| my.rtmark.net/gid.js?userId=2edc907bce439d5bcfff61960e6508b3 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=2edc907bce439d5bcfff61960e6508b3 IP139.45.195.8:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hash057790539d43e438854173fcbd41d003 25149c7230a1190dad7b1e4a0cfb499ff524566e edfbe99d20ae83849f170b038fc906ee8b1d195ea74a870c831db9913a67902c
GET /gid.js?userId=2edc907bce439d5bcfff61960e6508b3 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://laiptaustu.com/
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:00 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://laiptaustu.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2edc907bce439d5bcfff61960e6508b3; expires=Sat, 10 May 2025 06:59:00 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| laiptaustu.com/zone?&pub=0&zone_id=5294786&is_mobile=false&domain=laiptaustu.com&var=4188286&ymid=812149992390139904&var_3=18008407_7035539&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=5d53ffca-a586-4db9-8afa-486091afa6f0&action=prerequest | 172.67.221.229 | 200 OK | 0 B |
URL POST HTTP/3laiptaustu.com/zone?&pub=0&zone_id=5294786&is_mobile=false&domain=laiptaustu.com&var=4188286&ymid=812149992390139904&var_3=18008407_7035539&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=5d53ffca-a586-4db9-8afa-486091afa6f0&action=prerequest IP172.67.221.229:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /zone?&pub=0&zone_id=5294786&is_mobile=false&domain=laiptaustu.com&var=4188286&ymid=812149992390139904&var_3=18008407_7035539&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=5d53ffca-a586-4db9-8afa-486091afa6f0&action=prerequest HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad
Cookie: reverse=FVIS5mjYNzoWp3M7KCd9uYb7W3mH0ZKr7LH4sYx8MGc; OAID=2edc907bce439d5bcfff61960e6508b3; oaidts=1715324340
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-length: 0
x-trace-id: 4cb95a3f14249c06b7059d45e9df49c9
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZzPA2tr04n0oSqVB1YENJN6EfT9f%2BO00ee4PduydgPnQwGJgqnMqsYILUZrFig83pcYoT2BfjRf%2B40CZR69emkySLmqUxYMck4fUAgohu4ZTtSWUexdXDBoAtEwUoatiTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88180b4aa842569a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/stuff.svg | 172.67.10.98 | 200 OK | 27 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/stuff.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hash3ac6c4879b967fafc7cbfcd93d10a54c af2c408abe92af20885fda420acc7a11daddff01 380f72174b7cd161cb3cb8eff5f43aea17757445b6ccf4b67d007f96df30f07d
GET /apps/templates/_static/applab-test/video-android/public/images/stuff.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-13a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 2633
server: cloudflare
cf-ray: 88180b4ab9875695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 729
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:01 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 097e9545dcdb995d948ba3211623f391
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 732
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:01 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 14474497655e1f2e19a4a8f802909c49
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 731
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:01 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 73a0716a96a6ae6515a115793aab9703
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://laiptaustu.com/
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:01 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hash63d37be3dd791267bd923f2933485d4c 50925f55bf4eecb28ed579a71bc760ef70303559 436b64d0553679eb2c1c121cc76a49727a40f6fc37ec600986dcd7c43af28998
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://laiptaustu.com/
Content-Type: application/json
Content-Length: 1693
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:59:01 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://laiptaustu.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| laiptaustu.com/favicon.ico | 172.67.221.229 | 204 No Content | 0 B |
URL GET HTTP/3laiptaustu.com/favicon.ico IP172.67.221.229:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad
Cookie: reverse=2sTSt0dAqAvMr-fU1URuocPiCKlekt9bSpUZbCJjTdU; OAID=2edc907bce439d5bcfff61960e6508b3; oaidts=1715324340; syncedCookie=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 10 May 2024 06:59:01 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=86400
cf-cache-status: HIT
age: 551
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=73Yn0CDJ2B7b%2FgWqF9Xeue9xqVCiYN9z6p1FPkDvZ1lFtoo%2B4SQyOtcxnqwPl3Cr6X7Cs8RcMx50d1nhFxCqIrv5L5zjMp3gutrh6t8LzOJaUFfcQO01GEJaWcvCFa8qfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88180b4c3ae8569a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/volume.svg | 172.67.10.98 | 200 OK | 1.7 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/volume.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hash8de19ab2bdef77f533bb360eecac70c8 32cf9e378d91b806092397691b5a4e6cf09a4f92 036f04db80676f4734de8fa7884ef2e043d272fa42826046cff52cbd9b0d6c15
GET /apps/templates/_static/applab-test/video-android/public/images/volume.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-a0a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 5345
server: cloudflare
cf-ray: 88180b4ab98c5695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/fullscreen.svg | 172.67.10.98 | 200 OK | 6.6 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/fullscreen.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hashcb01813a77cbd3288ed94f7cd1d147b8 17efebeed4c4352f2fcb1288eb9cfff21f595461 ae51f817c40da3dc2ce44364232503ccd88e03ce7960bc318fd5256d7bb2f790
GET /apps/templates/_static/applab-test/video-android/public/images/fullscreen.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-161"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 3973
server: cloudflare
cf-ray: 88180b4ab98b5695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=vIH1WmyFEBL1yzchOGVbTmejupCyCmc08ehrvstaYKMbLdEkompXJ2ZtIFgpLdBH2eKg_SiCjS8siSsXmaUobWohkhUWMAbdOGywjHPD446mYXplMglYbhXOOtA_2ECg
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Fri, 10 May 2024 06:58:43 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 36
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad | 172.67.221.229 | 200 OK | 36 kB |
URL User Request GET HTTP/2laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad IP172.67.221.229:443
CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
File typeHTML document, ASCII text, with very long lines (1952), with CRLF, LF line terminators Hashae0ac1626690b97910e7dba407533fa5 5f35da6657f76d6647453b46be8c9b3fc8fa74d4 c44c57b5f3d7658f4c2fba65db75d6222863197d9b6feb79444c1ce697ccb1b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=FVIS5mjYNzoWp3M7KCd9uYb7W3mH0ZKr7LH4sYx8MGc; expires=Fri, 10-May-2024 07:59:00 GMT; Max-Age=3600; path=/
OAID=2edc907bce439d5bcfff61960e6508b3; expires=Sun, 17-Sep-2079 13:58:00 GMT; Max-Age=1746860340; path=/
oaidts=1715324340; expires=Sun, 17-Sep-2079 13:58:00 GMT; Max-Age=1746860340; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RH5J0yOV5KF7uTDQdRU8inUCjD4LHR4QILQvvGigfxZ0eSxB5kebgLkOslMY0p65Zcj5sqkHfh%2BcTvHicBwdDErEx0ld%2FWlnVBdnbUIkJPNfyT1K7W0PwNFg%2BGIIaao%2Fig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88180b45d91d569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/close.svg | 172.67.10.98 | 200 OK | 329 B |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/close.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hash57954fb935251ad2d02beb7d2f7b12c5 03b05f80da4047f3b0c11a9354f87d9e62b3bafd b2a4ed2c00d4ce1d8cf466d93c6686af79a6de407d10bc6ff4bb3cb45e6ae887
GET /apps/templates/_static/applab-test/video-android/public/images/close.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-149"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 4643
server: cloudflare
cf-ray: 88180b4ab97a5695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/like.svg | 172.67.10.98 | 200 OK | 1.1 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/like.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hash8c644045a979b4ea12cfd8f37ee6aca4 30974832e1830b60d1dab8cdc6724cd6f0ade65a a336aaecc6bd3025fbd8875773cf57cca104258cb9195d8ab6e06c64a7208503
GET /apps/templates/_static/applab-test/video-android/public/images/like.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-423"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 2024
server: cloudflare
