firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 14:14:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KRCQzKjV2PaELSyGbpPEUTXklhUsTr5Mtzbtic0s8fMWCWNkSRCFPg==
Age: 2860
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2977
Expires: Sun, 25 Sep 2022 15:52:17 GMT
Date: Sun, 25 Sep 2022 15:02:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r2nWn-S4xu9gC26afygwCDJmFD_GtpxzRdVkd-eNsi-c9FL-qk8puw==
age: 37646
X-Firefox-Spdy: h2
xf4b30avshhixb.xyz/
216.18.208.202200 OK 168 B IP 216.18.208.202:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b7949a2c2cec5d0fc76270710f132d4e
a51a1a70d14193182bc1cca339efbf805da63a34
0de73e0545467494dda68a11a3203376a2653991d9b4ec3d0376175f23802a21
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:40 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 168
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 15:02:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
xf4b30avshhixb.xyz/favicon.ico
216.18.208.202200 OK 168 B URL HTTP/1.1 xf4b30avshhixb.xyz/favicon.ico
IP 216.18.208.202:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b7949a2c2cec5d0fc76270710f132d4e
a51a1a70d14193182bc1cca339efbf805da63a34
0de73e0545467494dda68a11a3203376a2653991d9b4ec3d0376175f23802a21
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:40 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 168
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 14:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 14:07:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JQ73qgRCWACBnOs7oBmwR7zCAOsV09dKoJjmQv5Bby2D7pwA6rtGzg==
Age: 3503
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2052
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:40 GMT
Last-Modified: Sun, 25 Sep 2022 14:28:28 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
xf4b30avshhixb.xyz/?type=really
216.18.208.202200 OK 32 kB URL HTTP/1.1 xf4b30avshhixb.xyz/?type=really
IP 216.18.208.202:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9743)
Hash 00dfaa1ec34ca9fa503eb64df38d98e4
4fbe75f0f81d451d7b1fd4e4ea0a174b70254f8d
15fd2f67861761c8532f8baae9dbcbdf96f0c9b24bbb1de5d2d0d62466a007d1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /?type=really HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:40 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31661
Content-Type: text/html; charset=utf-8
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xJRedgDVh8CFgLyP/LX5fA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dmfWqLBtRjxM6u4cL101lGEeRsw=
xf4b30avshhixb.xyz/index_files/dr-dtime.min.js.%E4%B8%8B%E8%BD%BD
216.18.208.202200 OK 0 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/dr-dtime.min.js.%E4%B8%8B%E8%BD%BD
IP 216.18.208.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/dr-dtime.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:46 GMT
ETag: "0-5df5388536680"
Accept-Ranges: bytes
Content-Length: 0
Content-Type: application/javascript
xf4b30avshhixb.xyz/index_files/prognroll.js.%E4%B8%8B%E8%BD%BD
216.18.208.202200 OK 0 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/prognroll.js.%E4%B8%8B%E8%BD%BD
IP 216.18.208.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/prognroll.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:19 GMT
ETag: "0-5df538a4af0c0"
Accept-Ranges: bytes
Content-Length: 0
Content-Type: application/javascript
xf4b30avshhixb.xyz/index_files/css.css
216.18.208.202200 OK 286 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/css.css
IP 216.18.208.202:0
Hash b64822089be4206d56dc4bac85e9de16
85d1d813f5c74bc8234c91a390d9bda29d662187
96dfc9b774facb1608626574ffae925fb1263b6f9a70125261cd033d82b9de70
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/css.css HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:43 GMT
ETag: "223-5df5388259fc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 286
Content-Type: text/css
xf4b30avshhixb.xyz/index_files/fbevents.js.%E4%B8%8B%E8%BD%BD
216.18.208.202200 OK 24 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/fbevents.js.%E4%B8%8B%E8%BD%BD
IP 216.18.208.202:0
File type ASCII text, with very long lines (64343)
Hash 48e96e3912f50cd406d2a703fc1c5c8f
dc59a8c0460791f74953e4207460591173f8ba5c
f247d0cc1b01eacda3987ab80ad41f2b7eaf2b5b6414c5e20f4f17cd5875d6b7
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/fbevents.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:46 GMT
ETag: "171a0-5df5388536680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24219
Content-Type: application/javascript
xf4b30avshhixb.xyz/index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD
216.18.208.202200 OK 33 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD
IP 216.18.208.202:0
File type ASCII text, with very long lines (32038)
Hash 46ed104a51da58b1f8bff2ecab0e898b
3f6098bfd567710a5a5897879b680743d32205ae
7a0cdbe39e6a65c613bdea979908ad28c97eb01c91d576f254fe46ec401c8fd1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:17 GMT
ETag: "176d5-5df538a2c6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33279
Content-Type: application/javascript
xf4b30avshhixb.xyz/index_files/2.css
216.18.208.202200 OK 619 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/2.css
