Report - repelis24.co.atlaq.com/

Report Overview

Visited public
2023-11-17 09:54:31
Tags
URL
repelis24.co.atlaq.com/
Finishing URL
repelis24.co.atlaq.com/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
» RePelis24 | Ver Películas Gratis en Español | RePelis - Pelis24 ✅

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bertuccis.com	597938	1998-08-13	2015-02-17 19:39:14	2023-11-01 12:46:23	387 B	800 B	141.193.213.20
betaclub.org	unknown	1996-01-10	2015-02-03 17:09:49	2023-10-25 22:50:23	386 B	590 B	68.191.4.77
repelis24.co.atlaq.com	unknown	2019-04-07	2022-12-26 18:40:27	2023-06-16 02:27:19	1.7 kB	141 kB	188.114.96.1
www.bertuccis.com	675157	1998-08-13	2013-04-20 07:31:54	2023-10-25 22:51:08	554 B	436 B	141.193.213.21
t1.gstatic.com	unknown	2008-02-11	2013-05-07 00:57:20	2023-11-16 21:20:38	1.6 kB	4.0 kB	142.250.74.68
atlaq.com	460385	2019-04-07	2019-04-10 14:32:55	2023-11-12 10:52:48	864 B	133 kB	188.114.96.1
ocsp.netsolssl.com	8381	2005-01-31	2012-05-20 23:51:49	2023-11-16 14:47:43	332 B	963 B	104.18.38.233
whulsaux.com	unknown	2023-01-04	2023-01-04 17:10:35	2023-11-15 16:13:52	1.9 kB	33 kB	139.45.197.244
traffic.alexa.com	381412	1996-07-17	2012-05-20 23:46:11	2021-05-14 12:40:47	982 B	0 B	0.0.0.0
repelis24.rs	unknown	2022-10-21	2022-11-25 02:46:15	2023-10-31 22:30:26	457 B	423 B	172.67.181.238
itweepinbelltor.com	116495	2021-08-11	2021-08-11 13:34:00	2023-11-17 00:57:14	4.6 kB	65 kB	139.45.197.250
preview.atlaq.com	unknown	2019-04-07	2023-10-16 11:41:32	2023-11-12 10:52:24	470 B	30 kB	188.114.97.1
bentonvillear.com	585821	unknown	2014-03-07 18:22:09	2023-02-10 23:44:45	391 B	23 kB	207.38.72.222
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-16 21:01:37	576 B	578 B	142.250.74.163
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-16 18:44:05	894 B	143 kB	142.250.74.72
amunfezanttor.com	unknown	2023-03-31	2023-03-31 14:42:42	2023-11-16 14:24:23	1.5 kB	1.5 kB	139.45.197.250
biblemesh.com	unknown	2008-08-11	2015-02-18 10:43:55	2023-11-07 18:12:51	387 B	314 B	18.232.209.87
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-16 18:20:38	836 B	453 B	216.239.32.36
www.betaclub.org	unknown	1996-01-10	2017-03-28 09:44:42	2023-10-10 08:12:24	390 B	1.4 kB	68.191.4.77
repelis24.co	229689	2020-05-22	2019-03-22 13:25:39	2023-11-01 00:02:11	457 B	653 B	104.21.69.72
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-11-16 19:32:48	1.1 kB	1.5 kB	139.45.195.8
bestrentnj.com	unknown	2003-12-23	2013-11-13 00:31:05	2023-06-15 13:56:56	388 B	318 B	34.70.74.134

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-17	medium	whulsaux.com	Sinkholed
2023-11-17	medium	amunfezanttor.com	Sinkholed
2023-11-17	medium	amunfezanttor.com	Sinkholed
2023-11-17	medium	amunfezanttor.com	Sinkholed
2023-11-17	medium	whulsaux.com	Sinkholed
2023-11-17	medium	whulsaux.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	repelis24.co.atlaq.com/	3.6 kB	2024-08-20 19:07	2024-08-20 19:07
Pretty URL repelis24.co.atlaq.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 19:07 Last Seen2024-08-20 19:07 Times Seen1 Hash 653b89daf05e10ad38dd4ef0130948b3 89164592934cd1f6da110c1806d2c57de6e1481f 533b002196bdb9ed04b4dbcaf2437e3ea6a6208dadcf4937f2f8917d766450af Loading...

	repelis24.co.atlaq.com/	59 kB	2023-11-11 13:15	2024-08-20 19:59
Pretty URL repelis24.co.atlaq.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-11 13:15 Last Seen2024-08-20 19:59 Times Seen27 Hash b19b96f2fc5eeadfd5a5852e5fbd19ab 021c13b5d0cfe7880adaff70d73a5ab6910e1cb5 4be0a27e37a47491b51c4eb6ea1423d82483806e6ce015132a40a0ccb1e96c7d Loading...

	repelis24.co.atlaq.com/sandbox%20eval%20code	147 B	2023-04-11 21:07	2024-11-28 22:50
Pretty URL repelis24.co.atlaq.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2024-11-28 22:50 Times Seen282591 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11 21:07	2024-11-28 22:50
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2024-11-28 22:50 Times Seen281791 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	repelis24.co.atlaq.com/	447 B	2023-11-11 13:15	2024-08-20 19:59
Pretty URL repelis24.co.atlaq.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-11 13:15 Last Seen2024-08-20 19:59 Times Seen27 Hash edac1ca3689a31cc59d42a6062c37472 c02dff66418e29c297de8c4f07353942ca91bf2d 201665128cc31ad2da0fcf6cbacf714ebba47b34306525369fd8b6be99e7a07d Loading...

