Report - www.oxtorrent.tf/recherche/Arizona

Report Overview

Submitted URL
www.oxtorrent.tf/recherche/Arizona
IP
104.21.13.198
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 19:34:32
Access
public
Website Title
Arizona Torrent
Final URL
www.oxtorrent.tf/recherche/Arizona
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	423 B	95 kB	142.250.74.168
specificationfingertip.com	unknown	2024-01-30	2024-01-30	2024-02-19	446 B	29 kB	172.240.108.68
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-03	338 B	942 B	143.204.53.97
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-03	411 B	28 kB	188.114.97.1
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-05-04	736 B	423 B	192.243.59.20
www.oxtorrent.tf	unknown	unknown	No data	No data	4.9 kB	151 kB	172.67.157.81
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-04	1.0 kB	172 kB	104.17.25.14
bourrepardale.com	unknown	2024-03-05	2024-03-05	2024-03-06	404 B	1.2 kB	23.109.170.31
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-05-03	417 B	329 B	172.240.108.76
zimages.ws	unknown	2019-12-03	2020-02-11	2024-04-05	4.7 kB	1.7 MB	172.67.138.97
ads2550.bid	unknown	2023-05-10	2023-05-10	2024-02-28	2.0 kB	1.8 kB	199.80.53.161
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-03	433 B	423 B	52.29.105.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	bourrepardale.com	Sinkholed
2024-05-04	medium	specificationfingertip.com	Sinkholed
2024-05-04	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.oxtorrent.tf/themes/default/js/jquery.min.js	96 kB	2023-03-07	2024-05-14
Pretty URL www.oxtorrent.tf/themes/default/js/jquery.min.js IP 172.67.157.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2024-05-14 03:17:44 Times Seen427 Hash 8e67452f561a3b8ee8a82fdf57672cd5 44d980c8f4d21057018d80398d574fa72aea1bc7 4e7e1c16e351e7bfc80cddef9f98e99113ddb0d1e201be00d53955fe62f0e523 Loading...

	specificationfingertip.com/8c/33/72/8c33721f6aa15cc0a61420f50575e334.js	76 kB	2024-05-02	2024-05-04
Pretty URL specificationfingertip.com/8c/33/72/8c33721f6aa15cc0a61420f50575e334.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 19:16:39 Last Seen2024-05-04 21:34:38 Times Seen4 Hash 08224e629e0c74cd01daf3a1b780ed7c 44f883f29af970888b936924a03353559d66d373 db6125c271d321053e5d8766b5feddba8ff1f370c704c5b6c5b6edc9534d0c8f Loading...

	bourrepardale.com/1clkn/56862	6 B	2023-03-07	2024-05-18
Pretty URL bourrepardale.com/1clkn/56862 IP 23.109.170.31 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-18 12:46:22 Times Seen15122 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-18
Pretty URL capaciousdrewreligion.com/advertisers.js IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 12:48:01 Times Seen37785269 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.oxtorrent.tf/themes/default/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-18
Pretty URL www.oxtorrent.tf/themes/default/js/bootstrap.min.js IP 172.67.157.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-05-18 06:31:29 Times Seen3106 Hash e7d9a06cf9053c51cd4ad3386da0659a e45bf1054704a1fdfc4ee2713a16bf9283dea995 9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd Loading...

	www.oxtorrent.tf/themes/default/js/524eba27.js	37 kB	2023-12-03	2024-05-18
Pretty URL www.oxtorrent.tf/themes/default/js/524eba27.js IP 172.67.157.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 09:03:12 Last Seen2024-05-18 10:29:43 Times Seen263 Hash dd509264e5718497cd67ad65d50a8641 480e2200fd244d68b5f8e1c90c0c6ce61699a7e8 a91b0f105197706c82220fc1485b86fa4be251b09cb6252d6a4c2221a03f86cc Loading...

	www.oxtorrent.tf/recherche/Arizona	0 B	2023-03-07	2024-05-18
Pretty URL www.oxtorrent.tf/recherche/Arizona IP 172.67.157.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 12:48:01 Times Seen37785269 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=G-SMT2LFL1HE	274 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-SMT2LFL1HE IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 21:34:38 Last Seen2024-05-04 21:34:38 Times Seen2 Hash 9d482a83eb4d623b0c35868e6429bdb5 1fc6bb75975eb1736798d7790739f531d2a0deaa e4d002ab8d45375b0dd926decbcd4710558bc23e38e31c513a626a9236728c47 Loading...

	unknown	544 B	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 21:34:38 Last Seen2024-05-04 21:34:38 Times Seen1 Hash a60b6dd4a3fab6c5d0e94f2225a5064c ca3ffd4c260246358f7daabc658609840306efd2 771c958c2a40b77d0abf89a988103ed01d538c7baef7b543635bf8c9985399e8 Loading...