IP 216.18.208.202:0
File type assembler source, ASCII text
Hash 79e8c67e8c81d94ce8181e5420bf3d16
68411c5459cbeeb6e5ae9cbf61c9218c46e824cf
9ff3474b00dcc6d9dac05515a74101c771cdbaf2d44635f1d6868e644bec102e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/2.css HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:40 GMT
ETag: "d49-5df5387f7d900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 619
Content-Type: text/css
xf4b30avshhixb.xyz/index_files/1.css
216.18.208.202200 OK 1.9 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/1.css
IP 216.18.208.202:0
Hash 745bd52b1ee7971e983589bab13079b9
01a8bc697e7157953e244bed7569d8d2b187f445
dd3dfec7e07a9c78b8a25f14848c910a464ebc90a8286a0f59cc00c8dcb2e12b
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/1.css HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:38 GMT
ETag: "2d6d-5df5387d95480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1905
Content-Type: text/css
xf4b30avshhixb.xyz/index_files/758241664861733
216.18.208.202200 OK 74 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/758241664861733
IP 216.18.208.202:0
File type ASCII text, with very long lines (64471)
Hash 6166005248fda3d1265292709cb0cf56
ac7ed7dd5caffd28250c925c69db36a432e1d651
1fb3a07c0f80f017ee370d14bcef06ccfe3f4529241c063e57412ae6e481ab27
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/758241664861733 HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:41 GMT
ETag: "3f7e7-5df5388071b40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
xf4b30avshhixb.xyz/index_files/index_files_index.css
216.18.208.202200 OK 4.5 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_index.css
IP 216.18.208.202:0
File type ASCII text, with very long lines (1029)
Hash 32e9e8e111fd3fbb8e719b9268a53b55
b3486fbf29509d9aa7787c0114444bea1a944510
867ce3fa9d0327ce272ceb45aa0b58cf86e8c51c4195a44be8735fa905aba603
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_index.css HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:13 GMT
ETag: "656f-5df5389ef6340-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4474
Content-Type: text/css
xf4b30avshhixb.xyz/index_files/index_files_template.css
216.18.208.202200 OK 3.0 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_template.css
IP 216.18.208.202:0
Hash e3a2d581a7136eb949c69364bbca5e2f
72e5c203a296e718619539a37a2d841c51a613b8
4c50755297927d80317b89a77be356783dac832af213324c38bb674ed686bfd3
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_template.css HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:16 GMT
ETag: "3142-5df538a1d2a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3003
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notoserif/v8/ga6Iaw1J5X9T9RW6j9bNfFcWbQ.ttf
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v8/ga6Iaw1J5X9T9RW6j9bNfFcWbQ.ttf
IP 142.250.74.163:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2012 Google Inc. All Rights Reserved.Noto SerifRegularMonotype Imaging - Noto SerifVer\012- data
Hash 0eaad3ab6b5d28854ce461693d26b2a9
f1b7dc6fa513dc29c2d937f87ec3fdc9eaf9c3e5
09aa7854817672153ca8f045744ba2d7b1e173d8165d8dcf5504a4cc01227c15
GET /s/notoserif/v8/ga6Iaw1J5X9T9RW6j9bNfFcWbQ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://xf4b30avshhixb.xyz
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28523
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:46:27 GMT
expires: Tue, 19 Sep 2023 18:46:27 GMT
cache-control: public, max-age=31536000
age: 504974
last-modified: Mon, 22 Jul 2019 19:17:22 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v13/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7g.ttf
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v13/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7g.ttf
IP 142.250.74.163:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2010, 2012, 2014 Adobe Systems Incorporated (http://www.adobe.com/), with Reserved Fon\012- data
Hash a7e73321579d15352e0bc55cbc907315
97c1515c1302b370c454ca096143140a6f7ccd82
e9b321b181a443b6d9b4f5580bd39e2d190220a983ed9da0cdb1ac484722bb79
GET /s/sourcesanspro/v13/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7g.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://xf4b30avshhixb.xyz
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20810
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 05:36:28 GMT
expires: Mon, 25 Sep 2023 05:36:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Jul 2019 03:45:49 GMT
content-type: font/ttf
age: 33973
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xf4b30avshhixb.xyz/index_files/index_files_komment7dlaxtgy.jpg
216.18.208.202200 OK 936 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_komment7dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 03138cfd1ca96ae441ce44f95a0db81f
122607b6b1ddfdb1726d33c82ee6f3443658afd3
2cc91f3f70ec0f3b769164af2f46c98a9efe2c77c58bad4794205507b27c2daa
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_komment7dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:14 GMT
ETag: "3a8-5df5389fea580"
Accept-Ranges: bytes
Content-Length: 936
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_231dlaxtgy.jpg