	itweepinbelltor.com/pfe/current/tag.min.js?z=5490114	13 kB	2023-11-02 10:05	2024-08-20 21:23
Pretty URL itweepinbelltor.com/pfe/current/tag.min.js?z=5490114 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2697 Hash 258578af3c107ccb907f73c3a2f4c25f 7a192edea829968fb7f57f2a2fc4cb5b612598be 1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75 Loading...

	unknown	151 B	2024-08-20 19:07	2024-08-20 19:07
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-20 19:07 Last Seen2024-08-20 19:07 Times Seen1 Hash 966305f8894307f4e6610c25dfbfec08 e040088ee9fc14c4044583a18d6175a6df0e0b19 d30d62231fae1864688448845a5ad56f7710d0b01dccc7dd21e557941d69eff1 Loading...

	unknown	26 kB	2023-03-07 01:18	2024-10-26 14:27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2024-10-26 14:27 Times Seen1733 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	www.googletagmanager.com/gtag/js?id=UA-85346163-2	135 kB	2023-11-17 10:54	2023-11-17 10:54
Pretty URL www.googletagmanager.com/gtag/js?id=UA-85346163-2 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 10:54 Last Seen2023-11-17 10:54 Times Seen1 Hash 68650f588e1f1cae5426707d0b6b5bc6 5b6ee4a4d750841f356651d6890c95be21f16464 ec1dbcc1df3ee3a715797a126b8d699c8d04844bb630180ff6bc20f55b93eb89 Loading...

	www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c	266 kB	2023-11-17 10:54	2023-11-17 10:54
Pretty URL www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 10:54 Last Seen2023-11-17 10:54 Times Seen1 Hash 4816756c720cffe2a4b0cea3aedf19c4 fc98b93f358bd728b7d3ffd82bf445647f1b1383 e402b91c80bb888a95603dbde38782bad181fa9a3c93dff652556831cb043537 Loading...

	whulsaux.com/tag.min.js	81 kB	2023-11-15 13:56	2023-11-21 03:05
Pretty URL whulsaux.com/tag.min.js IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 13:56 Last Seen2023-11-21 03:05 Times Seen245 Hash f2e2bbac9956f90deb8bb8620b4e6a34 92e196a6e8b21e835aeb47d0123fbad2c9c1bc2c 785e6fa651312a3f819529c5fa32cd529e74c771f73929ed85cdf424a462144f Loading...

	unknown	150 B	2024-08-20 19:07	2024-08-20 19:07
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-20 19:07 Last Seen2024-08-20 19:07 Times Seen1 Hash 36b931211d379c2352074fa4fa6c5516 dff329f66f40ed3794aedfea3b6fa8b8b29df94e ead0f7a9572f720ca7f461047974554b299be77a9f239cb1f86c5fe1a898e167 Loading...

	unknown	150 B	2024-08-20 19:07	2024-08-20 19:07
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-20 19:07 Last Seen2024-08-20 19:07 Times Seen1 Hash 70b8f63d07264460c311e6e08fb75aca 2b264732553e2aabdf300623a623b6c776285955 2b7e2855bd3184f57176dfe9ca8c578853e58859efa75b1a38cb50d07b3868b7 Loading...

	repelis24.co.atlaq.com/	154 B	2023-03-10 11:07	2024-11-28 20:47
Pretty URL repelis24.co.atlaq.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:07 Last Seen2024-11-28 20:47 Times Seen69 Hash 556aedec3c17b1047b6ea5b24555b6b3 bc98386bf7c5d5088b545befbe3f36738874ca18 25b0f8074b7996c02b28918d9dec52e00501eee8990db393f4a0624d136a828e Loading...

	unknown	88 kB	2023-11-02 10:05	2024-08-20 21:23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2914 Hash d46d2997ab218d1dba1ab614422ed53f 3f1f6b9847c8ad209835db366c62fcb209b83a67 09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42 Loading...

		Size	First Seen	Last Seen
	#1 Write - f0cb7995d8e430467ff89d443d5ccb1d	51 kB	2024-08-20 19:07	2024-08-20 19:07
Pretty Observations First Seen2024-08-20 19:07 Last Seen2024-08-20 19:07 Times Seen1 Hash f0cb7995d8e430467ff89d443d5ccb1d b7fc1e4aac699f6529505b834eb94fa020b4f198 d2fdad75a1af015fb04f4eaa662d5a357ce604b89e1509865888f20c0755e160 Loading...

HTTP Transactions (43)

URL IP Response Size

atlaq.com/logo.png

188.114.96.1

200 OK

117 kB

URL GET HTTP/3
atlaq.com/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type
PNG image data, 500 x 446, 8-bit/color RGBA, non-interlaced\012- data
Size
117 kB (117433 bytes)
Hash
792b74959e26cd37fd05dfcd0ef07770
c6e3ed2dd9771b077daf93eda5773cd10d621147
7ae2cb133588b7a2926b71630869d602c294840f6c1379666e82b25f3354623b

