Report - 96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490

Report Overview

URL

96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490
IP

45.76.148.82

ASN

#20473 AS-CHOOPA
Submitted

2023-06-02T20:04:21Z

Access

public
Tags

None
urlquery detections

Scam / Brand infringement

Detections

urlquery

1
Network Intrusion Detection

0
Threat Detection Systems

0

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
96.winprizes696.monster (12)	unknown	2023-03-05 09:11:45	2023-06-01 02:04:13	11876	375581	45.76.148.82
shanaurg.net (1)	634243	2021-01-02 01:19:23	2023-06-01 02:07:20	471	42318	139.45.197.250
ie.kis.scr.kaspersky-labs.com (1)	486866	2017-01-30 05:56:03	2023-06-01 22:05:17	1120	0	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (14)

	URL	IP	Response	Size
	96.winprizes696.monster/br3icu/checkmark.png	45.76.148.82	200 OK	1383
Search urlquery URL 96.winprizes696.monster/br3icu/checkmark.png DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash c5c7963ac4910cc213df781683ca2b23 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 4ac7e6fd56d69d7587fd3406fded70fb5237e494 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/checkmark.png IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size 1383 Hash c5c7963ac4910cc213df781683ca2b23 4ac7e6fd56d69d7587fd3406fded70fb5237e494 885f933eb3e99af07249f0a9b09e87d06a88d75ce5f3c3bae6d22057ad971663 HTTP Headers GET /br3icu/checkmark.png HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: image/png content-length: 1383 last-modified: Sun, 05 Mar 2023 04:44:23 GMT etag: "567-5f61fd5203591" accept-ranges: bytes X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/brflag.png	45.76.148.82	200 OK	1560
Search urlquery URL 96.winprizes696.monster/br3icu/brflag.png DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash 3f09355b3e373835b54ff04bf9f08d42 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH c0c211336633fda9476027ee45d4ad43fd545704 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/brflag.png IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size 1560 Hash 3f09355b3e373835b54ff04bf9f08d42 c0c211336633fda9476027ee45d4ad43fd545704 d6d664e54e7656b16e5970c451f1da24ab0eb39cde2b2e0f60ae36aaec6d3991 HTTP Headers GET /br3icu/brflag.png HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: image/png content-length: 1560 last-modified: Sun, 05 Mar 2023 04:44:21 GMT etag: "618-5f61fd5071012" accept-ranges: bytes X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/loading.gif	45.76.148.82	200 OK	5397
Search urlquery URL 96.winprizes696.monster/br3icu/loading.gif DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash f60928ffecf24d58778208a0f57740e6 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 292e0fa1ce4891036c51e28b22afbc80dba1be6f FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/loading.gif IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic GIF image data, version 89a, 50 x 50\012- data Size 5397 Hash f60928ffecf24d58778208a0f57740e6 292e0fa1ce4891036c51e28b22afbc80dba1be6f 67bdb1ae29193a59a00ab429adecf6639708ad554ecac21eb0cf5837c271ade5 HTTP Headers GET /br3icu/loading.gif HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: image/gif content-length: 5397 last-modified: Sun, 05 Mar 2023 04:44:24 GMT etag: "1515-5f61fd52a3810" accept-ranges: bytes X-Firefox-Spdy: h2`

