phone-services.xyz/av/av_ml_1/icon.png
200 OK 2.2 kB URL GET HTTP/3 phone-services.xyz/av/av_ml_1/icon.png
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Hash 28101525cf4439d2b0ec00d00307dfcd
21cb1fbe60c613a1ae4e9e21c94199c880d363c7
b4ca5bc841defa4a01d67ca1a6699864e299e305a0842f5f87a044cb197b56ed
GET /av/av_ml_1/icon.png HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: image/png
content-length: 2224
last-modified: Tue, 06 Jun 2023 21:07:35 GMT
etag: "647fa017-8b0"
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 689612
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4dVOSPwNANgKm2JkKPDpSAXyH6Ip7UqTs199rR2MKK%2BSAa3Rv9%2BVpQVcX%2B3Q0gm3g2w6r8m8l%2BGeW6nKTn%2Fu1ohg0KJYyYeCZBXmH8DIeaJzdLg1cFk%2BKhaT100lybMdCL8l3kk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306379e7a8356bd-OSL
alt-svc: h3=":443"; ma=86400
phone-services.xyz/av/av_ml_1/alert.mp3
200 OK 8.8 kB URL GET HTTP/3 phone-services.xyz/av/av_ml_1/alert.mp3
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 6d2d3da2ea28ace816fa4a138829dc18
606e0ec3d7fb05c69f16233cfe1ff0a0ee760505
d79bc81189750262716692ade6cc4d6fb6c4fbc4aa01c2b9d0aa67e5788821fc
GET /av/av_ml_1/alert.mp3 HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: audio/mpeg
content-length: 8802
last-modified: Tue, 06 Jun 2023 21:07:34 GMT
etag: "647fa016-2262"
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 291369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QQiSGVZPCfXAX02QHw8PKGwK8G0%2FsSHGWoNP52Jd42VLknkv9bD18iDOhLBS1zbHH9NJ688N7q8V%2F0yJWKVe46N6Y%2F%2BQawQIhJjB1avPZYDXTA2u20r3vhOOk9OA2v4T6o1mK3Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830637a0ded956bd-OSL
alt-svc: h3=":443"; ma=86400
laugoust.com/zone?&pub=0&zone_id=5289151&is_mobile=false&domain=phone-services.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest
200 OK 0 B URL POST HTTP/2 laugoust.com/zone?&pub=0&zone_id=5289151&is_mobile=false&domain=phone-services.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectlaugoust.com
FingerprintA9:BC:65:A8:77:D8:43:88:8C:04:8F:7D:6A:BB:A4:AE:22:E9:11:52
ValidityTue, 14 Nov 2023 05:09:00 GMT - Mon, 12 Feb 2024 05:08:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /zone?&pub=0&zone_id=5289151&is_mobile=false&domain=phone-services.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 18:47:20 GMT
content-length: 0
x-trace-id: 6ad1714392e7da44184e0bb7b4620830
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
200 OK 3.5 kB URL User Request GET HTTP/2 phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
IP
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3766), with no line terminators
Hash cb6314d30a68ed800343c15b14acaada
dd2e9f35844965414ccb8a7b1591d90fd9c36ce3
adca08f812c8aa08255709466b1fb5428f86490f24ca86c2acf36a65180e8d41
GET /av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719 HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 18:47:19 GMT
content-type: text/html
last-modified: Tue, 06 Jun 2023 21:07:36 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6aXKqATYeigxLWNXHsX6MjwgHRFB8KNjltovbL85BvSdWVuv8aQf1oVZlo6yRqTzHzMf8DzOoimoFxKdoCmgun8RUg57RJY0vFtDEAWy%2BrpsyiWTdlk%2Fu7dgDTkWo%2F08Cxvd%2BVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306379b9cc91c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
phone-services.xyz/av/av_ml_1/style.css
200 OK 9.6 kB URL GET HTTP/3 phone-services.xyz/av/av_ml_1/style.css
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type ASCII text, with very long lines (10179), with no line terminators
Hash d85094401b34b3681840eab5856e5e7d
ed0112fb8688254488412825137c403f720f2aa1
e0424ec363dcf559ce761b9a3cc0f59f4d7b75b3503600eb200bbfa5678a2e06
GET /av/av_ml_1/style.css HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: text/css
last-modified: Tue, 06 Jun 2023 21:07:38 GMT
vary: Accept-Encoding
etag: W/"647fa01a-256d"
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 224675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RkOl2LntczfIsa3iD%2BEWMjBTzHXKAKz2%2B%2FSCKaSYRfdC5ohCCGt%2FROBDHOs8PZVsm0HPnradUwCcDi6XGldgjIQqpGAmHBAcgy29vgn%2BT2fYHqUL6RUha8njaerQ0c2qtFHREfY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306379e7a8156bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
phone-services.xyz/favicon.ico