HTTP Transactions (32)

URL IP Response Size

www.oxtorrent.tf/themes/default/img/logo.jpg

172.67.157.81

200 OK

1.1 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/img/logo.jpg
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
PNG image data, 354 x 69, 8-bit colormap, non-interlaced
Size
1.1 kB (1104 bytes)
Hash
b1832cf144c1adfc527a92722479f71e
3cb70ca4a6b8c6daa610a127847f2c6e80fc64fe
2f7eb5aa01e173aa719838e8f7c2321f66206b8d6ffc8ad00042fa6b602133f9

HTTP Headers

GET /themes/default/img/logo.jpg HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 1104
last-modified: Wed, 13 Sep 2023 07:00:45 GMT
etag: "450-605381e56886e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 348876
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UUZrUM7TX8uNo9yzXIFUGGdgdQJ2RCpNSNnXIpm%2BJisD480fcElpLj4jeW%2FE0JWCFeTlmT8iz78wmJuInFV7KNdHpw7USjCQxsPFHoB6i8uNpc8%2B54%2F2qLVywAriiW4u%2BFpG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eaed1c79b1b4f3-OSL
alt-svc: h3=":443"; ma=86400

www.oxtorrent.tf/themes/default/img/animation1.jpg

172.67.157.81

200 OK

7.3 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/img/animation1.jpg
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2022:02:12 13:05:26], baseline, precision 8, 150x150, components 3
Size
7.3 kB (7306 bytes)
Hash
0573d4afb59612940a3e4823747adff4
82e478eb20d06a30e996ca6c7d52afaf8106e1e4
ca6263642c45acb1d6ee1f646306d393040ac67dd077a4bf07f1280364f6e8b7

HTTP Headers

GET /themes/default/img/animation1.jpg HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 7306
last-modified: Wed, 17 Jan 2024 17:50:21 GMT
etag: "1c8a-60f27e17682b2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 348876
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IeiRKIyUo3bWHVL%2BRbY5emlXlPmrpBsYRF65KVefL13uyGtYnPhgGk5lggkMbtAdZxhhyJtGNBkt4kVIeefVroDPfPGAeDFtVE0C9fnG1nGFv8KLPowb9MNjb%2BfwGS537Opr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eaed1c99cfb4f3-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/css/all.css

104.17.25.14

200 OK

20 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/css/all.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text
Size
20 kB (19472 bytes)
Hash
e3d3126e93fc1303cf862d5852f56654
357908650e3a2f75f7e77c3e741e8bd0cfa07625
340d09d12141a30f53d870d647f2f4ba93047709331cd441c43db7301bd52d68

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: text/css; charset=utf-8
content-length: 19472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-4c10"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 357254
expires: Thu, 24 Apr 2025 19:34:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pth9zwbLwGlgFqS65RNL87kB3TYQPLk4UdC02ObZstEfLPSvyxbA83tCvYTUrrUh3gOrYKuyhTOc7W84T8Hyoq1E6SMtv%2BNAJE7mXYv61EUEeR0NC64eoqvfYJXA3Hd%2Bxu4HxBmM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87eaed1d0f581c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/710510174cc46f34901f81344e78d01ca102091b.jpg

172.67.138.97

200 OK

185 kB

URL GET HTTP/2
zimages.ws/uploads/image/710510174cc46f34901f81344e78d01ca102091b.jpg
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 533x800, components 3
Size
185 kB (185304 bytes)
Hash
65998e5119fc5ad0116814ab91d5ab5d
12d4fb69a260fff712438367c39951842aa27482
47ea2e14b5cbf2f23bd43841b9bd0acd2e52174487af6737e170febc9c7782e0

HTTP Headers

GET /uploads/image/710510174cc46f34901f81344e78d01ca102091b.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 185304
last-modified: Sun, 11 Feb 2024 19:08:19 GMT
etag: "2d3d8-6111fe25e8e16"
cache-control: max-age=14400
cf-cache-status: HIT
age: 178205
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gF21HXEkDaFkykxVM8SS3o4iv6CoKOKeZ6IcJPJiTPbI1P9U81w5XoxESpcJzYseaG%2FHxwnPrYqgdK0Mw3BIp8ItXe3vWWzx0ZBpkOavWjMGamn2ryI7xBWx8TlU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c6c56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/80b187dce0fd281a30f7b9ee0ad71b8d97ac3228.jpg

172.67.138.97

200 OK

130 kB

URL GET HTTP/2
zimages.ws/uploads/image/80b187dce0fd281a30f7b9ee0ad71b8d97ac3228.jpg
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, baseline, precision 8, 592x841, components 3
Size
130 kB (129624 bytes)
Hash
effaebd77f3ae1b2a3d2be0ede545352
22110ee2a294537838e711d5aeb7209bdd676cb9
5a772cfdfd3ab16b96674ac601a15a586cda1c24d29d6cfe12fd67b6b0b8ea9e

HTTP Headers

GET /uploads/image/80b187dce0fd281a30f7b9ee0ad71b8d97ac3228.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 129624
last-modified: Tue, 13 Feb 2024 13:59:00 GMT
etag: "1fa58-61143cbd49c27"
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jjm6ZfDKO%2FHW6a8Hew0cOXAyuUHetug5ZrYTrrgXLvbEB761%2Byj7n1OQIiVwgHzMquUOp%2FCLLNvoabPoOGnrAwUI82PoO9uhdrbzSGKnqEfhiic%2BsPiUfohkO4mT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c6e56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/38f13ae5376e218541efde980f7551397fc5a218.jpg

172.67.138.97

200 OK

105 kB

URL GET HTTP/2
zimages.ws/uploads/image/38f13ae5376e218541efde980f7551397fc5a218.jpg
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x370, components 3
Size
105 kB (104973 bytes)
Hash
2617b1e8623f4797b134aacf0e07b826
1b7b93c1d5bf82ee8149ebbe2b945ce4e6c99657
e11ab4ca663b5506d3a22cd21b4398dd7d93dbde183a92f5b931b640ddd66c44