HTTP Headers

GET /logo.png HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: image/png
content-length: 117433
cache-control: public, max-age=31536000
expires: Thu, 24 Oct 2024 05:27:08 GMT
last-modified: Wed, 29 Jan 2020 11:21:42 GMT
vary: User-Agent,Origin, Accept-Encoding
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2003227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ns3h%2BOFbX7SdHq0kGZCzNSiW1oav1ytHcpcIX0G2PcGpM4EJtgq9wyT0hNF9pajt3I7iZArF2%2B2MwYLhVd8fVAXmHH5MexCvyYnpbxNYE%2FDlvYlzLNiXlwNXIfU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8277175dfc82b515-OSL
alt-svc: h3=":443"; ma=86400

atlaq.com/style.css

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
atlaq.com/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6732)
Size
14 kB (14022 bytes)
Hash
611e414a545a0c84fe6c111b9a4c3722
7fe2addc3373777aeb6de31caaf66f800049dd59
b5fc73fd3ef4ac8eda80826c1f684294f136c3d03c4afed7e7cd59a3f6a5a146

HTTP Headers

GET /style.css HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 06:07:01 GMT
last-modified: Tue, 25 Oct 2022 04:42:27 GMT
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2000834
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kRVzhnhnm3wYJ9Un6KSQ9XxSQZopZNQi%2F7bImDf%2F8af%2FjYdCcPFdfcCiLbymocFk2N7UdwDKlsFG6%2FBJ%2Bpfq38sCgLhxEnQo6pdBQdwtSMAan6hye%2Fa%2B5yp8SHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8277175cfbeab515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-85346163-2

142.250.74.72

200 OK

51 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-85346163-2
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA
ValidityMon, 16 Oct 2023 08:02:30 GMT - Mon, 08 Jan 2024 08:02:29 GMT

File type
ASCII text, with very long lines (2213)
Size
51 kB (51439 bytes)
Hash
68650f588e1f1cae5426707d0b6b5bc6
5b6ee4a4d750841f356651d6890c95be21f16464
ec1dbcc1df3ee3a715797a126b8d699c8d04844bb630180ff6bc20f55b93eb89

HTTP Headers

GET /gtag/js?id=UA-85346163-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 17 Nov 2023 09:54:15 GMT
expires: Fri, 17 Nov 2023 09:54:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51439
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

itweepinbelltor.com/zone?pub=0&zone_id=5490114&is_mobile=false&domain=repelis24.co.atlaq.com&var=&ymid=&var_3=&tg=0&sw=3.1.471

139.45.197.250

200 OK

888 B

URL GET HTTP/2
itweepinbelltor.com/zone?pub=0&zone_id=5490114&is_mobile=false&domain=repelis24.co.atlaq.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
JSON data\012- , ASCII text, with very long lines (887)
Size
888 B (888 bytes)
Hash
5800ebd5fac46023ee5ce159af185039
69130d428356b977ec0a5bb70fe95ce3bc947b85
b299942a863006c6c8227371cc765b6eaef53616b56613001feda66f9667444f

HTTP Headers

GET /zone?pub=0&zone_id=5490114&is_mobile=false&domain=repelis24.co.atlaq.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: application/json; charset=utf-8
content-length: 888
x-trace-id: 5dce72b420f4841ee07bc389aa799911
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c

142.250.74.72

200 OK

90 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA
ValidityMon, 16 Oct 2023 08:02:30 GMT - Mon, 08 Jan 2024 08:02:29 GMT

File type
ASCII text, with very long lines (5955)
Size
90 kB (90054 bytes)
Hash
4816756c720cffe2a4b0cea3aedf19c4
fc98b93f358bd728b7d3ffd82bf445647f1b1383
e402b91c80bb888a95603dbde38782bad181fa9a3c93dff652556831cb043537

HTTP Headers

GET /gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 17 Nov 2023 09:54:15 GMT
expires: Fri, 17 Nov 2023 09:54:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90054
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

preview.atlaq.com/360cb0e5e0ffc1ade1dc2571898efe6a_repelis24.co.png

188.114.97.1

200 OK

30 kB

URL GET HTTP/2
preview.atlaq.com/360cb0e5e0ffc1ade1dc2571898efe6a_repelis24.co.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint1E:C6:84:53:3B:FF:CE:FF:8F:8C:9D:8B:3A:69:3F:E5:28:C8:F4:A5
ValidityWed, 26 Apr 2023 00:00:00 GMT - Thu, 25 Apr 2024 23:59:59 GMT

File type
PNG image data, 683 x 384, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (29523 bytes)
Hash
385b141acc4e8aeff4beeb0e31f3ac75
26bd1666674de4f3bd3790d352fc4dc4a517cfb6
2d2eea8a790eea04ee932e68071f9a39deab895178bc9188796312d5e11a4b63

HTTP Headers

GET /360cb0e5e0ffc1ade1dc2571898efe6a_repelis24.co.png HTTP/1.1
Host: preview.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: image/png
content-length: 29523
x-powered-by: Express
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000
last-modified: Wed, 15 Nov 2023 01:32:58 GMT
etag: W/"7353-18bd09c3023"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aq9ni0GE7d9kqhyfKI5JfhbngueLy92tFc7uqY1dWsk247gFm9hDxypwoccpDzV6fYM1re669AKKntlN2EAZA%2BDT9JC%2BcZcu%2BzDXCc%2Fg1L9XaFwfkQ40hDHQsNB1BsL6oDHTUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8277175d48f85699-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

itweepinbelltor.com/pfe/current/universal.min.js?v=3.1.471

139.45.197.250

200 OK

34 kB

URL GET HTTP/2
itweepinbelltor.com/pfe/current/universal.min.js?v=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
34 kB (33854 bytes)
Hash
07d00f37845dde4af845525eced09cc1
88c6cc07a6e0ae23864b8c6513fbf82c012d6b85
1b797f8f23b27726caa2986c9194aa44ac4c1d4fde3a713bbcb4f70a8fc252e2