216.18.208.202200 OK 3.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_231dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 92x92, components 3\012- data
Hash 4e903e9acf52c75fda1f114479d978ac
de7377e402acb203dc92864ef1ecf0fbca355d0c
30b0f909f0b4ec8ee235ce80f6d672cd1c466901ca8395b043c4e7a434ddf8c1
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_231dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:53 GMT
ETag: "c71-5df5388be3640"
Accept-Ranges: bytes
Content-Length: 3185
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_24dlaxtgy.jpg
216.18.208.202200 OK 1.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_24dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash beb227fc21860b3185938dcf46c72619
bb833c90dff6f3a5c4bb675f41b68279d9c1368b
0ff390314ea851e94abdc43fef667b7dc93354a46d74cccede74a089bfd77455
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_24dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:53 GMT
ETag: "4ad-5df5388be3640"
Accept-Ranges: bytes
Content-Length: 1197
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_27dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_27dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 37facf29d0bb1448fe2931b6d1722433
0184d20a2f59f645bec292d180f4f8c0ce838e68
7edede1b8fa9f6f4a9d16deccfeb0076a830036a21bd3279b9df79619aa2df49
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_27dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:55 GMT
ETag: "4eb-5df5388dcbac0"
Accept-Ranges: bytes
Content-Length: 1259
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_ob35dlaxtgy.jpg
216.18.208.202200 OK 70 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_ob35dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x389, components 3\012- data
Hash 039f8e78e07b35821199dfbd2189829d
378418576d4aecce883712debad50913b1c11fa7
2cbdac669b7aac629947115f2a4ec269213f2e99a141df95151cb9ef97bad90a
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_ob35dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:14 GMT
ETag: "111a0-5df5389fea580"
Accept-Ranges: bytes
Content-Length: 70048
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_25dlaxtgy.jpg
216.18.208.202200 OK 50 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_25dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 605x401, components 3\012- data
Hash fcc6b10e88acf2b04003455f640b804f
76254f34bdf6d5f3e0902cbdd381c1bc7581619d
3d6847f242922d0920e55d01f4c28c0ce34a952ce9c8e168630e378c76a8c020
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_25dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:41 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:54 GMT
ETag: "c280-5df5388cd7880"
Accept-Ranges: bytes
Content-Length: 49792
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/burger.png
216.18.208.202200 OK 157 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/burger.png
IP 216.18.208.202:0
File type PNG image data, 24 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash c78fcc055018fb31bde0d748622597e3
d55d6b0b9bef2e30e8d8ec4fa8988c4db1ebe84c
e517c5bb3604c7cd0db467280c7cfd5124f2659ce5341ce30f7a5f4627fd85d9
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/burger.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:41 GMT
ETag: "9d-5df5388071b40"
Accept-Ranges: bytes
Content-Length: 157
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/166fba4e2a49856b22a27eef39896c.png
216.18.208.202200 OK 29 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/166fba4e2a49856b22a27eef39896c.png
IP 216.18.208.202:0
File type PNG image data, 200 x 379, 8-bit colormap, non-interlaced\012- data
Hash 8bb1a05884dec36a3ca56a03302fcdc5
df47a619b0fcc3e79a2ad9cc4d179654ab5628f3
1b718a733702cc74da14c0a156ff9b852f97d89ec3eb5cd8cf690aa26e7bd08b
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/166fba4e2a49856b22a27eef39896c.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Wed, 29 Jun 2022 09:30:04 GMT
ETag: "71ac-5e292cc491f00"
Accept-Ranges: bytes
Content-Length: 29100
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/sec.png
216.18.208.202200 OK 1.4 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/sec.png
IP 216.18.208.202:0
File type PNG image data, 165 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 5147b4db94bdcfea63224ab0a82ef09b
a25c022cb997804944b03aea9cdaa3afc0bd8498
f5afe87a1cc492278fa3bfc9fad5c89c8539760d82478a97222b2b6ab00d4752
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/sec.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:20 GMT
ETag: "58d-5df538a5a3300"
Accept-Ranges: bytes
Content-Length: 1421
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5603
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 15:02:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5603
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 15:02:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5603
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 15:02:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2bbb3856eeac20d0ee556c96144bf6c
76ac1f33cd006227162e12e7142e754562bec0c0
1e3f6551d401346b6d809d8feb9b36a9e0006f99f518d1130aa9bd630bfb6801
