| track.affstreck.com/ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa?tsource=affise&offer_id=324&advertiser_id=608ac49f92ffdb7fffaa187a&affiliate_name=AdsyTech&partner_id=8902&offer_name=Smartlink+adult+games+-+CPL&filter=&clickid=6629f3e61de170000142296f&aff_source= | 18.156.93.177 | 302 Found | 0 B |
URL User Request GET HTTP/2track.affstreck.com/ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa?tsource=affise&offer_id=324&advertiser_id=608ac49f92ffdb7fffaa187a&affiliate_name=AdsyTech&partner_id=8902&offer_name=Smartlink+adult+games+-+CPL&filter=&clickid=6629f3e61de170000142296f&aff_source= IP18.156.93.177:443
CertificateIssuerLet's Encrypt Subjecttrack.affstreck.com Fingerprint98:EB:57:A4:D8:E2:4F:5B:BF:D4:A8:9D:2F:5E:5C:A7:4D:A2:BB:23 ValidityTue, 19 Mar 2024 06:48:16 GMT - Mon, 17 Jun 2024 06:48:15 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa?tsource=affise&offer_id=324&advertiser_id=608ac49f92ffdb7fffaa187a&affiliate_name=AdsyTech&partner_id=8902&offer_name=Smartlink+adult+games+-+CPL&filter=&clickid=6629f3e61de170000142296f&aff_source= HTTP/1.1
Host: track.affstreck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
pragma: no-cache
set-cookie: ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa-v4=SF6K5cu0jb3phQYKeVWJkWe53HRTIBbXxvLTv1w00UY; Max-Age=86400; Expires=Fri, 26-Apr-2024 06:11:05 GMT; Domain=track.affstreck.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=ELa32sQPDcF7ME0VbmMVPSu2j3EZ7Uule%2BSRX%2F3ReaBig3cmUppg0SN2dsh6FxWdSdZqkGkXyDypFSmhZHT4ulTblMAx2Fsiqmf%2FYNJdKeQf9fVj1HimyeHVUKIgwa4H8Y4XMR2ImuO31JVhDHQwVA%3D%3D; Max-Age=31536000; Expires=Fri, 25-Apr-2025 06:11:05 GMT; Domain=track.affstreck.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/no-mute.png | 134.209.88.167 | 200 OK | 9.4 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/no-mute.png IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hashc7c1df0c860dd0c415ac160f1f2003d9 ff923b752a048e2d7849ca515563fc1e57c6a8e9 3d59ff121a2f9490573c4fc3d3d459064fe106506979efd5e7d75c530fe7ea5f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/no-mute.png HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: image/png
content-length: 9374
last-modified: Fri, 26 Jan 2024 12:56:35 GMT
etag: "65b3ac03-249e"
expires: Sat, 25 May 2024 06:11:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/Logo.png | 134.209.88.167 | 200 OK | 15 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/Logo.png IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typePNG image data, 311 x 139, 8-bit/color RGBA, non-interlaced Hash4b4f17e447436648dfefd1695a9c7376 c1e65bcab2845e3b955ce96a19ef3c7b98074591 d7bb349ca10bed7f863d0b09803b0dd017828f67916b0c7c8dddcf17bfe78486
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/img/Logo.png HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: image/png
content-length: 14761
last-modified: Fri, 26 Jan 2024 12:58:10 GMT
etag: "65b3ac62-39a9"
expires: Sat, 25 May 2024 06:11:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/arrow-ll.svg | 134.209.88.167 | 200 OK | 230 B |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/arrow-ll.svg IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeSVG Scalable Vector Graphics image Hashe43a912350d148b2c936c0f22733e8bf 752b22a01f9501f4e991b828ac3710908c82eb50 266f150edf91552c04b5fde58b480db972ec139ac68e813ede1a7dda1d655926
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/img/arrow-ll.svg HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: image/svg+xml
content-length: 230
last-modified: Fri, 26 Jan 2024 12:58:09 GMT
etag: "65b3ac61-e6"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/arrow-rr.svg | 134.209.88.167 | 200 OK | 232 B |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/arrow-rr.svg IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeSVG Scalable Vector Graphics image Hashcd18c403e06b151ca4a16f25f73b04cf 360ce0230f709c4778991d30d75387c752112b3e 9687895282c00d5b8fe673dd18ce21dab59c9a1de1bda4c9d378f405f4de5cae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/img/arrow-rr.svg HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: image/svg+xml
content-length: 232
last-modified: Fri, 26 Jan 2024 12:58:10 GMT
etag: "65b3ac62-e8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TGM4F8X | 142.250.74.168 | 200 OK | 72 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TGM4F8X IP142.250.74.168:443
