| wizedeal.com/click/v2/mj/rd/?subID2=w1mdf225j3527v7p2temtade&tg= | 104.21.53.93 | | 0 B |
URL wizedeal.com/click/v2/mj/rd/?subID2=w1mdf225j3527v7p2temtade&tg= IP104.21.53.93:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/v2/mj/rd/?subID2=w1mdf225j3527v7p2temtade&tg= HTTP/1.1
Host: wizedeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Jun 2023 23:57:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Jun 2023 00:57:32 GMT
Location: https://wizedeal.com/click/v2/mj/rd/?subID2=w1mdf225j3527v7p2temtade&tg=
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qPmeNrHnKQmn1jYqVAZ6T05aDwuDhIrCsIi4sq8%2FPrmQ86k4uFTsh2OxypYnCUac%2BhX3i89Xw%2FwKFIYfhCRciregHkpsawn6E6Ti0utCInB%2BCBAVtcneN042tOH98gY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d2c5bc65c78b521-OSL
alt-svc: h2=":443"; ma=60
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | | 471 B |
URL ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash15c3c9c181643870c722db6cd060e131 94040ecad3655911e1351b155f94f6ce1ca7aa2d 1788169dc97fa144a36537317779c9a003e5b69a1e3cf2a2a1cc79fbab13ec41
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 05 Jun 2023 23:57:33 GMT
Last-Modified: Mon, 05 Jun 2023 23:05:16 GMT
Server: ECAcc (dcb/7EDB)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rInCvUHHY_QKt1cFX6WZMYYw-scwdhPHWXW6Sx9q3yo_gVAVfZ9ZYw==
Age: 3138
|
| rt54.literallysafe.com/adDomain?sourceID=se7iNjvv&subID=wizedeal.com&u=https%3A%2F%2F&subID2=w1mdf225j3527v7p2temtade | 18.220.64.85 | 302 Found | 76 B |
URL User Request GET HTTP/2rt54.literallysafe.com/adDomain?sourceID=se7iNjvv&subID=wizedeal.com&u=https%3A%2F%2F&subID2=w1mdf225j3527v7p2temtade IP18.220.64.85:443
CertificateIssuerAmazon Subjectrt54.literallysafe.com Fingerprint6E:58:6A:75:BC:75:2B:4C:7B:83:B3:6F:54:A3:04:13:81:4E:8A:CB ValidityWed, 07 Dec 2022 00:00:00 GMT - Fri, 05 Jan 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash21e69fc18f4fa7beb8fe123170be086b f3fdcfa154d9cdc745f93f30ce28ab0b02e1e697 e80a3b033c10dd5792e2a5d400f2450c2f7c309db6043ca34825037710297dfd
GET /adDomain?sourceID=se7iNjvv&subID=wizedeal.com&u=https%3A%2F%2F&subID2=w1mdf225j3527v7p2temtade HTTP/1.1
Host: rt54.literallysafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 05 Jun 2023 23:57:33 GMT
content-type: text/html; charset=utf-8
content-length: 76
location: https://https///
server: nginx
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept,recording-session
vary: Accept
X-Firefox-Spdy: h2
|
| wizedeal.com/click/v2/mj/rd/?step=mr2&tg2=647e766c94c0c853997556&subID2=w1mdf225j3527v7p2temtade&tg= | 104.21.53.93 | 302 Found | 0 B |
URL User Request GET HTTP/3wizedeal.com/click/v2/mj/rd/?step=mr2&tg2=647e766c94c0c853997556&subID2=w1mdf225j3527v7p2temtade&tg= IP104.21.53.93:443
CertificateIssuerGoogle Trust Services LLC Subjectwizedeal.com FingerprintD2:DE:40:C6:EC:E2:61:41:0F:84:BC:05:13:8C:9B:1A:A2:F7:2A:4C ValidityFri, 21 Apr 2023 03:24:46 GMT - Thu, 20 Jul 2023 03:24:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/v2/mj/rd/?step=mr2&tg2=647e766c94c0c853997556&subID2=w1mdf225j3527v7p2temtade&tg= HTTP/1.1
Host: wizedeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Mon, 05 Jun 2023 23:57:33 GMT
content-type: text/html; charset=UTF-8
location: https://rt54.literallysafe.com/adDomain?sourceID=se7iNjvv&subID=wizedeal.com&u=https%3A%2F%2F&subID2=w1mdf225j3527v7p2temtade
referrer-policy: origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GYwz3N9fFJ8rvsZCkhT23Z0u06Zy7RS8oSpoZfyVh56MoXp0407hbgZ5VECD4r4P321m9bcQrY754BmwgreXRScJ9kasLifEDdJgu6wSv4K%2BFRkWIWOUgORF%2BpODMhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d2c5bc9efc4b51e-OSL
alt-svc: h3=":443"; ma=86400
|
IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /// HTTP/1.1
Host: https
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|