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12538
x-amzn-requestid: 2ae96766-6999-44ec-8084-a19d26b3e118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOHYFIAMFXYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-060b96fa5fc99e79711bde3f;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: r05yVinImdVUtIIPW06CLYOIoGLPvX7--br6j1OIxVP9flNEhxHDpw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 11:43:29 GMT
age: 11953
etag: "76ac1f33cd006227162e12e7142e754562bec0c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9773faaac4deac40b96cd0802e974f36
db601663fa6ee5564eddaf8d3d84c7b04bf3871c
40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JgS9UxuYxMmnN6Op-LDeWN7tpeQYRosQp5Jo4-2jf8uEMUIHa6j-SQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:04:13 GMT
age: 35909
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 62710
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:57:02 GMT
age: 61540
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:22:33 GMT
age: 27609
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3_xkH-s3Fzz3CRHux4j3hergFHWBmOFF9vMBCoN1rJrjrCkeSEp0qQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:01:16 GMT
age: 61286
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xf4b30avshhixb.xyz/index_files/mic1.jpg
216.18.208.202200 OK 25 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/mic1.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 715x429, components 3\012- data
Hash e897766e3698a59bf509a42ccb157f11
60aedcc8facd8c42f47f6b619c9a3a066a6167c5
4c171ec1171a260703bb84e327d6396539e5625b8664ddbc6dfe80d472c843d9
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/mic1.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:18 GMT
ETag: "6307-5df538a3bae80"
Accept-Ranges: bytes
Content-Length: 25351
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_top1dlaxtgy.jpg
216.18.208.202200 OK 62 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_top1dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1180x680, components 3\012- data
Hash a450f33a784347238e3d27ab069aa98e
81f90bc7e26088a4fc5dd4d75c3fc5c210c5476e
25a68f579d2360d3e5b98adf19f8875bc2a030d348869b46c3066cd490729633
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_top1dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:17 GMT
ETag: "f095-5df538a2c6c40"
Accept-Ranges: bytes
Content-Length: 61589
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/doposle2.jpg
216.18.208.202200 OK 56 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/doposle2.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x410, components 3\012- data
Hash d47a625764d0b3b4da8364a6812c2733
935387dc4cc2a40452756f248607af685aacc797
b4a66dca99905c256afd25ac9bf097560ed8c096e29f6d3bb53aa41083252718
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/doposle2.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:44 GMT
ETag: "db70-5df538834e200"
Accept-Ranges: bytes
Content-Length: 56176
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/doposle3.jpg
216.18.208.202200 OK 59 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/doposle3.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x410, components 3\012- data
Hash a8ff522e8efb119596cfdb75ff4650a0
9e5b2a66caae0e9288c31a8fc87d1e87a34698e1
4347629908714c2ed64b65e24d978894f949cf17e7c07930d29c15f85d3eee65
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/doposle3.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:45 GMT
ETag: "e7e7-5df5388442440"
Accept-Ranges: bytes
Content-Length: 59367
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_img2dlaxtgy.jpg
216.18.208.202200 OK 26 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_img2dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 604x292, components 3\012- data
Hash 515282ceee64c261d886638f47bacc6f
c34804b8dbb0e33f73addb00b55b76155d97546c
01396c39cdb5d9a31f92183b1f194c042aa26fb3412d4285f17cd740294abc5e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_img2dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:10 GMT
ETag: "670f-5df5389c19c80"
Accept-Ranges: bytes
Content-Length: 26383
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_img1dlaxtgy.jpg
216.18.208.202200 OK 54 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_img1dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x363, components 3\012- data
Hash b033055408c76686de112432f08f97a9
da7fa4ca793c9504abe7689449f07465b5b4a379
4e70fc59f7d0218e502e0c771d75b70d50680fcec1c6b9781d220b6cb8d04540
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_img1dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:09 GMT
ETag: "d4ec-5df5389b25a40"
Accept-Ranges: bytes
Content-Length: 54508
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/doposle1.jpg
216.18.208.202200 OK 355 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/doposle1.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1109x628, components 3\012- data
Size 355 kB (354928 bytes)
Hash 81c6ef6852c1c1a2dd8ebb193bd85d60
2435fd56e1e13168674bd852e0628bc898b20fd2
e7904fc358644bc6739074c1343ad34c30220faff0b0bb8e7dcb71f539f80b32