HTTP Headers

GET /uploads/image/38f13ae5376e218541efde980f7551397fc5a218.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 104973
last-modified: Wed, 15 Feb 2023 12:11:47 GMT
etag: "19a0d-5f4bbfbf8c6c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LeXXnVaTtqdSJY67bKHvxx3GKvYoDbKxRMaTsRzuVWqpaZKz4HJMp4GaCLbzeNjRl8ISC02OScMaHdoEEifdyt%2B%2B4TI%2Fhd0m6n21kXVG8ZM9GE1g72SIY7Qhsd64"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d3c7d56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/4f04980c192f7b072f0aa08130c63d1c67c99eda.jpg

172.67.138.97

200 OK

181 kB

URL GET HTTP/2
zimages.ws/uploads/image/4f04980c192f7b072f0aa08130c63d1c67c99eda.jpg
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 533x800, components 3
Size
181 kB (181162 bytes)
Hash
ae83ca89164542bb50055ec300eee3a8
fb3dcd1a7ec03ad52e6ab6b5962bf56d6c8be457
efd8b3bf3b93ba351739c9d6aa250f2f860d3aa668f304e22b2fcb6ac85113f3

HTTP Headers

GET /uploads/image/4f04980c192f7b072f0aa08130c63d1c67c99eda.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 181162
last-modified: Sun, 11 Feb 2024 18:59:25 GMT
etag: "2c3aa-6111fc2876a4e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 178205
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c78LiS5Gt9Bytv0RB3PX5HGzPskFbhs%2BcWkiTh8Ftp2mL2r8X5kS%2FsKrkTwfI46C67Mp0xqhwe%2Bn5nb%2BJqm9kMTKfsDcI%2BKSAMC4kTMV%2FkxxSkZJaeidP902BE1n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c6d56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/5ab512cbb601f0aebdee9209aec37cf6ef09a721.jpg

172.67.138.97

200 OK

261 kB

URL GET HTTP/2
zimages.ws/uploads/image/5ab512cbb601f0aebdee9209aec37cf6ef09a721.jpg
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1481, components 3
Size
261 kB (261246 bytes)
Hash
12b7d0924ea552775ddc7307a2f1e7fa
3566e1cda351e7f5abe7a75ff1ce428cf8bf2fe0
6685205f9f614e1062de60fcbef7a3c336a8df8a5c2ed85d3f70a34ae56a86df

HTTP Headers

GET /uploads/image/5ab512cbb601f0aebdee9209aec37cf6ef09a721.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/jpeg
content-length: 261246
last-modified: Tue, 13 Feb 2024 14:07:03 GMT
etag: "3fc7e-61143e89eecf2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hxna3KGAwb1azNyHEkzhrMbxClVCDnCExuPfPvf2sBfU43wbWLiP7xxXOI%2Fx8MowVJG7ULDFNjXitndroi9odA9sgaczbNGtAqfgDLo%2FEKZDJ%2FL%2Fbhs5Bqwbk%2F9Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c7056c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.oxtorrent.tf/themes/default/img/header-bg.jpg

172.67.157.81

200 OK

3.4 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/img/header-bg.jpg
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1950x130, components 3
Size
3.4 kB (3383 bytes)
Hash
59d663407d41f81473035607809e98da
d1b680089df57cd1698a619c8db34d76861dfccf
9e19ab198ea7cad551866b64245ebd0610a92a025a0efe5037bb18c8672af417

HTTP Headers

GET /themes/default/img/header-bg.jpg HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/themes/default/css/bootstrap.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:06 GMT
content-type: image/jpeg
content-length: 3383
last-modified: Wed, 13 Sep 2023 07:00:44 GMT
etag: "d37-605381e48e812"
cache-control: max-age=14400
cf-cache-status: HIT
age: 343169
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KmZAGwzpplgub1W8S7ocXbXqYzkHWJHQ9kAHPk7%2Frfb0OKoU1TR9RUVgI4M2twACxrfTHkzo5Z3Wqy%2FCc3S1L7Y501bdKz38%2FyHs7RvjovQIq6V5wCFNn5EfWbBtHvTNhb6o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eaed1f9eadb4f3-OSL
alt-svc: h3=":443"; ma=86400

zimages.ws/uploads/image/8eca497c722f99d1716945709c8dca4c04c4396d.webp

172.67.138.97

200 OK

61 kB

URL GET HTTP/2
zimages.ws/uploads/image/8eca497c722f99d1716945709c8dca4c04c4396d.webp
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x480, Scaling: [none]x[none], YUV color, decoders should clamp
Size
61 kB (60841 bytes)
Hash
b13f62ee6449f237a8a27c119c52efe4
134734f26a26267f03672ae1b749ed0bb9b4d36f
270816bbad3761450ee49e5d9624acc4ca84575cbd46f95db755cba0357af81d

HTTP Headers

GET /uploads/image/8eca497c722f99d1716945709c8dca4c04c4396d.webp HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/webp
last-modified: Thu, 02 Nov 2023 17:36:54 GMT
etag: W/"ebd2-6092ed56b7980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NYEwQgleFm9DM0MRjfzJpgIQ5%2FcJ9VEkbDtUeE0F6kH3yKFjFwIVffazqDcy1%2B6XRGpulV7WjkUkkUT1ghv6JKneV8vO%2FCX8e58mlVIg6Y3u2MDAmT9cHufmJvfL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c6f56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bourrepardale.com/1clkn/56862

23.109.170.31

200 OK

26 B

URL GET HTTP/1.1
bourrepardale.com/1clkn/56862
IP
23.109.170.31:443
ASN
#7979 SERVERS-COM