404 Not Found 280 B URL GET HTTP/3 phone-services.xyz/favicon.ico
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 77b9f5a911c2d5fdcbbe457346bf2141
105c8c1291c821272cfb88214196431b2f1b09f4
8100ee9d3aa2a41128e34ff2f0c173b63987e1d53ac7a3c51d42a24476ded746
GET /favicon.ico HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
cache-control: max-age=120
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2BIOejBVxMAx1hwbhYa6e9i9Rf51dilszI9mjEbWhn2tCUSXWtGRSM%2BdBRYPuEUJJjoLHixmduGwiJEnn7A9J%2Fn9aOZ1%2BtJxCw2HJpjepoeNgr8WxDFlsrPhTHlNFXl4%2BJQfr74%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306379facac56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
phone-services.xyz/av/av_ml_1/translates.js
200 OK 9.5 kB URL GET HTTP/3 phone-services.xyz/av/av_ml_1/translates.js
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type Unicode text, UTF-8 text, with very long lines (8168), with no line terminators
Hash aacfed28e49f87e38270db8ab1129cc0
5f67c3cd0c69ca31c434e15a9ea56aecd93e25b0
66ae2f6ef1252d893b3f6e6340d303c5cbeb689bf7ffe69ea73c6c5b9269755d
GET /av/av_ml_1/translates.js HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: application/javascript
last-modified: Tue, 06 Jun 2023 21:07:39 GMT
vary: Accept-Encoding
etag: W/"647fa01b-251d"
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 689612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N7L9O8GORSVU6fDqJUfRXMblK%2Bw9bH9S1JAx1Rqswytt1%2F%2B7BQokKHfRdwGTQkIiPkLEHaveE%2F%2F7dV8ptwTJLWu5EMhBERZ52OBN4WzNnCh9SrqNaySNuCxS4BneiJlh4f2S2Lg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306379e7a8856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
laugoust.com/pfe/current/micro.tag.min.js?z=5289151&sw=/sw-check-permissions-a87cb.js
200 OK 27 kB URL GET HTTP/2 laugoust.com/pfe/current/micro.tag.min.js?z=5289151&sw=/sw-check-permissions-a87cb.js
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectlaugoust.com
FingerprintA9:BC:65:A8:77:D8:43:88:8C:04:8F:7D:6A:BB:A4:AE:22:E9:11:52
ValidityTue, 14 Nov 2023 05:09:00 GMT - Mon, 12 Feb 2024 05:08:59 GMT
File type ASCII text, with very long lines (27007), with no line terminators
Hash 5ccd2d5882a06f293d07510ac91c92e6
b44dc0eaa03981adb70d3313e728f9359c1d21c1
9fc2aa21f3a7bfe66783d35fdbb48147f73e72a41f87aea848f64a8cb4518eba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pfe/current/micro.tag.min.js?z=5289151&sw=/sw-check-permissions-a87cb.js HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-697f"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
phone-services.xyz/sw-check-permissions-a87cb.js
200 OK 566 B URL GET HTTP/3 phone-services.xyz/sw-check-permissions-a87cb.js
IP
Requested by https://phone-services.xyz/av/av_ml_1/index.html?brand=Desktop&model=DESKTOP&cep=rm3C_okPIMQzPdl6QDQbdwSevWa7t5YfZ3G1076KDwCFcCeT68HCMyS-p2bQs7gfS2HR4gekUX2UbT4bLWpgi51aA9TXSXHLp53oA9yTwLNncYWEnYqwxyBgOGEIYEN2wQ_V2TrKmw_8GjWbeH0EUASVbUt9EQRz39A-1p2ECShwSE_corly1lGDlKRgIYfaFFv3VS_Bd00PxiKxgnYuol8zUvBS8889kedTfqd8dB_XurkPN12dYEsTDO6Q3_pYOcJ9tggLHddGycriIKLIPOGw0dR2vXjTWzROP6rzARBGyekUk_EhkF_Z3w4Ce6E_daDYGm1DHn1Lo5nKpXB5BamjHm1-SWOdJyHFqsEtXJqQRHLuD6Jx6zat0TSm5NfdDugVqSkPOzaD0Nl4PNntoQ&lptoken=1756018a71e274891719
Certificate IssuerLet's Encrypt
Subjectphone-services.xyz
FingerprintE9:15:A5:B4:78:71:45:B4:77:E8:5D:31:7C:F3:98:13:1D:72:E0:88
ValidityFri, 27 Oct 2023 00:20:39 GMT - Thu, 25 Jan 2024 00:20:38 GMT
File type ASCII text, with very long lines (605), with no line terminators
Hash c1d3d26064cacc11a81585ff24ffedef
35cd49a74eb8553369cc55000db577667cf9a8e5
7b32080b6f2e6a3ac1fd3915a5d0a9325cfa9335276d8201b68c62fc131f22db
GET /sw-check-permissions-a87cb.js HTTP/1.1
Host: phone-services.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 18:47:20 GMT
content-type: application/javascript
last-modified: Tue, 02 Aug 2022 20:45:04 GMT
vary: Accept-Encoding
etag: W/"62e98cd0-236"
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 1056363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LvblGAvA9GVGQGZk6kEYEAC30go9KcUwrFRrmeHpMlWeEvbJ8Eqj3C404hCCDrQtX2drnYZMz4BvmEk6M7xJJ%2BkzGtw49sMWDKyTmofY2XXPpNH6OVBrqzLFrtF3eCsQm9UZ3X4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830637a0fef456bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.97.1
139.45.197.250