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/doposle1.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:42 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:43 GMT
ETag: "56a70-5df5388259fc0"
Accept-Ranges: bytes
Content-Length: 354928
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/checkmark-green-sm.png
216.18.208.202200 OK 807 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/checkmark-green-sm.png
IP 216.18.208.202:0
File type PNG image data, 18 x 20, 8-bit colormap, non-interlaced\012- data
Hash fa06499b53981a61378024e2468510f7
5e495c3277919737797b34ab1efd0773dec81d9c
6d5edd9ea551eba3a6d17c97a32a8540b1574d942b7b4ad74dcd9d19b25640bc
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/checkmark-green-sm.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:42 GMT
ETag: "327-5df5388165d80"
Accept-Ranges: bytes
Content-Length: 807
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/100-guarantee-seal-1_2.png
216.18.208.202200 OK 8.5 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/100-guarantee-seal-1_2.png
IP 216.18.208.202:0
File type PNG image data, 150 x 132, 8-bit colormap, non-interlaced\012- data
Hash 9f9c77cc82f95762fafda9064a575410
7198aa48d5d81b1e86bddd616214b6c6078c4d25
53c0c450833d22637a4fd87311fe304f78a1fe4987a996a0d309ca64db53982b
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/100-guarantee-seal-1_2.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:38 GMT
ETag: "2104-5df5387d95480"
Accept-Ranges: bytes
Content-Length: 8452
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/index_files_img3dlaxtgy.jpg
216.18.208.202200 OK 55 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_img3dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x513, components 3\012- data
Hash 7177b4ae3ea56768a68044de1d342789
c7d7b44fd2b81c1ea54e32270d3c28a33a548b7a
9cc60f36184004e40e024e838390691a3b341ee30c1306fb936c0d706fb81bea
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_img3dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:11 GMT
ETag: "d6fa-5df5389d0dec0"
Accept-Ranges: bytes
Content-Length: 55034
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_doc-kz2-1dlaxtgy.png
216.18.208.202200 OK 84 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_doc-kz2-1dlaxtgy.png
IP 216.18.208.202:0
File type PNG image data, 559 x 440, 8-bit colormap, non-interlaced\012- data
Hash 362ac16142e2d9f7a41cdb041a8007a8
9ff744f8453c7a9e715acfcfd400608c31171ea9
6697f7c31be9c3a56989136830f97f529b1cbb9dccff8c6a049c013ab2d409e5
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_doc-kz2-1dlaxtgy.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:09 GMT
ETag: "145fd-5df5389b25a40"
Accept-Ranges: bytes
Content-Length: 83453
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/index_files_ob372dlaxtgy.jpg
216.18.208.202200 OK 35 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_ob372dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x384, components 3\012- data
Hash 7a536dd21a42a7e15cfc78ad3af2e286
9b37a6d60583b8c41e05f1210d78d43b64b5b010
b6c4bf49242cff2d502d785eda94a1d0bd8f04ec0ed778d8af46258b33d83380
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_ob372dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:15 GMT
ETag: "89a2-5df538a0de7c0"
Accept-Ranges: bytes
Content-Length: 35234
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_img8dlaxtgy.jpg
216.18.208.202200 OK 21 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_img8dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 504x244, components 3\012- data
Hash 33e36454eee3f332d5477c7db1d2927b
3b905e3579cb4e0db0c0528dee42a18a53f6d5fc
0e6f6534b9db5a916b71907ed5ae1bc818678de113b63a778e160444b0cc994e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_img8dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:12 GMT
ETag: "536d-5df5389e02100"
Accept-Ranges: bytes
Content-Length: 21357
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_21dlaxtgy.jpg
216.18.208.202200 OK 38 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_21dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 487x454, components 3\012- data
Hash 92ef707df9e8a376e41093fe82c204d8
a983836f352487c4a48e9a199ba7f142c0005cfa
c50943a0931cc14b85bf4535a15062943cb54b87afdc904ee16b590617c7a99d
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_21dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:51 GMT
ETag: "9556-5df53889fb1c0"
Accept-Ranges: bytes
Content-Length: 38230
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_img9dlaxtgy.jpg
216.18.208.202200 OK 67 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_img9dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 606x673, components 3\012- data
Hash cfdd8757576795dd94632de1ccf9cac4
43caa8ee249a4b8fca8a0e9da614855d4220d352
bbe0b6f2c850032f9d5b9eaa8a68255614b3f734a2aedf1fcbc3c1c845e35f71
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_img9dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:12 GMT
ETag: "1055f-5df5389e02100"
Accept-Ranges: bytes
Content-Length: 66911
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_1072dlaxtgy.jpg
216.18.208.202200 OK 36 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_1072dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 528x337, components 3\012- data