	96.winprizes696.monster/favicon.ico	45.76.148.82	404 Not Found	371
Search urlquery URL 96.winprizes696.monster/favicon.ico DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash ee38251b54e4a0a06ddf5b91e8338c17 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 7ac6a8c5c99acc67beb6ba6a44b8f004736b7c6f FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/favicon.ico IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (386), with no line terminators Size 371 Hash ee38251b54e4a0a06ddf5b91e8338c17 7ac6a8c5c99acc67beb6ba6a44b8f004736b7c6f f177fb69c123c5d7ab569cf61efe23fcdf9c4149018640699fd87821ea751b74 HTTP Headers GET /favicon.ico HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found server: nginx date: Fri, 02 Jun 2023 20:04:07 GMT content-type: text/html; charset=iso-8859-1 vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/style.css	45.76.148.82	200 OK	1454
Search urlquery URL 96.winprizes696.monster/br3icu/style.css DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash ca6ab4b237d92b23b7d3c786dd0a75db External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 98de24d6fc6d64f947f9a7ecc6158dcd0e5ae7b3 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/style.css IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (1631), with no line terminators Size 1454 Hash ca6ab4b237d92b23b7d3c786dd0a75db 98de24d6fc6d64f947f9a7ecc6158dcd0e5ae7b3 65d7d27a585905c0035fac22663334c88b370af4a36f2ecefc76b1d015dfa9b8 HTTP Headers GET /br3icu/style.css HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: text/css vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:25 GMT etag: W/"5ae-5f61fd535a1f0" content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/countries.js	45.76.148.82	200 OK	10727
Search urlquery URL 96.winprizes696.monster/br3icu/countries.js DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash a8fd4d926fa4a5f16ea2dd1e65deb7a6 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 8c055c5695071d0547ba284710b206aa16a9b3d9 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/countries.js IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with CRLF line terminators Size 10727 Hash a8fd4d926fa4a5f16ea2dd1e65deb7a6 8c055c5695071d0547ba284710b206aa16a9b3d9 a90a0feff0b27f7f8af357f7f3e35d3c7bc49b2c36067bb1ed9e3a64e2bb29e3 HTTP Headers GET /br3icu/countries.js HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:23 GMT etag: W/"29e7-5f61fd521db71" content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/mobile-detect.min.js	45.76.148.82	200 OK	36571
Search urlquery URL 96.winprizes696.monster/br3icu/mobile-detect.min.js DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash c11e13de6e306b4d983d49054ed1fbca External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 6f0f99f4ed38803dc8edc852c223093ecce65c98 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/mobile-detect.min.js IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (32053), with CRLF line terminators Size 36571 Hash c11e13de6e306b4d983d49054ed1fbca 6f0f99f4ed38803dc8edc852c223093ecce65c98 68863e14275c192461e1780c12f9c630ae15adf58784409d4b158c09bfecf314 HTTP Headers GET /br3icu/mobile-detect.min.js HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:24 GMT etag: W/"8edb-5f61fd52d6490" content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/detect_device.js	45.76.148.82	200 OK	777
Search urlquery URL 96.winprizes696.monster/br3icu/detect_device.js DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash f5bc91d4c00933aa1ab24e15bfbf40e9 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH a2b611b8a23f0e37db15a8274a022b03c0729ae7 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/detect_device.js IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (902), with no line terminators Size 777 Hash f5bc91d4c00933aa1ab24e15bfbf40e9 a2b611b8a23f0e37db15a8274a022b03c0729ae7 23c42e399983c04c508c26fb13ab4a40fd3c18ca379d87dad0765264d5090064 HTTP Headers GET /br3icu/detect_device.js HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:23 GMT etag: W/"309-5f61fd5235271" content-encoding: br X-Firefox-Spdy: h2`

