Report - zlibrary.unblocked.love/book/2708361/d4ef2e

Report Overview

Submitted URL
zlibrary.unblocked.love/book/2708361/d4ef2e
IP
104.21.234.171
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-11 06:30:22
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
90

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	12 kB	23.33.119.27
glimtors.net	168336	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.2 kB	71 kB	139.45.197.251
covers.zlibcdn2.com	116397	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	446 B	10 kB	78.46.184.63
matomo.hellohi.me	545402	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	26 kB	172.67.219.82
deemsoil.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	306 B	14 kB	192.243.59.12
creepingbrings.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	274 B	24 kB	104.21.234.232
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	1.0 kB	143.204.42.158
unphionetor.com	54035	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	771 B	3.6 kB	139.45.197.236
skipdearbeautify.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	9.5 kB	192.243.59.12
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	690 B	1.9 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
counter.yadro.ru	7275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	467 B	345 B	88.212.201.198
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	656 B	1.9 kB	104.18.32.68
rndskittytor.com	31865	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	145 kB	139.45.197.238
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	347 B	1.4 kB	104.18.21.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.162.203.49
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	30 kB	34.120.237.76
cdn.yourwebbars.com	62037	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	462 B	743 B	104.26.7.19
zlibrary.unblocked.love	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	839 kB	104.21.234.171
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
a-waiting.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	84 kB	104.21.41.138
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	50 kB	142.250.74.163
mc.yandex.ru	2672	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	75 kB	93.158.134.119
unseenreport.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	608 B	423 B	192.243.59.13
i.imgur.com	5110	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	2.1 kB	151.101.84.193
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
toshelmeton.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.0 kB	34 kB	139.45.197.239
dozubatan.com	33479	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	78 kB	139.45.197.237
ecma.sidebyz.com	775739	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	946 B	104.21.16.97
interstitial-07.com	36198	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	46 kB	139.45.197.153
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.6 kB	95.101.11.115
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	963 B	1.5 kB	139.45.195.8
cdn.sb4you1.com	22321	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	87 kB	172.67.183.56
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
offerimage.com	304078	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	66 kB	104.22.32.172
inpagepush.com	78279	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	35 kB	139.45.197.237
simplewebanalysis.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	415 B	52.59.153.168
cdn.itskiddoan.club	24539	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	45 kB	139.45.197.236
tzegilo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	13 kB	104.21.22.169
metrica-yandex.com	783336	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	791 B	172.67.193.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-11	medium	glimtors.net/ntfc.php?p=2651991	Malware
2022-09-11	medium	glimtors.net/ntfc.php?p=2651991	Malware
2022-09-11	medium	inpagepush.com/400/3064505	Malware
2022-09-11	medium	glimtors.net/ntfc.php?p=2651991	Malware
2022-09-11	medium	glimtors.net/custom	Malware
2022-09-11	medium	glimtors.net/custom	Malware
2022-09-11	medium	glimtors.net/custom	Malware
2022-09-11	medium	glimtors.net/custom	Malware
2022-09-11	medium	glimtors.net/pfe/current/defaultSkin.min.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	deemsoil.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-10	medium	rndskittytor.com	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-10	medium	rndskittytor.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-10	medium	unphionetor.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed
2022-09-10	medium	unphionetor.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	unseenreport.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	skipdearbeautify.com	Sinkholed
2022-09-10	medium	rndskittytor.com	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-10	medium	rndskittytor.com	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	toshelmeton.com	Sinkholed
2022-09-11	medium	glimtors.net	Sinkholed

JavaScript (58)

	URL	Size	First Seen	Last Seen
	matomo.hellohi.me/matomo.js	64 kB	2023-03-07	2024-04-11
Pretty URL matomo.hellohi.me/matomo.js IP 172.67.219.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:20 Last Seen2024-04-11 15:28:16 Times Seen1085 Hash e9e9d0884aaa3aa73208190831ad132e af8e8910de429e3648ceed380aa8bb091029e26b 5ae1f50302b0902aac44e88dc58c734bd3475ed4e93718dbc8888dc8fd6c0142 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	235 B	2023-03-07	2023-10-18
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2023-10-18 04:36:21 Times Seen309 Hash 87dba10490b28f9824305136b63b9726 67e4fa4e4ecbe8a82d4316ecf4890ef6cab44f3c 5035909a4872529da86acdbcd7bc6620a7cd8ae924c422462af73d78929c60ad Loading...

	metrica-yandex.com/metrika/tag.js?1001	60 kB	2023-03-07	2024-03-03
Pretty URL metrica-yandex.com/metrika/tag.js?1001 IP 172.67.193.32 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 16:30:06 Times Seen598 Hash ea67b2343fc359662afdae5d4c8c8e03 7f07219a8cd9d6d5c17e20bd7e80fac0281c2b18 5e31460a6eacabdc5895ad2ad898a4a570ac88f2794c61ddce6b0beee304eb11 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	818 B	2023-03-07	2024-02-03
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-02-03 21:15:52 Times Seen46 Hash ba2ab27ec3227dffe7def851bc41a198 85d24c244bc0f9313d02499b0303d93fd9d09ed4 1da70afe05f4ecfb846688e8772f6f90fc77b44653751e0fb893129b2b5cf1ad Loading...

	zlibrary.unblocked.love/resources/ext/select2/select2.min.js?0.458	72 kB	2023-03-07	2024-04-02
Pretty URL zlibrary.unblocked.love/resources/ext/select2/select2.min.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2024-04-02 15:57:48 Times Seen80 Hash 458e16b8c8afc15a6a78aea673c68d0e 9ebaa1193adff3025cdaff7c9a65c48aed4a22a0 5130a11b61a3fb716095a704c858023aa4169e84e2027c0fdd31d756271bcd09 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	60 kB	2023-03-07	2023-10-14
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2023-10-14 21:21:50 Times Seen55 Hash 1e99586b1da43ea72174991d85c20317 256ab4ff25b9e1dd9b2fb3dca97f44e115fd2348 167ab11af625b4491a1a62d102bc48377e4dfdb0f141ce5faa1b95d195560910 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	60 kB	2023-03-07	2023-10-18
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2023-10-18 04:36:21 Times Seen304 Hash e7e3a9a7b9e32abfaad8ca6818ff21aa 1d2936eff80f6cce750f71154a897f50a4abb562 492c68a4ac8f3684dfb89aaa72f53a257d79b2685e72c1555e78c741340fa6eb Loading...

	zlibrary.unblocked.love/resources/ext/flickity/flickity.min.js?0.458	58 kB	2023-03-07	2024-04-18
Pretty URL zlibrary.unblocked.love/resources/ext/flickity/flickity.min.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2024-04-18 10:29:51 Times Seen1327 Hash 0a54e842e3e395e6b9fcf6893283a105 e96d27e9c036db495b6fe00cfc8a0371d7aadd74 472c7748607b5b76986bb54ffe3fe79ea954f61705aabd2a0fa80d13b2eee46b Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	104 B	2023-03-07	2023-11-14
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2023-11-14 10:24:55 Times Seen23 Hash 41ca384fb2e92d27402e96aa56af529a 4d78b8237962077a09e0c2434cd24b262bffc1f2 9f0873a65ed03a9ef56f7f0753debd2cfca9f009784b7f3839626d7bab910236 Loading...

	ecma.sidebyz.com/j/m/w2.js.php	498 B	2023-03-07	2023-03-17
Pretty URL ecma.sidebyz.com/j/m/w2.js.php IP 104.21.16.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-17 11:28:00 Times Seen1 Hash 0f4165302f511faa68e21d2da5a63997 596cb9c7641d9886783fa311e05a00dbc62ca919 a75ac9079de0b8cc5580c22eb7cc6ca3795ca325f31a0166abc7f15d742acadb Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	104 kB	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:56:19 Last Seen2023-03-17 11:42:01 Times Seen1 Hash 7490898c0f490720a0c78dfc9ba92b45 079a6dee4b0a234194ec1efb256d48f29a98cb30 6fdc6b3c308eb3057e6c2e8481a66960e145163d6375b37d00e75be68ea50497 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	1.9 kB	2023-03-07	2023-03-08
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-08 07:34:46 Times Seen1 Hash d3e5ad3bc9cea4c785a7ac8636ef6620 1bedc0cf9bf3c2461fd68cad65207efb37b7c381 57cb6f4c90ba750c489add5e708d9347fe5df93ca74a7e25e8e9d626ee3db590 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	443 B	2023-03-07	2024-02-03
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-02-03 21:15:52 Times Seen44 Hash 59d63ab52b6e6f5ea6561136ee186a8b 617ec23fef3913be440635d28e2f37adedf50e35 e3d2e465f6376188d67e0584b4b0601d70e0308405368e22b3f6685f46b0250a Loading...

	toshelmeton.com/27/55dfd372293146a7ca113106d0d608dd	407 kB	2023-03-07	2023-03-17
Pretty URL toshelmeton.com/27/55dfd372293146a7ca113106d0d608dd IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:21:35 Last Seen2023-03-17 11:41:59 Times Seen1 Hash a15d23895013cd64c6054c8b0314689e 37f20d7ed84d124ef96051ed2b81ae1a33301af0 486b616ccd0babad56e248fd916494ff1d054fe42284ad1c749b6d786a1e9066 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	15 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash 027c5bbfe97b539a72a8a4dacc1b1d7e 6a88f1a4f0a86a49ba5b636994dcf5ab66925899 a0cff8bae228acf712989b619e085e4b08bc25e5bd18db98375ddcd792f0f896 Loading...

	zlibrary.unblocked.love/app/x12.js	11 kB	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/app/x12.js IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen632 Hash 94efa3c05291ac5cccd32cc3a11c9724 3a033e4d6f5e5eaf76030a81c8a05c619de436c2 58c753f7ffcb584d2ed43470ec9bdd30a4cd4723f368d83de6163413d5555102 Loading...

	inpagepush.com/400/3064505	82 kB	2023-03-07	2023-03-07
Pretty URL inpagepush.com/400/3064505 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash 5510e28b983aa457314ffb45bd30b39d 44f80eaea2c9f61534e19906daf32ba37f710292 8c12c6f8687f17c2c66608f72b5809c57efbd2a335298e178dfd4a4676915124 Loading...

	unphionetor.com/fv.js?t=72747&cb=857469063	5.2 kB	2023-03-07	2024-04-19
Pretty URL unphionetor.com/fv.js?t=72747&cb=857469063 IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 12:42:09 Times Seen2354 Hash 563d777535ce88943a94a6be86f378c8 8753745424d367275e3fe55a5661fe51b1e1fb72 0f467a48a494f7f63968707dc43785b728d0c17f93c12937c1e5b12798f3a98a Loading...

	interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	1.6 kB	2023-03-07	2023-03-07
Pretty URL interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.153 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash bb27388c84407d8656ebca4eea797c2e b3e0bd5b9feda51c7b103a0abd04b660db64b227 727b738deeea58dd32d01f6f6be3a4ce98f53d183162edc8e6d37c085d24fa02 Loading...

	zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.min.js?0.458	10 kB	2023-03-07	2023-03-08
Pretty URL zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.min.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-08 07:34:46 Times Seen1 Hash 53f3fd0c4a932da99814655237a058da 8ad2d77dbb196183b79b6157cb8257994990f766 9a7a1d6828149a71514779fe0b7eff439b83ce190464eb7e14c62536b92506c9 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	739 B	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 11:41:01 Times Seen1 Hash ed017390d588a9a0e997303a886f233a 70464a82c346daf815c3d3af1076cb494d24682c 3c884284e2e55dcc199208ec83e6ed8c6507b5a531b11f20d29513820c085626 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	449 B	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:11 Times Seen350 Hash 8ec4ea2cc07fb4298dd793cbc67d3755 04c34c92ef5baad58af7c56b728d4a84c55f7185 9a0e8ee9789c9f554b318f332bf0d2c61f85cdcf33afc1228b6f94181f841b1d Loading...

	tzegilo.com/stattag.js	33 kB	2023-03-07	2023-03-17
Pretty URL tzegilo.com/stattag.js IP 104.21.22.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:21 Last Seen2023-03-17 12:47:57 Times Seen1 Hash df875929410d71d763e9fa10b830bb2a b0711a8d2bf6ad4ffa4640534588b423f2ef7fec 0be796b658c6cee0d55aa164994d0d83f9ec7aa7ecf1eb41c1ddf208bba9e3b1 Loading...

	http:blank	716 B	2023-03-07	2023-03-29
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-29 20:55:36 Times Seen8 Hash 164dc2e431c37531e4026befe6f09a4a a7b274cbe8b975ccd7a2f12f63a2bc00daf5122a b06dc2270f5714d735d26269d90b44fe7f77f6363b68b96ad05b2eade1367612 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	26 B	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 16:30:06 Times Seen577 Hash 5779365b0a28c08298ca5847c65b769d 3076ad9e094690cd6c4ee200ae254e6e7260fd30 57c620405714b8baa51067e0ca9bc9a9b252985292b857360aec8a9936688709 Loading...

	dozubatan.com/400/4495524	82 kB	2023-03-07	2023-03-17
Pretty URL dozubatan.com/400/4495524 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-17 11:27:59 Times Seen1 Hash 340da22e61fa48c4056c604bac470744 60e873d26f1c7c610b621ad9b8d2f458e800356b 101293c5a5ce46c4aa3e0a64376680cba9192e94af7360b22b5af8c14c550a6d Loading...

	cdn.itskiddoan.club/apu.php?zoneid=3388548	62 kB	2023-03-07	2023-03-07
Pretty URL cdn.itskiddoan.club/apu.php?zoneid=3388548 IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash 256a2c5c489ea51de251b1719b952f6c 7bedf03ea9a2af2e98efd60599664f8e8abbdbb4 c6c18ab76a5cff32502df903b9aabf77397c660e9dc267c035b273a38effc772 Loading...

	zlibrary.unblocked.love/hy.js?q22q2q2	56 kB	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/hy.js?q22q2q2 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen622 Hash 667d77da844b6d5ad62b2f26e77b4b12 01ae61192a38af73a93c67468fb8271d7bbfa4f6 f240ce7fa62cd81d92f29081815f2cd2376ea6867887d17d5625009ebdf355b1 Loading...

	a-waiting.com/j/m/qqqq.js	48 kB	2023-03-07	2024-03-03
Pretty URL a-waiting.com/j/m/qqqq.js IP 104.21.41.138 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen627 Hash febd5bfc829d7c8aa363e93e2e61f414 10d66213a9249bea47b15acf295323f01d217ef0 ff391f38fc73325f58d0626b9415ac121f1461407d74e86ebddefd8180050d76 Loading...

	deemsoil.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js	37 kB	2023-03-07	2023-03-07
Pretty URL deemsoil.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash d716e1f1174a244e351cbe217525b3e4 96ad08764e49437e3ef7830a11115bf3527e1f97 8fd97822c2efad909dd158b6fe3e783faecc9a5469ae2e9c0c525e87cbd3dbfe Loading...

	toshelmeton.com/5/2632704	62 kB	2023-03-07	2023-03-07
Pretty URL toshelmeton.com/5/2632704 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash 92efcb9cb1a9494df2514b30f0cfb5d3 6df2303d9f635101c41b2ddafd0e77903c9bc13b b33c7fe4d255c29655c97c41a9a57daced8a06f96b7dcf2d3826ba9e027ce2b2 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	62 kB	2023-03-07	2023-08-30
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2023-08-30 14:22:16 Times Seen50 Hash a916c368cfa937dbba84ca05b94113a3 1a1793954a188454c5eaeefdb3e0944a3765d24a ebb08448d3ea41eb1c3ad8c617cd38dd34588a9c8d887be6428921933af0780c Loading...

	glimtors.net/ntfc.php?p=2651991	15 kB	2023-03-07	2023-03-17
Pretty URL glimtors.net/ntfc.php?p=2651991 IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:11 Last Seen2023-03-17 11:31:41 Times Seen1 Hash 1a448cd06dfc1f04e0c583660c63e2c6 d8a569ac7d2163e2d588cfa1e2c6726f39beaeee e1783b83e3779572e7d8b488decf2b0dfdd25cc3c749141256c0c8211c8b4e3f Loading...

	zlibrary.unblocked.love/resources/js/pages/book-details.js?0.458	27 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/resources/js/pages/book-details.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash db78a00e257c3ab56b6d0d20fe6a37ea 60ae089dd278de3301da6747d1b99484680ff126 014c785cafad4f2904673d944c5dd7152fb0c5dfacb51692696189581e7f250e Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	285 B	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 11:41:01 Times Seen1 Hash 682dc4f3d9c42e42fddb4b3fefaed4b0 4199ddc0fb88006e6f7487d4168206226302e777 58729d593e699032334e82277b7b6334f7c891968961f698f64c687d7132ead9 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	1.6 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash b784b29024739033cf88c052e047fdca 3542015834d7316722b0f6b1e33a8890ec4b2e87 86585b65d7451dbcad9846b91a6ce91002e5317476ee886d07521d8c0dceb959 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	450 B	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-17 11:28:00 Times Seen1 Hash b8decac3bb308dbd2fde1ee8ea42a987 c5192b3c17a6ca51b84800cc7bd83419e06d8252 fcd484bf5dd7a79e5ed267d16dbd1ee7ff67bfe89fc70613077a2074ee7d9db5 Loading...