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectbourrepardale.com
Fingerprint9C:52:0E:6E:A8:1B:CA:C0:B0:B8:5F:82:75:4C:49:1E:EA:78:A1:93
ValidityTue, 05 Mar 2024 14:00:39 GMT - Mon, 03 Jun 2024 14:00:38 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/56862 HTTP/1.1
Host: bourrepardale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:34:06 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 05-May-2024 19:34:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 05-May-2024 19:34:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2

104.17.25.14

200 OK

150 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150472, version 770.256
Size
150 kB (150472 bytes)
Hash
3e50e269ee627bb2279f91d18c085167
a7fca574d24e9ffa5ee0e0589ffe17277ae4ec27
d27bc752105c079f8a516e9142406a9fc12cbb409f9bf8681f2ddfe0360b52a6

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.oxtorrent.tf
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:06 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150472
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "630e6e62-24bc8"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 251897
expires: Thu, 24 Apr 2025 19:34:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HtiLkAWXuB5cMfaZOP%2FV%2FG27VuDeiErYWML3Y9c3q5v958uNP%2Bg%2BYs3CxInVw8QSy7Vxz6zgjKTEwaJQwR%2FaZNYcFuE36%2BlpyOSd2YPnJIo1%2B%2F0Fj%2B4peHNDN6MDqETsSbtABb7w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87eaed1fdfdb5688-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-SMT2LFL1HE

142.250.74.168

200 OK

95 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-SMT2LFL1HE
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94774 bytes)
Hash
9d482a83eb4d623b0c35868e6429bdb5
1fc6bb75975eb1736798d7790739f531d2a0deaa
e4d002ab8d45375b0dd926decbcd4710558bc23e38e31c513a626a9236728c47

HTTP Headers

GET /gtag/js?id=G-SMT2LFL1HE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 19:34:06 GMT
expires: Sat, 04 May 2024 19:34:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94774
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

specificationfingertip.com/8c/33/72/8c33721f6aa15cc0a61420f50575e334.js

172.240.108.68

200 OK

28 kB

URL GET HTTP/1.1
specificationfingertip.com/8c/33/72/8c33721f6aa15cc0a61420f50575e334.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectspecificationfingertip.com
Fingerprint56:24:CB:6D:8F:D0:EB:4A:8A:7C:22:ED:FA:A2:0E:7F:77:5D:A1:26
ValiditySat, 30 Mar 2024 03:48:02 GMT - Fri, 28 Jun 2024 03:48:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28335 bytes)
Hash
08224e629e0c74cd01daf3a1b780ed7c
44f883f29af970888b936924a03353559d66d373
db6125c271d321053e5d8766b5feddba8ff1f370c704c5b6c5b6edc9534d0c8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8c/33/72/8c33721f6aa15cc0a61420f50575e334.js HTTP/1.1
Host: specificationfingertip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 19:34:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4d28c75102767f7f0580f64ef473fab5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ads2550.bid/zJYkH9RhJzvFZk-tKQkPllUjg46aOTuaaSBO0ChDyP7lRkp4qF4tx6JU_1g5UyMQ5xQRAXDqIQZGyV4CwPJxMYCdDyO3ZG1W1LOxeQ8msP-2xKwW0v1XwI1Y1fCFoacN48egw1DagppF9eNxFywQk3mm8lEF-SbKdmnFXuFw5SmifviEdy-Jrfar1BA3p6u470d-0SPpmQuJswZ0Bv_jZd4Hh5LffFua6_lzoekkggO2Wq3rfR-5VV49TzY_a1HvN2LvTNtAM613wcNHZf_8hbemK7D0khUCa2Dy3PXs8DmzIiad5cXA2tBlbfq4EhJs0MrehJXHAqEqFX6tGnZ8FhspkaHrSbBzm7O5rlcv7bmBpOYY_5HH3jhWNBPNdDvqWLeCwWweNugBIQMTMUgH6Tj5MkxL_P9QO5qF__uNgt8BjFewQoGDR1uLt2cceVNKCILJg21QKyjKHL-JX_6D2-KlPArwdSIdIp6-B2ftM23D9X3A95jfM4kZeFXbNjmZeYrQBwrEHiMCXnJjuzbX9egLGDCVgMy-fUvsw_UAXKLUOXrADUxITXg?

199.80.53.161

200

710 B

URL POST HTTP/1.1
ads2550.bid/zJYkH9RhJzvFZk-tKQkPllUjg46aOTuaaSBO0ChDyP7lRkp4qF4tx6JU_1g5UyMQ5xQRAXDqIQZGyV4CwPJxMYCdDyO3ZG1W1LOxeQ8msP-2xKwW0v1XwI1Y1fCFoacN48egw1DagppF9eNxFywQk3mm8lEF-SbKdmnFXuFw5SmifviEdy-Jrfar1BA3p6u470d-0SPpmQuJswZ0Bv_jZd4Hh5LffFua6_lzoekkggO2Wq3rfR-5VV49TzY_a1HvN2LvTNtAM613wcNHZf_8hbemK7D0khUCa2Dy3PXs8DmzIiad5cXA2tBlbfq4EhJs0MrehJXHAqEqFX6tGnZ8FhspkaHrSbBzm7O5rlcv7bmBpOYY_5HH3jhWNBPNdDvqWLeCwWweNugBIQMTMUgH6Tj5MkxL_P9QO5qF__uNgt8BjFewQoGDR1uLt2cceVNKCILJg21QKyjKHL-JX_6D2-KlPArwdSIdIp6-B2ftM23D9X3A95jfM4kZeFXbNjmZeYrQBwrEHiMCXnJjuzbX9egLGDCVgMy-fUvsw_UAXKLUOXrADUxITXg?
IP
199.80.53.161:443
ASN
#40824 WZ-US-40824