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: application/javascript
last-modified: Fri, 10 Nov 2023 11:00:39 GMT
etag: W/"654e0d57-1572c"
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

whulsaux.com/tag.min.js

139.45.197.244

200 OK

26 kB

URL GET HTTP/2
whulsaux.com/tag.min.js
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectwhulsaux.com
Fingerprint29:C6:16:FB:8B:54:C5:1B:65:18:3D:96:39:33:73:B5:D3:8C:6D:48
ValidityFri, 01 Sep 2023 05:32:42 GMT - Thu, 30 Nov 2023 05:32:41 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (25542 bytes)
Hash
f2e2bbac9956f90deb8bb8620b4e6a34
92e196a6e8b21e835aeb47d0123fbad2c9c1bc2c
785e6fa651312a3f819529c5fa32cd529e74c771f73929ed85cdf424a462144f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: whulsaux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/javascript; charset=utf-8
content-length: 25542
content-encoding: br
x-trace-id: 06dca1740815719c1b3ff54f1dbe8562
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Wed, 15 Nov 2023 11:44:01 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

itweepinbelltor.com/custom

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
itweepinbelltor.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

itweepinbelltor.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
itweepinbelltor.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Content-Type: application/json
Content-Length: 381
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c55635d8b3e6aae4669ea4e843d6bac3
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.netsolssl.com/

104.18.38.233

471 B

URL
ocsp.netsolssl.com/
IP
104.18.38.233:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5f6ce6f6e86c16de1f94221687546126
5907471871571b46410d9411fdca678c132ee5ca
430010f47a6714f9b1ca9f158ad58997651d5d669bc810639367e31e86a4071a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.netsolssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 17 Nov 2023 09:54:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Nov 2023 00:23:12 GMT
Expires: Wed, 22 Nov 2023 00:23:11 GMT
Etag: "5907471871571b46410d9411fdca678c132ee5ca"
Cache-Control: max-age=397134,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 827717621b205694-OSL

bertuccis.com/favicon.ico

141.193.213.20

301 Moved Permanently

162 B

URL GET HTTP/2
bertuccis.com/favicon.ico
IP
141.193.213.20:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectbertuccis.com
FingerprintEE:60:11:6F:C5:70:8E:B9:4F:48:64:14:C5:D1:7A:AA:CC:92:B7:08
ValidityTue, 15 Aug 2023 00:00:00 GMT - Tue, 13 Aug 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bertuccis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/html
content-length: 162
location: https://www.bertuccis.com/favicon.ico
access-control-allow-origin: https://locations.bertuccis.com
cf-cache-status: MISS
set-cookie: __cf_bm=1E3I.mSxX5FFA_50SJ_rqOrr0DJ3wcQ35__Nwn8QY58-1700214856-0-AXgTzpvwNM1XLI6oLnZV2Bbua+GM/U9iZmemjumPZqD6ExcPWoRfZF0fi8wjXxXd1VNki3gqNeaWE9m2iWjiDwk=; path=/; expires=Fri, 17-Nov-23 10:24:16 GMT; domain=.bertuccis.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 8277175fba77568b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
a89f93a7d118b5586db260c5ab933282
c5ea3ab8a96d50e8a5e02e8bc666946d6a433853
cea4c5a8929284e6fa3e7b2cae5f94e75f795a21e52542fe9b51c6abbda63449

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Content-Type: application/json
Content-Length: 507
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bentonvillear.com/favicon.ico

207.38.72.222

200 OK

22 kB

URL GET HTTP/2
bentonvillear.com/favicon.ico
IP
207.38.72.222:443
ASN
#36489 NETSOLUS-NETWORKS

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectwww.bentonvillear.com
Fingerprint33:B9:B2:3C:F2:63:B7:04:6C:4F:0F:BD:20:DF:C7:F4:25:12:C7:D1
ValiditySun, 24 Sep 2023 16:22:07 GMT - Sat, 23 Dec 2023 16:22:06 GMT

File type
MS Windows icon resource - 6 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data
Size
22 kB (22486 bytes)
Hash
a1c686eb6e771878cf6040574a175933
c9935649ce9d66e8e39f454f0d265d93dd94f232
ea534ab3716091b9edf0df3b1bdff600169b1cfad0e1c745593ed09383e931ff

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bentonvillear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private, s-maxage=600,no-transform
content-type: image/x-icon
last-modified: Wed, 10 Jun 2020 04:51:04 GMT
accept-ranges: bytes
etag: "0ace1bee23ed61:0"," "
server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: CP_IsMobile=false; path=/
CP_IsMobile=false; path=/
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *
date: Fri, 17 Nov 2023 09:54:15 GMT
content-length: 22486
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=df039c286f914dbb97c5a6abe2724d23

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=df039c286f914dbb97c5a6abe2724d23
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
244d47d46717448d6f884bccdfb0272b
26662414f2576511ab76d7c5c03118edd11c1a45
d43e2ba95288ca4aa97add9da2ab47dc362fb5186cc38662a56bc6f74516a518

HTTP Headers

GET /gid.js?userId=df039c286f914dbb97c5a6abe2724d23 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=df039c286f914dbb97c5a6abe2724d23; expires=Sat, 16 Nov 2024 09:54:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

bestrentnj.com/favicon.ico

34.70.74.134

200 OK

0 B

URL GET HTTP/2
bestrentnj.com/favicon.ico
IP
34.70.74.134:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerSectigo Limited
Subjectbestrentnj.com
FingerprintA9:DD:A4:D5:D5:A1:9E:73:05:F1:70:46:F5:10:2C:08:44:D9:47:1A
ValidityFri, 02 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bestrentnj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: image/x-icon
content-length: 0
last-modified: Fri, 17 Nov 2023 06:30:43 GMT
etag: "65570893-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

itweepinbelltor.com/pfe/current/tag.min.js?z=5490114

139.45.197.250

200 OK

5.8 kB

URL GET HTTP/2
itweepinbelltor.com/pfe/current/tag.min.js?z=5490114
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
C source, ASCII text, with very long lines (13300), with no line terminators
Size
5.8 kB (5780 bytes)
Hash
258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75