	shanaurg.net/pfe/current/micro.tag.min.js?z=3899161&sw=/sw-check-permissions-8f7b4.js	139.45.197.250	200 OK	42013
Search urlquery URL shanaurg.net/pfe/current/micro.tag.min.js?z=3899161&sw=/sw-check-permissions-8f7b4.js DOMAIN shanaurg.net FQDN shanaurg.net IP 139.45.197.250 Hash e204f67bb8419861390e10b3622cf6d7 External sources Mnemonic PDNS FQDN shanaurg.net DOMAIN shanaurg.net IP 139.45.197.250 VirusTotal HASH ab1fb1305fb4780c71b851b821d3e083f522ff1a FQDN shanaurg.net DOMAIN shanaurg.net IP 139.45.197.250 crt.sh FQDN shanaurg.net DOMAIN shanaurg.net Fingerprint 3F:85:4F:68:A6:D2:2F:69:7A:67:0F:4A:BA:0F:C1:E2:BF:5E:EC:9B URL GET HTTP/2 shanaurg.net/pfe/current/micro.tag.min.js?z=3899161&sw=/sw-check-permissions-8f7b4.js IP 139.45.197.250:443 ASN #9002 RETN Limited Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subjectshanaurg.net Fingerprint3F:85:4F:68:A6:D2:2F:69:7A:67:0F:4A:BA:0F:C1:E2:BF:5E:EC:9B ValidityThu, 18 May 2023 05:04:44 GMT - Wed, 16 Aug 2023 05:04:43 GMT Magic C source, ASCII text, with very long lines (42013), with no line terminators Size 42013 Hash e204f67bb8419861390e10b3622cf6d7 ab1fb1305fb4780c71b851b821d3e083f522ff1a c6f10a8ca367a8e72b3ac96138ac8d1dcaf095cdaa7c5ca0c26b7ea652263eac HTTP Headers `GET /pfe/current/micro.tag.min.js?z=3899161&sw=/sw-check-permissions-8f7b4.js HTTP/1.1 Host: shanaurg.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:06 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 13:08:32 GMT etag: W/"6479e9d0-a41d" access-control-allow-credentials: true cache-control: no-cache pragma: no-cache content-encoding: gzip X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490	45.76.148.82	200 OK	7822
Search urlquery URL 96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash e012c14463987ed33141946d0b518596 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH e54a47910d3865aeac7b91592117870402ef5d2d FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL User Request GET HTTP/2 96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9033), with no line terminators Size 7822 Hash e012c14463987ed33141946d0b518596 e54a47910d3865aeac7b91592117870402ef5d2d bcdb8204a518acd665aae80bc891ee11cd0cc75e66b55a7e35f18ec6f5555288 HTTP Headers GET /br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/bootstrap.min.css	45.76.148.82	200 OK	121429
Search urlquery URL 96.winprizes696.monster/br3icu/bootstrap.min.css DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash 835f8986c8cd8f53205e4bcc2ef5a7b3 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 70c1c69150b935bc041da615444b89ee4b74d706 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/bootstrap.min.css IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (65367), with CRLF line terminators Size 121429 Hash 835f8986c8cd8f53205e4bcc2ef5a7b3 70c1c69150b935bc041da615444b89ee4b74d706 4e787764ab7abe57a9375d3243a755446740055b4c593ff1e73ed12eba7cf980 HTTP Headers GET /br3icu/bootstrap.min.css HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: text/css vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:21 GMT etag: W/"1da55-5f61fd4fd6b53" content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/main.js	45.76.148.82	200 OK	98620
Search urlquery URL 96.winprizes696.monster/br3icu/main.js DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash bea6d34611435f8a87b0774ecd6efc02 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH d979133b5b02f4d5ac3341552ea7202f77996191 FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/main.js IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (330), with CRLF line terminators Size 98620 Hash bea6d34611435f8a87b0774ecd6efc02 d979133b5b02f4d5ac3341552ea7202f77996191 99d25eda0ae02ebd0cc72d58f7fd20bfa7156418ceb848e0cfd5e75bfb240e90 HTTP Headers GET /br3icu/main.js HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:24 GMT etag: W/"1813c-5f61fd52d2610" content-encoding: br X-Firefox-Spdy: h2`

	96.winprizes696.monster/br3icu/jquery.min.js	45.76.148.82	200 OK	86713
Search urlquery URL 96.winprizes696.monster/br3icu/jquery.min.js DOMAIN winprizes696.monster FQDN 96.winprizes696.monster IP 45.76.148.82 Hash 5b5a269bd363e0886c17d855c2aab241 External sources Mnemonic PDNS FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 VirusTotal HASH 042dd055cd289215835a58507c9531f808e1648a FQDN 96.winprizes696.monster DOMAIN winprizes696.monster IP 45.76.148.82 crt.sh FQDN 96.winprizes696.monster DOMAIN winprizes696.monster Fingerprint 33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E URL GET HTTP/2 96.winprizes696.monster/br3icu/jquery.min.js IP 45.76.148.82:443 ASN #20473 AS-CHOOPA Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Certificate IssuerLet's Encrypt Subject96.winprizes696.monster Fingerprint33:6F:16:99:41:16:3C:05:3E:6E:33:7A:CA:95:49:46:3E:3B:A4:2E ValiditySat, 27 May 2023 03:28:24 GMT - Fri, 25 Aug 2023 03:28:23 GMT Magic ASCII text, with very long lines (32030), with CRLF line terminators Size 86713 Hash 5b5a269bd363e0886c17d855c2aab241 042dd055cd289215835a58507c9531f808e1648a 1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e HTTP Headers GET /br3icu/jquery.min.js HTTP/1.1 Host: 96.winprizes696.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 20:04:05 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sun, 05 Mar 2023 04:44:24 GMT etag: W/"152b9-5f61fd5293e10" content-encoding: br X-Firefox-Spdy: h2`