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectads2550.bid
FingerprintCD:F9:6F:CD:B2:57:0D:67:A2:9D:CF:3C:ED:18:62:2A:0B:F7:9A:73
ValidityWed, 06 Mar 2024 08:04:30 GMT - Tue, 04 Jun 2024 08:04:29 GMT

File type
JSON text data
Size
710 B (710 bytes)
Hash
1919a2cf448517bf4db326aabd2ec8c9
6dde6cc1030d3bd7e5f05ecd7d35d4a66d364328
b96de03b4a93316441c55e4d2f14fc1e020e4bece65a420909f135e64fdca983

HTTP Headers

POST /zJYkH9RhJzvFZk-tKQkPllUjg46aOTuaaSBO0ChDyP7lRkp4qF4tx6JU_1g5UyMQ5xQRAXDqIQZGyV4CwPJxMYCdDyO3ZG1W1LOxeQ8msP-2xKwW0v1XwI1Y1fCFoacN48egw1DagppF9eNxFywQk3mm8lEF-SbKdmnFXuFw5SmifviEdy-Jrfar1BA3p6u470d-0SPpmQuJswZ0Bv_jZd4Hh5LffFua6_lzoekkggO2Wq3rfR-5VV49TzY_a1HvN2LvTNtAM613wcNHZf_8hbemK7D0khUCa2Dy3PXs8DmzIiad5cXA2tBlbfq4EhJs0MrehJXHAqEqFX6tGnZ8FhspkaHrSbBzm7O5rlcv7bmBpOYY_5HH3jhWNBPNdDvqWLeCwWweNugBIQMTMUgH6Tj5MkxL_P9QO5qF__uNgt8BjFewQoGDR1uLt2cceVNKCILJg21QKyjKHL-JX_6D2-KlPArwdSIdIp6-B2ftM23D9X3A95jfM4kZeFXbNjmZeYrQBwrEHiMCXnJjuzbX9egLGDCVgMy-fUvsw_UAXKLUOXrADUxITXg? HTTP/1.1
Host: ads2550.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.oxtorrent.tf
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://www.oxtorrent.tf
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=ads2550.bid; Expires=Sun, 08 Jun 2025 19:34:06 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 710
date: Sat, 04 May 2024 19:34:05 GMT

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
691c3f87e4fe41a736328d3c71e2dbdc
fd76f455b38ba18f00a6fb81e3585201eb3c43f6
8ac709de568d48e4c9e64b75afa6cd3fed58e2cf0c21e823af01ab342e6794b9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 04 May 2024 19:34:06 GMT
Last-Modified: Sat, 04 May 2024 18:22:20 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9GIugJWueE-TZ5IWxaof9dq-mKQkREyg10UaLdFuIKT9Raa--eKZdQ==
Age: 4306

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6ee1fc966ba270b15e90c8f4ae26150d
8fb0bbe45e5c4734d5e8e080e66247887886a1d3
6b019c2cacb97238b353e0b43a98adb21b4cdaf1961257194fe61d2be558da26

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.oxtorrent.tf
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.oxtorrent.tf
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=2f8f0b5a-b5d8-4411-b334-70d29fb301a7:3:1; expires=Tue, 02 May 2034 19:34:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

ads2550.bid/z5gslTAdpolqrzNrjRAxvgu6eLyGWQIsKK4-xSVE1yv9d1tjVBnrVMmIHbtDbcZowML8Q9GEakx2Cr6LH1Z3KEL1NDmJ5Q4Y0_2NPqycDwt_wvwR4nGWk1u-PKdcqWaHNLhRP1KqIcHqWM03uKTTDqs7c_hU7Kw8IvreGv2akkFOIb64jPJtd7P63DppFYohFB5LY7qP8BITWhBf3FeU680ewdZ--4fj8F1dYCeUfd--6qyvP1pvlfRT7110GzHyUUlLUnZh-WuxWJoFOozPvTs7OoXaXakXd5XfnezqO55Jcp0U2zGU48zyQwQ-vxuFZsDyzcEBFguxW04JKpBAe8tRmJu2jM4dwleex66S5fXmm86YUskPZq6orSUdg__j25pVpLjfDG_v6tNWNHQCQ5Q_D8r31jh0NpV1BL3gJqVG5iB_8LAdfsE7kxqiVh_bppFFb7OJ9lpDkNSNwv2jyE5M24niewwxt2qyJ73FwKyjB-q7T?DC=WZ

199.80.53.161

200

49 B

URL GET HTTP/1.1
ads2550.bid/z5gslTAdpolqrzNrjRAxvgu6eLyGWQIsKK4-xSVE1yv9d1tjVBnrVMmIHbtDbcZowML8Q9GEakx2Cr6LH1Z3KEL1NDmJ5Q4Y0_2NPqycDwt_wvwR4nGWk1u-PKdcqWaHNLhRP1KqIcHqWM03uKTTDqs7c_hU7Kw8IvreGv2akkFOIb64jPJtd7P63DppFYohFB5LY7qP8BITWhBf3FeU680ewdZ--4fj8F1dYCeUfd--6qyvP1pvlfRT7110GzHyUUlLUnZh-WuxWJoFOozPvTs7OoXaXakXd5XfnezqO55Jcp0U2zGU48zyQwQ-vxuFZsDyzcEBFguxW04JKpBAe8tRmJu2jM4dwleex66S5fXmm86YUskPZq6orSUdg__j25pVpLjfDG_v6tNWNHQCQ5Q_D8r31jh0NpV1BL3gJqVG5iB_8LAdfsE7kxqiVh_bppFFb7OJ9lpDkNSNwv2jyE5M24niewwxt2qyJ73FwKyjB-q7T?DC=WZ
IP
199.80.53.161:443
ASN
#40824 WZ-US-40824

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectads2550.bid
FingerprintCD:F9:6F:CD:B2:57:0D:67:A2:9D:CF:3C:ED:18:62:2A:0B:F7:9A:73
ValidityWed, 06 Mar 2024 08:04:30 GMT - Tue, 04 Jun 2024 08:04:29 GMT

File type
GIF image data, version 89a, 1 x 1
Size
49 B (49 bytes)
Hash
56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

HTTP Headers

GET /z5gslTAdpolqrzNrjRAxvgu6eLyGWQIsKK4-xSVE1yv9d1tjVBnrVMmIHbtDbcZowML8Q9GEakx2Cr6LH1Z3KEL1NDmJ5Q4Y0_2NPqycDwt_wvwR4nGWk1u-PKdcqWaHNLhRP1KqIcHqWM03uKTTDqs7c_hU7Kw8IvreGv2akkFOIb64jPJtd7P63DppFYohFB5LY7qP8BITWhBf3FeU680ewdZ--4fj8F1dYCeUfd--6qyvP1pvlfRT7110GzHyUUlLUnZh-WuxWJoFOozPvTs7OoXaXakXd5XfnezqO55Jcp0U2zGU48zyQwQ-vxuFZsDyzcEBFguxW04JKpBAe8tRmJu2jM4dwleex66S5fXmm86YUskPZq6orSUdg__j25pVpLjfDG_v6tNWNHQCQ5Q_D8r31jh0NpV1BL3gJqVG5iB_8LAdfsE7kxqiVh_bppFFb7OJ9lpDkNSNwv2jyE5M24niewwxt2qyJ73FwKyjB-q7T?DC=WZ HTTP/1.1
Host: ads2550.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
access-control-allow-origin: *
access-control-allow-methods: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
accept-ranges: bytes
etag: W/"49-1714681336000"
last-modified: Thu, 02 May 2024 20:22:16 GMT
content-type: image/gif
content-length: 49
date: Sat, 04 May 2024 19:34:06 GMT

www.oxtorrent.tf/themes/default/js/jquery.min.js

172.67.157.81

200 OK

35 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/js/jquery.min.js
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
JavaScript source, ASCII text, with very long lines (32038), with CRLF line terminators
Size
35 kB (34963 bytes)
Hash
8e67452f561a3b8ee8a82fdf57672cd5
44d980c8f4d21057018d80398d574fa72aea1bc7
4e7e1c16e351e7bfc80cddef9f98e99113ddb0d1e201be00d53955fe62f0e523

HTTP Headers

GET /themes/default/js/jquery.min.js HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: application/javascript
last-modified: Wed, 13 Sep 2023 07:00:48 GMT
etag: W/"176fd-605381e813674-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 353246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fi%2BMBPirexGdx7ZmHubzl5txFlfxkOHgK7fR%2FBbFkt7BxCc3i0%2BTCLPuc0rPcQWiV0WeSDY5p5VBGaK2wN4KX8rxVmOk2BdB%2FkeGEBQM7OevfqaS5W0Wg9KDB%2F1v5AjUp8Fz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1c6999b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.oxtorrent.tf/themes/default/js/bootstrap.min.js

172.67.157.81

200 OK

11 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/js/bootstrap.min.js
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
JavaScript source, ASCII text, with very long lines (32034), with CRLF line terminators
Size
11 kB (10662 bytes)
Hash
e7d9a06cf9053c51cd4ad3386da0659a
e45bf1054704a1fdfc4ee2713a16bf9283dea995
9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd

HTTP Headers

GET /themes/default/js/bootstrap.min.js HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: application/javascript
last-modified: Wed, 13 Sep 2023 07:00:47 GMT
etag: W/"8fd6-605381e79e751-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 348876
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQENivHX3sjK1Y04nqvFKl94aIK%2FilhrgPTX2Ma4kjemhZ4g29DGY81LiqLs9yH0bAce5tAb2sInHqOdxBz0odV%2FxCjqdQFQyxqWcEHkvm%2F751SlryoWLu6w4t38srNH9ATo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1c699db4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.oxtorrent.tf/themes/default/css/bootstrap.css

172.67.157.81

200 OK

22 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/css/bootstrap.css
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
ASCII text, with very long lines (65267)
Size
22 kB (21557 bytes)
Hash
c4fdac8db7e8e202578af9d7e9f72d81
265f98f081b62e9f1c99979bc142545ade07e412
810d6d3b1376bb75b5cc733f49c95b205991637be2a52993acea9c76f5026313

HTTP Headers

GET /themes/default/css/bootstrap.css HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=151329
etag: W/"24f21-61171b4c1e227-gzip"
last-modified: Thu, 15 Feb 2024 20:45:21 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 343168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FYqrrFcY5n0rFaJBs%2FeedvWCMmsrTVrjDtETpNV%2FTcYtpwODy8p6JLNTX6qxXtHOYDaUyazXv4o85%2Bm7ybXC%2FK3RENHuYyZwHXi8OHLqneFhy5BUmdF5tYVwJQH020VndER%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1c6994b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.oxtorrent.tf/themes/default/css/style.css