HTTP Headers

GET /pfe/current/tag.min.js?z=5490114 HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:15 GMT
content-type: application/javascript
last-modified: Fri, 10 Nov 2023 11:00:39 GMT
etag: W/"654e0d57-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

betaclub.org/favicon.ico

68.191.4.77

301 Moved Permanently

321 B

URL GET HTTP/1.1
betaclub.org/favicon.ico
IP
68.191.4.77:443
ASN
#20115 CHARTER-20115

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerNetwork Solutions L.L.C.
Subject*.betaclub.org
FingerprintE8:26:55:3B:89:ED:56:D7:74:4B:91:D4:11:4A:9F:46:FD:B8:C8:CD
ValidityThu, 10 Aug 2023 00:00:00 GMT - Mon, 09 Sep 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
321 B (321 bytes)
Hash
a6a709057e86a6a4d033a93ebddbaf92
d03758f645f05c22d35f1af040aec15b80623957
0dc396cf72d810b986d6d89c5adee9798654f3dda538ff76e21418597346d801

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: betaclub.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Fri, 17 Nov 2023 09:54:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Location: http://www.betaclub.org/favicon.ico
Content-Length: 321
Keep-Alive: timeout=5, max=200
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

biblemesh.com/favicon.ico

18.232.209.87

200 OK

0 B

URL GET HTTP/2
biblemesh.com/favicon.ico
IP
18.232.209.87:443
ASN
#14618 AMAZON-AES

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerAmazon
Subjectbiblemesh.com
FingerprintC6:FB:E8:16:54:8A:F4:68:8D:BA:AD:10:C2:55:B8:35:0F:CF:E6:FA
ValidityTue, 15 Aug 2023 00:00:00 GMT - Thu, 12 Sep 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: biblemesh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
server: Apache/2.4.57 (Ubuntu)
strict-transport-security: max-age=86400; includeSubDomains
cache-control: max-age=2592000
expires: Sun, 17 Dec 2023 09:54:16 GMT
vary: User-Agent
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je3b81v894672372&_p=1700214856289&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1644503048.1700214857&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1700214856&sct=1&seg=0&dl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&dt=%C2%BB%20RePelis24%20%7C%20Ver%20Pel%C3%ADculas%20Gratis%20en%20Espa%C3%B1ol%20%7C%20RePelis%20-%20Pelis24%20%E2%9C%85&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2372

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je3b81v894672372&_p=1700214856289&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1644503048.1700214857&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1700214856&sct=1&seg=0&dl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&dt=%C2%BB%20RePelis24%20%7C%20Ver%20Pel%C3%ADculas%20Gratis%20en%20Espa%C3%B1ol%20%7C%20RePelis%20-%20Pelis24%20%E2%9C%85&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2372
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA
ValidityMon, 16 Oct 2023 08:02:30 GMT - Mon, 08 Jan 2024 08:02:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je3b81v894672372&_p=1700214856289&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1644503048.1700214857&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1700214856&sct=1&seg=0&dl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&dt=%C2%BB%20RePelis24%20%7C%20Ver%20Pel%C3%ADculas%20Gratis%20en%20Espa%C3%B1ol%20%7C%20RePelis%20-%20Pelis24%20%E2%9C%85&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2372 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://repelis24.co.atlaq.com
date: Fri, 17 Nov 2023 09:54:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

itweepinbelltor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
itweepinbelltor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

repelis24.co.atlaq.com/sw-5490114.js

188.114.96.1

404 Not Found

3.3 kB

URL GET HTTP/3
repelis24.co.atlaq.com/sw-5490114.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (759)
Size
3.3 kB (3339 bytes)
Hash
4d657d6e65f504ad829ef64b13e3ce39
a7426d8f86e4c5c5a11fea86c504f1a621b59b99
18e942fe7d930851ee8cb5ddbd6d9af38b3c68b1c8a8ee3bb608096c81b13bcb

HTTP Headers

GET /sw-5490114.js HTTP/1.1
Host: repelis24.co.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 13:40:15 GMT
x-litespeed-cache: hit
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IpVBoLzOLIaKBnm4AH0eJa6oeTUwDCSkkRK0e7PlUFX8WKozbH1HkibcpxzFftWKq6GHeHhRtFxuHr8QkdsmB1USa6iBKKCQTit1OUr3%2BRKJTcJrlPI11laRAavoCJkLE2ytDQ0b6Dey"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827717622f7cb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

my.rtmark.net/gid.js?pub=0&userId=93378a58743348728bf3eb45981d9037&zoneId=5490114&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?pub=0&userId=93378a58743348728bf3eb45981d9037&zoneId=5490114&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
244d47d46717448d6f884bccdfb0272b
26662414f2576511ab76d7c5c03118edd11c1a45
d43e2ba95288ca4aa97add9da2ab47dc362fb5186cc38662a56bc6f74516a518