Hash 9a64c8ec85f7d5778e3a4afdb314f018
e706ab0eb6d6f0fd28024ac4464dff62c917aeff
072e261bbadc1a56b4adcb4b07b3e33ea835f44a2048c80cdace224d6d39a10a
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_1072dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:47 GMT
ETag: "8c9a-5df538862a8c0"
Accept-Ranges: bytes
Content-Length: 35994
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_107dlaxtgy.jpg
216.18.208.202200 OK 28 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_107dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 528x500, components 3\012- data
Hash d9315cf66b01f0cd4eb8f9717c6640cc
0f56365779cbb85a18d5731bf518b1e0e629514d
d3774c2cec83e30634a2ac8af21556ac903ec9ef0542cb1b21616214cf004e87
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_107dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:48 GMT
ETag: "6c5d-5df538871eb00"
Accept-Ranges: bytes
Content-Length: 27741
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_300dlaxtgy.jpg
216.18.208.202200 OK 1.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_300dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 67256a75543fac786fe825d59a7dca96
42502135b82c2f1d4522e3a27f390cd3274ef642
342a5692f9b98c663d547539502b930b7e3039457c83f7c17b2d6fb43a9b5a50
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_300dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:56 GMT
ETag: "48f-5df5388ebfd00"
Accept-Ranges: bytes
Content-Length: 1167
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_201dlaxtgy.jpg
216.18.208.202200 OK 98 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_201dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Hash 307a01a95d145c316800ff606b6f606a
a024a9552aced7da17e6894a606207e2dc308213
62ca6c29685a67a6c60af08079c11cfa7403965e9b8a4915db35ccf388440be8
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_201dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:50 GMT
ETag: "17f02-5df5388906f80"
Accept-Ranges: bytes
Content-Length: 98050
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_223dlaxtgy.jpg
216.18.208.202200 OK 1.0 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_223dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 7d76da1acb4567e0e67f4725a981a742
aa9c0d0fda77b5ba70eebaac993205e571f789ab
558175e49223317cd14ad577e38826b00d11279c5038763ac2a79bc56737df08
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_223dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:52 GMT
ETag: "404-5df5388aef400"
Accept-Ranges: bytes
Content-Length: 1028
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_30dlaxtgy.jpg
216.18.208.202200 OK 1.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_30dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash abf389642cfcead1ce3316bf132e565d
a3e850480d719a730361fd4e2f4925473c87c9bf
533ef9441312a6814ec112698ca06727186800c31d1121d4be49c2a2b5814a0a
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_30dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:02 GMT
ETag: "4ca-5df5389478a80"
Accept-Ranges: bytes
Content-Length: 1226
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_28dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_28dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 3c8a37e5efd52b11c6b6ba85a5121da8
82b39ead1620f5451ddd8853929256fdec7f06b9
86fb984f7cfb84d550eed14eeec143b5403dcaefe400f9fe7e56dd9c30879f2a
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_28dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:56 GMT
ETag: "4e9-5df5388ebfd00"
Accept-Ranges: bytes
Content-Length: 1257
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_12_00100dlaxtgy.jpg
216.18.208.202200 OK 824 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_12_00100dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 709621deb6aa9f9466101dff06e0d71d
aa5b833933355c7d9f7f14b8f6f304168ed4a80e
adf33e166455055dc84ae07649c11ea0b86d6295e522374c159a44280a8b7158
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_12_00100dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:49 GMT
ETag: "338-5df5388812d40"
Accept-Ranges: bytes
Content-Length: 824
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_302dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_302dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 73b44fae23734d9060ad9b26acc8bdd3
be17951d07d8e00de592b0919994dc259ee0e42d
37b464085cc9a389507ca74a1305dbd60f7c6997e4e9091ce2cc3e862811bfac
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_302dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:57 GMT
ETag: "513-5df5388fb3f40"
Accept-Ranges: bytes
Content-Length: 1299
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_303dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_303dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 7710fd6cf5f06b3755f6d9c71308e8f2
28dc920aa2488825fcbf5109fafbb62d95b8a444
dc49110b123f274d7c695ad8b7a3282d9cfa547ba857da5ca9ed558e2e0318aa
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_303dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:58 GMT
ETag: "53b-5df53890a8180"
Accept-Ranges: bytes
Content-Length: 1339