	ie.kis.scr.kaspersky-labs.com/1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DSan%2520Diego%26model%3DDesktop%26brand%3DDesktop%26cep%3DGD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz%26lptoken%3D16a385b473b680262490&nocache=15be9	0.0.0.0		0
Search urlquery URL ie.kis.scr.kaspersky-labs.com/1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DSan%2520Diego%26model%3DDesktop%26brand%3DDesktop%26cep%3DGD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz%26lptoken%3D16a385b473b680262490&nocache=15be9 DOMAIN kaspersky-labs.com FQDN ie.kis.scr.kaspersky-labs.com IP 0.0.0.0 Hash d41d8cd98f00b204e9800998ecf8427e External sources Mnemonic PDNS FQDN ie.kis.scr.kaspersky-labs.com DOMAIN kaspersky-labs.com IP 0.0.0.0 VirusTotal HASH da39a3ee5e6b4b0d3255bfef95601890afd80709 FQDN ie.kis.scr.kaspersky-labs.com DOMAIN kaspersky-labs.com IP 0.0.0.0 crt.sh FQDN ie.kis.scr.kaspersky-labs.com DOMAIN kaspersky-labs.com URL GET ie.kis.scr.kaspersky-labs.com/1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DSan%2520Diego%26model%3DDesktop%26brand%3DDesktop%26cep%3DGD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz%26lptoken%3D16a385b473b680262490&nocache=15be9 IP 0.0.0.0:0 ASN #0 Requested by https://96.winprizes696.monster/br3icu/index.php?city=San%20Diego&model=Desktop&brand=Desktop&cep=GD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz&lptoken=16a385b473b680262490 Magic Size 0 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DSan%2520Diego%26model%3DDesktop%26brand%3DDesktop%26cep%3DGD8SX61h1js0VcnyDKIBeLasqOZpxcNSqRIla1gdewmjMb_Lr6yYRq88UHXCiVzjr9ly-n9ymOH4JOsgbyeLLP0LvbcI_8aS1XNM7HZ6Wn9e5QB7GC7KFoJOH2He3Wz_yD_TDMSvFjHJgV6ZGVipD_WCY3CU2GWPZ2KiDcEaVuAMa1c9S1tlgeEYz_ghBy2TqKUe0EHFpTUeAX5ShCl1j19nkUAIckLPc0g29xlyJMzzwLVMMXeJizYTJ0X-vecv2CXvzbEHntOlb7ljNa5S8gzWF1xl4nAigRqNc7lPoFPNvMYTyskKe9W5hOiFl5phX77iwiCSb_XsoFlGHpeG7w7PRe8EEaGEZ78STlWwouu_m49i5Fro7fM9CVtIlPW08UWN9yXXT8vhrRBliseeK3Jh9hGGCCI4miSvt6Z77un23UGCgg6bixBMooA-Lgvz%26lptoken%3D16a385b473b680262490&nocache=15be9 HTTP/1.1 Host: ie.kis.scr.kaspersky-labs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://96.winprizes696.monster DNT: 1 Connection: keep-alive Referer: https://96.winprizes696.monster/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

#1 JS:Script (size: 0)

#2 JS:Script (size: 36571)

#3 JS:Script (size: 777)

#4 JS:Script (size: 10727)

#5 JS:Script (size: 0)

#6 JS:Script (size: 0)

#7 JS:Script (size: 0)

#8 JS:Script (size: 40)

#9 JS:Script (size: 98620)

#10 JS:Script (size: 86713)

HTTP Transactions (14)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers