c96cb3322
GET /parking-lander/static/css/main.1b609023.css HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blackdragonwear.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: vNjR9wUZ+uR9WnWlD+ByqGP6Vpb9vtMz1dgWVu/BaLs0r0ZjVKttG3w+wJRopBXFcEh56hV3nPY=
x-amz-request-id: 290FGJ2X39KX2XY2
last-modified: Mon, 11 Mar 2024 23:35:34 GMT
etag: "71209b0bd8f6138dafd143fcfa77c6b4"
x-amz-server-side-encryption: AES256
x-amz-version-id: L6wfNQd5dHXwr5DtiIYm8WepeUJHrD3.
accept-ranges: bytes
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 28 Mar 2025 10:29:46 GMT
date: Thu, 28 Mar 2024 10:29:46 GMT
content-length: 768
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/static/js/main.d22c8476.js | 23.36.79.43 | 200 OK | 175 kB |
URL GET HTTP/2img1.wsimg.com/parking-lander/static/js/main.d22c8476.js IP23.36.79.43:443 ASN#20940 Akamai International B.V.
Requested byhttps://blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size175 kB (175341 bytes) Hash735b8e4d814a21a5d376c1786741bfbe 50d468764bc366fec7d1877fea81da47e503492a 2d45df0edc2f5b5e02671ec964592a011a416fe0c281dd2d5ce1b9239049f46a
GET /parking-lander/static/js/main.d22c8476.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blackdragonwear.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: epENOD+w6SiB3PTbk/sQtBp58L2FAysQ/lsbsC4XllQYy6MHTPVm4/cip801WuXiGp9noy9cnpSnb9/hNFNFNw==
x-amz-request-id: 9VXY2YQXFBKJ86X5
last-modified: Mon, 11 Mar 2024 23:35:27 GMT
etag: "735b8e4d814a21a5d376c1786741bfbe"
x-amz-server-side-encryption: AES256
x-amz-version-id: x58_oHo8dSvCSdZmWS_2NMcAlVQf91LU
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 175341
cache-control: max-age=31536000
expires: Fri, 28 Mar 2025 10:29:46 GMT
date: Thu, 28 Mar 2024 10:29:46 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/px.js?ch=1&abp=1 | 23.36.79.43 | 200 OK | 20 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/px.js?ch=1&abp=1 IP23.36.79.43:443 ASN#20940 Akamai International B.V.
Requested byhttps://blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hash3970e82605c7d109bb348fc94e9eecc0 e03849ea786b9f7b28a35c17949e85a93eb1cff1 f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /parking-lander/px.js?ch=1&abp=1 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blackdragonwear.com/
Origin: https://blackdragonwear.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UqIEnkUw4TsDySIx4UlQjJgUNfXq/uy9WAOCQg1RK0BV7lqyPKNHjwAOuX1GSZq/ybb9sWzpWdY=
x-amz-request-id: GYX7VVH46H2FB9E1
last-modified: Mon, 11 Mar 2024 23:35:36 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: vaAyx1Qe.KZgm0y6p0O8SghyHT7xJ8Oh
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 28 Mar 2025 10:29:46 GMT
date: Thu, 28 Mar 2024 10:29:46 GMT
content-length: 20
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/px.js?ch=2&abp=1 | 23.36.79.43 | 200 OK | 20 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/px.js?ch=2&abp=1 IP23.36.79.43:443 ASN#20940 Akamai International B.V.
Requested byhttps://blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hash3970e82605c7d109bb348fc94e9eecc0 e03849ea786b9f7b28a35c17949e85a93eb1cff1 f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /parking-lander/px.js?ch=2&abp=1 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blackdragonwear.com/
Origin: https://blackdragonwear.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: BDr2bZhpvrRvcxcYtXoAFcaCR/Ze9gcyQm4SHvZMz7UN810PwUotsQqsR2hUbTQbJRtFg9hmyqRcDrbN+d0P/w==
x-amz-request-id: A6NGYBSH7WMNNVG0
last-modified: Mon, 11 Mar 2024 23:35:36 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: vaAyx1Qe.KZgm0y6p0O8SghyHT7xJ8Oh
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 20
cache-control: max-age=31536000
expires: Fri, 28 Mar 2025 10:29:46 GMT
date: Thu, 28 Mar 2024 10:29:46 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.google.com/adsense/domains/caf.js?abp=1 | 142.250.74.132 | 200 OK | 145 kB |
URL GET HTTP/2www.google.com/adsense/domains/caf.js?abp=1 IP142.250.74.132:443
Requested byhttps://blackdragonwear.com/lander?country=&iso=&online_id=5108cafc4e5ddb6f3cecbd13a CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint32:A3:19:7A:6B:D5:C7:5E:CA:7C:C8:08:79:14:56:FD:FC:3E:06:F0 ValidityMon, 26 Feb 2024 08:18:59 GMT - Mon, 20 May 2024 08:18:58 GMT
File typeJavaScript source, ASCII text, with very long lines (2283) Size145 kB (145102 bytes) Hash7ccffd5463f6313f6a22efeac8b75bfd 16124b8ed30deff64acf8a92ebc5fc17bbd2ec79 2da94696cd76b8116c0464607fc16692516a0d7bc684895821ac9ed665c729ff
GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blackdragonwear.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 28 Mar 2024 10:29:46 GMT
expires: Thu, 28 Mar 2024 10:29:46 GMT
cache-control: private, max-age=3600
etag: "10211917098555815942"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|