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_305dlaxtgy.jpg
216.18.208.202200 OK 1.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_305dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 8d8835d00e5f5390aa3448a8a1565ff3
3fa70ced7fe1520902f0f9bffff4c0ddc4091df3
60e7a2246ed826c54bc0d7efdb26c6387cfac43a831b9830ef71c5cc552d0fde
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_305dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:59 GMT
ETag: "4ad-5df538919c3c0"
Accept-Ranges: bytes
Content-Length: 1197
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_304dlaxtgy.jpg
216.18.208.202200 OK 3.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_304dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 90x90, components 3\012- data
Hash da632bceb0ae3627d97652d931204ded
dbb9ba7a39173fa9c0ffe67c3f379a88a16f9453
8bcdb6c350735f612b025dcdccdbda28716b1434b4ba18b2e14e46b0008213ab
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_304dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:59 GMT
ETag: "c68-5df538919c3c0"
Accept-Ranges: bytes
Content-Length: 3176
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_307dlaxtgy.jpg
216.18.208.202200 OK 1.2 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_307dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 6acb0e3dc829918057a7b5aef7a35f80
47c1f46c24ae99828a528a7b8e84470dbd70d76a
339a5512ad50a68684483b84fe8967b0e82440a94ba27ca5255ad103f5a6d0e7
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_307dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:01 GMT
ETag: "4d1-5df5389384840"
Accept-Ranges: bytes
Content-Length: 1233
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_2233dlaxtgy.png
216.18.208.202200 OK 378 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_2233dlaxtgy.png
IP 216.18.208.202:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 378 kB (377679 bytes)
Hash 75abeb2fe036d2e3f01de2db96724ea9
f77e5aa9a360a6637fec47e395b0bc576bf5e0a2
565b10bd5bc1f149968452a4adfaf7580d638480167ba1e5419d65826d0b45ac
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_2233dlaxtgy.png HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:51 GMT
ETag: "5c34f-5df53889fb1c0"
Accept-Ranges: bytes
Content-Length: 377679
Content-Type: image/png
xf4b30avshhixb.xyz/index_files/index_files_308dlaxtgy.jpg
216.18.208.202200 OK 1.8 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_308dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x74, components 3\012- data
Hash a481291e97fc53984b991a8318ded102
d789fb28f4e1c33c4220e73e654a845e83c562c0
fa7e6cb3baee417a00f7724b9e5a23faa983fc9a54382b788a4ff567eab1001c
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_308dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:01 GMT
ETag: "700-5df5389384840"
Accept-Ranges: bytes
Content-Length: 1792
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_314dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_314dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash bea4046c71ef24e7a203095c9adaa757
69bf0ea1dac8a93554adfd19b3b18c51a0f0a4fe
8b596fc99e59b2f9cf13daa769f2adf0798399e6920b1f18d6514594dd3e1461
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_314dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:04 GMT
ETag: "518-5df5389660f00"
Accept-Ranges: bytes
Content-Length: 1304
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_310dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_310dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 025c1109b1a2c4dc35a6bf7bf39d43b7
2950f2ea334e7216115885803443e7a5ac42c64b
3b061ff88eb1e295db0f9499349a2a1e0931434312da3c6869478ea9d1a08d1e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_310dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:03 GMT
ETag: "515-5df538956ccc0"
Accept-Ranges: bytes
Content-Length: 1301
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_312dlaxtgy.jpg
216.18.208.202200 OK 808 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_312dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 40x40, components 3\012- data
Hash c08948a01fd0d91ed5769e47844aa182
5cfb031a7e85eb6f982613ce9c2d1526c99b0613
6dbb6869e789036dba448f7f2bdf822569a6d81219f7caed1dfe9b95fff690f8
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_312dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:04 GMT
ETag: "328-5df5389660f00"
Accept-Ranges: bytes
Content-Length: 808
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_315dlaxtgy.jpg
216.18.208.202200 OK 972 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_315dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash e6e175a197ffdec91aa8460a619f0aad
f8bbb759bd82fd83ddbc4042584830ed6ecc0121
9ec06755c75aac7ac552243bc061b1d8620f5b37e6bf45f49bd8fa3683b440dd
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_315dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:05 GMT
ETag: "3cc-5df5389755140"
Accept-Ranges: bytes
Content-Length: 972
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_av6dlaxtgy.jpg
216.18.208.202200 OK 765 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_av6dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 89176654c5d7754a7e938b68a7fe692f