cf-ray: 88180b4ab97d5695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/build/bundle.css | 172.67.10.98 | 200 OK | 4.0 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/build/bundle.css IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeASCII text, with very long lines (4037), with no line terminators Hash4853790c8ca62f89d913dd3598b4817f 75bfa28ec1c955e357d31d577fd85ca864448c3a a343acdf0d047b39ea5f956c4c5464bd5e27c12e73b39aef0053d322d0ea23af
GET /apps/templates/_static/applab-test/video-android/build/bundle.css HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: text/css
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-fc1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 1135
server: cloudflare
cf-ray: 88180b49a81e5695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/play.svg | 172.67.10.98 | 200 OK | 360 B |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/play.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hashe8785f9289492c7e5b7db6beb30e5b35 2306f435bc72886003be5520e0a49b7ac935cd33 3c5ae9f31f6d966ba53d5db275497e1fc4ba7fb373bff89059c9734e50ce7466
GET /apps/templates/_static/applab-test/video-android/public/images/play.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-168"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 4306
server: cloudflare
cf-ray: 88180b4ab9805695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| laiptaustu.com/sw-check-permissions/5294786?var=4188286&var_3=18008407_7035539&ymid=812149992390139904&uhd=1&zoneId=5294786 | 172.67.221.229 | 200 OK | 1.3 kB |
URL GET HTTP/3laiptaustu.com/sw-check-permissions/5294786?var=4188286&var_3=18008407_7035539&ymid=812149992390139904&uhd=1&zoneId=5294786 IP172.67.221.229:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
File typeASCII text, with very long lines (1418), with no line terminators Hashc486b8bf5007c5565337046af2313816 6adae85c4d6fae1aacd9e5bc6e2187eedb7ecba9 faa07659113b30451109113654977d94468667bad51446346f3dce6ce6aed91b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sw-check-permissions/5294786?var=4188286&var_3=18008407_7035539&ymid=812149992390139904&uhd=1&zoneId=5294786 HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad
Cookie: reverse=FVIS5mjYNzoWp3M7KCd9uYb7W3mH0ZKr7LH4sYx8MGc; OAID=2edc907bce439d5bcfff61960e6508b3; oaidts=1715324340; syncedCookie=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 06:59:01 GMT
content-type: application/javascript
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bxtuUN%2BaNlKKV0g4WBZHm5vcelsKZf4fMNmiSw9W%2BAmiSYiYbilWHrjetSjqOukb1RtqC8WLAUbX0XREiBTjx2UulVVsNhsIYgo7dzNpKSpXuGc2%2FHnkSYmZjlUAW6K9iA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88180b4b591c569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/build/bundle.js | 172.67.10.98 | 200 OK | 9.5 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/build/bundle.js IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (9733), with no line terminators Hashace0a7dba3e441772ec9de412ae00a42 6a75fa610ac03836f1c179e7e202a3db33229b4b 451793ba375c8fdd49a151233801b310bc34c75ab772e50d3291c3d1767ae899
GET /apps/templates/_static/applab-test/video-android/build/bundle.js HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-251d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 5816
server: cloudflare
cf-ray: 88180b49a8135695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/footer-play.svg | 172.67.10.98 | 200 OK | 321 B |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/footer-play.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hash5bb7e706a4ba7c3440030bd5fee71d60 a56c0af3eb064c5672fe96cb83141a141fb26736 4cd57e45701d80f9aeb86c619f15d49c8fa8a4e1b1d736c2d605b5419b94a704
GET /apps/templates/_static/applab-test/video-android/public/images/footer-play.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-141"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 4643
server: cloudflare
cf-ray: 88180b4ab9835695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/settings.svg | 172.67.10.98 | 200 OK | 2.0 kB |
URL GET HTTP/2littlecdn.com/apps/templates/_static/applab-test/video-android/public/images/settings.svg IP172.67.10.98:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerLet's Encrypt Subjectlittlecdn.com FingerprintFF:86:21:24:8E:21:B3:E4:6D:43:EF:9E:9E:F0:C2:37:3D:27:04:67 ValidityThu, 09 May 2024 02:26:29 GMT - Wed, 07 Aug 2024 02:26:28 GMT
File typeSVG Scalable Vector Graphics image Hashdc1c620a999c0c7c7dbe01038d1f0325 053c44fc33333e8331953d6e36d3435311bda003 c50c4d152e2a5e4f2020a7487f96277c9c349469e96683f0d72e6501c7453e1e
GET /apps/templates/_static/applab-test/video-android/public/images/settings.svg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: image/svg+xml
last-modified: Wed, 08 May 2024 13:30:45 GMT
vary: Accept-Encoding
etag: W/"663b7e85-7f5"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 5345
server: cloudflare
cf-ray: 88180b4ab9855695-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad&mprtr=1&os_version=x86.64 | 172.67.221.229 | 200 OK | 36 kB |
URL POST HTTP/3laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad&mprtr=1&os_version=x86.64 IP172.67.221.229:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
File typeHTML document, ASCII text, with very long lines (1952), with CRLF, LF line terminators Hash24c4f07ebd91f43adab68fe26c5b2ea0 eb140547269b5e483adbfe29c05cdd6f6303cd63 ebce7cb67b10918cb74b25416439714ccc61df61e1824307ee6fc24c0d11c905
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad&mprtr=1&os_version=x86.64 HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://laiptaustu.com
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad
Cookie: reverse=FVIS5mjYNzoWp3M7KCd9uYb7W3mH0ZKr7LH4sYx8MGc; OAID=2edc907bce439d5bcfff61960e6508b3; oaidts=1715324340; syncedCookie=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 10 May 2024 06:59:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=2sTSt0dAqAvMr-fU1URuocPiCKlekt9bSpUZbCJjTdU; expires=Fri, 10-May-2024 07:59:00 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sN8lzwtRfvPJ3Axo2A7%2BC92jUQxZ%2BJn8Qo6wcRK6zwGqWLO3cqlromfUtmArc4De%2Bw1TpJwQW7FgJB19Y3wcB4MoKvx7A88qHyqbrVMcfgdMrHEQTWMZJcnUNvz4Ty%2FEBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88180b4ac86e569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| laiptaustu.com/pfe/current/micro.tag.min.js?z=5294786&ymid=812149992390139904&var=4188286&sw=/sw-check-permissions/5294786&uhd=1&var_3=18008407_7035539&os_version=x86.64 | 172.67.221.229 | 200 OK | 37 kB |
URL GET HTTP/3laiptaustu.com/pfe/current/micro.tag.min.js?z=5294786&ymid=812149992390139904&var=4188286&sw=/sw-check-permissions/5294786&uhd=1&var_3=18008407_7035539&os_version=x86.64 IP172.67.221.229:443
Requested byhttps://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad CertificateIssuerGoogle Trust Services LLC Subjectlaiptaustu.com FingerprintE4:EF:2F:CC:23:B4:41:73:0D:F2:25:06:30:5D:40:A0:2C:CA:32:62 ValiditySat, 27 Apr 2024 23:24:22 GMT - Fri, 26 Jul 2024 23:24:21 GMT
File typeJavaScript source, ASCII text, with very long lines (37142), with no line terminators Hash32d6dbd00a639e2cd10d1704b9159bd5 0dab4c95675393f1d0e13d20f13d80ee12e41d95 9f339e5efd7c959419a4e86bb4c5e9f07eae2ed839484846157be981917743de
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pfe/current/micro.tag.min.js?z=5294786&ymid=812149992390139904&var=4188286&sw=/sw-check-permissions/5294786&uhd=1&var_3=18008407_7035539&os_version=x86.64 HTTP/1.1
Host: laiptaustu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://laiptaustu.com/?autoexitTime=50&b=18008407&ba=1&browser=firefox&campid=7035539&did=930&dm=0&ep=1&g=BY&i18db=1&l=rhjPKOVGf0aITWN&oaid=2edc907bce439d5bcfff61960e6508b3&retrySubscriptionRequest=1&s=812149992390139904&ssk=f131794b12e0c010d619b3e8c1d6e62f&subdomen=1&svar=1715195165&ttb1=5939121&var=V9ZnomsbDN&vi=1&vo=1&z=4188286&tr=default&browser=firefox&os=android&osversion=android14&stest=ed51bc864f259144386f78a9765784ad
Cookie: reverse=FVIS5mjYNzoWp3M7KCd9uYb7W3mH0ZKr7LH4sYx8MGc; OAID=2edc907bce439d5bcfff61960e6508b3; oaidts=1715324340
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 06:59:00 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:49:22 GMT
vary: Accept-Encoding
etag: W/"662a3532-9116"
access-control-allow-credentials: true
cache-control: max-age=86400
pragma: no-cache
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NiIxwcUszzPMjlHg03PmQC6wHt%2FkePa8JE85LYuy0Z%2BRThiU9jCcmojQ%2BhuqJkfQ59AdkbMPymxh%2FHVR7biqX7gYjwYrZyY7QIsFUNjoQr%2Bnh0ZJm91EhHVxaUgp1n4LQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88180b48fdfe569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|