172.67.157.81

200 OK

17 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/css/style.css
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (15153), with no line terminators
Size
17 kB (17048 bytes)
Hash
37e8de3dac78251ee557c3a9867f31f9
5bd17831d25a05aea7356370d2594edda89620cc
0993b028d5408895544ddb7085bd5b86f25b9f396f3ad0c25335c888cd949c88

HTTP Headers

GET /themes/default/css/style.css HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15364
etag: W/"3c04-611e1acb7ab98-gzip"
last-modified: Wed, 21 Feb 2024 10:20:23 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 353246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e%2BammArO1OUpIj9RMn%2BxoeR1VmxtFSuXMuCthHqhYfKq3jmRESVIvhPNKYPU5ruFmUVKsc6euNh%2BBbxE31K%2BW7GbY9L4Y8vY1qrSwOF8ZTNTXz7btvJ9uaZIvH16mq2DmnGb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1c698fb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27461 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:06 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 8c35f151b1f8f0b12f0e2499eb85ea22
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 19:34:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NpOUq02aLGmEp%2FM5Ov5fpeVQShUSuCIIiZPagg71bSSgKaw0F6gefDA%2FcbsyzuOv7c0t7BmhULzXf6HXjKUrl8Lva2QEuPLcU7gdHf%2FqGkahTVNzz4SjUMx%2BT82dJKg5pvCZcUPwbVJJYKXEYC0f0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eaed221ca31bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.oxtorrent.tf/themes/default/img/favicon.ico

172.67.157.81

200 OK

3.8 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/img/favicon.ico
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
3.8 kB (3840 bytes)
Hash
f4cc5ad99d73047a99cb3b43b8e1c3f1
a5b068b7affcd69c4d3ed42c142adb1dfade0230
f06b44e15cba6d90ff5dcd1b4d852634cdd2e7ec8a3d55a098cf894336f77949

HTTP Headers

GET /themes/default/img/favicon.ico HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Cookie: _ga_SMT2LFL1HE=GS1.1.1714851246.1.0.1714851246.0.0.0; _ga=GA1.1.266025384.1714851247; dom3ic8zudi28v8lr6fgphwffqoz0j6c=2f8f0b5a-b5d8-4411-b334-70d29fb301a7%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:06 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 07:00:44 GMT
etag: W/"4cf6-605381e3ff30d-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 343166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=56Xrpo%2FZI8QEVVFEudUBNL3iqVi%2FD1oIIlQUB85L1z%2Bmah7HyJLhqSLYUIKW6p6AQwBgzeazgUYy7ogN8a%2Be6PFmRzx%2FSxviJXQYZaM%2Farhjdv3Cl3VoaIJMY48Ou%2BcdFtM%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed248e72b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=2f8f0b5a-b5d8-4411-b334-70d29fb301a7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8c33721f6aa15cc0a61420f50575e334&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=2f8f0b5a-b5d8-4411-b334-70d29fb301a7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8c33721f6aa15cc0a61420f50575e334&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=2f8f0b5a-b5d8-4411-b334-70d29fb301a7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8c33721f6aa15cc0a61420f50575e334&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 19:34:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b24e2d44202e61b77a480819bc425550
Strict-Transport-Security: max-age=0; includeSubdomains

zimages.ws/uploads/image/aeb754e8b4b03e925d944ed04e768650526e1552.webp

172.67.138.97

200 OK

468 kB

URL GET HTTP/2
zimages.ws/uploads/image/aeb754e8b4b03e925d944ed04e768650526e1552.webp
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1013x1500, Scaling: [none]x[none], YUV color, decoders should clamp
Size
468 kB (467474 bytes)
Hash
d77c37fc51a382fc7dd3cc6dc96528c7
3d7f4f70642a676042dcde5b454b899a119c6c77
4e86226cc772922a56ea3e61157370fa9f31e8396c29117087c7aacf07988142

HTTP Headers

GET /uploads/image/aeb754e8b4b03e925d944ed04e768650526e1552.webp HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/webp
last-modified: Tue, 13 Feb 2024 14:01:04 GMT
etag: W/"72212-61143d340d24a-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tZk0qvcE6Secg1khH%2BIvAYvhGox8nhDIeVMeoxKH5tKTuP1gmvWlGbya1qcA0339l8nMjJ5Xsz7q04kh265OC%2BGemBmakooG4jAXVF7yCvZohOKPzvUjiB6yKya4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1e2dbb56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

capaciousdrewreligion.com/advertisers.js

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 19:34:06 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc819518622e12c1ea3ba1a24800291b
Strict-Transport-Security: max-age=0; includeSubdomains

www.oxtorrent.tf/recherche/Arizona

172.67.157.81

200 OK

7.0 kB

URL User Request GET HTTP/2
www.oxtorrent.tf/recherche/Arizona
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (7414), with no line terminators
Size
7.0 kB (6999 bytes)
Hash
4d86459af7ada0d71833d90ec1a9e249
d5f6baaebe3a1c84b0551eaf5d672d9d3ffc30bf
d023873bc5b2bea4c9d084f18509fd8a259924bab31f138ae1562af38605c81e

HTTP Headers

GET /recherche/Arizona HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=14400, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 19:34:05 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dqp7cc54FO0rRIoTasnk5d2IxlfkWsVJExNF5mvJbI6PoZnAwlKftmeb1EDZWA9GWQKAM%2Bzhk4x5l1f9xUzeatuNGhW9bYzC0Mjk84Jp1rZZUC8MXQqjg0xGWrE4BM%2BmH3wY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1868cf5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/7544140b001e57f5d0c56ef3fecae6c104f73183.webp

172.67.138.97

200 OK

125 kB

URL GET HTTP/2
zimages.ws/uploads/image/7544140b001e57f5d0c56ef3fecae6c104f73183.webp
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 959x1280, Scaling: [none]x[none], YUV color, decoders should clamp
Size
125 kB (125432 bytes)
Hash
a6a34f45e2101501f5fd773b87ec0ba9
eb02e30cd72c1e927da877f180d90358a4d28cae
4ffe165eb3e78759d600c2cb2700ed68faf9688036edc09d7172f8e0fd51d8c3

HTTP Headers

GET /uploads/image/7544140b001e57f5d0c56ef3fecae6c104f73183.webp HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/webp
last-modified: Tue, 13 Feb 2024 14:02:38 GMT
etag: W/"1e9f8-61143d8d5d72c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LezEFpsGalfTNy3Ha4FNEGzTqSGYfj8dE8RQRDAtC2v9wP8pQLS8IAMKhaIVmPxZ7OM%2FsMBLw2A%2BwJbJpMzK8UFWosjKu7FemRSWOxS%2BVT7qbJtWi21DiB2q73gB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c6a56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.oxtorrent.tf/themes/default/js/524eba27.js

172.67.157.81

200 OK

37 kB

URL GET HTTP/3
www.oxtorrent.tf/themes/default/js/524eba27.js
IP
172.67.157.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerLet's Encrypt
Subjectoxtorrent.tf
Fingerprint3B:A6:62:E9:68:F7:9C:31:46:29:D4:32:01:DA:18:A7:08:C7:BC:DF
ValiditySat, 27 Apr 2024 06:53:17 GMT - Fri, 26 Jul 2024 06:53:16 GMT

File type
JavaScript source, ASCII text, with very long lines (37386), with no line terminators
Size
37 kB (37386 bytes)
Hash
dd509264e5718497cd67ad65d50a8641
480e2200fd244d68b5f8e1c90c0c6ce61699a7e8
a91b0f105197706c82220fc1485b86fa4be251b09cb6252d6a4c2221a03f86cc

HTTP Headers

GET /themes/default/js/524eba27.js HTTP/1.1
Host: www.oxtorrent.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/recherche/Arizona
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=37394
etag: W/"9212-609f43a740222-gzip"
last-modified: Sun, 12 Nov 2023 13:06:57 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 343168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=46rlYVy142PfWjhW9HWtz09ZQUExTZtOJCEaKuQN1ttZwmM1JaWtFenDhPSf2Ae2jPSABPhCryoYiJtkE%2BOKDyFRa4VpSMz4B3fgzCzdrUL365gewmx8upg5ZY%2Bm%2FutFfKMW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaed1c79a0b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zimages.ws/uploads/image/27a77b06d55ce6a684270ac972496c635533993a.webp

172.67.138.97

200 OK

65 kB

URL GET HTTP/2
zimages.ws/uploads/image/27a77b06d55ce6a684270ac972496c635533993a.webp
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x533, Scaling: [none]x[none], YUV color, decoders should clamp
Size
65 kB (64770 bytes)
Hash
65a1410396568007a9835731a3e99a42
226273ccdfa44d7f3a28a734248763f167f98199
75560073fe732642fa200df2f67a4d68e0674a90177b9ce13a2571b4f6a71f8a

HTTP Headers

GET /uploads/image/27a77b06d55ce6a684270ac972496c635533993a.webp HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/webp
last-modified: Tue, 13 Feb 2024 15:06:35 GMT
etag: W/"fd02-61144bd8b17ea-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 178089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U5Zl3%2Ftw2wjfb9KNkgzXgAqVN8WkIXTSNEa5GtB7tOT0L7Ar5hNY0PwSrfTn5ek1E26DIYY9okQD%2FVMp36%2Fm5ieRcrtLFTlVKHl9uHp1zILIycZDd%2BwmcNcHk4aT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d3c8156c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/56c74727a0ee92e4d92c676208bf1b5b1d6048f6.webp

172.67.138.97

200 OK

85 kB

URL GET HTTP/2
zimages.ws/uploads/image/56c74727a0ee92e4d92c676208bf1b5b1d6048f6.webp
IP
172.67.138.97:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.oxtorrent.tf/recherche/Arizona
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x533, Scaling: [none]x[none], YUV color, decoders should clamp
Size
85 kB (84850 bytes)
Hash
01aecd7bea4afeeb3ea24f0b40252201
92d33294e6958f49421777482b2cbf34dfad1136
08c17813f2ddf35e5118fe3366e2efa662efdb581a101299112fc9c8c72977f0

HTTP Headers

GET /uploads/image/56c74727a0ee92e4d92c676208bf1b5b1d6048f6.webp HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.oxtorrent.tf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 19:34:05 GMT
content-type: image/webp
last-modified: Sun, 04 Feb 2024 15:14:37 GMT
etag: W/"14b72-6108fcdab9161-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 178205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gKoaP9Nqk8%2BzFhFBzJPl%2FNHdrhD3iHMHa%2Bk9jhpn6cfax7lhvSXrPrFmmNMnJpEDMlsH3I9PtwJHWfSofhjY2r5JYmofGJ0ZmqSCK8GA51GWqhK8Qz6dZZcyQCpQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 87eaed1d2c7956c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML