| kemono.su/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip | 190.115.16.14 | | 138 B |
URL User Request GET kemono.su/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=O2ybmNDs8OBgy6XqY2uw; Domain=.kemono.su; HttpOnly; Path=/; Expires=Sat, 19-Apr-2025 16:04:52 GMT
date: Fri, 19 Apr 2024 16:04:52 GMT
content-type: text/html
content-length: 138
location: https://c5.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
|
|
| c5.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip | 91.149.227.5 | | 138 B |
URL User Request GET c5.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip IP91.149.227.5:0
CertificateIssuerLet's Encrypt Subjectc5.kemono.su FingerprintE0:94:A6:09:AA:F8:57:B4:39:4A:9E:69:CB:C4:A5:C3:54:90:06:22 ValidityWed, 17 Apr 2024 23:30:23 GMT - Tue, 16 Jul 2024 23:30:22 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip HTTP/1.1
Host: c5.kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=O2ybmNDs8OBgy6XqY2uw
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 19 Apr 2024 16:04:52 GMT
content-type: text/html
content-length: 138
location: https://c6.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip
access-control-allow-origin: https://kemono.su
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: *
cache-control: public, max-age=2592000, s-maxage=2592000
X-Firefox-Spdy: h2
|
|
| kemono.su/ | 190.115.16.14 | | 568 B |
IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators Hash2761b98db33884ab29711096ab315edb 8cea6e53464aea178b72e06a906205d040f14ca5 9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET / HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Fri, 19 Apr 2024 16:04:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://kemono.su/
Content-Type: text/html; charset=utf8
Content-Length: 568
|
|
| kemono.su/ | 190.115.16.14 | | 2.4 kB |
IP190.115.16.14:0
CertificateIssuerLet's Encrypt Subjectkemono.su FingerprintF3:5F:EF:65:70:DD:01:FA:F7:18:11:8A:26:DC:CC:D5:78:A2:88:88 ValidityTue, 16 Apr 2024 11:48:02 GMT - Mon, 15 Jul 2024 11:48:01 GMT
File typeHTML document, ASCII text Hash237327a463fb774ada2d2c6314a6e22c c14ffdee18f157bfd69189397f55e14898d062c0 ab647006868a99cf22663d0c441552e2be06cb7b3c9fe05bb6a90da5e4be36f0
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET / HTTP/1.1
Host: kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=fraRZjnp2UGySoGSq3EC; Domain=.kemono.su; HttpOnly; Path=/; Expires=Sat, 19-Apr-2025 16:04:55 GMT
date: Fri, 19 Apr 2024 16:04:55 GMT
content-type: text/html; charset=utf-8
content-length: 2370
cache-control: s-maxage=60
content-encoding: gzip
vary: Cookie, Accept-Encoding
age: 42
accept-ranges: bytes
xv-cache: HIT
xv-cache-hits: 453
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| c6.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip | 0.0.0.0 | | 0 B |
URL User Request GET c6.kemono.su/data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectc6.kemono.su FingerprintB4:A3:15:40:DD:AE:FB:31:18:31:70:E7:36:24:52:78:9F:BB:A9:BA ValidityWed, 17 Apr 2024 23:21:20 GMT - Tue, 16 Jul 2024 23:21:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /data/0c/1f/0c1f875d67017a730d3484e09cbf04338f25dc99cbf23fa429bdd3ddc4df0473.zip HTTP/1.1
Host: c6.kemono.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=O2ybmNDs8OBgy6XqY2uw
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 16:05:03 GMT
content-type: application/zip
content-length: 83069229
last-modified: Sat, 16 Mar 2024 07:26:47 GMT
etag: "65f549b7-4f3892d"
access-control-allow-origin: https://kemono.su
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: *
cache-control: public, max-age=2592000, s-maxage=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|