	zlibrary.unblocked.love/resources/ext/typeahead.js?0.458	12 kB	2023-03-07	2024-01-07
Pretty URL zlibrary.unblocked.love/resources/ext/typeahead.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-01-07 18:51:02 Times Seen77 Hash 1103b8a37a6fc5bba3714a70c9cb898c 6fb3fa38b43c41b90859d3f532d47bf4931e57ac 2b8e5ba8631cee83a4220e16e8fcc65d6da33e87bc39ef3629a23b1746c1fd23 Loading...

	zlibrary.unblocked.love/resources/js/custom_elements/z-readlist-card.js?0.458	18 kB	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/resources/js/custom_elements/z-readlist-card.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 11:40:59 Times Seen1 Hash 626bd800c97193688f8407b61a661efb ae5b9cea383e373e4fde48dbd47325062292ec53 e59a3303518a1ecae51e1f6f48165b66fb78b4f74af749d366ad8b01d59c340f Loading...

	mc.yandex.ru/metrika/tag.js	211 kB	2023-03-07	2023-03-17
Pretty URL mc.yandex.ru/metrika/tag.js IP 93.158.134.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:15 Last Seen2023-03-17 11:41:37 Times Seen1 Hash edee098e47e8168e31eb8689ad6b9cec b043258b73e2d89c0104ebed2ca8cad4bfe732d7 6760b266bef4409ce02ecdbb4f9e82fcd7ad8f249efa475558e88cfdd7d9e91e Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 01:16:02 Times Seen36969170 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	zlibrary.unblocked.love/zpp/zpp4.js?q22q2q2	39 kB	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/zpp/zpp4.js?q22q2q2 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen620 Hash 7dc63553536847077855df4f82f1ec18 146c3aac34cb4e7e1e9c692ccd0161b2e4f018de 3a18b1964d1d209c46d754459b9ef98d4a9a85065e245f8311be727ffee3f960 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	14 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash e3dbaaeaa3af0f0478517dafcd948bab 48bbf86914fd0d6ae790b3287f8a457854ed64af f9e8a06f2c41848a0d654f8a15030058b15f10f18f1ab84b00aabc29a53f8874 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	174 B	2023-03-07	2023-08-30
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2023-08-30 14:22:16 Times Seen59 Hash 5facb732582c039b4b6c378a77fea0b9 5070e9d4ca9724b4a9d8fbc8689c16931baea406 3c7b0cce3d116ce0591a9e56bb2212fe70b55c3701fe249cfb3ada96007f2124 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	26 kB	2023-03-07	2024-04-18
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:51 Last Seen2024-04-18 23:07:05 Times Seen2061 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	zlibrary.unblocked.love/resources/js/components/z-booklists-carousel.js?0.458	3.6 kB	2023-03-07	2023-11-14
Pretty URL zlibrary.unblocked.love/resources/js/components/z-booklists-carousel.js?0.458 IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-11-14 10:24:55 Times Seen27 Hash 3261258017931b3e559da5cc14fdd24c f4a2d4677f4d5ddabfaf997f89e2c7f555af8385 89bf49e3cc81b14d8228ee54e79e9211e39ef3d1a35f91e3d75487d0053eed20 Loading...

	zlibrary.unblocked.love/resources/ext/freewall.js	46 kB	2023-03-07	2024-02-03
Pretty URL zlibrary.unblocked.love/resources/ext/freewall.js IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-02-03 21:15:53 Times Seen63 Hash 821914f5f8d27bcbd4542cdb46230a5d d8d051bcf98202fce022ae09b13397552d62204c 5c55adbf1e9c85ae157c1413098fe33ee97f9159f89ed83315f40a739546b032 Loading...

	toshelmeton.com/5/2632704	62 kB	2023-03-07	2023-03-07
Pretty URL toshelmeton.com/5/2632704 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash fcbacde02846d27fdf73d023963af1e4 c3994f19c32d2fa4d3a8083edc54453fdefbadd3 5c68f71326f20f71752247abfa93fc0787c44e266d88c68f3700ff5a4f002aef Loading...

	zlibrary.unblocked.love/helper-js/	2.6 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/helper-js/ IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash d6daf792b493319c7c5e31bbd7f08f72 7037bffe8e8029f6ec38c387582af89fc00f60d6 5d277d1f444ab9aae0fc7653eeb88ef55b8aff113156045e7adcd2d6cd87a2f2 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	875 B	2023-03-07	2023-03-17
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 11:40:59 Times Seen1 Hash b39aa8cf4af1a5fd7e9ce4ab6478a57d 1dc93583320bf44e12a842839376d74b0e5736fd 2fe8dcd7ef01e0f236a49fc9978b9688b9c5204eb54b7c2d8ff80ce53909bcbe Loading...

	toshelmeton.com/1?z=3372123	8.7 kB	2023-03-07	2023-03-07
Pretty URL toshelmeton.com/1?z=3372123 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash bba2126e57cd409b847a7e44f8c9d68e 737ea60b51e78c7041b10ea413b4b3428afedfab 3ea3073e8e6b36f30de1618995feb987fd709652e944e77caf161451a392f461 Loading...

	rndskittytor.com/400/4837723	80 kB	2023-03-07	2023-03-17
Pretty URL rndskittytor.com/400/4837723 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-17 11:31:41 Times Seen1 Hash 40bcb8b9cfc3702b0ecd12478a67078c 49a684bfbc6a41c7b56bbc23cfa8f428553fb4a3 cb20369899fbf3ee7059c286c4f75e66e3abe8b8f5f0ba2dc12ccead5991836d Loading...

	zlibrary.unblocked.love/app/apx14.js	7.7 kB	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/app/apx14.js IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen735 Hash dfb1f327618e201778f2de85cfbcd173 fceb89a2221463e5bc5a71feff1247683ab08cc5 dc03bc8b63938916a73dd976e186d05559ddc61da2725e1063b7936fa9f0fc33 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	258 B	2023-03-07	2024-02-03
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2024-02-03 21:15:52 Times Seen44 Hash ab41b75c56ece5128748838253d50017 5f023ef21b44f8aa4711ce2d781e518cf1cb958c 74cedcb8b6d7a638f5396a120fcfe3a70b611fd05e5ce07a633ca499212440f1 Loading...

	zlibrary.unblocked.love/app/apx19.js	9.2 kB	2023-03-07	2024-03-03
Pretty URL zlibrary.unblocked.love/app/apx19.js IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-03-03 18:39:12 Times Seen734 Hash 2344c3f05f624d595f6fb920e4d74ded eb4d1404ac2d5eecd307f4588aeeab5c8ef463f1 3a28fe59e4a2af96d8edeeb12d7040c574cf71fa88fccb5cf49e9c0a1d4e4c7a Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	1.8 kB	2023-03-07	2023-03-07
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-07 14:38:52 Times Seen1 Hash 2f757dece1345199183e3c32f37c5203 e6aa2c3e8176363247862d1a110d67fa67059a3c 029323bd1d5a5facd9011287745ba8845024e9e3b9ce1450d06a26b6657880b8 Loading...

	zlibrary.unblocked.love/book/2708361/d4ef2e	551 B	2023-03-07	2024-02-25
Pretty URL zlibrary.unblocked.love/book/2708361/d4ef2e IP 104.21.234.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:02 Last Seen2024-02-25 03:50:55 Times Seen158 Hash c77f61f494d753fdd27ca2a5c85e02ca 27a4439eec99d4d77097e07df13368faa4788f95 fbef82aa2dafe628305be70ad2dd9561b17a52c0fd4612b4ca016e8524e514d6 Loading...

		Size	First Seen	Last Seen
	#1 Write - a3d35308bba850a57bc358a4c9c7733e	51 kB	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 14:38:52 Last Seen2023-03-08 07:34:46 Times Seen1 Hash a3d35308bba850a57bc358a4c9c7733e 9f40ab3842c32027f331dd02516ac9ba20823ac8 f7f7032d89db6d123b826aa09ec02a3a360690bba42101c92966f3671a651e52 Loading...

HTTP Transactions (151)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 06:07:22 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kW9LmYMbViIwA2GDmdxDepFhXp1RwsvtmxaKP7Q3mS8TSZImHgJTIQ==
Age: 1368

zlibrary.unblocked.love/book/2708361/d4ef2e

104.21.234.171

200 OK

302 kB

URL HTTP/1.1
zlibrary.unblocked.love/book/2708361/d4ef2e
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (60411), with CRLF, LF line terminators
Size
302 kB (302265 bytes)
Hash
0c909d410feb5dd91258d2d164d05294
c3a8ad6464bdd0b34a05d471c60e654e1bbc1a7e
e52a29f611e8659429ace1da887c222e6f059e51b6360b35b569804f3375a5c9

HTTP Headers

GET /book/2708361/d4ef2e HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=73geu6ygmja%2Bgjk85rIKHV0jEUtIL4xTsUJtczpb%2FMjO98EsdDifeh7vXZKd%2F41YToo0DDIhRh7Z9noMn9MIbtfcbbMxx1qPgtFx2Wev9O3efuYwRyhz%2FNpDoeNB%2F5iSPuSeoXvbaiGUZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748e5a6aae417697-LHR
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16162
Expires: Sun, 11 Sep 2022 10:59:32 GMT
Date: Sun, 11 Sep 2022 06:30:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6TRxui-j2fuHnY2aLPoKhBVrw3vBZqhvj91U-ShC-74oRoTLZIlWwQ==
age: 83578
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

glimtors.net/ntfc.php?p=2651991

139.45.197.251

200 OK

6.0 kB

URL HTTP/1.1
glimtors.net/ntfc.php?p=2651991
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
C source, ASCII text, with very long lines (14626), with no line terminators
Size
6.0 kB (6011 bytes)
Hash
507383d84d7e2836b416a5529569fe9d
00a067058e50b8a92a82456df5bf8d751bff4b48
5007243c6dde57e0ee74f5e005485df354f2263d36a93a463014b6a6f9d9bf52

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /ntfc.php?p=2651991 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 05 Sep 2022 12:32:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6315ec69-3922"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip

glimtors.net/ntfc.php?p=2651991

139.45.197.251

304 Not Modified

0 B

URL HTTP/1.1
glimtors.net/ntfc.php?p=2651991
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /ntfc.php?p=2651991 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
If-Modified-Since: Mon, 05 Sep 2022 12:32:41 GMT
If-None-Match: W/"6315ec69-3922"

HTTP/1.1 304 Not Modified
Server: nginx
Date: Sun, 11 Sep 2022 06:30:11 GMT
Last-Modified: Mon, 05 Sep 2022 12:32:41 GMT
Connection: keep-alive
ETag: "6315ec69-3922"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache

zlibrary.unblocked.love/resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.css?0.458

104.21.234.171

200 OK

466 B

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
466 B (466 bytes)
Hash
d81d8123760e8a8f224a8dd1dde529ec
48a3790b0a4ec0193c51fa58cbcfd55fe92b564e
54fbf82a70d7abce38b7c920db793c33a55af39f87761535ae95570bebe11daa

HTTP Headers

GET /resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1952
Last-Modified: Sun, 11 Sep 2022 05:57:39 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=goVyLIjB%2FUdZLcpxqBauMLI3kbFTwoHI%2Bib66SRp0L%2Bkm0W7xI55ExPG0dkOMeErPnClP3dhzSo5UAUjoKOJmpEoa5Fk06ZuismHTK7KwGNYde2iOU6XOc78wAQQbWCVlT%2FKu9Bif%2F0fwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f2a6076d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.css?0.458

104.21.234.171

200 OK

925 B

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
925 B (925 bytes)
Hash
e312a2c17377c85ef239b508bf7344d8
9f5460a81b413e518d1ae9ab8ad4f9124aa716f6
e5f20e860116e5bb91d72f4e7c2fe910c5cf56c4ae80133c0a61ea7f7b1189f1

HTTP Headers

GET /resources/ext/lightbox/jquery.lightbox-0.5.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1828
Last-Modified: Sun, 11 Sep 2022 05:59:43 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CFJOlosH3y09gT3tEdrGOQYsdRsy4EgQf6pI7%2F%2FgZXYCwRlgP8pD5ifDodpprVxFN4fgoy05mnZF0Hov9J%2FXKEh3BTuABtBMgdpi8c5X2O%2B01c%2FLnd3ysQW7VhENQXEMMI%2F470Z3Rlezxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f2851e618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/select2/select2.min.css?0.458

104.21.234.171

200 OK

2.0 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/select2/select2.min.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (15822)
Size
2.0 kB (2032 bytes)
Hash
c97fcb3184885299b6bc4f10e842b9ae
27374e9a9fa7f94215ad20fdbba57ef3e8c4cbb6
b0b19e7161a8d98d5528ccb1a7ff6a4ab0a3f5c2e2eb541ceab904b9da72ee77

HTTP Headers

GET /resources/ext/select2/select2.min.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1952
Last-Modified: Sun, 11 Sep 2022 05:57:39 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5D%2BTwBJj4g1Eh4NDeS70Qv5HuSpNe6dOVDGDWHXhj42DLBUX3b626eYr112iJUa0k8PqSN%2FaB%2F5IDYqiJq0Qm6sx9NNn8cDy%2F7AIWnwQcYmBwAzJmwP6bEzKTJMQfMsh%2FdSq28QbEJJoxw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f2d6876e9-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/build/global.css?0.458

104.21.234.171

200 OK

54 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/build/global.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
54 kB (53713 bytes)
Hash
6413a2656f9e428ece71ecad72e05e06
4782ec4f3ec671aef4784895a8133a176dbed884
0bcbbdc22384d28ec47d72ed41deb2a11b7cb256c71dd4ee850aea326fb1eb92

HTTP Headers

GET /resources/build/global.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1120
Last-Modified: Sun, 11 Sep 2022 06:11:31 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1gZoGRSl%2FaK9xVffTKlZRs%2Fl6fDiLOnumYYohoNd8%2FSX2BPSlW%2BNrMOL2QRBCFocRi%2F4zx9DcxHG2GlMtNtxrhOMpfwQZVMPo6d8%2FA7l5HuYKvYsMMBhehfzeYrFsSR7TZWtX20jiRYoZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f1fc571fb-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/book/2708361/d4ef2e

104.21.234.171

200 OK

302 kB

URL HTTP/1.1
zlibrary.unblocked.love/book/2708361/d4ef2e
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (60411), with CRLF, LF line terminators
Size
302 kB (302265 bytes)
Hash
0c909d410feb5dd91258d2d164d05294
c3a8ad6464bdd0b34a05d471c60e654e1bbc1a7e
e52a29f611e8659429ace1da887c222e6f059e51b6360b35b569804f3375a5c9

HTTP Headers

GET /book/2708361/d4ef2e HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oH7lKtHCvIwB0X4ph66aIZxUa7QFdK58kcoTjOOIg7oFih3Gtz5HfLoEhJoMLrSSydzy7MtP6Ldm623ZPeixoxvHONSxuZPjtnxm32GvoNratk0pkcmYZPuxxIpPCiAM2GNMtvrB%2Brz7aA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748e5a6df92f7697-LHR
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/flickity/flickity.css?0.458

104.21.234.171

200 OK

808 B

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/flickity/flickity.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
808 B (808 bytes)
Hash
9d6161dfd73efad8be929bfe09e53f9e
e5fa9e45425093d0166995d42aaae772369d09d1
0c907341f84077bb8006e455f772ce00ec159c15c2a90e59e5eeacc426b42341

HTTP Headers

GET /resources/ext/flickity/flickity.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5068
Last-Modified: Sun, 11 Sep 2022 05:05:43 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=owpTA5nYZDMQ8bp46d7kX4H1dHitu3S1jJlnSf4XmUySBuiWUNpvwZaZXzpZ4LzMQg4FD5Ge7sGlI63Ni6N%2F8nBbaQvUuADVHev9yKNVW38bXPepciKOLvYZItLJd0ACy%2FJ3E%2FH1Q%2FUcGg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f5a8c76d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/css/components/z-booklists-carousel.css?0.458

104.21.234.171

200 OK

308 B

URL HTTP/1.1
zlibrary.unblocked.love/resources/css/components/z-booklists-carousel.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
308 B (308 bytes)
Hash
7a43a269182181a2004a80d14fae0698
79d37b7d3450b172480c8ed85b9c9cc2b8059d92
bbff37aca106baf58a0a529c84d8a430d9754e8f2cf7f04f6a1ed1663e3b443c