248cc0b2a571181ee9026a51fc5f9f792ff18a0b
d7ff79b20152c857f092775170fb6e501e04e8c65d1a0fdd84f5286c1d813a23
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_av6dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:07 GMT
ETag: "2fd-5df538993d5c0"
Accept-Ranges: bytes
Content-Length: 765
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_av50dlaxtgy.jpg
216.18.208.202200 OK 806 B URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_av50dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 5d2aa0f5118c044f8b8c103ff8d9e352
cb67156dc18e78b92b91b552a63168deaea0b133
45cdf96fc131618962ace7e5c317f42131b6b91207a7d92264df4150c8924c9f
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_av50dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:06 GMT
ETag: "326-5df5389849380"
Accept-Ranges: bytes
Content-Length: 806
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_av7dlaxtgy.jpg
216.18.208.202200 OK 1.1 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_av7dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 2d1f8a98f8cd27871132b433f46b7497
8f95cc59ddbd9c47d22b53e70fa64b13801d2dd6
bea43af77b75111aa3df68fb90c480df4a03a032efa07c2201abe8a1b62b0926
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_av7dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:07 GMT
ETag: "470-5df538993d5c0"
Accept-Ranges: bytes
Content-Length: 1136
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_av8dlaxtgy.jpg
216.18.208.202200 OK 2.0 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_av8dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash 11f92745584114757e86d6dd13341fb2
416df61a4a39918b22f2449fec32b47fab68a054
58497a2344fd779116d28d0bb59681744214cfd0b98f51861a059cf55895eab9
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_av8dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:08 GMT
ETag: "7c6-5df5389a31800"
Accept-Ranges: bytes
Content-Length: 1990
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_1111dlaxtgy.jpg
216.18.208.202200 OK 1.3 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_1111dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash d8529ef630886071364f997a13c988c2
18740d55c977142880d98c8b1363b0fbe2d7b7b1
2eea2f146912f980335b9b7fef782194cf03eded62d4164f322bbb867f496479
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_1111dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:45:48 GMT
ETag: "52c-5df538871eb00"
Accept-Ranges: bytes
Content-Length: 1324
Content-Type: image/jpeg
xf4b30avshhixb.xyz/index_files/index_files_306dlaxtgy.jpg
216.18.208.202200 OK 1.4 kB URL HTTP/1.1 xf4b30avshhixb.xyz/index_files/index_files_306dlaxtgy.jpg
IP 216.18.208.202:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash a7f22cf56668556b330dfe6f2a69cc7c
eda8e2bc7ea46776aed0e38eedfe21a57221bb86
34e2d7f8421286b6fad52bef2aeaee036231d73e971da8d47c2594e6edfcb521
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index_files_306dlaxtgy.jpg HTTP/1.1
Host: xf4b30avshhixb.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/?type=really
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 15:02:44 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Thu, 19 May 2022 01:46:00 GMT
ETag: "552-5df5389290600"
Accept-Ranges: bytes
Content-Length: 1362
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5662
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:44 GMT
Last-Modified: Sun, 25 Sep 2022 13:28:22 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: C0ieg58/H/uYZasfOj/PZ4M3YOyotsKVNceVRA3JuVQScHgy6+I58n4UmZk28BWxmHx+AyOnJC5qFksMgK+vTA==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Sun, 25 Sep 2022 15:02:44 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5662
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 15:02:44 GMT
Last-Modified: Sun, 25 Sep 2022 13:28:22 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=758241664861733&ev=PageView&dl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F%3Ftype%3Dreally&rl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F&if=false&ts=1664118164253&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664118164252.102620548&it=1664118163468&coo=false&rqm=GET
157.240.200.35200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=758241664861733&ev=PageView&dl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F%3Ftype%3Dreally&rl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F&if=false&ts=1664118164253&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664118164252.102620548&it=1664118163468&coo=false&rqm=GET
IP 157.240.200.35:0
File type gzip compressed data, from Unix\012- data
Hash 0604aff9d552bb286649f92b528c1932
ac4905dd1b9980f50a0fed61447bf53104c68a04
e7fe43bc4d3aa94e8a49107b4c9a4a30eee2a87839558bb02f8495c95888ea4e
GET /tr/?id=758241664861733&ev=PageView&dl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F%3Ftype%3Dreally&rl=http%3A%2F%2Fxf4b30avshhixb.xyz%2F&if=false&ts=1664118164253&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664118164252.102620548&it=1664118163468&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://xf4b30avshhixb.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 15:02:45 GMT
X-Firefox-Spdy: h2