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (21659) Hash28966cc9a3da19026138053c2b31b4bc 08bfa1cc46fb892bec4b64daaf19e501502e17a0 aae73928198950980a3df00f10efe50d35d6d0f9cb8b7170a4a35eda0e64b7a1
GET /gtm.js?id=GTM-TGM4F8X HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 06:11:06 GMT
expires: Thu, 25 Apr 2024 06:11:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71855
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/ion.sound.min.js | 134.209.88.167 | 200 OK | 646 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/ion.sound.min.js IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typegzip compressed data, from Unix Size646 kB (645981 bytes) Hashd1a09ac07c7c7d183faf37ca91bef6ee 3687396883699696a53a81d776b3e2895b6d4be3 67be9b734905f3dc4a69f01fc340d9fa5dbf30a3cf0cf58fa39adc462ba40cb0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/ion.sound.min.js HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: application/javascript
last-modified: Fri, 26 Jan 2024 12:56:35 GMT
vary: Accept-Encoding
etag: W/"65b3ac03-3220"
expires: Thu, 25 Apr 2024 18:11:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/luckiestguy/v22/_gP_1RrxsjcxVyin9l9n_j2hTd52.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL GET HTTP/2fonts.gstatic.com/s/luckiestguy/v22/_gP_1RrxsjcxVyin9l9n_j2hTd52.woff2 IP216.58.207.227:443
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17360, version 1.0 Hash70322c317b1f4e2e17dbc6b672f95f5f f3dff7c50e1aea33814c6aeeca177ae3ff900bfc 3877b522181765adf66ba89bd68d288ecb9f2483b441baab3424646b0c7aaa0a
GET /s/luckiestguy/v22/_gP_1RrxsjcxVyin9l9n_j2hTd52.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://playfulcheaters.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:21:47 GMT
expires: Fri, 18 Apr 2025 13:21:47 GMT
cache-control: public, max-age=31536000
age: 578959
last-modified: Thu, 24 Aug 2023 21:07:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/apple-touch-icon.png | 134.209.88.167 | 200 OK | 9.4 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/apple-touch-icon.png IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash049ac8181fb1c147054e1ec9ae763d70 565397e7f0a82d7c31abccddbd9a310fddb3591d 6812893aafb0fdffa269b19ed588193637747a850b3d20ac51c38d09ccffdc95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/apple-touch-icon.png HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:06 GMT
content-type: image/png
content-length: 9390
last-modified: Fri, 26 Jan 2024 12:56:35 GMT
etag: "65b3ac03-24ae"
expires: Sat, 25 May 2024 06:11:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/favicon-16x16.png | 134.209.88.167 | 200 OK | 493 B |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/favicon-16x16.png IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hasha2a4b5d7c260fd7b81ea7daa0922c45c 736f12c449c0d7b8809bd0efc96a041b2dd0b377 80a2bb3256c6169c7b0784d69b3f199510a9e345bbff1f7480ac209fcd985b78
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/favicon-16x16.png HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:06 GMT
content-type: image/png
content-length: 493
last-modified: Fri, 26 Jan 2024 12:56:35 GMT
etag: "65b3ac03-1ed"
expires: Sat, 25 May 2024 06:11:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/style.min.css | 134.209.88.167 | 200 OK | 7.9 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/style.min.css IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeASCII text, with very long lines (7927), with no line terminators Hash3d0c3fcdd8ff8f029f07330b137b814b f0c09e15a6478dffe52ffa698179fe8faba8502e 5c76468497860e604223789a26b72161b40fc0da195038844814cdf61b91d959
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/style.min.css HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: text/css
last-modified: Fri, 26 Jan 2024 12:56:35 GMT
vary: Accept-Encoding
etag: W/"65b3ac03-1ee7"
expires: Thu, 25 Apr 2024 18:11:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/background-desktop1.jpg | 134.209.88.167 | 200 OK | 642 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/img/background-desktop1.jpg IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1920x1080, components 3 Size642 kB (642400 bytes) Hash14386c83a9d930312c3b9ee4bfac20f4 5d544408c44b118b7998a5eb2b9d94da5bd5bf18 b8cd058898498905224a782d017d102557ab508f282227e150755e695a250482
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/img/background-desktop1.jpg HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/files/style.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:06 GMT
content-type: image/jpeg
content-length: 642400
last-modified: Fri, 26 Jan 2024 12:58:11 GMT
etag: "65b3ac63-9cd60"
expires: Sat, 25 May 2024 06:11:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Luckiest+Guy&display=swap | 142.250.74.106 | 200 OK | 427 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Luckiest+Guy&display=swap IP142.250.74.106:443
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (436), with no line terminators Hash98fa0fc7d64223632857bc8d78b5a51b 9a94b3b3870391e04fdef78ad3904223e168a2fb 9a1ddbe358657e6181fe1608fd55dd54a0aee849b012f8e61b448e8a6a769d85
GET /css2?family=Luckiest+Guy&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 06:11:06 GMT
date: Thu, 25 Apr 2024 06:11:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/script.min.js | 134.209.88.167 | 200 OK | 1.2 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/script.min.js IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeJavaScript source, ASCII text, with very long lines (1220), with no line terminators Hashf52379d6721d0db544e1ae9f169df6d9 a29ccfec8c769e570befd52ebb10909b10c32805 bd075fc8594a9e1d39f9234dfafddf7971abc8428fb26727f6060d6e300fd269
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/script.min.js HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: application/javascript
last-modified: Fri, 26 Jan 2024 12:56:36 GMT
vary: Accept-Encoding
etag: W/"65b3ac04-48a"
expires: Thu, 25 Apr 2024 18:11:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/files/lang.min.js | 134.209.88.167 | 200 OK | 14 kB |
URL GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/files/lang.min.js IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/files/lang.min.js HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: application/javascript
last-modified: Fri, 26 Jan 2024 12:56:36 GMT
vary: Accept-Encoding
etag: W/"65b3ac04-3554"
expires: Thu, 25 Apr 2024 18:11:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= | 134.209.88.167 | 200 OK | 7.1 kB |
URL User Request GET HTTP/2playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= IP134.209.88.167:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectplayfulcheaters.com Fingerprint94:F3:45:D0:D1:51:89:4D:2D:B5:1D:3B:DD:BA:BA:E3:7E:D2:4B:A9 ValidityThu, 28 Mar 2024 23:11:37 GMT - Wed, 26 Jun 2024 23:11:36 GMT
File typeHTML document, ASCII text, with very long lines (7530), with no line terminators Hash0d241340e7f7e7c2224aabca091345a2 2792e5ad6ff9c639b20ee14a10ef5a19c185cc88 7f656317e3fd962d49143a7be7ee64f53ecfdf5274d0f3d78ef0a246726c9ebd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= HTTP/1.1
Host: playfulcheaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 06:11:05 GMT
content-type: text/html
last-modified: Fri, 26 Jan 2024 12:55:27 GMT
vary: Accept-Encoding
etag: W/"65b3abbf-1bb6"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| adverster.b-cdn.net/freedirtygame/jquery.min.js | 185.59.220.199 | 200 OK | 90 kB |
URL GET HTTP/2adverster.b-cdn.net/freedirtygame/jquery.min.js IP185.59.220.199:443 ASN#60068 Datacamp Limited
Requested byhttps://playfulcheaters.com/pre/FamilyCheaters_v14_7/?partner=BC&next=FamilyCheaters_v13_2&clickid=wa25bu9uqn9pp6r0302oi70e&country=NO&tsource=8902&m1=Firefox&m2=Norway&voluum_id=ebbe02d8-90ca-4e6c-a00e-4a58cfc60caa&p1=affise&p2=324&p3=Adult_Games%20-%20Straight%20-%20Smartlink%20-%20for%20lead%20%28324%2C%20357%29&p4=AdsyTech&p5=8902&p6=Smartlink%20adult%20games%20-%20CPL&p7=adult%20game%20-%20%28FamilyCheaters_v14_7%20%2B%20FamilyCheaters_v13_2%29%20-%20iframe%20-%20Affiliate%20-%20playfulcheaters.com&p8=&p9=&p10= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /freedirtygame/jquery.min.js HTTP/1.1
Host: adverster.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playfulcheaters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:11:06 GMT
content-type: application/javascript
server: BunnyCDN-DE1-722
cdn-pullzone: 303693
cdn-uid: f45a7a2e-6fd6-42fa-b15d-1efd29fb00dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: W/"62ae068d-15d84"
last-modified: Sat, 18 Jun 2022 17:08:29 GMT
cdn-storageserver: DE-677
cdn-fileserver: 339
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 18:59:18
cdn-edgestorageid: 1055
cdn-status: 200
cdn-requestid: 842ac4abdd0e1cf0ac147186b34fbb4c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|