HTTP Headers

GET /resources/css/components/z-booklists-carousel.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1828
Last-Modified: Sun, 11 Sep 2022 05:59:43 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aqpx5Na%2FY4Bm8sS3pD%2FBv%2FJDBZz%2F140RdMA2RBQ5GCACJ4SWHz8DS%2FbyggLp%2B80FEUUj1q2XWdQlbo70%2FnbjH1iFIQhr80Jj4b74ffDV52gjsziDOlXx6Xn9clwX%2BXtR61aWW%2Bw1ewBvJg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f586ae618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

i.imgur.com/TH5z5DM.png

151.101.84.193

200 OK

1.5 kB

URL HTTP/2
i.imgur.com/TH5z5DM.png
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
PNG image data, 94 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1476 bytes)
Hash
063ed504acc2ee96cec413d248379761
c2ba3db79e0b25c801ff431539a63d17014533ca
5718709bc4408d9d06689ad12333e3e79299dd44abcf447ca6a5718aedc8a517

HTTP Headers

GET /TH5z5DM.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 25 Jul 2021 13:23:59 GMT
etag: "063ed504acc2ee96cec413d248379761"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 11 Sep 2022 06:30:11 GMT
age: 3700374
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 11
x-timer: S1662877811.126217,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1476
X-Firefox-Spdy: h2

zlibrary.unblocked.love/resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.min.js?0.458

104.21.234.171

200 OK

3.1 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.min.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (8862)
Size
3.1 kB (3128 bytes)
Hash
84c6bcb49ab135e7323099802247633a
4ef41d650dfd74081188386240c016505d2a43ab
cf47863bcc761f3e5dd83766dac9e9d9255390a2ef948ccf1811791b13a84807

HTTP Headers

GET /resources/ext/bootstrap-tagsinput/bootstrap-tagsinput.min.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1952
Last-Modified: Sun, 11 Sep 2022 05:57:39 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aVHrtNFOqzYk4mG8lgU4WhQPfSa6B9W%2BeBnZMu5rDAuflNrgATbn6S0Q%2BmYemN28CLVc1Otsmx8kscbh7sPIAcoyWipdjqB16Pqv3HPB4rvXUE7SwWENfiTmNG7KKnmnyNcskmEpjBKUdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f8ad27697-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/select2/select2.min.js?0.458

104.21.234.171

200 OK

20 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/select2/select2.min.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (64125)
Size
20 kB (19887 bytes)
Hash
07ee8b7cd89676fea83bbd32e7ab9ac9
248967eab3f08518353eefbb1aae93affa33646a
047bb7270c5f823bc36835e235b87fcca2fc0620e896731d77b0f241346ae55e

HTTP Headers

GET /resources/ext/select2/select2.min.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1828
Last-Modified: Sun, 11 Sep 2022 05:59:43 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x1ZZ3etf9%2BOk%2FFGFuJNm6k7GJRChY9rMl%2B5saWutX6wt5PRciByhJK43kFfqmBObX%2FSv8vfMkIHl1uhpASJVVbjdecw0GoX2Fsm23gXNHM1Ys83tosLeCZzsm4Y2NQKqd9Smhv%2BIiE483A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f9884e618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/css/pages/book-details.css?0.458

104.21.234.171

200 OK

2.9 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/css/pages/book-details.css?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
2.9 kB (2852 bytes)
Hash
3074402a5b6718b7239dad48f7e0b2f2
62f483134a70566541be6e279f8777f95fad59c8
1364e5bcf7b0dad831d88f83e10ba2c34d0d05e2f22c109fd1f580e582e566c8

HTTP Headers

GET /resources/css/pages/book-details.css?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 02:43:19 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YbhVk6mG5nRodOFj89aHWrGBySGXO8o5LdLj0IKcROXtZ71NGDAj2%2BfwhfUHZprWIzuDo7h57JZ6yI1NS24tZEm39m2NRKP9rJCdgIfPf6CT6vQGXUqy5KZSFXfoY%2BQIlF8vR8iYBH67VA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f5d9e76e9-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/typeahead.js?0.458

104.21.234.171

200 OK

3.5 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/typeahead.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (12253), with no line terminators
Size
3.5 kB (3511 bytes)
Hash
735e038addedb1f54b4371a84a51e31c
f081b19c3519821d403ea4941c6c33c6cb851365
186925492b248fd0cc8a15a869d5924c1bb4fbdfce96f34fa3ca1fdb5a1b4c21

HTTP Headers

GET /resources/ext/typeahead.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 00:59:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ma6QyD1XX4XNzo9AMHXlTZB1g98foEG06AAMAjr1mVxEtlGdTYzB4ytBCsCJ2YkPY41hD3jVn4FjHTw1GvhNF8Az2EBF8xJNNbIjcmRrr6wfq0rIAk2qdtQ%2Fqj1uchZLSapm8luobuhohA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f780b71fb-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/js/pages/book-details.js?0.458

104.21.234.171

200 OK

5.0 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/js/pages/book-details.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text
Size
5.0 kB (4994 bytes)
Hash
2ebd98d941627972c4d7f6216375b5ab
b770914a6af7dd4e2120b2caf542bef721860618
e4d2e4aa4aeb99e08d9e9cbedc0f7fa1bb4ec16179f662748281ed0cd6db2944

HTTP Headers

GET /resources/js/pages/book-details.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5067
Last-Modified: Sun, 11 Sep 2022 05:05:44 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n1XBwH3sxSFVP7ppJfXHoCQp3rbkZtseTMiFLTav01%2BpaostG6NzL3Vb3KEJ4mTTgc64pBPfviNr42wv0f%2FkAx2D5xqtX2jnqtwzJP1pXfR283Em3FdxjC986Yc1h7aWTB2WNWfeKbkh0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6fee4376e9-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/js/custom_elements/z-readlist-card.js?0.458

104.21.234.171

200 OK

5.4 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/js/custom_elements/z-readlist-card.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1587)
Size
5.4 kB (5360 bytes)
Hash
1734d76ed9dc3af1b830eb8751b0db59
7d554e2a58f77ac0485f372f692c2bd8ee5c8081
d1ff81fb43745c75bcb738191be0e7cf4ad875c0d190f0d8ba0bca1be04064c4

HTTP Headers

GET /resources/js/custom_elements/z-readlist-card.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1828
Last-Modified: Sun, 11 Sep 2022 05:59:43 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U3lBqmUv6IOQJ0hOUmIv2pTdz83XpQpNvYv6fOuYPZsKocGQ3swEwqZzRdXEQXAafdpOaiGQ0HAmpc924dCPcvHwluQl7F1RwumgB17taAbj8cjMkXkptfo4dORd0W2RSGaul64PNba3Nw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6fe8afe618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.min.js?0.458

104.21.234.171

200 OK

2.7 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/lightbox/jquery.lightbox-0.5.min.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (1650), with CRLF line terminators
Size
2.7 kB (2659 bytes)
Hash
11e440cbb5a8fe9e6917332eed1974e2
9472cb17b469522358acf9db4715ea71d8462b66
9172a7e37821712ecdd6becf2593a3dfdfae6ffdffdc2da14eff292d7998dbbb

HTTP Headers

GET /resources/ext/lightbox/jquery.lightbox-0.5.min.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 03:50:08 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2Fxd%2FI%2FqcZStUAU4eSfw%2BO8vocLqNipUhmoicp%2BK%2BCsPACGg2MmiH%2FXJPL34ZEnvV7nSmHxU%2Bb9WwnkDgrTBynFDR5u0%2F9NISgO11ph39IjARhpELL44Z%2F2T%2F%2FaLfIi5Qo6MVUg0QFhUrg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f8ab776d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/resources/js/components/z-booklists-carousel.js?0.458

104.21.234.171

200 OK

1.1 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/js/components/z-booklists-carousel.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.1 kB (1090 bytes)
Hash
0b660e0bfff299ba215fea7d102588ac
fcde331e2ea82ff6082c2914f5f3896da1f15fc3
86a16c0c1c4464e8a3a97c69fa65a6f3747cd9933a1f5104bc581240c3c2aca0

HTTP Headers

GET /resources/js/components/z-booklists-carousel.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 02:40:04 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nGJrEoRz1wZALrcwm1Linn2UaZEfvEkV%2FyUtpJ%2FKQAC%2BS0Fe0qGiReUDvFVefs2HE8aupyNu8cRqUDE%2BWSUAmV4KdBSzIwoF3yuysJVMe00VL7dDBx8gGiVEwpD1eSDbdD22XJIssCjBSg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6fcc4a7193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/hy.js?q22q2q2

104.21.234.171

200 OK

18 kB

URL HTTP/1.1
zlibrary.unblocked.love/hy.js?q22q2q2
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (56131), with no line terminators
Size
18 kB (17517 bytes)
Hash
f12634066d38736854588dc61b5ba109
623e90c430f1609e59e16407553e2d2ff8882d8e
7ca898a6218b8e61a9a999ffb0c76a9c60f86dfd4353b2496225e6473c72c0de

HTTP Headers

GET /hy.js?q22q2q2 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 05:49:57 GMT
ETag: W/"603dd205-db43"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3257
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2FAlmcahjbFF1X8IlsHk9YBiVW3s2LJ4LD6lTzyKKUGATy70eBLT%2FY0bGvrD1wQBGtjnPx13YfcfNMnYjz1Kpf%2FsjBVwqS754%2FmpJab6DUVAjqtePVbc9TQZ56fvpPjGQriQYEdlVf5%2B%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a7018c5e618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/app/apx19.js

104.21.234.171

200 OK

2.6 kB

URL HTTP/1.1
zlibrary.unblocked.love/app/apx19.js
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9183), with no line terminators
Size
2.6 kB (2613 bytes)
Hash
9ea8acd8d74e4f328d558b64219e02c5
156ce99860c738bee0a97dbe9c543a83f4fd5457
cc0dc5bf2c19d0830dd3962179d22ed40f200ecf8dc905a4e64bba0c1ccf9dff

HTTP Headers

GET /app/apx19.js HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:46:39 GMT
ETag: W/"5f610c0f-23df"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1951
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NWd1xbW6XoOMDLacsasXtDWEbGXSvEvbY8Rbfo4Mbs6oHZVgFnpLSeIiRXP1Duo2yIveKV1Z7a%2FoV2JsHD0WlNFqSR1B%2FtXZ%2BRVouh6UAT%2FlQR3yF93aotTSlMPWgJZpcD%2FpVWGy8GpudA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a701e6676e9-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

inpagepush.com/400/3064505

139.45.197.237

200 OK

32 kB

URL HTTP/1.1
inpagepush.com/400/3064505
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
32 kB (31811 bytes)
Hash
c92941999bc3058890fc9c61b780575d
9973967a872a8f948dced7c3026abc9751f01b61
dbba0ef83f08e579582dbc109673e40ad8bdcc439543e614d878d0ca49a42d71

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /400/3064505 HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 88d83b2f258b01258cb052e6c40d42b5
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=576cf208278844749512b4a9520f6d82; expires=Mon, 11 Sep 2023 06:30:11 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

zlibrary.unblocked.love/resources/ext/flickity/flickity.min.js?0.458

104.21.234.171

200 OK

14 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/flickity/flickity.min.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21914)
Size
14 kB (14037 bytes)
Hash
2035b681db5b3d91b7c7e9d0aa35371c
6f5d8ecaeafb3fa819a245dbea8a036ca8a1a4c6
c959422fe9677dd5075ccd0942f0fbcd08daf344ae8d23be9348558d14fd7221

HTTP Headers

GET /resources/ext/flickity/flickity.min.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 03:50:08 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PhYy4LCSX%2BsXSIjuageI3L5njGg%2BefPHWknoetdGUUev%2BazFU7FBT4A2J5Mr8B8rxqi72astXqPY40HyrZHnl5VznXsbA9uC8Uiz6p7jBczaXNpBIJrqg4yvXzCvoiW%2Fvls5v2R9YHQzmw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6fbaf77697-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

e1.o.lencr.org/

95.101.11.115

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
b24682cf01d52f2e646f7fdc9dde67bd
4e5d6bce61c2e61a26e198476873cfbf3443537a
785c788ca061c119469aa471da09b4eb7d62228f4c69504bb48fd3b911debe1b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "785C788CA061C119469AA471DA09B4EB7D62228F4C69504BB48FD3B911DEBE1B"
Last-Modified: Sun, 11 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20399
Expires: Sun, 11 Sep 2022 12:10:10 GMT
Date: Sun, 11 Sep 2022 06:30:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3873194e9900b79d965627cb033bc38c
902dbb0bc67d1bff6c54b0e01cbbe1a3e53f7222
4f9b29341b81deb479310b578c3486d0b85690c37a51e9eb879418791b94db42

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F9B29341B81DEB479310B578C3486D0B85690C37A51E9EB879418791B94DB42"
Last-Modified: Sat, 10 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4768
Expires: Sun, 11 Sep 2022 07:49:39 GMT
Date: Sun, 11 Sep 2022 06:30:11 GMT
Connection: keep-alive

zlibrary.unblocked.love/zpp/zpp4.js?q22q2q2

104.21.234.171

200 OK

14 kB

URL HTTP/1.1
zlibrary.unblocked.love/zpp/zpp4.js?q22q2q2
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (38995), with no line terminators
Size
14 kB (14287 bytes)
Hash
3c741ddc90399bc2910b2cdc0a826716
163182c6b04f146fbf6de424ead05c91e59e3c51
e6753c7588e28e17f44aa00cbe8c314de3f2bbcb8e892a439eed11dd989b1d84

HTTP Headers

GET /zpp/zpp4.js?q22q2q2 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 05:50:35 GMT
ETag: W/"603dd22b-9853"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PcDVe25eDH2n6ffSlJr3c0%2B1FfTEBUAvrY4S6y1PYl20UZ%2F%2Fmb6pecKUo5APnYPl6l70aX8opae9rlCoogh54BWYfapYKDBFLpAhxYOx5qAGyUBQvd53rq6UDk0%2BpIFi9jHDJDfnoA5cLA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a702b5576d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bdfdc65ab966ebf039614ce37f5b13c
405143d3e86f742b1096da91ce18093f6cf2cdce
37d3a6b6b1c452ed49cb0d7895e5c064f11ab4261a1c7a17ca4f3a2d2e839534

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37D3A6B6B1C452ED49CB0D7895E5C064F11AB4261A1C7A17CA4F3A2D2E839534"
Last-Modified: Fri, 09 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18218
Expires: Sun, 11 Sep 2022 11:33:49 GMT
Date: Sun, 11 Sep 2022 06:30:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bdfdc65ab966ebf039614ce37f5b13c
405143d3e86f742b1096da91ce18093f6cf2cdce
37d3a6b6b1c452ed49cb0d7895e5c064f11ab4261a1c7a17ca4f3a2d2e839534

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37D3A6B6B1C452ED49CB0D7895E5C064F11AB4261A1C7A17CA4F3A2D2E839534"
Last-Modified: Fri, 09 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18218
Expires: Sun, 11 Sep 2022 11:33:49 GMT
Date: Sun, 11 Sep 2022 06:30:11 GMT
Connection: keep-alive

zlibrary.unblocked.love/app/x12.js

104.21.234.171

200 OK

3.0 kB

URL HTTP/1.1
zlibrary.unblocked.love/app/x12.js
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (11180), with no line terminators
Size
3.0 kB (3024 bytes)
Hash
7f0c811d15a31a93662cfa30df4ef5ea
3f5b8f499bc7f50d2315eadc7cf043d317b60b95
af3050874dc2886642989014b75a7b4734239520ee7d36ea06d4527e41d92beb

HTTP Headers

GET /app/x12.js HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:26:02 GMT
ETag: W/"5f61073a-2bac"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3256
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qe9gwivyo2LwQDPLYWhVQ4BvFiMo2QCYrx388jlbzFDN6%2FYuJuNo%2FwZk14ledBu77Le55xGe73PkBbsHlspTrX0hiuIxrOgzz2zyM33IBK6L4R%2FJnaenB20eVbn2%2FNNIa9UVycAczYV2HQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a7078f2e618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zlibrary.unblocked.love/resources/ext/freewall.js

104.21.234.171

200 OK

8.5 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/ext/freewall.js
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
8.5 kB (8509 bytes)
Hash
feb2c10ec9a6e737833b41cd850fa520
05e2c83fddae2c0dc08a2b025ce0c15acaf2a65f
8344356d1851981f11a00f910f5528df2f71efed4ebf63c91afc75a3c9eebc95

HTTP Headers

GET /resources/ext/freewall.js HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 00:59:15 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zS6PRHJ8UtIrwNJpeoGtgaB1s4k3Y8O5XeyM7TE1p7rfiXyFZnF9fJu8UaU0LguXM%2BCL7qvpjYgTDaLCFvjqDjoMuFm2LSkGtsf2Y9yy7wZZf%2B2bpnCTcuhy88bBgiR9fyowp0wz8y3%2B6w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6ff87771fb-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
886ba5c335d579837ec85f2b1218b277
2d6a4e777803214893766e65d7ee795123167c2e
e421e56d0083e29eceeb25389e295b7ca605b9175849bd3473a33521c54d2b0a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E421E56D0083E29ECEEB25389E295B7CA605B9175849BD3473A33521C54D2B0A"
Last-Modified: Fri, 09 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12002
Expires: Sun, 11 Sep 2022 09:50:13 GMT
Date: Sun, 11 Sep 2022 06:30:11 GMT
Connection: keep-alive

zlibrary.unblocked.love/app/apx14.js

104.21.234.171

200 OK

2.2 kB

URL HTTP/1.1
zlibrary.unblocked.love/app/apx14.js
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7663), with no line terminators
Size
2.2 kB (2220 bytes)
Hash
5fd0d992c153321728eef72725f9e2f1
11af100c190b0c91d3126ca0c792aa6cd3954897
f39352e9834fda1868dab410b72a2850f516686f140843e9f0eef835be503330

HTTP Headers

GET /app/apx14.js HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:26:01 GMT
ETag: W/"5f610739-1def"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zxSIsD%2FvYHt%2B5CwzCjXEdIm4VcgCr8fVAmDBvlED3eoBzyeAMbN%2Bkox8%2B7f2mePv7PiTN6CcLE9LJpfAejaf16ALBbD%2BK10coJjW%2F4MDp0KNfJXs9tM%2Bn2VeZpoZfakyN7cvaz9e%2BXzpJw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a707cd97193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

glimtors.net/zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3=

139.45.197.251

200 OK

705 B

URL HTTP/2
glimtors.net/zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3=
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (704)
Size
705 B (705 bytes)
Hash
5b330e7e8d255713f6e849ccffa9c12a
4262b942e9f4392b490d4c3664635be83fdbf53d
f5ed5c4977a76b1eb7bead15c8577a7e7e58b95a437217db956a7b0987245942

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3= HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: application/json; charset=utf-8
content-length: 705
x-trace-id: 0cad2d0b3a2c1d350e488b1684076760
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 05:56:07 GMT
Expires: Sun, 11 Sep 2022 06:17:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mUu_5QqwT8qy8VKgxfwFSqA4fdnZS5g_p-8Ne6sehi26DhSKq3l_kA==
Age: 2044

covers.zlibcdn2.com/covers299/books/ff/00/02/ff0002d9f8d9493b0ab3300386a1a7d7.jpg

78.46.184.63

200 OK

10 kB

URL HTTP/2
covers.zlibcdn2.com/covers299/books/ff/00/02/ff0002d9f8d9493b0ab3300386a1a7d7.jpg
IP
78.46.184.63:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 299x428, components 3\012- data
Size
10 kB (9976 bytes)
Hash
aaa846c1f671f3b2cd67664eaa259ecd
9cb457594e415e2e3823dfe679bb4e1b689d85d0
7a95176f8d4e0e5a0a7de9418ed3bbe1c3a1c0b4f9608ad923a23eae5362e2bb

HTTP Headers

GET /covers299/books/ff/00/02/ff0002d9f8d9493b0ab3300386a1a7d7.jpg HTTP/1.1
Host: covers.zlibcdn2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: image/jpeg
content-length: 9976
last-modified: Mon, 05 Aug 2019 17:27:22 GMT
etag: W/"5d4866fa-5401"
accept-ranges: bytes
X-Firefox-Spdy: h2

zlibrary.unblocked.love/img/icon-main-menu.svg

104.21.234.171

200 OK

146 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-main-menu.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
146 B (146 bytes)
Hash
64eac316da5bd9c7f4234a8d16d73db4
6aaae6e3178a9a05590f2882771de00ee3dac243
eb9cd6714cbf615aba4532014f416741f02bd49d870f286af4a5d27c171cfa11

HTTP Headers

GET /img/icon-main-menu.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3256
Last-Modified: Sun, 11 Sep 2022 05:35:55 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GpLYlB46m20KpVQPOyVludMjg3rKW8L6qY0TINrIs2EVvupIjnH56JR0pU7StiLRmBh6gVUXq4oTezzWqqESC3lrF3KTQhXF0sgx5k3Co%2FQimOPh7QNFlxkVn0XFQrreO4ByZmgXOmWrzg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a70f92ee618-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

toshelmeton.com/1?z=3372123

139.45.197.239

200 OK

3.9 kB

URL HTTP/2
toshelmeton.com/1?z=3372123
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
data
Size
3.9 kB (3884 bytes)
Hash
d8e41fd0fbde5ce2a4feb92bef3d6419
26dc9ead89370ddb431c029f3dba244d85c89ec4
e1eb0b5e5bcb566c17e48c7e4d83750cd6164ed2555c5fb94fa18fad0bfa6e09

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /1?z=3372123 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: b3220c81dd8caddd98ebe16583f83936
access-control-expose-headers: X-Sc
x-sc: y6w3KaDQdItKz6BNbe5qIwqNb-VBucrugd95uj21tmIzar2364h1oW7pZc9axkroUUbTz3cSfy2Q3MS5Lc1JhwWf-5A=
set-cookie: scm=1; expires=Mon, 11 Sep 2023 06:30:11 GMT; secure; SameSite=None
OAID=f5ce3be0c97f4098ac4bf8f75419c63e; expires=Mon, 11 Sep 2023 06:30:11 GMT; secure; SameSite=None
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:11 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

zlibrary.unblocked.love/img/icon-android.svg

104.21.234.171

200 OK

995 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-android.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (746)
Size
995 B (995 bytes)
Hash
83e614d08e3358584433f3d82a2faba4
4a6a050ed8380b82d18aea9e57f44a46837280b9
8a38743999ea9aef872e211fbfc7df6274301cee12d999079a41d4ac3c101c52

HTTP Headers

GET /img/icon-android.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 03:36:10 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VlSnbZCo540clbPcyuOZo1Oo7Id2m%2Br7FnQyxBRPJkBhLOVBex0oPhtAUlumgzZrWsqnhb5Hdt46yRiemuT2MkIj%2FjyKffVt9c7UfEkPA33Hvg2aoFbC72rdy1bnQh0kKGa92bVfHMhszQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a70fc0676d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/img/icon-tor-gray.svg

104.21.234.171

200 OK

534 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-tor-gray.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (762)
Size
534 B (534 bytes)
Hash
6c48425856ccdedfc99d852eccc3554f
3c1d8f7104263039023662a21243dd8030c264b4
a4305a3409fa2cfb8478405fce1a9243eae7aa863cb3f6ec75d1a7f8268bbfcd

HTTP Headers

GET /img/icon-tor-gray.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 04:02:18 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZP9gTQLunQMJSCKqVaUHzsXBF9RnTNN0APSyPFVsW%2BGWpg4MBNOa3UqvDBVMUA5wdGB167kHzeuxNBCG%2BNR5cY8OB%2FeTpGT56S%2Fe0u9XlMjvO0%2Fgtd661FE5srO%2BqpxqzvEAKZIlVCGDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a70f95571fb-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/img/icon-magnifier.svg

104.21.234.171

200 OK

383 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-magnifier.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (637)
Size
383 B (383 bytes)
Hash
d6a7eb4438535390d8c159cc28caa5cb
fca3aad2a5c17c6ff601990a8503bbdaefc2d07f
70bf85e34c20fcc405579008220186f6b491b2b4cdda0e93053a6bd8d2694ecf

HTTP Headers

GET /img/icon-magnifier.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 04:02:18 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLfFc11t%2FLwOLh8jukLsjiLAsjaRR7oCcqUM8poqRGNqtErikN0QFlwtfF4%2FJVBMFwgukzT94F5FzbmbCwCctMeyknK6ehQ2D2EM%2BVXfgGoxOsRo0PLSRSSKAC5lZH%2FniNLAlqy69IkMFg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a70fd667193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

glimtors.net/pfe/current/universal.min.js?v=3.1.392

139.45.197.251

200 OK

59 kB

URL HTTP/2
glimtors.net/pfe/current/universal.min.js?v=3.1.392
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
data
Size
59 kB (59056 bytes)
Hash
0bb94240125d15fd0644dcd7faea0726
e7568fb600d40767669ee17d9c4b47f9305df6f1
0d62cec5cbc88af8870da167b1d269fadec821a6d21cf1c2e5d1e48bd4988de1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.392 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-20481"
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

zlibrary.unblocked.love/resources/fonts/Stolzl-Book.woff2

104.21.234.171

200 OK

23 kB

URL HTTP/1.1
zlibrary.unblocked.love/resources/fonts/Stolzl-Book.woff2
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 23328, version 1.0\012- data
Size
23 kB (23328 bytes)
Hash
c71dabc43aa2e17371f541c6d24b2c07
22f0a0960a396eda34b8bca1ccd051650bd4da17
57aea9036fd63c824bf076bf02350617ddf12d4dee0b6b69ac1ec57657125b86

HTTP Headers

GET /resources/fonts/Stolzl-Book.woff2 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/resources/build/global.css?0.458

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 02:38:21 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z4gKTiB%2Fu9LPjf7O5GALWkeOAGkdC506cLuw4dO2Z5ma%2FuyJn8bvjNbSYJLrVJ0O2z1gPV4keVwddKIkN%2Bt5hEzNwDXU1cLmgPPqP9VH2QeshWBJ7gCOraEBW9%2FuvFlpATEP3bN9v9o4PA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a713948e618-LHR
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/img/icon-android-gray.svg

104.21.234.171

200 OK

980 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-android-gray.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (754)
Size
980 B (980 bytes)
Hash
55889eff1de9e11a9c2abd9fda1fafad
22ede66719b12a56d7cce2e6606d907d2e7d2f57
8b17abfe9b28a218d3ca6e1e0f910a523b61bacfc249d71f26c2653ff7b24787

HTTP Headers

GET /img/icon-android-gray.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 03:36:10 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DQ%2BfTfXlddi0Z%2FoE%2FZoA14K%2B8OwmxYCPvymXJu4mTwbT9WCzGFAWRwOFMEvWNcaxCe%2BcLkiH2n6VLnZ0%2FOTOFplJBdRhJIcQlddQqImPE6yu8PVj8LxMVbVd20thf83bIK7MsbU4ubvD1w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a716c757697-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/img/icon-tor.svg

104.21.234.171

200 OK

702 B

URL HTTP/1.1
zlibrary.unblocked.love/img/icon-tor.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (774)
Size
702 B (702 bytes)
Hash
0fe658f755b73c87f5f3e05749b8eb3b
bcbc63fa7510105da8133b4cb6c5f66685c14d9b
5ccae40b3737d0420ef9b4803258afaaccac1b536821f62886c458df87c16abd

HTTP Headers

GET /img/icon-tor.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 04:02:18 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Grx7fHiu2QhOJR8iidCnvOTZhf5F%2FuCNfi3DO1uklehGzVfJp%2BZFB%2BeajigEVdzCgey1bcGUhqVWtndbRURTH7p%2Bf1XNYOJzSTfW4xIisxq4BA%2BPjJ%2FL0PXUpl5YtWhBKAlGC7bAPyDFkw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a718dfe7193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

matomo.hellohi.me/matomo.js

172.67.219.82

301 Moved Permanently

169 B

URL HTTP/1.1
matomo.hellohi.me/matomo.js
IP
172.67.219.82:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef

HTTP Headers

GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.js
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NkJavGR5qZp7IoY4FEmby6wurYPCYTxtxdkMC7lfBjfpiCZr3jenZkE0cktQ4DoMmLwJbQO1safh9bFeyPCEDFlcDaIGFFvQT5WA2N9nSWbv6%2BBzfm2SCb1bzkorwwjrHKVr5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a713eecb524-OSL
alt-svc: h2=":443"; ma=60

zlibrary.unblocked.love/img/mascots/12.svg

104.21.234.171

200 OK

9.4 kB

URL HTTP/1.1
zlibrary.unblocked.love/img/mascots/12.svg
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1139)
Size
9.4 kB (9422 bytes)
Hash
9403d0c3a9e565d62da38b285fe68cf7
b4425f8e34c7e086d0e7090a8d09929bbcf44d96
81d00539098b099dcf69b7178fe09ee6afdea5f48e32ffb42621ebe1ea1266b2

HTTP Headers

GET /img/mascots/12.svg HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sat, 10 Sep 2022 14:34:26 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Lyb1XXu4unXIfvVE8xUXYEViaK4yUKBuCujTAUEaDsSYEgQLOzXRe%2BLWzDaUJ80CzyfWZFgpmlDYJW7UeWdWQLJIssu%2BgNrt8UyOCw7b1qrl%2BdbCoLm7mkXqY466bLNGMuqU1OAXyxTWA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a716c8976d2-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

a-waiting.com/j/m/qqqq.js

104.21.41.138

200 OK

83 kB

URL HTTP/2
a-waiting.com/j/m/qqqq.js
IP
104.21.41.138:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (48351), with no line terminators
Size
83 kB (83158 bytes)
Hash
f8085482b2a413996d58f958b535591a
ef79ab4deca481d4db80a08e6a3ac5ba9d0b13af
fd3f0f8d7042c6e276b3e7463b3a4010e7ff43b83ba7ea2f7a9fcbc4b7269b5b

HTTP Headers

GET /j/m/qqqq.js HTTP/1.1
Host: a-waiting.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 03:16:06 GMT
etag: W/"603dadf6-bcdf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 231159
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4WNqBdHyG3PQlz9LltRXzoTLVYTDAmjEILLIyBH2VNnKkMIvRI8YH5zrnmtqn%2BgLK03Zpl1wM72MH3EiQhz21QjDF6aFdzYHJ%2Fnyz3R15eRPzP1%2FSEcjGqk%2Bt2XZ2Z%2FP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a70bb721c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

toshelmeton.com/42/38?z=3372123

139.45.197.239

200 OK

0 B

URL HTTP/2
toshelmeton.com/42/38?z=3372123
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /42/38?z=3372123 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: scm=1; OAID=f5ce3be0c97f4098ac4bf8f75419c63e; oaidts=1662877811
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: aedb32b701c8ffaadffff617813d8a42
access-control-expose-headers: X-Sc
set-cookie: OAID=f5ce3be0c97f4098ac4bf8f75419c63e; expires=Mon, 11 Sep 2023 06:30:11 GMT; secure; SameSite=None
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:11 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 298563
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

deemsoil.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js

192.243.59.12

200 OK

13 kB

URL HTTP/1.1
deemsoil.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with very long lines (37125), with no line terminators
Size
13 kB (13407 bytes)
Hash
e413f1965689839ba970000071ba1b3a
cb394d61fc18384890f7674a064c4dcefdc0d402
75569fb156c41ea21b4a94367a90af9f68c8aa956b9961a345c26ed09f5ee0dc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /a2/86/90/a286902791a7f4c98bcb1e812322cd78.js HTTP/1.1
Host: deemsoil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 433c55a5b1a931715ec43b14e83b81a5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

glimtors.net/ntfc.php?p=2651991

139.45.197.251

304 Not Modified

0 B

URL HTTP/1.1
glimtors.net/ntfc.php?p=2651991
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /ntfc.php?p=2651991 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
If-Modified-Since: Mon, 05 Sep 2022 12:32:41 GMT
If-None-Match: W/"6315ec69-3922"

HTTP/1.1 304 Not Modified
Server: nginx
Date: Sun, 11 Sep 2022 06:30:11 GMT
Last-Modified: Mon, 05 Sep 2022 12:32:41 GMT
Connection: keep-alive
ETag: "6315ec69-3922"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache

zlibrary.unblocked.love/helper-js/

104.21.234.171

200 OK

1.0 kB

URL HTTP/1.1
zlibrary.unblocked.love/helper-js/
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2612), with CRLF line terminators
Size
1.0 kB (1027 bytes)
Hash
02bdfaf6fc3124e1e91e9608a954729b
dd68e18f6ef468bed47346fa250c0b71476e2fea
5b64715802996c4f12c63da82f296d6a3b8100849d9471ab2ef3e4725803ff13

HTTP Headers

GET /helper-js/ HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: s-maxage=0, max-age=0 no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ibTo%2BAZyi2NvYngtarntCRmsVemhKyOAjtjSo81BFekHXMv5l0UFrhWVrhbbLTsr36CJx3m2U%2FwJfeHdJAqdpNrRf8ckkz9Tvtu7SfyOGqybJLmYpzC0YAQ3ZT6bEuxwdXkSHwn5FEtJQA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748e5a72cf447193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

toshelmeton.com/5/2632704

139.45.197.239

200 OK

23 kB

URL HTTP/1.1
toshelmeton.com/5/2632704
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (62317), with no line terminators
Size
23 kB (23214 bytes)
Hash
1ec0e20df2c1b9d815eb44a86e4327bd
f64623d5941bfe2a38e5130361de1ddac047f474
564f934ceece7550cca183a553368856a05512aabbdfae47c7be5878e58d5df8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /5/2632704 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 65d3c5aac4cf89132d1072294128612d
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=91003b85a76344229b4bc06e5ce869eb; expires=Mon, 11 Sep 2023 06:30:11 GMT; path=/
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:11 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip

dozubatan.com/400/4495524

139.45.197.237

200 OK

31 kB

URL HTTP/1.1
dozubatan.com/400/4495524
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31212 bytes)
Hash
6218f155eb228a0c8d14a4fe1b11d88f
e4ba8354d252260d4507644a9bb64cb8ab739418
506b9d9521751162b70cac02a9d365297f529b336b9503c414084f4132c3d298

HTTP Headers

GET /400/4495524 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: b574dee3db72edb3317fa1a35dc3dd9e
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=c61b3e90f60a4b9d96da2d9618cb2529; expires=Mon, 11 Sep 2023 06:30:11 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5b36f6508bf779a395d4b559b41d267d
a653f55ef7e337bd259cd76d14fe2adc91c11603
91e3696c53649e8d76b738dca29ed03b8b935f9fc230c735d2fd729428742605

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 18:25:21 GMT
Expires: Thu, 15 Sep 2022 18:25:20 GMT
Etag: "a653f55ef7e337bd259cd76d14fe2adc91c11603"
Cache-Control: max-age=387907,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748e5a751a82fab4-OSL

glimtors.net/pfe/current/universal.min.js?v=3.1.392

139.45.197.251

304 Not Modified

0 B

URL HTTP/2
glimtors.net/pfe/current/universal.min.js?v=3.1.392
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.392 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 05 Sep 2022 12:32:41 GMT
If-None-Match: W/"6315ec69-20481"
TE: trailers

HTTP/2 304 Not Modified
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: "6315ec69-20481"
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

glimtors.net/zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3=

139.45.197.251

200 OK

705 B

URL HTTP/2
glimtors.net/zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3=
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (704)
Size
705 B (705 bytes)
Hash
5b330e7e8d255713f6e849ccffa9c12a
4262b942e9f4392b490d4c3664635be83fdbf53d
f5ed5c4977a76b1eb7bead15c8577a7e7e58b95a437217db956a7b0987245942

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /zone?pub=0&zone_id=2651991&is_mobile=false&domain=zlibrary.unblocked.love&var=&ymid=&var_3= HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json; charset=utf-8
content-length: 705
x-trace-id: 1d03411c8a3326bcb5517a15356b8382
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=8c8443159e0f4ec6900c140966355356

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?userId=8c8443159e0f4ec6900c140966355356
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
cc4b004833ef1658812bae7bd175d4e4
17b8008cd80ab212f66d0e0a629a33d3f12ae804
6dce08bb81e9fa82e6ba93311387205f6e3d2406b803b50e2d26bddbd929828d

HTTP Headers

GET /gid.js?userId=8c8443159e0f4ec6900c140966355356 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
d514c8b8af1847f46b54a19a985a451d
7e3edc42b5335cdc558d694b3fd5a610532fa66d
e6daa05399233401ad98785d4b9e59a1c7c95ba27f74ef0898aef377f474af48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:02:17 GMT
Expires: Fri, 16 Sep 2022 03:02:16 GMT
Etag: "7e3edc42b5335cdc558d694b3fd5a610532fa66d"
Cache-Control: max-age=418923,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748e5a758ab3fab4-OSL

dozubatan.com/400/4495524

139.45.197.237

200 OK

31 kB

URL HTTP/1.1
dozubatan.com/400/4495524
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31212 bytes)
Hash
6218f155eb228a0c8d14a4fe1b11d88f
e4ba8354d252260d4507644a9bb64cb8ab739418
506b9d9521751162b70cac02a9d365297f529b336b9503c414084f4132c3d298

HTTP Headers

GET /400/4495524 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: ab465b6e4ea711bae0c1a93b0719a7a0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=65a2741196204cd1931c979a1163badb; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

creepingbrings.com/sfp.js

104.21.234.232

200 OK

23 kB

URL HTTP/1.1
creepingbrings.com/sfp.js
IP
104.21.234.232:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
23 kB (22840 bytes)
Hash
487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f

HTTP Headers

GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 5f0027ad6e5d04ae4210882879c76dd2
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 06:30:11 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3luY3RNfL%2BNLQ6nGG4ISW2HPyVhgCuBwTGFn57wZL70Lxm91nVPUlqit57V96bQMtJbdeb1qRJ5VHwPoLaK3x7pawAp55FGXoBkpFSMcuagez3lwNHy1XAg%2BeQsZg7q4LYcWohs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a752b077729-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5ada5a3460ccb735aad6c923c1abfb02
105c3e13eac9750088629e1c200794b102c48e4d
503713d1d8dfca76a5efc81db761b240cee2fd8d832225be9f00efe6332dccc4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111966
Date: Sun, 11 Sep 2022 06:30:12 GMT
Etag: "631c8381-1d7"
Expires: Mon, 12 Sep 2022 13:36:18 GMT
Last-Modified: Sat, 10 Sep 2022 12:30:57 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a2F9NWgRxeHfDkQWs71Ff-jLAzZev4WS2QtDaCHWyTCi5t6VwcyyZg==
Age: 3921

simplewebanalysis.com/stats

52.59.153.168

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
52.59.153.168:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
da9584968df433912456c1368864de00
c6ef0566368365606dde3522eb20ce3ffc1cd05b
a870b160accaddbe8aca6ea2717a8f06f5f5945df91d0d1921c9754987ed4460

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
set-cookie: uid_id2=d4655ec6-99bf-4ff6-9d57-5bb7861b1739:3:1; expires=Wed, 08 Sep 2032 06:30:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2618
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:12 GMT
Last-Modified: Sun, 11 Sep 2022 05:46:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

rndskittytor.com/400/4837723

139.45.197.238

200 OK

31 kB

URL HTTP/1.1
rndskittytor.com/400/4837723
IP
139.45.197.238:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30878 bytes)
Hash
5415be4aeca151b4a0cb9dc5f3772ddd
857415d68ccff6c9245c4d274f14cce8850d8bd9
eb3c88e884f5dfe41bf6f6e84c15b2c558459b3f1ef0370bff24b6dc5c58ee0d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /400/4837723 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 3115e668a1286ce8080620dd45e13fdd
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=d5d233c1f8e445cfbb4c06ad6a9c2187; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

zlibrary.unblocked.love/apple-touch-icon.png?v=1

104.21.234.171

200 OK

6.4 kB

URL HTTP/1.1
zlibrary.unblocked.love/apple-touch-icon.png?v=1
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
6.4 kB (6352 bytes)
Hash
3c089400a55ea780f6c04a4935ab0152
2264c9e7b3bb05ced18654ad3384704bc7be3dc2
24e8e0476ad228dd7fa23d39a31e8517d2008ef926dd617ff1a8cb0547d7088d

HTTP Headers

GET /apple-touch-icon.png?v=1 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2168
Last-Modified: Sun, 11 Sep 2022 05:54:04 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QrP%2F9x2kIo3QOq0xtQDLS9VGuQ%2B6LHwNBV1lVGTKdyi4%2FJIhbvLhuNkooXXAre23ztKzbvrcVzOjm8I01HHv34KH0p2oXnm4GZErQir6c3Um6UHXTUyECHcFY8zQ5r1ZknYAOaxDFRhxgw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a767ae77193-LHR
alt-svc: h2=":443"; ma=60

matomo.hellohi.me/matomo.js

172.67.219.82

200 OK

22 kB

URL HTTP/2
matomo.hellohi.me/matomo.js
IP
172.67.219.82:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1601)
Size
22 kB (21487 bytes)
Hash
c2d3fde4cf01b6ccfb6dda87c53ec381
0bf977bcc1cd0f87fc52186e1211d9011823b223
5e4a68dbe156ba410ce1c4081825f552dd73dfb1c6d0625ddf049c32e12f9868

HTTP Headers

GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 19 Aug 2022 17:37:06 GMT
etag: W/"62ffca42-fbde"
expires: Sun, 11 Sep 2022 06:44:11 GMT
cache-control: public, max-age=14400
pragma: public
cf-cache-status: HIT
age: 2761
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fKpArexm4qyW2NnM25pEAzOIxS%2FTINAKrXTOqwCD3gSOi8WsnkE4deydhRJDsFvR2oSnDjKqu7LP70OlIhk4QSmSE1fHbaNzqmw3LzPiYfYWiz7M5%2BMiRwrKhJRl%2B%2FgpmKgVjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a75bba71c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zlibrary.unblocked.love/favicon-16x16.svg?v=2

104.21.234.171

200 OK

532 B

URL HTTP/1.1
zlibrary.unblocked.love/favicon-16x16.svg?v=2
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (596)
Size
532 B (532 bytes)
Hash
1abc8b74c87b871e50f65ddc6a3ebeb8
83514932157d2c9bc8728b7dd75639f9f74edf87
50749de3436b8ee27e894647d0f7882596b387e7b2e352ae725c6a9b7630bb06

HTTP Headers

GET /favicon-16x16.svg?v=2 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 11 Sep 2022 03:50:21 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRMWeC5vv4iysTCDVuf59oQok%2BQ%2B3eK4zBa3z61jokLM0VLD%2ByGImP3wnS3zdybf40LH0thXYR9SzTDTLXzKZctl9FEaCcvCHTvxTSWxZ%2Bh82LmiDKWLBO7y12y6e28XY30TZlo2YAup5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a767d5a76e9-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
940 B (940 bytes)
Hash
47630d29a4857e43a27bf33b4743cc3f
a32971733e2869923a4f5708e8bbc463f3c0184b
c86c141d6ef7df9231e6e5a30ab191ae47bcad3105fe2354be2e6def8d909124

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Thu, 15 Sep 2022 03:15:28 GMT
ETag: "a32971733e2869923a4f5708e8bbc463f3c0184b"
Last-Modified: Sun, 11 Sep 2022 03:15:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1622
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a775f08b4f9-OSL

counter.yadro.ru/hit;bookzz?r;s1280*1024*24;uhttp%3A//zlibrary.unblocked.love/book/2708361/d4ef2e;0.4238715920662479

88.212.201.198

200 OK

43 B

URL HTTP/1.1
counter.yadro.ru/hit;bookzz?r;s1280*1024*24;uhttp%3A//zlibrary.unblocked.love/book/2708361/d4ef2e;0.4238715920662479
IP
88.212.201.198:0
ASN
#39134 United Network LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /hit;bookzz?r;s1280*1024*24;uhttp%3A//zlibrary.unblocked.love/book/2708361/d4ef2e;0.4238715920662479 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Fri, 10 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400

matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=896653&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=sZiH6X&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135

172.67.219.82

301 Moved Permanently

169 B

URL HTTP/1.1
matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=896653&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=sZiH6X&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135
IP
172.67.219.82:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef

HTTP Headers

POST /matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=896653&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=sZiH6X&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135 HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=896653&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=sZiH6X&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40TpRBZ1kP1nXoneagWupcrKN5PAS7lpfxFck9jP3nmZNFkT0417jh7QFXvtkOhkKVOtQ%2FTG9MWBiWzUdomOlqdTv%2FW0x5PauBfl%2B6bXOr%2BibeNtSCC2ELRrpEKZbOUB4zoGXg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748e5a76ccfcb524-OSL
alt-svc: h2=":443"; ma=60

toshelmeton.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=8c8443159e0f4ec6900c140966355356

139.45.197.239

204 No Content

0 B

URL HTTP/2
toshelmeton.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=8c8443159e0f4ec6900c140966355356
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=8c8443159e0f4ec6900c140966355356 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ecma.sidebyz.com/j/m/w2.js.php

104.21.16.97

200 OK

265 B

URL HTTP/2
ecma.sidebyz.com/j/m/w2.js.php
IP
104.21.16.97:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (496)
Size
265 B (265 bytes)
Hash
843731c7c3031230de480453cdf49caf
17acd0d9dfb67c85f1a813c7eb4c9ca9cc07ac51
ad5500ee560b1cd5a4dcb690863c7c2e562141c0fccb091c8070663df1d9750e

HTTP Headers

GET /j/m/w2.js.php HTTP/1.1
Host: ecma.sidebyz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: application/javascript; charset=UTF-8
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NRBUjhYsk4hBRjea3kWRKZbkHxKrnfBDiClOb8lDRtQB8x3e7sVGaoQ%2FrDS5mF8Rib1Gmm9dj5i4qkZ3ouxgJflIo%2B14WgE0by9G4mye0ywAYvBxadyDKZPTFJod8DzOo%2FS1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 748e5a733f49b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

inpagepush.com/500/3064505?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

0 B

URL HTTP/1.1
inpagepush.com/500/3064505?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/3064505?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://zlibrary.unblocked.love
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a3eece998ad4c67578e3ae9e0b3bf414
e663a73e47fdb1669e10ae42c314cdd53f1ea98f
7b201df703d754c1d247eff3a7594550fcb1618a79a128bb01571aa868bc9bfe

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B201DF703D754C1D247EFF3A7594550FCB1618A79A128BB01571AA868BC9BFE"
Last-Modified: Sun, 11 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16302
Expires: Sun, 11 Sep 2022 11:01:54 GMT
Date: Sun, 11 Sep 2022 06:30:12 GMT
Connection: keep-alive

cdn.itskiddoan.club/?rb=GAWiQgp2CO3vAAAYNgbcJhLp1T5HEf6fR1pXdm6o9KiokTDu0FReEiYGSKL0Ri8Ov6xd3t2Iwg5o0l4G18gOg9hGXpEwVGlhQUTUfd6S2MQggo-fZcj4JJq4B15N10dqic1_E2fPgqL1PNAD9qN0kwQOQ9-Z6duuF24jQVBHf2YngAX-eDfgd2IYfAk81_BWyxBrj0TOhWzvl0mnKAYpwK61cN9ErCfVxOgh2A%3D%3D&request_ab2=0&zoneid=3388548&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=859f8226-5952-4647-8bcc-0295d86c2ca0&userId=8c8443159e0f4ec6900c140966355356&m=link

139.45.197.236

200 OK

1.8 kB

URL HTTP/1.1
cdn.itskiddoan.club/?rb=GAWiQgp2CO3vAAAYNgbcJhLp1T5HEf6fR1pXdm6o9KiokTDu0FReEiYGSKL0Ri8Ov6xd3t2Iwg5o0l4G18gOg9hGXpEwVGlhQUTUfd6S2MQggo-fZcj4JJq4B15N10dqic1_E2fPgqL1PNAD9qN0kwQOQ9-Z6duuF24jQVBHf2YngAX-eDfgd2IYfAk81_BWyxBrj0TOhWzvl0mnKAYpwK61cN9ErCfVxOgh2A%3D%3D&request_ab2=0&zoneid=3388548&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=859f8226-5952-4647-8bcc-0295d86c2ca0&userId=8c8443159e0f4ec6900c140966355356&m=link
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (2310), with no line terminators
Size
1.8 kB (1796 bytes)
Hash
9720d52e0e0d2f4c84d6ffec6a4c302d
7b60df6f1b43eea942c0648711183beaa34e67c1
da4d8c7155fe9c0e9ff9ada04a7f0d5063f2813eb5951c576d19310893c77e02

HTTP Headers

GET /?rb=GAWiQgp2CO3vAAAYNgbcJhLp1T5HEf6fR1pXdm6o9KiokTDu0FReEiYGSKL0Ri8Ov6xd3t2Iwg5o0l4G18gOg9hGXpEwVGlhQUTUfd6S2MQggo-fZcj4JJq4B15N10dqic1_E2fPgqL1PNAD9qN0kwQOQ9-Z6duuF24jQVBHf2YngAX-eDfgd2IYfAk81_BWyxBrj0TOhWzvl0mnKAYpwK61cN9ErCfVxOgh2A%3D%3D&request_ab2=0&zoneid=3388548&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=859f8226-5952-4647-8bcc-0295d86c2ca0&userId=8c8443159e0f4ec6900c140966355356&m=link HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: ccc8f0b194557101ce694f0120762d9e
Access-Control-Allow-Origin: http://zlibrary.unblocked.love
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/
oaidts=1662877812; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/
syncedCookie=true; expires=Sun, 18 Sep 2022 06:30:12 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a3eece998ad4c67578e3ae9e0b3bf414
e663a73e47fdb1669e10ae42c314cdd53f1ea98f
7b201df703d754c1d247eff3a7594550fcb1618a79a128bb01571aa868bc9bfe

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B201DF703D754C1D247EFF3A7594550FCB1618A79A128BB01571AA868BC9BFE"
Last-Modified: Sun, 11 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16302
Expires: Sun, 11 Sep 2022 11:01:54 GMT
Date: Sun, 11 Sep 2022 06:30:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c37f79a4828ae6b3a4a68a7c3f1aafba
4a3a31f3b2e93c6ac5c631ebb6df5f157c40d186
7969f5c92767551cda3b91dcdfc406c8b20412f452d1a6b3d02f8484e38ea1e8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7969F5C92767551CDA3B91DCDFC406C8B20412F452D1A6B3D02F8484E38EA1E8"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16671
Expires: Sun, 11 Sep 2022 11:08:03 GMT
Date: Sun, 11 Sep 2022 06:30:12 GMT
Connection: keep-alive

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL HTTP/2
glimtors.net/custom
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.203.49

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.203.49:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uljRnZ8KZcBh/AIA9ZgkBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +BS+yLi1OlmYzmc/SaXCTsgRGAc=

my.rtmark.net/gid.js?pub=0&userId=4d7d7dc5c0484f4682915b0f89ea1029&zoneId=2651991&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=4d7d7dc5c0484f4682915b0f89ea1029&zoneId=2651991&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
cc4b004833ef1658812bae7bd175d4e4
17b8008cd80ab212f66d0e0a629a33d3f12ae804
6dce08bb81e9fa82e6ba93311387205f6e3d2406b803b50e2d26bddbd929828d

HTTP Headers

GET /gid.js?pub=0&userId=4d7d7dc5c0484f4682915b0f89ea1029&zoneId=2651991&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Cookie: ID=8c8443159e0f4ec6900c140966355356
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

139.45.197.237

200 OK

1.2 kB

URL HTTP/1.1
inpagepush.com/500/3064505?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1451), with no line terminators
Size
1.2 kB (1172 bytes)
Hash
3771a6980cd0ed1ce624dd115d5e7469
83e1d40b309b0e16cd61a8d8173359b696dd62c2
6fbeb68603ea0d9832648f07be96c70f00985a335a7fe35a85c68ff88cbb86c0

HTTP Headers

GET /500/3064505?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 06:30:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: e2f6ff43891416c2d24db1ccc8abb0b3
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Vary: Origin
Access-Control-Allow-Origin: http://zlibrary.unblocked.love
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL HTTP/2
glimtors.net/custom
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Content-Length: 401
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 186dbc8d28ed04b61ae53a013034b2ed
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/tag.js

93.158.134.119

200 OK

72 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (674)
Size
72 kB (72380 bytes)
Hash
f948ad97d8bcc64c1eee91e4e703f3f5
b5c35b5c139ddec32fe96bf89863fcf0845262bf
0d2dc3bdec9010c5375ac3fab62d3f33c2a3f961c6c974f2c0da8d584ed441e1

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 72380
date: Sun, 11 Sep 2022 06:30:12 GMT
access-control-allow-origin: *
etag: "63186565-11abc"
expires: Sun, 11 Sep 2022 07:30:12 GMT
last-modified: Wed, 07 Sep 2022 12:33:25 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

toshelmeton.com/11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=188

139.45.197.239

200 OK

0 B

URL HTTP/2
toshelmeton.com/11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=188
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=188 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: scm=1; OAID=8c8443159e0f4ec6900c140966355356; oaidts=1662877811
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 05b62bf441447817dcb651ed90e700da
access-control-expose-headers: X-Sc
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59c711711cca1e9e7b8384608975d4f8
0bc201909f57181d6b461da1aa704d98672cf638
5ff8781ce423ff2bc30d55ea474fb59f47b128b241369acab886178784f21e09

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FF8781CE423FF2BC30D55EA474FB59F47B128B241369ACAB886178784F21E09"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11504
Expires: Sun, 11 Sep 2022 09:41:56 GMT
Date: Sun, 11 Sep 2022 06:30:12 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
948acca30381a2178ac8673c9399431a
55d6a2433c134aedf598159742c34756e47e5894
5b5317cd9ddf0e1c710aa8c54d360d4fbfa7fcaaa6c704a068a08f34fa223b05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5845
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 06:30:12 GMT
Last-Modified: Sun, 11 Sep 2022 04:52:47 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280

offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png

104.22.32.172

200 OK

66 kB

URL HTTP/2
offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png
IP
104.22.32.172:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
66 kB (66121 bytes)
Hash
3d08aacb36c7474e0d13b60f8f4adc14
e4af2de372b5e3a2211579a5973ef7ed160e7be4
54b0569cf052e12dd373e86031009d0a54a893275a21c2ef863277a9a978ab1c

HTTP Headers

GET /www/images/3d08aacb36c7474e0d13b60f8f4adc14.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: image/png
content-length: 66121
last-modified: Mon, 12 Oct 2020 05:50:58 GMT
etag: "5f83eec2-10249"
expires: Sun, 11 Sep 2022 12:30:54 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 64758
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a7a7c399909-ARN
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.22.169

200 OK

12 kB

URL HTTP/2
tzegilo.com/stattag.js
IP
104.21.22.169:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (32771), with no line terminators
Size
12 kB (12259 bytes)
Hash
cd7689e88fa42b48cad0e6a03c96d71e
8e162f01d03ec257ec1950acfa701ca0a49d0d0a
3660e197e5f92449db3e61d208bc784c59d486700cb476dffd2f458cd2779378

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6099
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bq3rS5aYJCsus56Hh5Sa4vdmg1CSJjtwUN9ALknoXAzcRQIdK2agpdPxjHw2Nw%2FkRwOVcpmw0HZcfn7TPD9GY06aov7elTHpm0B%2FGyRdFm66pjo%2Ft3TjndAqDfOyHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a7519e9fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13441
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 06:30:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6196248d34769fa746f3ce857cca25e3
7056a0fdc2a1f06e809165462c11e90cce742e3b
f0a10f2f7961a948de7f64b7530139b1a8abf691fd981f1b5a7c1afff2229c75

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0A10F2F7961A948DE7F64B7530139B1A8ABF691FD981F1B5A7C1AFFF2229C75"
Last-Modified: Thu, 08 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=330
Expires: Sun, 11 Sep 2022 06:35:43 GMT
Date: Sun, 11 Sep 2022 06:30:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13441
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 06:30:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13441
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 06:30:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13441
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 06:30:13 GMT
Connection: keep-alive

interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png

139.45.197.153

200 OK

45 kB

URL HTTP/2
interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
45 kB (45133 bytes)
Hash
36d8c29c866059b85b47752a6cc71b81
2d877eabf6710f66f5d7a3e265de997cf258ba32
0bbd2d8d16b4fd96c0a0dabecbd05ca573b30cd7079950d73b5dd68bde69a27b

HTTP Headers

GET /contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: image/png
content-length: 45133
last-modified: Thu, 14 Jul 2022 23:23:43 GMT
etag: "62d0a57f-b04d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5752 bytes)
Hash
12666d69f9af3ceb23fdfc2100bd3226
c4d17e3ea44ef6dee9819c1586424e5f056f149c
054236a4d1f88a486f48b8f3a8ac01d21ec2179d5b1f3fc9791d0982d07a88a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5752
x-amzn-requestid: 622ffff0-1bd5-4eb4-a9ff-eb54c5ae44a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqiFiToAMF0tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f310-49efdcc572b4fad3543f857d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VKsU4S6tKOso216JLUWn7b1bKDyfruIVukt98JooNCjwaXDT9bkPYQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 19:50:13 GMT
age: 38400
etag: "c4d17e3ea44ef6dee9819c1586424e5f056f149c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7017 bytes)
Hash
fea5dfc4a6a5093fd81899ee4a79d446
c893d7475856809a59486e0bcebd6d662d1fc56f
915fb97690be97d97cb298fc60ceb4cf7c3ed8fb437836beb2d590a8e238363c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: df5e57d7-e54c-4b5a-aa1b-a9aee889842e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_Et0oAMFSjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-50d15bba03579a935342e22f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YRgmbTGaMvU9Kf47U90cPYhgpXaYgoNVA8ut6LOUStK4UfWahpSqVA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:08 GMT
age: 31745
etag: "c893d7475856809a59486e0bcebd6d662d1fc56f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dozubatan.com/400/4495524?oo=1&oaid=8c8443159e0f4ec6900c140966355356

139.45.197.237

200 OK

10 kB

URL HTTP/2
dozubatan.com/400/4495524?oo=1&oaid=8c8443159e0f4ec6900c140966355356
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
data
Size
10 kB (10102 bytes)
Hash
ff5aec0a4057ee1974bd2e060088be62
df0808fc847b00a76b66bb9611199e962345fbe5
10f65ba3b9d144fa24fa1d2bfcdfcabff6c6f56675c84da76682945e7de4713d

HTTP Headers

GET /400/4495524?oo=1&oaid=8c8443159e0f4ec6900c140966355356 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json
x-trace-id: bfb6c6f030e71cf5f476c78ace752912
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6889 bytes)
Hash
57d797a1c3f6589746a1135bdb19f54f
7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BPWrjstB3xKeYzHK9eQoJL8ORgRFsqjmNxu0j10epBANBtZCRU-m2g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:06 GMT
age: 31627
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.itskiddoan.club/apu.php?zoneid=3388548

139.45.197.236

200 OK

41 kB

URL HTTP/2
cdn.itskiddoan.club/apu.php?zoneid=3388548
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
data
Size
41 kB (40998 bytes)
Hash
41b7257a6d5ceedfeaf12f70c7ac7d7f
fb189bcaa5be6537b0f54c52e74912ad8af22b54
ce851a4caad1665a5c326649a60f1ecd14a1931e0e4af69d204f57921f6ed62a

HTTP Headers

GET /apu.php?zoneid=3388548 HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/javascript
x-trace-id: 39a3776e91a410dcf4a48f8758b941b2
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=43087608a0804e2a8467bbf95a721b6d; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
oaidts=1662877812; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6269 bytes)
Hash
47ae5cf125ce99bad80c283de8a85cec
0c0c1f84d8693d0c150c97faed21204622d48132
95f5b8cddbfcdb2b6105ed5a0d5ff0dd86390839e5df7416d4f879d69fcf20c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6269
x-amzn-requestid: 8f3cabdd-78c3-47d2-841b-02b674a79123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FSCoAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-4b44c935456026ba700a5759;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3lrbjYxWvd1Cm5rO-XAy1tCULAXdaeVZJAPCImd9GqQC7uZ3r3TxeA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:46:28 GMT
age: 31425
etag: "0c0c1f84d8693d0c150c97faed21204622d48132"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 11 Sep 2022 06:30:13 GMT
access-control-allow-origin: *
etag: "63186565-2b"
expires: Sun, 11 Sep 2022 07:30:13 GMT
accept-ranges: bytes
last-modified: Wed, 07 Sep 2022 12:33:25 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

rndskittytor.com/401/4837723?oo=1&oaid=8c8443159e0f4ec6900c140966355356

139.45.197.238

200 OK

112 kB

URL HTTP/2
rndskittytor.com/401/4837723?oo=1&oaid=8c8443159e0f4ec6900c140966355356
IP
139.45.197.238:0
ASN
#9002 RETN Limited

File type
data
Size
112 kB (111872 bytes)
Hash
db9a00849f952c48bd41fe75aec02fee
e9216bd77184ae1bd9a3ce24f635752ad22e3822
46c25c86dbd9f8e23dbcf77d683ec842ca79bae9e06b4e9b1deea882fb2b0304

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /401/4837723?oo=1&oaid=8c8443159e0f4ec6900c140966355356 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json
x-trace-id: ddaf42292969ea74ade8e69fdb187bba
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL HTTP/2
glimtors.net/custom
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Content-Length: 398
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9f15ee4975d33eb41fedc831fb5f5582
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

dozubatan.com/500/4495524?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

0 B

URL HTTP/2
dozubatan.com/500/4495524?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/4495524?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

unphionetor.com/vctx?t=72747

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vctx?t=72747
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: b075f3bf574d42748b71f7717fc5c620
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL HTTP/2
glimtors.net/custom
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Content-Length: 770
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9bc536feff7c6fbb5d6779ee069f0242
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

unphionetor.com/fv.js?t=72747&cb=857469063

139.45.197.236

200 OK

2.2 kB

URL HTTP/2
unphionetor.com/fv.js?t=72747&cb=857469063
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (5213), with no line terminators
Size
2.2 kB (2153 bytes)
Hash
0254fb1dad74628b7ad0f97d304fac92
35f7af13a08eb87023ec7df4d3c35c21b2cde79d
47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /fv.js?t=72747&cb=857469063 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 29d5f5b16a96357c8fdc468e54f3c8c1
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=110067&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3q70YP&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135

172.67.219.82

301 Moved Permanently

169 B

URL HTTP/1.1
matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=110067&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3q70YP&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135
IP
172.67.219.82:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef

HTTP Headers

POST /matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=110067&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3q70YP&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135 HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 06:30:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.php?action_name=Self-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&idsite=1&rec=1&r=110067&h=6&m=30&s=1&url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&_id=5b48a79b72b42592&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3q70YP&pf_net=0&pf_srv=82&pf_tfr=170&pf_dm1=1135
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JReWcN2c3uv1NndfjN9Y2DiYnE6B8%2F%2FKFKm9C6IKaarXTBzFneHGlaYXqxq3AWIyLVEJt1nOZ2Dv%2B6xa7HC6UgvCD1LvtsxaxFJ8%2ByjJ5hS4A0dgMMXe5rAgnsevmrQflYZEoA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748e5a7be9b4b524-OSL
alt-svc: h2=":443"; ma=60

skipdearbeautify.com/sbar.json?key=a286902791a7f4c98bcb1e812322cd78&uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739%3A3%3A1

192.243.59.12

200 OK

4.1 kB

URL HTTP/1.1
skipdearbeautify.com/sbar.json?key=a286902791a7f4c98bcb1e812322cd78&uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739%3A3%3A1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (5693), with no line terminators
Size
4.1 kB (4147 bytes)
Hash
b800f64d1ef995553b82c461da1751e4
789a55030e98e20a080f7db660e0a4fdb8b31bde
db5eaaf63095e021ceae41814db00595f9d96df0c71e5ca328874fbcba8be9ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=a286902791a7f4c98bcb1e812322cd78&uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739%3A3%3A1 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://zlibrary.unblocked.love
Access-Control-Allow-Origin: http://zlibrary.unblocked.love
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15816950; expires=Mon, 12 Sep 2022 06:30:13 GMT; secure; SameSite=None
uid_id2=d4655ec6-99bf-4ff6-9d57-5bb7861b1739:3:1; expires=Sun, 18 Sep 2022 06:30:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 12 Sep 2022 06:30:13 GMT; secure; SameSite=None
uncs=1; expires=Mon, 12 Sep 2022 06:30:13 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 12 Sep 2022 06:30:13 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 12 Sep 2022 06:30:13 GMT; secure; SameSite=None
sleca286902791a7f4c98bcb1e812322cd78=[3364903]; expires=Sun, 11 Sep 2022 06:30:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0514a494b48cdc5406c0f56ec7ae0f8c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

139.45.197.237

200 OK

1.6 kB

URL HTTP/2
dozubatan.com/500/4495524?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
data
Size
1.6 kB (1588 bytes)
Hash
6d2f65b138e3e0fc56ebcf6a59734a94
0a92d4d6f22ca98764d62602a10d91c9296ed64c
1b5502e1265436da4513d2f62a08294108f2baf1ee7c0511b8eae81e5c65ef7c

HTTP Headers

GET /500/4495524?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: OAID=8c8443159e0f4ec6900c140966355356
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:13 GMT
content-type: application/javascript
x-trace-id: 92e0f69d626b6ba6d19f0a02841035d8
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:13 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

skipdearbeautify.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSTW8b1RfG7zRZ%2FKX%2FCtQNSEUWQgIk4syM7RkPXVSUElSRvqgF0R3cl7F78fXc0b1zPU5WERVVd7jfYPI4aVSIEEiwpEJOpS4iIcVsyIJ8hwopKxbIboThbM459zmL33nOvb%2FtTogPR4%2BvXNObUim62qr7tbfuBMHF2rrM3LA2bEefRc2LNTN4N4nq%2Ftu1D1Pe06uhH%2Fh%2B4Ae1NWnSjh6uzkTIfD8J6olfb4b1oNXE0Py3t86DpR7E4IS8DCmmy0%2B985B8gqz%2F%2FZXU9gqdv%2FNB3ylaaIOB2Psk62W6zNBflB3joZPtnU1D26O1J9DZ7hwXevDPIJNT4j17ApbtnUGCDXbmnEwhzcDE%2F1EOJkjVBJJOwPU9SHFEAC5w%2FQay%2FqPr2pR044VKZ%2BqULJ%2F%2BCVlOyfIf55H1v7us5LB2WytXSJ1ZDDsV5HAC2Z0gdwcoNs9BlgfgxZeQ4leyerqOrL9zwyoNKY7fEM2o1Up5tJIkrLPS7HSilUS04pUWY3E7ClgQN5K5QVJOIDsTqHQEapfgrAcnPbiOB5d76IvjGg%2BCIPYFp3474bwh4pRFwg9o3Alo4EdtOD7bYYQiH4GrEbjZQm620JMPj5o%2FwbhfYO9WsMKDLQgGokKZEpSWoKQEpSQoC4JyUO0KZUNbPRLKOhac5fAsN6qxLrrbdFcX3TQj2%2FkJeWnu3fM7p%2BilxzUatqPED%2BNkxtbkSZtxFqTtIGyEIRdxG1ZWkPYcqPWwObtjdYJcTgn5%2BncwegCrDsDl66DuAmg5jkMf9O642faxme27jCnNe6moSwGhK%2BTFMooNb1udkFfmHI07byLlh5c%2BZ9emzx%2F%2FBW4q5KbCF%2FIpQVc9GN%2FSJdm5pUtLfriRF7IvN%2BnsvrcLWqRL33yUbpTaiKtX7Ojxe3wmzMr9j1NbrNNMyKxrybeXpRCpWdOGp%2BTnq%2FbTlN109u5lZzKXr998f%2B1qPzeptVJnE9DZas8OweWU%2FO%2FH3fnXffWr%2B5BmAuMq9N0hOQtIfQCeb8HmC36rl2DUYoblHkpXjU3IFo9KEqh00VNWwf6rZ4t62z5A17wGWtxD1q8wMBUGqgJVI1i3NC5yc3jpt8Y8wJQ3Zsp4O0wZ9fCFuVYe1%2BJGw6dR0grimKYxa4btThQISsNmFEYRbaCwU35hy%2F0NAAD%2F%2FwEAAP%2F%2FzUdUlIUEAAA%3D

192.243.59.12

200 OK

7 B

URL HTTP/1.1
skipdearbeautify.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSTW8b1RfG7zRZ%2FKX%2FCtQNSEUWQgIk4syM7RkPXVSUElSRvqgF0R3cl7F78fXc0b1zPU5WERVVd7jfYPI4aVSIEEiwpEJOpS4iIcVsyIJ8hwopKxbIboThbM459zmL33nOvb%2FtTogPR4%2BvXNObUim62qr7tbfuBMHF2rrM3LA2bEefRc2LNTN4N4nq%2Ftu1D1Pe06uhH%2Fh%2B4Ae1NWnSjh6uzkTIfD8J6olfb4b1oNXE0Py3t86DpR7E4IS8DCmmy0%2B985B8gqz%2F%2FZXU9gqdv%2FNB3ylaaIOB2Psk62W6zNBflB3joZPtnU1D26O1J9DZ7hwXevDPIJNT4j17ApbtnUGCDXbmnEwhzcDE%2F1EOJkjVBJJOwPU9SHFEAC5w%2FQay%2FqPr2pR044VKZ%2BqULJ%2F%2BCVlOyfIf55H1v7us5LB2WytXSJ1ZDDsV5HAC2Z0gdwcoNs9BlgfgxZeQ4leyerqOrL9zwyoNKY7fEM2o1Up5tJIkrLPS7HSilUS04pUWY3E7ClgQN5K5QVJOIDsTqHQEapfgrAcnPbiOB5d76IvjGg%2BCIPYFp3474bwh4pRFwg9o3Alo4EdtOD7bYYQiH4GrEbjZQm620JMPj5o%2FwbhfYO9WsMKDLQgGokKZEpSWoKQEpSQoC4JyUO0KZUNbPRLKOhac5fAsN6qxLrrbdFcX3TQj2%2FkJeWnu3fM7p%2BilxzUatqPED%2BNkxtbkSZtxFqTtIGyEIRdxG1ZWkPYcqPWwObtjdYJcTgn5%2BncwegCrDsDl66DuAmg5jkMf9O642faxme27jCnNe6moSwGhK%2BTFMooNb1udkFfmHI07byLlh5c%2BZ9emzx%2F%2FBW4q5KbCF%2FIpQVc9GN%2FSJdm5pUtLfriRF7IvN%2BnsvrcLWqRL33yUbpTaiKtX7Ojxe3wmzMr9j1NbrNNMyKxrybeXpRCpWdOGp%2BTnq%2FbTlN109u5lZzKXr998f%2B1qPzeptVJnE9DZas8OweWU%2FO%2FH3fnXffWr%2B5BmAuMq9N0hOQtIfQCeb8HmC36rl2DUYoblHkpXjU3IFo9KEqh00VNWwf6rZ4t62z5A17wGWtxD1q8wMBUGqgJVI1i3NC5yc3jpt8Y8wJQ3Zsp4O0wZ9fCFuVYe1%2BJGw6dR0grimKYxa4btThQISsNmFEYRbaCwU35hy%2F0NAAD%2F%2FwEAAP%2F%2FzUdUlIUEAAA%3D
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSTW8b1RfG7zRZ%2FKX%2FCtQNSEUWQgIk4syM7RkPXVSUElSRvqgF0R3cl7F78fXc0b1zPU5WERVVd7jfYPI4aVSIEEiwpEJOpS4iIcVsyIJ8hwopKxbIboThbM459zmL33nOvb%2FtTogPR4%2BvXNObUim62qr7tbfuBMHF2rrM3LA2bEefRc2LNTN4N4nq%2Ftu1D1Pe06uhH%2Fh%2B4Ae1NWnSjh6uzkTIfD8J6olfb4b1oNXE0Py3t86DpR7E4IS8DCmmy0%2B985B8gqz%2F%2FZXU9gqdv%2FNB3ylaaIOB2Psk62W6zNBflB3joZPtnU1D26O1J9DZ7hwXevDPIJNT4j17ApbtnUGCDXbmnEwhzcDE%2F1EOJkjVBJJOwPU9SHFEAC5w%2FQay%2FqPr2pR044VKZ%2BqULJ%2F%2BCVlOyfIf55H1v7us5LB2WytXSJ1ZDDsV5HAC2Z0gdwcoNs9BlgfgxZeQ4leyerqOrL9zwyoNKY7fEM2o1Up5tJIkrLPS7HSilUS04pUWY3E7ClgQN5K5QVJOIDsTqHQEapfgrAcnPbiOB5d76IvjGg%2BCIPYFp3474bwh4pRFwg9o3Alo4EdtOD7bYYQiH4GrEbjZQm620JMPj5o%2FwbhfYO9WsMKDLQgGokKZEpSWoKQEpSQoC4JyUO0KZUNbPRLKOhac5fAsN6qxLrrbdFcX3TQj2%2FkJeWnu3fM7p%2BilxzUatqPED%2BNkxtbkSZtxFqTtIGyEIRdxG1ZWkPYcqPWwObtjdYJcTgn5%2BncwegCrDsDl66DuAmg5jkMf9O642faxme27jCnNe6moSwGhK%2BTFMooNb1udkFfmHI07byLlh5c%2BZ9emzx%2F%2FBW4q5KbCF%2FIpQVc9GN%2FSJdm5pUtLfriRF7IvN%2BnsvrcLWqRL33yUbpTaiKtX7Ojxe3wmzMr9j1NbrNNMyKxrybeXpRCpWdOGp%2BTnq%2FbTlN109u5lZzKXr998f%2B1qPzeptVJnE9DZas8OweWU%2FO%2FH3fnXffWr%2B5BmAuMq9N0hOQtIfQCeb8HmC36rl2DUYoblHkpXjU3IFo9KEqh00VNWwf6rZ4t62z5A17wGWtxD1q8wMBUGqgJVI1i3NC5yc3jpt8Y8wJQ3Zsp4O0wZ9fCFuVYe1%2BJGw6dR0grimKYxa4btThQISsNmFEYRbaCwU35hy%2F0NAAD%2F%2FwEAAP%2F%2FzUdUlIUEAAA%3D HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: u_pl=15816950; uid_id2=d4655ec6-99bf-4ff6-9d57-5bb7861b1739:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:13 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b32a0b803963b5a4d334aea8adbed8c8
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=a286902791a7f4c98bcb1e812322cd78&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6

192.243.59.13

200 OK

1 B

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=a286902791a7f4c98bcb1e812322cd78&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=d4655ec6-99bf-4ff6-9d57-5bb7861b1739&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=a286902791a7f4c98bcb1e812322cd78&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b86a7fb8063e75a051582b0e4e2c44ae
Strict-Transport-Security: max-age=0; includeSubdomains

e1.o.lencr.org/

95.101.11.115

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Sun, 11 Sep 2022 07:38:38 GMT
Date: Sun, 11 Sep 2022 06:30:14 GMT
Connection: keep-alive

e1.o.lencr.org/

95.101.11.115

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Sun, 11 Sep 2022 07:38:38 GMT
Date: Sun, 11 Sep 2022 06:30:14 GMT
Connection: keep-alive

e1.o.lencr.org/

95.101.11.115

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Sun, 11 Sep 2022 07:38:38 GMT
Date: Sun, 11 Sep 2022 06:30:14 GMT
Connection: keep-alive

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/icon.jpg

172.67.183.56

200 OK

83 kB

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/icon.jpg
IP
172.67.183.56:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=821, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1232], progressive, precision 8, 435x290, components 3\012- data
Size
83 kB (82807 bytes)
Hash
85f73b8e6875d66c6d73ebdefc72c793
7281bfc203aa9c27601828765ba37b28b79c2476
f2772dd68c9e122cb84b4c535502d3c7034437ca7c053fc781da626cf1a1064f

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/icon.jpg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:14 GMT
content-type: image/jpeg
content-length: 82807
last-modified: Tue, 08 Feb 2022 14:25:26 GMT
etag: "62027d56-14377"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3356671
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ygzJN0DDVvQ8NTLWSoiHvJJl1qb%2BgEG%2BIzz3z1hcfFGHG2K4hJ1WRwOTc1lOiszapwAHwBEwTbi1c7GUT2xfnSpmF%2BJVT6gZboPufd9n3YfGR4o%2BwbPCCNsFGxl0JH5oa4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a81fe4eb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Sun, 11 Sep 2022 07:38:38 GMT
Date: Sun, 11 Sep 2022 06:30:14 GMT
Connection: keep-alive

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.10

200 OK

660 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
660 B (660 bytes)
Hash
55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 11 Sep 2022 06:30:14 GMT
Date: Sun, 11 Sep 2022 06:30:14 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Findex.html&l=1659&fd=633

192.243.59.12

200 OK

0 B

URL HTTP/1.1
skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Findex.html&l=1659&fd=633
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Findex.html&l=1659&fd=633 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=357

192.243.59.12

200 OK

0 B

URL HTTP/1.1
skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=357
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=357 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Sep 2022 20:15:31 GMT
Expires: Thu, 07 Sep 2023 20:15:31 GMT
Cache-Control: public, max-age=31536000
Age: 296083
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Sep 2022 20:15:31 GMT
Expires: Thu, 07 Sep 2023 20:15:31 GMT
Cache-Control: public, max-age=31536000
Age: 296083
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2

skipdearbeautify.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tc1RvGz22y%2BMJ3pXSjUBlEUMFM7p3fYxfFWiPBtCmtYnZ6ft3Jcc7ccznnnrmTrILF0p3T%2F%2BDmmaShGkRBlxaZFLoICBk3ZmH%2BhyJk5UJmGhx9N%2B%2F7nuddfN7nPfd3%2FRkJ4enpjZtmW2lNl%2BvlsPTWRhRdLa2pxA9Kg1bjs0btasn23203yuHbpQ8l75rlShiFYRRGpRVlZWwGy1MRKj1sR%2BV2WK5VylG9hoH9b%2B98AEcDiP4ZeRlKTBafBpeh%2BBhJ7%2Fsb0nUzk77zQc9rmhmLvjj4JOkmJk%2FQm5exDRAnBxfTMO5k5QlMsj%2FDhen%2FM8jUhATPnoAlBxeQYP29GSfTkAmY%2BD%2Fy%2FhhSj6HoGNzcgxInBOACt9aR9B7dMjanWy9UOlUnZPH8T6h8Qhb%2FuIyk9911rQalu0b7TJnEYRAXUIMxVGeM1B8h274ElR%2BBZ19CiV%2FJ8vkakt7eutMGSpy%2BIWqNel3yxlK7zeKlWhw3ltqi3lyqM9ZsNSIWNavtmUFKjaHiMbQcgroFeBfAqwA%2BDuDTAD1xWuJRFDVDwWnYanNeFU3JGiKMaDOOaBQ2WvB8usMQWToE10Nwu4PU7qCrHp7UfoL1v8BtFnAigMsI%2BqJALglyR5BTglwR5BlB3i%2F2hXYVVzwS2nkWXeTKRa4WI5N1dum%2ByToyIbvpGXlp5t3zjXN05WmJVlqNdlhptqdsNd5uMc4i2Yoq1UqFi2YLThVQ7hKoC7A9vWNxhlRNCPn6dzB6BKePwNXroP4KaD5qVkLQzVGtFWI7OfQJ04Z3pSgrAWEKpNkisq1gV5%2BRV2Yc1Y03Ifnxtc%2FZzcnzx3%2BB2wKpLfCFekrQ0Q9Gd0xO9u6Y3JEf1tNM9dQ2nd73bkYzufDNR3IrN1as3nDDx%2B%2FxqTAtDz%2BWLlujiVBJx5FvryshpF0xlkvy86r7VLLb3m1e9zbx6drt91dWe6mVzimTjEGnqz07BlcT8r8f92df99Wv7kPZMawv0PPH5CKgzBF4ugOXzvmdWYDV8xmWBsh9MbIVNn%2FUikDLeU9ZAfevns3rXfcAHfsaaHYPSa9A3xbo6wJUD%2BH8wihL7fG136qzANPBiGkb7DFt9cMX5jp1WqqGoslkLJtM1uq1WHLB6nUW8pizqmi1ODI34Vd2%2FN8AAAD%2F%2FwEAAP%2F%2FTZOBfIUEAAA%3D

192.243.59.12

200 OK

7 B

URL HTTP/1.1
skipdearbeautify.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tc1RvGz22y%2BMJ3pXSjUBlEUMFM7p3fYxfFWiPBtCmtYnZ6ft3Jcc7ccznnnrmTrILF0p3T%2F%2BDmmaShGkRBlxaZFLoICBk3ZmH%2BhyJk5UJmGhx9N%2B%2F7nuddfN7nPfd3%2FRkJ4enpjZtmW2lNl%2BvlsPTWRhRdLa2pxA9Kg1bjs0btasn23203yuHbpQ8l75rlShiFYRRGpRVlZWwGy1MRKj1sR%2BV2WK5VylG9hoH9b%2B98AEcDiP4ZeRlKTBafBpeh%2BBhJ7%2Fsb0nUzk77zQc9rmhmLvjj4JOkmJk%2FQm5exDRAnBxfTMO5k5QlMsj%2FDhen%2FM8jUhATPnoAlBxeQYP29GSfTkAmY%2BD%2Fy%2FhhSj6HoGNzcgxInBOACt9aR9B7dMjanWy9UOlUnZPH8T6h8Qhb%2FuIyk9911rQalu0b7TJnEYRAXUIMxVGeM1B8h274ElR%2BBZ19CiV%2FJ8vkakt7eutMGSpy%2BIWqNel3yxlK7zeKlWhw3ltqi3lyqM9ZsNSIWNavtmUFKjaHiMbQcgroFeBfAqwA%2BDuDTAD1xWuJRFDVDwWnYanNeFU3JGiKMaDOOaBQ2WvB8usMQWToE10Nwu4PU7qCrHp7UfoL1v8BtFnAigMsI%2BqJALglyR5BTglwR5BlB3i%2F2hXYVVzwS2nkWXeTKRa4WI5N1dum%2ByToyIbvpGXlp5t3zjXN05WmJVlqNdlhptqdsNd5uMc4i2Yoq1UqFi2YLThVQ7hKoC7A9vWNxhlRNCPn6dzB6BKePwNXroP4KaD5qVkLQzVGtFWI7OfQJ04Z3pSgrAWEKpNkisq1gV5%2BRV2Yc1Y03Ifnxtc%2FZzcnzx3%2BB2wKpLfCFekrQ0Q9Gd0xO9u6Y3JEf1tNM9dQ2nd73bkYzufDNR3IrN1as3nDDx%2B%2FxqTAtDz%2BWLlujiVBJx5FvryshpF0xlkvy86r7VLLb3m1e9zbx6drt91dWe6mVzimTjEGnqz07BlcT8r8f92df99Wv7kPZMawv0PPH5CKgzBF4ugOXzvmdWYDV8xmWBsh9MbIVNn%2FUikDLeU9ZAfevns3rXfcAHfsaaHYPSa9A3xbo6wJUD%2BH8wihL7fG136qzANPBiGkb7DFt9cMX5jp1WqqGoslkLJtM1uq1WHLB6nUW8pizqmi1ODI34Vd2%2FN8AAAD%2F%2FwEAAP%2F%2FTZOBfIUEAAA%3D
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tc1RvGz22y%2BMJ3pXSjUBlEUMFM7p3fYxfFWiPBtCmtYnZ6ft3Jcc7ccznnnrmTrILF0p3T%2F%2BDmmaShGkRBlxaZFLoICBk3ZmH%2BhyJk5UJmGhx9N%2B%2F7nuddfN7nPfd3%2FRkJ4enpjZtmW2lNl%2BvlsPTWRhRdLa2pxA9Kg1bjs0btasn23203yuHbpQ8l75rlShiFYRRGpRVlZWwGy1MRKj1sR%2BV2WK5VylG9hoH9b%2B98AEcDiP4ZeRlKTBafBpeh%2BBhJ7%2Fsb0nUzk77zQc9rmhmLvjj4JOkmJk%2FQm5exDRAnBxfTMO5k5QlMsj%2FDhen%2FM8jUhATPnoAlBxeQYP29GSfTkAmY%2BD%2Fy%2FhhSj6HoGNzcgxInBOACt9aR9B7dMjanWy9UOlUnZPH8T6h8Qhb%2FuIyk9911rQalu0b7TJnEYRAXUIMxVGeM1B8h274ElR%2BBZ19CiV%2FJ8vkakt7eutMGSpy%2BIWqNel3yxlK7zeKlWhw3ltqi3lyqM9ZsNSIWNavtmUFKjaHiMbQcgroFeBfAqwA%2BDuDTAD1xWuJRFDVDwWnYanNeFU3JGiKMaDOOaBQ2WvB8usMQWToE10Nwu4PU7qCrHp7UfoL1v8BtFnAigMsI%2BqJALglyR5BTglwR5BlB3i%2F2hXYVVzwS2nkWXeTKRa4WI5N1dum%2ByToyIbvpGXlp5t3zjXN05WmJVlqNdlhptqdsNd5uMc4i2Yoq1UqFi2YLThVQ7hKoC7A9vWNxhlRNCPn6dzB6BKePwNXroP4KaD5qVkLQzVGtFWI7OfQJ04Z3pSgrAWEKpNkisq1gV5%2BRV2Yc1Y03Ifnxtc%2FZzcnzx3%2BB2wKpLfCFekrQ0Q9Gd0xO9u6Y3JEf1tNM9dQ2nd73bkYzufDNR3IrN1as3nDDx%2B%2FxqTAtDz%2BWLlujiVBJx5FvryshpF0xlkvy86r7VLLb3m1e9zbx6drt91dWe6mVzimTjEGnqz07BlcT8r8f92df99Wv7kPZMawv0PPH5CKgzBF4ugOXzvmdWYDV8xmWBsh9MbIVNn%2FUikDLeU9ZAfevns3rXfcAHfsaaHYPSa9A3xbo6wJUD%2BH8wihL7fG136qzANPBiGkb7DFt9cMX5jp1WqqGoslkLJtM1uq1WHLB6nUW8pizqmi1ODI34Vd2%2FN8AAAD%2F%2FwEAAP%2F%2FTZOBfIUEAAA%3D HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: u_pl=15816950; uid_id2=d4655ec6-99bf-4ff6-9d57-5bb7861b1739:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 894284318c26dfa50cf5b70c37a9be06
Strict-Transport-Security: max-age=0; includeSubdomains

192.243.59.12

200 OK

0 B

URL HTTP/1.1
skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fanimate.css&l=79245&fd=364
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fanimate.css&l=79245&fd=364 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

192.243.59.12

200 OK

0 B

URL HTTP/1.1
skipdearbeautify.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fjs%2Fscript.js&l=468&fd=385
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fjs%2Fscript.js&l=468&fd=385 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

skipdearbeautify.com/pixel/sbs?c=1

192.243.59.12

200 OK

0 B

URL HTTP/1.1
skipdearbeautify.com/pixel/sbs?c=1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: skipdearbeautify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: u_pl=15816950; uid_id2=d4655ec6-99bf-4ff6-9d57-5bb7861b1739:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 11 Sep 2022 06:30:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

rndskittytor.com/500/4837723?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.238

200 OK

0 B

URL HTTP/2
rndskittytor.com/500/4837723?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.238:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /500/4837723?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:17 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

toshelmeton.com/11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.239

200 OK

0 B

URL HTTP/2
toshelmeton.com/11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /11?rnd=3951939512&z=3372123&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=Pz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg==&ruid=1d4055d7-c498-4754-af50-31032098c8fe&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: scm=1; OAID=8c8443159e0f4ec6900c140966355356; oaidts=1662877811
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:17 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 49ea646aa735caea9c127e519d6ccc24
access-control-expose-headers: X-Sc
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:17 GMT; secure; SameSite=None
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:17 GMT; secure; SameSite=None
oaidvc=1; expires=Mon, 11 Sep 2023 06:30:17 GMT; secure; SameSite=None
CNT=1_v1_2eDWAAEAAAAuSwAA; expires=Sun, 11 Sep 2022 07:30:17 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

metrica-yandex.com/metrika/tag.js?1001

172.67.193.32

200 OK

0 B

URL HTTP/2
metrica-yandex.com/metrika/tag.js?1001
IP
172.67.193.32:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /metrika/tag.js?1001 HTTP/1.1
Host: metrica-yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:10 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Sep 2021 23:00:22 GMT
etag: W/"61564186-eb6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 29833785
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4FwL6aiiXklMnsw4CglwtgvlRhn%2Bl34CP70E7f%2FqO0YiLpIduHhupCDag%2B1DeEP4Tqr%2Fs9cZGMl7gUwl061H%2BVRzvboLWidIGS%2BAR741XkUMGFib2jwc5W5rRdQS9ROtwuAJp1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a6d6b240b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html

104.26.7.19

200 OK

0 B

URL HTTP/2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html
IP
104.26.7.19:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:13 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 11:25:40 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2kY1ExAo4e1Mu4EageDbJiEEFcLe5%2BFMaLxIgLYKK%2FW1AFI73wxelNHbG1AZWrpFtVbqOabqOgCr8UHnn%2BcSAdqQeIsKZpHpkrKE3e3o7TFb%2BovdrAfiLMXQNTSdbAMNyOlrLnw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a7d6b85b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css

172.67.183.56

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css
IP
172.67.183.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:14 GMT
content-type: text/css
last-modified: Mon, 17 Jan 2022 14:25:59 GMT
etag: W/"61e57c77-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWmeo3m1cOeo4VxRQcpyoIzmVZbIeI7J1SLj5EUVGjGb8OzLsJqTIlhEi8tU63Q0fT5awYQhue%2F5x7WHN9vzStT%2BVsu1bpWkGhhDWJsB64p9oSpSoYkXXbWb6fPF4hO0Qwc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a81ce09b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zlibrary.unblocked.love/resources/build/global.js?0.458

104.21.234.171

200 OK

0 B

URL HTTP/1.1
zlibrary.unblocked.love/resources/build/global.js?0.458
IP
104.21.234.171:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/build/global.js?0.458 HTTP/1.1
Host: zlibrary.unblocked.love
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/book/2708361/d4ef2e

HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 06:30:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1120
Last-Modified: Sun, 11 Sep 2022 06:11:31 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qUr0oD4wU2kmu2boA184aIIq8Ide5klpaO9lYMaJnIxn5D2un0Ob7KNdm%2FaBAbYAVVty22F3uKy4PjaToGDL71bFHEFsXq6onL8nw%2FHmSGbXHF0moNvdTKiXlQggLGzXJP8r86SZkSF0ew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748e5a6f2b977193-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css

172.67.183.56

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css
IP
172.67.183.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:14 GMT
content-type: text/css
last-modified: Wed, 09 Feb 2022 11:25:27 GMT
etag: W/"6203a4a7-2751"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xof0jFT9ORllVQa1Yr9zfpzWB7dKzhpwlL%2FSS5CWzNE%2Bc%2BumInXzNfqiFYHRao8JmybZQBHZJppGv%2FvscRsSCxmjTadoZkORzqvm7HmMCo1yKmhW%2FU%2BSROG%2Bv3dMjv%2BrSiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a81cdf6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

139.45.197.238

200 OK

0 B

URL HTTP/2
rndskittytor.com/500/4837723?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.238:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /500/4837723?excludes=&oaid=8c8443159e0f4ec6900c140966355356&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: OAID=8c8443159e0f4ec6900c140966355356
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:17 GMT
content-type: application/javascript
x-trace-id: 681e138de78cd1d190642f2154aac847
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.153

200 OK

0 B

URL HTTP/2
interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftoshelmeton.com%2F12%3Frnd%3D3836201010%26z%3D3372123%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DPz2OVLKgfFu80uOxDj6eeIWMsaAEc7iSNfA6QQv6Ww4OWBJ2TFfDvphN5YL-c_ytjX3ZBXy2xDjqEJ4MEAlNH8Q2A5wuBMKfhpVVG_7uLlZG88Swb-UnH6WUMpvchHe9Nwfjhys_hM7M23NMDQ10uP6xAvLGkIBqrODgUOfxBtV-oEUPP2ewH4I6qEXIaic0fnivxqL3Z5gHgoXcE6PWxcl48NNVePnsDWusF_a_4OjV6bOlVkd3WjowqyM7qI93fxxeCCmuEvcPxEZiXYk03iJMwhMsmC3Mkr77S8hrApVe9AGONRE6fDo6xiGs9pJ8VETx-GwobI3FTJeKx62feaW6CHWnRY4e87VAmVVwJo2-lDVx-tCAXmhmBdEhw-rBgmSoYdZgaDZiQ4Giwe4cIvlrUGDGfsD23xCFFe5TDLgY4uJAlzZ-ZlwDR81zOJLUzdB7QMEv2-oTr4xKOamZLpNVeNDppZJPlaYLp8GiY7MbjKQu1zGLsHXajGYOZVukTN2qC8DNIF8aV_XERT2GUlvzkEu1cxdM0rKuTyR0g7a4XroM7L2i0Ispocd0UJ1WmqWCf8vQUxFe8ldsSOBh7uNe9hoxV9nqklpkxkAMcX0aE64de8FhkMD_8rDYyNBy5-iOjdbTPfqfwoSgBH6Lgg%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D1d4055d7-c498-4754-af50-31032098c8fe%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fzlibrary.unblocked.love%252Fbook%252F2708361%252Fd4ef2e%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=NF1AdgdTeq7_rqB1CxeJcGGywQx_DyGCjeDHVg4zSLk; expires=Sun, 11-Sep-2022 07:30:12 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

toshelmeton.com/27/55dfd372293146a7ca113106d0d608dd

139.45.197.239

200 OK

0 B

URL HTTP/2
toshelmeton.com/27/55dfd372293146a7ca113106d0d608dd
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /27/55dfd372293146a7ca113106d0d608dd HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: scm=1; OAID=f5ce3be0c97f4098ac4bf8f75419c63e; oaidts=1662877811
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:11 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Wed, 07 Sep 2022 05:02:06 GMT
expires: Wed, 07 Oct 2082 05:02:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg

172.67.183.56

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg
IP
172.67.183.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:14 GMT
content-type: image/svg+xml
last-modified: Mon, 17 Jan 2022 14:26:00 GMT
etag: W/"61e57c78-415"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3356672
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vZuLFzETbRYIFEhok63qE522yAQYXjlm3QNmLQ21t%2FXsVjzD2OxbiAUxqKYUNQ0jBLKBEacWlOazimaswyKgxB8XyZ5%2BzDpIasSmSJFrQXQzvcGNw6e2SI5F3Jc%2F%2BVHKhyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a81fe47b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js

172.67.183.56

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js
IP
172.67.183.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 06:30:14 GMT
content-type: application/javascript
last-modified: Mon, 17 Jan 2022 14:40:54 GMT
etag: W/"61e57ff6-1e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qFDp6XdaJm4HKa7Id%2ByOIlpAFoH7CEKR7ogH7gngDR9DHYoCX7AR8EkYu4dZtfsif0OhtybI6MP7z1BGXWtADox8ru1bpl0GMrtGK%2BtXC8vMTamZwX94oTH6eUxk2khgL%2BQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748e5a81de0fb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 06:30:11 GMT
date: Sun, 11 Sep 2022 06:30:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mc.yandex.ru/watch/49128502?wmode=7&page-url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A469%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A365797729240%3Ahid%3A566464735%3Az%3A0%3Ai%3A20220911063002%3Aet%3A1662877802%3Ac%3A1%3Arn%3A34971442%3Arqn%3A1%3Au%3A1662877802838490767%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662877800296%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C82%2C0%2C%2C0%2C%2C1149%2C1%2C%2C%2C%2C1297%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662877802%3At%3ASelf-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)

93.158.134.119

302 Found

0 B

URL HTTP/2
mc.yandex.ru/watch/49128502?wmode=7&page-url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A469%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A365797729240%3Ahid%3A566464735%3Az%3A0%3Ai%3A20220911063002%3Aet%3A1662877802%3Ac%3A1%3Arn%3A34971442%3Arqn%3A1%3Au%3A1662877802838490767%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662877800296%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C82%2C0%2C%2C0%2C%2C1149%2C1%2C%2C%2C%2C1297%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662877802%3At%3ASelf-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /watch/49128502?wmode=7&page-url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A469%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A365797729240%3Ahid%3A566464735%3Az%3A0%3Ai%3A20220911063002%3Aet%3A1662877802%3Ac%3A1%3Arn%3A34971442%3Arqn%3A1%3Au%3A1662877802838490767%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662877800296%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C82%2C0%2C%2C0%2C%2C1149%2C1%2C%2C%2C%2C1297%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662877802%3At%3ASelf-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/49128502/1?wmode=7&page-url=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A469%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A365797729240%3Ahid%3A566464735%3Az%3A0%3Ai%3A20220911063002%3Aet%3A1662877802%3Ac%3A1%3Arn%3A34971442%3Arqn%3A1%3Au%3A1662877802838490767%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662877800296%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C82%2C0%2C%2C0%2C%2C1149%2C1%2C%2C%2C%2C1297%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662877802%3At%3ASelf-Efficacy%3A%20The%20Exercise%20of%20Control%20%7C%20Albert%20Bandura%20%7C%20download&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Sun, 11 Sep 2022 06:30:13 GMT
access-control-allow-origin: http://zlibrary.unblocked.love
set-cookie: yandexuid=2738768741662877813; Expires=Mon, 11-Sep-2023 06:30:13 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2738768741662877813; Expires=Mon, 11-Sep-2023 06:30:13 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2596904961662877813; Path=/; SameSite=None; Secure
i=zKQ7cGQcyH336VE2UHgmsLPdfH/Gl6Ymjyym3arFyKUiK/RyJWtKSNBNq87LSnK8vw/Y/pkkn7Qg+Q0S9xLiFMGZ3aw=; Expires=Wed, 08-Sep-2032 06:30:11 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1694413813.yrts.1662877813#1694413813.yrtsi.1662877813; Expires=Mon, 11-Sep-2023 06:30:13 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 11-Sep-2022 06:30:13 GMT
last-modified: Sun, 11-Sep-2022 06:30:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

139.45.197.239

200 OK

0 B

URL HTTP/2
toshelmeton.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=8c8443159e0f4ec6900c140966355356
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fzlibrary.unblocked.love%2Fbook%2F2708361%2Fd4ef2e&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=8c8443159e0f4ec6900c140966355356 HTTP/1.1
Host: toshelmeton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Referer: http://zlibrary.unblocked.love/
Cookie: scm=1; OAID=f5ce3be0c97f4098ac4bf8f75419c63e; oaidts=1662877811
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 09c9070baf7cf351109f1e3776ea2ade
access-control-expose-headers: X-Sc
set-cookie: OAID=8c8443159e0f4ec6900c140966355356; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
oaidts=1662877811; expires=Mon, 11 Sep 2023 06:30:12 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

glimtors.net/pfe/current/defaultSkin.min.js

139.45.197.251

200 OK

0 B

URL HTTP/2
glimtors.net/pfe/current/defaultSkin.min.js
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zlibrary.unblocked.love/
Origin: http://zlibrary.unblocked.love
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 06:30:12 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-df63"
access-control-allow-origin: http://zlibrary.unblocked.love
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (58)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations