xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
200 OK 547 B URL User Request GET HTTP/2 xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
IP
Certificate IssuerLet's Encrypt
Subjectwww.xdate4.com
Fingerprint5C:DF:14:8A:9F:BB:29:A5:36:ED:0A:3B:50:A6:1A:6D:21:BA:D0:7B
ValiditySun, 29 Oct 2023 17:31:58 GMT - Sat, 27 Jan 2024 17:31:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1e6c8832c5a23df9d19abb9725cb3e05
6d2f4c2d17320a4957a0d722305f8def54b1d6f3
6ccd7d9d8eec40394c0e08b7a5a10a6e54c720c8826ba976578d686e2927d879
GET /cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730 HTTP/1.1
Host: xdate4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 91418
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/html; charset=UTF-8
date: Mon, 04 Dec 2023 21:35:18 GMT
etag: "38c20b1a740f06aa9c0d4756931dce14-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HGVC3HS8951WP3YX67DJPEYV
content-length: 547
X-Firefox-Spdy: h2
xdate4.com/cont/css/style.css
200 OK 1.1 kB URL GET HTTP/2 xdate4.com/cont/css/style.css
IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerLet's Encrypt
Subjectwww.xdate4.com
Fingerprint5C:DF:14:8A:9F:BB:29:A5:36:ED:0A:3B:50:A6:1A:6D:21:BA:D0:7B
ValiditySun, 29 Oct 2023 17:31:58 GMT - Sat, 27 Jan 2024 17:31:57 GMT
File type ASCII text, with CRLF line terminators
Hash e56521effd4d4a4d0a07d604d0d00ffa
ccf28e9d33e213835b7d5750a75c740940ac421d
16d2a4e408d8cf36cddf04ba35b230a7a0deb7b03290c62cd92d6e5c4729881c
GET /cont/css/style.css HTTP/1.1
Host: xdate4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 30140
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/css; charset=UTF-8
date: Mon, 04 Dec 2023 21:35:18 GMT
etag: "2542df3139a2cafae2056df47b2c88d0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HGVC3J0V8VEN3K9S9GEPH89G
content-length: 1148
X-Firefox-Spdy: h2
xdate4.com/favicon.ico
404 Not Found 1.2 kB IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerLet's Encrypt
Subjectwww.xdate4.com
Fingerprint5C:DF:14:8A:9F:BB:29:A5:36:ED:0A:3B:50:A6:1A:6D:21:BA:D0:7B
ValiditySun, 29 Oct 2023 17:31:58 GMT - Sat, 27 Jan 2024 17:31:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash 4c1920da7e5d9180796a7cbd50c058fc
ebc6858e8987cdb52fd011a29a6914f65e753a3e
69e48d9db7c27991e0dce1a56f246fec93363cc286c71e6160282a31bf05e867
GET /favicon.ico HTTP/1.1
Host: xdate4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
age: 32512
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/html; charset=utf-8
date: Mon, 04 Dec 2023 21:35:19 GMT
etag: 1698604109-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HGVC3JGEBDWH3DXZ9NGM3W6N
content-length: 1247
X-Firefox-Spdy: h2
xdate4.com/sw-check-permissions-8300e.js
200 OK 568 B URL GET HTTP/2 xdate4.com/sw-check-permissions-8300e.js
IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerLet's Encrypt
Subjectwww.xdate4.com
Fingerprint5C:DF:14:8A:9F:BB:29:A5:36:ED:0A:3B:50:A6:1A:6D:21:BA:D0:7B
ValiditySun, 29 Oct 2023 17:31:58 GMT - Sat, 27 Jan 2024 17:31:57 GMT
Hash b029497bd1b2b8a3859e49cbf06bb548
948b6266c489bb73440854a22ed75d944b53346c
cd43f91051603a3ab45655b142285c44830f7a24896974664e150431a94721bc
GET /sw-check-permissions-8300e.js HTTP/1.1
Host: xdate4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 30206
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-type: application/javascript; charset=UTF-8
date: Mon, 04 Dec 2023 21:35:19 GMT
etag: "a04fd6f5d61d1327262ed0ca8e28f09a-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HGVC3JNNVR21Y1M3NSKSS19K
content-length: 568
X-Firefox-Spdy: h2
desekansr.com/zone?&pub=0&zone_id=6550917&is_mobile=false&domain=xdate4.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest
200 OK 0 B URL POST HTTP/2 desekansr.com/zone?&pub=0&zone_id=6550917&is_mobile=false&domain=xdate4.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest
IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerLet's Encrypt
Subjectdesekansr.com
FingerprintED:3C:24:D7:7A:D8:09:92:ED:6E:B2:3E:5E:07:F8:AB:51:E2:DC:FC
ValidityThu, 23 Nov 2023 05:05:58 GMT - Wed, 21 Feb 2024 05:05:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /zone?&pub=0&zone_id=6550917&is_mobile=false&domain=xdate4.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xdate4.com
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:35:19 GMT
content-length: 0
x-trace-id: 5664a3bf476ec8470e2ee9163b82ec02
access-control-allow-origin: https://xdate4.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
200 OK 547 B URL User Request GET HTTP/2 xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
IP
Certificate IssuerLet's Encrypt
Subjectwww.xdate4.com
Fingerprint5C:DF:14:8A:9F:BB:29:A5:36:ED:0A:3B:50:A6:1A:6D:21:BA:D0:7B
ValiditySun, 29 Oct 2023 17:31:58 GMT - Sat, 27 Jan 2024 17:31:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1e6c8832c5a23df9d19abb9725cb3e05
6d2f4c2d17320a4957a0d722305f8def54b1d6f3
6ccd7d9d8eec40394c0e08b7a5a10a6e54c720c8826ba976578d686e2927d879
GET /cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730 HTTP/1.1
Host: xdate4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 91432
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/html; charset=UTF-8
date: Mon, 04 Dec 2023 21:35:32 GMT
etag: "38c20b1a740f06aa9c0d4756931dce14-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HGVC3ZR8M5VBTWQFHMF0RXE2
content-length: 547
X-Firefox-Spdy: h2
backunder.com/script.js
200 OK 1.2 kB IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerGoogle Trust Services LLC
Subjectbackunder.com
Fingerprint41:C9:05:75:8B:A9:DC:71:5A:99:5A:C0:E4:F4:4D:C2:88:32:37:4B
ValiditySun, 03 Dec 2023 18:20:16 GMT - Sat, 02 Mar 2024 18:20:15 GMT
File type ASCII text, with very long lines (1428), with no line terminators
Hash eb02de047769c58f9a7b2129242277de
131af66370e5f7e6496c5dc0391f9fddd6731737
1fa9be81aba3e78cec73ce9e1c8061d3a4b6d9f2f822e744f753f427972f1376
GET /script.js HTTP/1.1
Host: backunder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 21:35:18 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 19:14:45 GMT
etag: W/"4cc-5f2f3364b2fe4-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oML4KMrcfxuu5RINA0n5iB2Gy2TEntLgAlP6jI74xpsgVI199upamAWD7K1HijU1EicIFjGQsJav7RlcHy40fEBGUy2GJTYEvC4Ux64tqLO8bUf4oierfhMgk9tOKWjH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83072dad3e305695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
desekansr.com/pfe/current/micro.tag.min.js?z=6550917&sw=/sw-check-permissions-8300e.js
200 OK 27 kB URL GET HTTP/2 desekansr.com/pfe/current/micro.tag.min.js?z=6550917&sw=/sw-check-permissions-8300e.js
IP
Requested by https://xdate4.com/cont/?bemobdata=c=076073aa-f446-4124-bea9-942c1a0157f7..l=e13e2995-7ef9-46eb-bc4a-66d124dbbb03..a=0..b=0..r=date.xdate4.com..ts=1701725695730
Certificate IssuerLet's Encrypt
Subjectdesekansr.com
FingerprintED:3C:24:D7:7A:D8:09:92:ED:6E:B2:3E:5E:07:F8:AB:51:E2:DC:FC
ValidityThu, 23 Nov 2023 05:05:58 GMT - Wed, 21 Feb 2024 05:05:57 GMT
File type ASCII text, with very long lines (27007), with no line terminators
Hash 5ccd2d5882a06f293d07510ac91c92e6
b44dc0eaa03981adb70d3313e728f9359c1d21c1
9fc2aa21f3a7bfe66783d35fdbb48147f73e72a41f87aea848f64a8cb4518eba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pfe/current/micro.tag.min.js?z=6550917&sw=/sw-check-permissions-8300e.js HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xdate4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:35:19 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-697f"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
75.2.60.5
139.45.197.250
188.114.97.1