HTTP Headers

GET /gid.js?pub=0&userId=93378a58743348728bf3eb45981d9037&zoneId=5490114&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Cookie: ID=df039c286f914dbb97c5a6abe2724d23
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=df039c286f914dbb97c5a6abe2724d23; expires=Sat, 16 Nov 2024 09:54:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

www.bertuccis.com/favicon.ico

141.193.213.21

200 OK

0 B

URL GET HTTP/2
www.bertuccis.com/favicon.ico
IP
141.193.213.21:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbertuccis.com
Fingerprint27:2A:36:6F:6F:5E:4B:7F:64:56:C5:ED:4A:EF:45:23:ED:FC:8C:91
ValidityFri, 22 Sep 2023 00:22:06 GMT - Thu, 21 Dec 2023 00:22:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.bertuccis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=1E3I.mSxX5FFA_50SJ_rqOrr0DJ3wcQ35__Nwn8QY58-1700214856-0-AXgTzpvwNM1XLI6oLnZV2Bbua+GM/U9iZmemjumPZqD6ExcPWoRfZF0fi8wjXxXd1VNki3gqNeaWE9m2iWjiDwk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: image/x-icon
content-length: 0
last-modified: Fri, 17 Nov 2023 06:07:56 GMT
etag: "6557033c-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: https://locations.bertuccis.com
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 827717644c997129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
581ab95a76f61317f7eacc28c346c816
df5a51fb0c445b65c93de314e88b4667c7242e34
67d502b678dad2901d3c3bdd777a7cac27598fb1c69d2a63a0bd9b89ca8cdc0e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Content-Type: application/json
Content-Length: 507
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:17 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.betaclub.org/favicon.ico

68.191.4.77

200 OK

1.2 kB

URL GET HTTP/1.1
www.betaclub.org/favicon.ico
IP
68.191.4.77:443
ASN
#20115 CHARTER-20115

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerNetwork Solutions L.L.C.
Subject*.betaclub.org
FingerprintE8:26:55:3B:89:ED:56:D7:74:4B:91:D4:11:4A:9F:46:FD:B8:C8:CD
ValidityThu, 10 Aug 2023 00:00:00 GMT - Mon, 09 Sep 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7f15eb969fb38f794ac56d707bbbb443
1188a62dd2820cd94434783f857c0f229418770a
43bf99df0926499bf9efa608dec97dbc53b5b4aaf02441216ff44eac11154e1e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.betaclub.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 17 Nov 2023 09:54:17 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 19 Sep 2014 23:17:29 GMT
ETag: "47e-503734e0ab440"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=200
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

whulsaux.com/5/6577958/?oo=1&aab=1

139.45.197.244

200 OK

1.8 kB

URL GET HTTP/2
whulsaux.com/5/6577958/?oo=1&aab=1
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectwhulsaux.com
Fingerprint29:C6:16:FB:8B:54:C5:1B:65:18:3D:96:39:33:73:B5:D3:8C:6D:48
ValidityFri, 01 Sep 2023 05:32:42 GMT - Thu, 30 Nov 2023 05:32:41 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
1.8 kB (1822 bytes)
Hash
c1c1f92a8175640541af7f39270e4ee2
9be62df3ba4eab9852cbd1ebd92db3df75751078
1ccf0e322adab930766e7990ff25313a14adcd91261bee47a261208ad6be613c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6577958/?oo=1&aab=1 HTTP/1.1
Host: whulsaux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json
x-trace-id: 59ebbee03598ad4179be7eb1bfd4c367
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=df039c286f914dbb97c5a6abe2724d23; expires=Sat, 16 Nov 2024 09:54:16 GMT; path=/; secure; SameSite=None
oaidts=1700214856; expires=Sat, 16 Nov 2024 09:54:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1644503048.1700214857&gtm=45je3b81v894672372&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=61760137

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1644503048.1700214857&gtm=45je3b81v894672372&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=61760137
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint29:58:11:F3:D3:18:F5:CB:E0:44:F2:26:7E:93:2F:BD:DE:27:0C:EB
ValidityMon, 16 Oct 2023 08:13:02 GMT - Mon, 08 Jan 2024 08:13:01 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1644503048.1700214857&gtm=45je3b81v894672372&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=61760137 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 17 Nov 2023 09:54:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://biblemesh.com

142.250.74.68

200 OK

750 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://biblemesh.com
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
750 B (750 bytes)
Hash
acc3dd16d7e04842f1f6fbe2945f5e31
ac2c7ad2aaaef07228283596213ebc87c6d15750
6253fe7285e4c814fa11439b9258254f3207095984061f81512769fe98f1ca7b

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://biblemesh.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://biblemesh.com/wp-content/uploads/2019/05/biblemesh-favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 750
date: Fri, 17 Nov 2023 09:54:17 GMT
expires: Fri, 24 Nov 2023 09:54:17 GMT
cache-control: public, max-age=604800
last-modified: Wed, 14 Aug 2019 10:12:02 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

itweepinbelltor.com/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

20 kB

URL GET HTTP/2
itweepinbelltor.com/pfe/current/defaultSkin.min.js
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 kB (20104 bytes)
Hash
c69d204252abbbbd9825650ca11d9e34
b572b85396e0a37a1d85f7ef455c239e50180d97
0bd2e907afbce0d4911405b7d69e303ed224b8335c8e86b9a031bb956b0692f5

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:17 GMT
content-type: application/javascript
last-modified: Fri, 10 Nov 2023 11:00:39 GMT
etag: W/"654e0d57-df63"
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bertuccis.com

142.250.74.68

200 OK

477 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bertuccis.com
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
477 B (477 bytes)
Hash
10116157fe9d8a45e3e02552816c62f8
330c421c0e7a70c59cb2d53af1f8613b93583fea
d4f5c17ea5824a21014e18b84c9ac2725599c5bf832a833b9fd48f5f923ef006

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bertuccis.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.bertuccis.com/wp-content/uploads/2022/07/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 477
date: Fri, 17 Nov 2023 09:54:17 GMT
expires: Fri, 24 Nov 2023 09:54:17 GMT
cache-control: public, max-age=604800
last-modified: Mon, 15 Aug 2022 20:23:34 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

itweepinbelltor.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
itweepinbelltor.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Content-Type: application/json
Content-Length: 378
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: f86ef85817f43d44c066bc1892ff6ec3
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

itweepinbelltor.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
itweepinbelltor.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectitweepinbelltor.com
Fingerprint02:3B:3D:FF:9B:86:67:A5:C6:4C:6C:1F:CB:D0:95:6B:BE:08:B2:DF
ValidityFri, 20 Oct 2023 05:44:18 GMT - Thu, 18 Jan 2024 05:44:17 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: itweepinbelltor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Content-Type: application/json
Content-Length: 748
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c282763a8a97f5a27a67c2a70daa74cc
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bestrentnj.com

142.250.74.68

404 Not Found

726 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bestrentnj.com
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://bestrentnj.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Fri, 17 Nov 2023 09:54:17 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

repelis24.co.atlaq.com/badk.txt

188.114.96.1

200 OK

44 kB

URL GET HTTP/3
repelis24.co.atlaq.com/badk.txt
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
44 kB (43852 bytes)
Hash
f4245877e1f9b8764acbac7b475ebf2d
7471a9d7354637651fa5d0200febe7ab162fb69a
bd300473a295a173716b1b182aed7c14e3551f7400360dd5f694115683ccd41c

HTTP Headers

GET /badk.txt HTTP/1.1
Host: repelis24.co.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-expose-headers: Content-Disposition
cache-control: public, max-age=2592000
cf-railgun: direct (starting new WAN connection)
expires: Sun, 17 Dec 2023 09:54:15 GMT
last-modified: Mon, 13 Apr 2020 08:00:16 GMT
strict-transport-security: max-age=31536000;includeSubDomains
vary: Accept-Encoding,User-Agent,Origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WTaUAol%2Bgy6aXfeyFOJTM6Qj5XQ%2BNaXwFv2kuWMMUZS65LB4bYVqh6pe8NuiqrPE%2FCHbmYwLBkfPny5s%2BGwpg%2FjBzAOFyljuU93GJ1f%2FtgzWxm19bpZ2PNOUSLHmNK02ErpReg6Yh7lH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8277175e6cdab515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

repelis24.co/wp-content/uploads/2019/06/favicon.png

104.21.69.72

301 Moved Permanently

0 B

URL GET HTTP/2
repelis24.co/wp-content/uploads/2019/06/favicon.png
IP
104.21.69.72:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectrepelis24.co
Fingerprint17:57:48:81:AA:FC:E6:9D:EF:B3:5F:71:00:B2:0B:D3:1F:5D:66:FC
ValidityFri, 06 Oct 2023 06:44:03 GMT - Thu, 04 Jan 2024 06:44:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/uploads/2019/06/favicon.png HTTP/1.1
Host: repelis24.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Fri, 17 Nov 2023 09:54:17 GMT
location: https://repelis24.rs/wp-content/uploads/2019/06/favicon.png
cache-control: max-age=3600
expires: Fri, 17 Nov 2023 10:54:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0iNGo0JmlOjir6pqKa7nEiHC2JAT%2B3U2uLO6MfGcDcFQQfssomdf%2FbYh9Nhi68Nr9oiYz62El4FakOhn0tVG4G0UyNQoOzaBIXvt6NA646e7ARXjem%2F4kPRuJzPY0hk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827717697ed3b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=repelis24.co

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=repelis24.co
IP
0.0.0.0:0
ASN
#0

Requested by
https://repelis24.co.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=repelis24.co HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

repelis24.co.atlaq.com/

188.114.96.1

200 OK

0 B

URL HEAD HTTP/3
repelis24.co.atlaq.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: repelis24.co.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: text/html; charset=UTF-8
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-expose-headers: Content-Disposition
cache-control: public, max-age=2592000
cf-railgun: direct (waiting for pending WAN connection)
expires: Fri, 15 Dec 2023 11:26:22 GMT
strict-transport-security: max-age=31536000;includeSubDomains
vary: User-Agent,Origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-litespeed-cache: hit
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O0na%2FDvC%2FpyWOOQF%2FCjkIBNwRNqhohbUxqeGJd5vdhsmuRX4tRgvT0NS880L%2FwyoXya0qquv%2BnWY6YabZv8%2Fg7wbhhGUJcjB6IOLKI4F6GtUFXbB4BXpWt6Veo6YSsVvsNKhZLaBNelU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8277175f6dabb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=repelis24.co

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=repelis24.co
IP
0.0.0.0:0
ASN
#0

Requested by
https://repelis24.co.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=repelis24.co HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelis24.co.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

whulsaux.com/?rb=XYYVhMJaYgxIeh9wz9skLHbVfEO9SDTFCAN8dXwNf3AD_YzXLoGAzvXDE3UuTDmekN0fTwKIihpZgNiO8_7Hu-WS53IzR7O2Ad4y3gGHgKqwSMPgkVOFmUasmV4tF5kChcVsPIA2AVdE_74lORi4l_IQqIUOkwP96I8h2qXmHIIkPgqMhlI0hwfIxLfvIWn7Jrh3XHGNEiE7GOn8lbBvGQ3WvHzfkPbkDfdDwg%3D%3D&request_ab2=0&zoneid=6577958&js_build=iclick-1.629.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-1.629.0&bs=a94cf885-740a-47ef-bb8e-c751df4e1d8e&userId=df039c286f914dbb97c5a6abe2724d23&m=link

139.45.197.244

200 OK

1.8 kB

URL GET HTTP/2
whulsaux.com/?rb=XYYVhMJaYgxIeh9wz9skLHbVfEO9SDTFCAN8dXwNf3AD_YzXLoGAzvXDE3UuTDmekN0fTwKIihpZgNiO8_7Hu-WS53IzR7O2Ad4y3gGHgKqwSMPgkVOFmUasmV4tF5kChcVsPIA2AVdE_74lORi4l_IQqIUOkwP96I8h2qXmHIIkPgqMhlI0hwfIxLfvIWn7Jrh3XHGNEiE7GOn8lbBvGQ3WvHzfkPbkDfdDwg%3D%3D&request_ab2=0&zoneid=6577958&js_build=iclick-1.629.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-1.629.0&bs=a94cf885-740a-47ef-bb8e-c751df4e1d8e&userId=df039c286f914dbb97c5a6abe2724d23&m=link
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectwhulsaux.com
Fingerprint29:C6:16:FB:8B:54:C5:1B:65:18:3D:96:39:33:73:B5:D3:8C:6D:48
ValidityFri, 01 Sep 2023 05:32:42 GMT - Thu, 30 Nov 2023 05:32:41 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1800), with no line terminators
Size
1.8 kB (1781 bytes)
Hash
5229882e9dbfa8e43108701a61f48c6b
da079b0ad8b445be18fdfd8cd7377037d7fa388b
dd3d3a69400514126aa33b8304898ed0c56788d797b812c5f2b52d24f165feb2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=XYYVhMJaYgxIeh9wz9skLHbVfEO9SDTFCAN8dXwNf3AD_YzXLoGAzvXDE3UuTDmekN0fTwKIihpZgNiO8_7Hu-WS53IzR7O2Ad4y3gGHgKqwSMPgkVOFmUasmV4tF5kChcVsPIA2AVdE_74lORi4l_IQqIUOkwP96I8h2qXmHIIkPgqMhlI0hwfIxLfvIWn7Jrh3XHGNEiE7GOn8lbBvGQ3WvHzfkPbkDfdDwg%3D%3D&request_ab2=0&zoneid=6577958&js_build=iclick-1.629.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Frepelis24.co.atlaq.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-1.629.0&bs=a94cf885-740a-47ef-bb8e-c751df4e1d8e&userId=df039c286f914dbb97c5a6abe2724d23&m=link HTTP/1.1
Host: whulsaux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
Origin: https://repelis24.co.atlaq.com
DNT: 1
Connection: keep-alive
Cookie: OAID=df039c286f914dbb97c5a6abe2724d23; oaidts=1700214856
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 17 Nov 2023 09:54:16 GMT
content-type: application/json
x-trace-id: 4f92dddbddf44a06b52e85be16bd3592
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://repelis24.co.atlaq.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=df039c286f914dbb97c5a6abe2724d23; expires=Sat, 16 Nov 2024 09:54:16 GMT; path=/; secure; SameSite=None
oaidts=1700214856; expires=Sat, 16 Nov 2024 09:54:16 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 24 Nov 2023 09:54:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

repelis24.rs/wp-content/uploads/2019/06/favicon.png

172.67.181.238

403 Forbidden

0 B

URL GET HTTP/2
repelis24.rs/wp-content/uploads/2019/06/favicon.png
IP
172.67.181.238:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelis24.co.atlaq.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectrepelis24.rs
Fingerprint2D:E7:31:FB:E4:96:BE:02:25:9C:5B:94:71:DC:B8:22:41:66:CA:B4
ValidityThu, 16 Nov 2023 22:16:04 GMT - Wed, 14 Feb 2024 22:16:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/uploads/2019/06/favicon.png HTTP/1.1
Host: repelis24.rs
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://repelis24.co.atlaq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Fri, 17 Nov 2023 09:54:17 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8277176b2f53712d-OSL
content-encoding: br
X-Firefox-Spdy: h2

repelis24.co.atlaq.com/

188.114.96.1

200 OK

89 kB

URL User Request GET HTTP/2
repelis24.co.atlaq.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectatlaq.com
Fingerprint76:15:CE:DE:39:63:81:C5:4E:4A:13:3D:70:6B:AE:85:FA:98:9A:38
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT

File type

Size
89 kB (89044 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: repelis24.co.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 17 Nov 2023 09:54:14 GMT
content-type: text/html; charset=UTF-8
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-expose-headers: Content-Disposition
cache-control: public, max-age=2592000
cf-railgun: direct (starting new WAN connection)
expires: Fri, 15 Dec 2023 11:26:22 GMT
strict-transport-security: max-age=31536000;includeSubDomains
vary: Accept-Encoding,User-Agent,Origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-litespeed-cache: hit
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9bUV6JFhwUVvrhocBO3BNJQxFODxqhKmEzCAVoEJ8%2FfF8yqimpqIOpNjAOzqZxaXxNt8RylDssVdY%2BeqID7GUeishcjvr09AGbUn%2FoPfTDvsgMOeYSrrNKXlmG%2Fyu4NIHEJKoJR40py"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827717540faf0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN