Report - appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK

Report Overview

Submitted URL
appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
IP
139.45.197.153
ASN
#9002 RETN Limited
Submitted
2022-10-20 03:17:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.6 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.115
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
pulserviral.com	305654	2020-06-14T00:04:44Z	2023-03-10T01:40:25Z	444 B	14 kB	139.45.197.153
appzeyland.com	199164	2021-11-26T20:11:08Z	2023-03-08T08:29:05Z	4.1 kB	62 kB	139.45.197.151
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	329 B	797 B	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	34.214.17.205
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	2.1 kB	37 kB	34.120.237.76
littlecdn.com	11785	2019-06-04T12:44:02Z	2023-03-09T13:07:46Z	1.2 kB	2.2 kB	104.22.24.116
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed
2022-10-20	medium	appzeyland.com	Sinkholed

JavaScript (16)

	URL	Size	First Seen	Last Seen
	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	27 B	2023-03-07	2024-05-04
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:36 Last Seen2024-05-04 23:35:25 Times Seen3040 Hash dcdca1271ff14fa2a37aac2fdd562ad7 6f8d97801b33f24f2a736c00e1bc5805d9fd5eb7 66d82b0643143d1e9fa6ec2c7e07af701b2b274bc4db74b60ee4dcf5862d229c Loading...

	littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/js/main.js	5.8 kB	2023-03-07	2023-03-26
Pretty URL littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/js/main.js IP 104.22.24.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:36 Last Seen2023-03-26 05:20:02 Times Seen33 Hash 75e04709159bada31dfdb7ffadc03b6c 8cebdbf036fb07987571527de0663e9c2cbb5f8d 6a4dcf8b869f920153c0f79f52361852d74ebcd059f9f95f1df3ffdf52d7caf1 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	1.8 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:49 Last Seen2023-03-10 14:43:47 Times Seen1 Hash 631e851ffce89dcd9ec550471b2613f3 f878e97e04f2578b4c079ceda95699e255537b52 e117db103114399e3e8a904488417fa1d3e7778a7b7ee120bfc9e6a29df32525 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	5.1 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:49 Last Seen2023-03-10 11:54:49 Times Seen1 Hash ece303f339252777d932363c7b5b3db5 ac75f99285e88558bfe7c587b405f8bedce312de d9a0e5c47923a839ed146a62df38dbaf58237cf26f3facea3c979cb71a2136bd Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	103 B	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:49 Last Seen2023-03-10 11:54:49 Times Seen1 Hash 2fafdde6bb651b60123b4563e655e406 06fb19599ea08effb2547e18e0e5fcea82f61239 45fe6678eac82b90b0b90b895c865244baf2d1cfa82bf2508671093cad00e662 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	1.8 kB	2023-03-07	2023-03-17
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:45 Last Seen2023-03-17 12:45:37 Times Seen1 Hash 5462cb035ebb6f921e1edf0156287212 70ddce5405ee1fa261a1c8ecb3dfd5ef5c354947 d57ae80c334e9df8bab11e6e868619779aebe60edeec109ffab51c1cd6b1a443 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	358 B	2023-03-07	2023-04-17
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-04-17 00:56:25 Times Seen11 Hash 0e3d0b0d1e6eec347084ed5006928f20 cb1622346a2c21a015e64c16cfc302bbce4623da 56442cbc3d77d95e93f2c2aab32111741aedd2e37b6ea3394f6aa8c4b3b0212f Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	3.2 kB	2023-03-08	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:17:57 Last Seen2023-03-10 14:43:47 Times Seen1 Hash 20009f1a55809400defba59b9ca2332e 386ab51e9615a10befdd483115d3d10d082325bb 4f839a56760213c22ab5b452ec5e00488bc23b475710220fe06e6404a676ef96 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	3.7 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:49 Last Seen2023-03-10 14:43:46 Times Seen1 Hash 85b3bf6cf31a420a52fb5918dd645e42 0318684a1d4f6418975f7b1b0836c64609d52e6b e11afedac540bf08cec2c3684196cd9f9bc7ebc3364089dab93d2ec626c40b95 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	1.6 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:50 Last Seen2023-03-10 14:43:47 Times Seen1 Hash 0245dcc7488ae25367d04dc60cf1e970 f3f341e0072e65b9831363ad24e2d40172822952 dbdb5d0eed89221a4e3dfbd264940279808dd5df3dcd0f03cf5b505c0f7c5722 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	58 B	2023-03-07	2023-03-17
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:36 Last Seen2023-03-17 12:45:09 Times Seen1 Hash c7e59c41ecdc2cd6a644f383812c76d3 fc291f20d4dda8242f6c0b9bc9438a8472396f53 ded92e7210cb5a664074b870f89356d4c96a16315b10f224eba15c21b8f1ba1d Loading...

	appzeyland.com/pfe/current/micro.tag.min.js?uhd=1&z=4574858&ymid={SOURCE_ID}&var=4949117&sw=/sw-check-permissions/4574858	76 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/pfe/current/micro.tag.min.js?uhd=1&z=4574858&ymid={SOURCE_ID}&var=4949117&sw=/sw-check-permissions/4574858 IP 139.45.197.153 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:08:57 Last Seen2023-03-10 12:02:22 Times Seen1 Hash f2c763e07d61e8fd797834ee57f36ed6 80fca7b259ae3ad03d450de6303827bbaa89565d 2ca7fb820125e888354aa2b573b6465dec5e3c411ade5c8b3da7757cb16a8604 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	489 B	2023-03-07	2024-02-16
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-02-16 12:44:28 Times Seen5069 Hash b59d52e5c8c1c905dd20084f27bc5261 492b79822be8f2f1d46714e43274e2500de5c0c5 4795baeddefb045a60541029990e6da282eb7d0cb2f9d20da866382567029649 Loading...

	littlecdn.com/apps/templates/_assets/scripts/vanillaqr.min.js	12 kB	2023-03-07	2024-02-24
Pretty URL littlecdn.com/apps/templates/_assets/scripts/vanillaqr.min.js IP 104.22.24.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:36 Last Seen2024-02-24 08:18:44 Times Seen875 Hash 52496515e5168e5cae52f68c2a08c160 f2f3d0ff9a721e527192a337646e64953e56da12 613928679e7493875c7503548e50e354341c8984b91cf28ba7e3317967022854 Loading...

	appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}	1.9 kB	2023-03-10	2023-03-10
Pretty URL appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:54:50 Last Seen2023-03-10 14:43:47 Times Seen1 Hash d4eedf03f1e01a1114ca4949c9818063 2059b54d362adeabe2b18616d2f8720841a3541f 8d5daaa8a5e977f089a9668744322d64e29384b1bdf5dc13d74284a8f6665c22 Loading...

		Size	First Seen	Last Seen
	#1 Eval - b27ec5bb990d82da1b4ce9c0ff228812	80 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 11:54:50 Last Seen2023-03-10 11:54:50 Times Seen1 Hash b27ec5bb990d82da1b4ce9c0ff228812 8c526f3687b032b01e6aa60daf2fcdfa772f68d9 f4690b992d597063886edd5a6571976ddb00d454bb7ecbd0c11554da18c766d4 Loading...

HTTP Transactions (29)

URL IP Response Size

appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}

139.45.197.151

301 Moved Permanently

162 B

URL HTTP/1.1
appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 20 Oct 2022 03:16:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
24a97183f836954e0f05c4dc794ff4d1
52778bbe39b9f736c16b5798575d1d96607ce9d0
01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4249
Expires: Thu, 20 Oct 2022 04:27:44 GMT
Date: Thu, 20 Oct 2022 03:16:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 20 Oct 2022 02:51:48 GMT
Expires: Thu, 20 Oct 2022 03:45:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -PGbJZmRc6v-KWDEI2ACMp2tU-M0-b2cGAzVSJ5w1QvxGamOmonC6w==
Age: 1507

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
533e1d53f291993ed5886f88a85c6e55
eb4396e8422f71168d32ac6ff3ef49496f625e62
0d1b73b2a228fe76bf14688e603741025a40803971e05570f873b28788334b33

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D1B73B2A228FE76BF14688E603741025A40803971E05570F873B28788334B33"
Last-Modified: Mon, 17 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8306
Expires: Thu, 20 Oct 2022 05:35:21 GMT
Date: Thu, 20 Oct 2022 03:16:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DMZf6Tu4qsB75CjqaW8Mi58Mi8905L2ojbBkqQ9EL77+bjISQpSvwbgGDOCORVDWecFCGbs6+9o=
x-amz-request-id: TJZ3Q4JR65365RGB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 20 Oct 2022 02:36:32 GMT
age: 2423
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b826d71930732f9f6741ce0a67f4c9b
0962cec56164a57d149c265dee257ad0387c6266
1f84d97b46a36685a6184a5e70d8856847b594bd9de7fe95ab378a99529619e2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F84D97B46A36685A6184A5E70D8856847B594BD9DE7FE95AB378A99529619E2"
Last-Modified: Mon, 17 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Thu, 20 Oct 2022 09:16:12 GMT
Date: Thu, 20 Oct 2022 03:16:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 20 Oct 2022 02:43:40 GMT
Expires: Thu, 20 Oct 2022 03:14:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SKxU06ARwuGpqzz5XVVlEugzId-encQngfebGxwtxl_HwT8pvkysmw==
Age: 1995

appzeyland.com/contents/s/d9/c1/60/cdf387dbad88bf3862072e2593/01109594612996.jpeg

139.45.197.153

200 OK

53 kB

URL HTTP/2
appzeyland.com/contents/s/d9/c1/60/cdf387dbad88bf3862072e2593/01109594612996.jpeg
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 740x1600, components 3\012- data
Size
53 kB (52948 bytes)
Hash
d9c160cdf387dbad88bf3862072e2593
682d1572c405d3e307e127884788f3bc28518918
55b39e0443cb0436fd8ee4c860ba541685d8ea440f1d2769ed382375b942696f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /contents/s/d9/c1/60/cdf387dbad88bf3862072e2593/01109594612996.jpeg HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
Cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: image/jpeg
content-length: 52948
last-modified: Wed, 08 Sep 2021 11:39:17 GMT
etag: "6138a0e5-ced4"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
62fc1aa250922e13956facbf8071aebb
111e2978b9e6931f7ba9ee3beac67d1af7bf8c92
1d0de3a88ad67da5ba748190f997994299058b77fff93caa24f4c611b3dec560

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2965
Cache-Control: max-age=106756
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 03:16:56 GMT
Etag: "634fb017-1d7"
Expires: Fri, 21 Oct 2022 08:56:12 GMT
Last-Modified: Wed, 19 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dd439ea2bbbae5db47f43e0336f33bd7
0bc15be4ef4f468e8e2f2a48c4316b7f1702ba91
85753a89e06846ca2c14b3f49e2b4074111386df9de4578eaa98d0da53b7fecf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85753A89E06846CA2C14B3F49E2B4074111386DF9DE4578EAA98D0DA53B7FECF"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6722
Expires: Thu, 20 Oct 2022 05:08:58 GMT
Date: Thu, 20 Oct 2022 03:16:56 GMT
Connection: keep-alive

appzeyland.com/favicon.ico

139.45.197.153

204 No Content

0 B

URL HTTP/2
appzeyland.com/favicon.ico
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
Cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Thu, 20 Oct 2022 03:16:56 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.214.17.205

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.17.205:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GsSiZsUE/TIAr+7RoyRK3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 76p9Iswcmfpuc8sLVZeGzJ3dYQU=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7895
Expires: Thu, 20 Oct 2022 05:28:33 GMT
Date: Thu, 20 Oct 2022 03:16:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7895
Expires: Thu, 20 Oct 2022 05:28:33 GMT
Date: Thu, 20 Oct 2022 03:16:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7895
Expires: Thu, 20 Oct 2022 05:28:33 GMT
Date: Thu, 20 Oct 2022 03:16:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7895
Expires: Thu, 20 Oct 2022 05:28:33 GMT
Date: Thu, 20 Oct 2022 03:16:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c2410cd-6c6e-4cfd-8db5-aeb5ae4872e1.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c2410cd-6c6e-4cfd-8db5-aeb5ae4872e1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8793 bytes)
Hash
c821b463323e1ee0df592eeb38e714af
9584ed95a4d6e5e8f021bb8de0c65a075f435e13
5653fb7b008c0b2929bfbbcf0c35dabb65ea8354199eec9a126a35f897829894

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c2410cd-6c6e-4cfd-8db5-aeb5ae4872e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8793
x-amzn-requestid: 69a19745-c9c6-4ac0-be09-c675750924c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRYSHEBgIAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506da6-552cde7f503c1f104abfffa6;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:35:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3KVvK_RbWr9KbBiSlzhsfuIfkU9e6zPf9y6KaoFMeAr9rZE-QXvuGg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 22:04:21 GMT
etag: "9584ed95a4d6e5e8f021bb8de0c65a075f435e13"
content-type: image/jpeg
age: 18757
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bc7ad2e-41c5-44cc-9b23-384438efa885.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7686 bytes)
Hash
24dec16207dda0b6b532e9190d8cad9e
bf9ce3a7c8e6bc142b2e2b8895c5a81cc8f73582
58475b28467c2545d0bc682f0bbecee72bbc440c0e41979fb5a511eafabc7627

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bc7ad2e-41c5-44cc-9b23-384438efa885.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7686
x-amzn-requestid: 2b8c0bdb-2caa-4728-b088-f383385b4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhNGPlIAMFXxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-4b86ae7d4bd0331d3e7db790;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CFp0YSrNb-aTnh4Q5dIv5o0ilxYVAsG9icANpC1nEpFuc287ZV0kHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 07:14:46 GMT
age: 72132
etag: "bf9ce3a7c8e6bc142b2e2b8895c5a81cc8f73582"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8f8dbb-6db1-4393-8432-8bd91e43c7e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x148, components 3\012- data
Size
5.6 kB (5628 bytes)
Hash
ca7d28a29be4cb2dc27c7b45e3aee38b
14a7c5b46fc6ef025c2520c5938a7a7d468e9f5f
0ab860ad47e50297b9b85651506a370785f5f38caaf10838b8816f3068a00027

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8f8dbb-6db1-4393-8432-8bd91e43c7e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5628
x-amzn-requestid: 03007358-e621-462d-9344-270369820cdf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRZKEFWpIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506f0d-19a8fbfa1bee2b0e37f76244;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:41:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8YNydT8rLBQCGo12Jjfn9vKWK8jXfxs-GqjtVXlk1P2DBxH3hqzLw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 22:04:23 GMT
age: 18755
etag: "14a7c5b46fc6ef025c2520c5938a7a7d468e9f5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}&mprtr=1

139.45.197.153

200 OK

6.5 kB

URL HTTP/2
appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}&mprtr=1
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type
data
Size
6.5 kB (6459 bytes)
Hash
e014ae89ac97f298a508054b45c0faf8
574100c6eb58ae18f0aba866147bf862ef50562e
871998de6efc3a81e8ee53fb9f3a08943bb1658012fcbaafd8cfa1f18340c880

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}&mprtr=1 HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appzeyland.com
Connection: keep-alive
Referer: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
Cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
content-encoding: gzip
X-Firefox-Spdy: h2

pulserviral.com/leadgen/track-impression/?z=4949117&b=12480492&ymid={CLICK_ID}&var={SOURCE_ID}

139.45.197.153

200 OK

13 kB

URL HTTP/2
pulserviral.com/leadgen/track-impression/?z=4949117&b=12480492&ymid={CLICK_ID}&var={SOURCE_ID}
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type
data
Size
13 kB (13394 bytes)
Hash
1b0c0310dd71878c2ee483ed13b83a8f
e2537cc82361787f2874f28fd5ea08a339ee4264
083a172d6e977771d19a0f521426302c4d0067574e6be00264aa13c96e5e5bfd

HTTP Headers

GET /leadgen/track-impression/?z=4949117&b=12480492&ymid={CLICK_ID}&var={SOURCE_ID} HTTP/1.1
Host: pulserviral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://appzeyland.com/
Origin: https://appzeyland.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67e511de-4645-4af5-8c48-e662c0c8a54b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10237 bytes)
Hash
6ade21554dc39ead350de30c95b27da4
646d0636b09f0432821ed1cfd8c842d3901e49c3
cd8a878e413595ffd88ad706ba9fea7cfd7ad49e1723f276e37cd33b023596eb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67e511de-4645-4af5-8c48-e662c0c8a54b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10237
x-amzn-requestid: c30f14d4-a7fa-46ff-872f-1ed9053317c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRX9dHfhoAMF6_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d22-295f032a518f847e4323fa46;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PLFgB_bE4YKZgpWh4xeOg9n9C9Yje1A-8hdWNt1qDma4y5QyGtOX1w==
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:56:00 GMT
age: 19258
etag: "646d0636b09f0432821ed1cfd8c842d3901e49c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

appzeyland.com/zone?&pub=0&zone_id=4574858&is_mobile=false&domain=appzeyland.com&var=4949117&ymid=%7BSOURCE_ID%7D&var_3=&dsig=&action=prerequest

139.45.197.153

200 OK

0 B

URL HTTP/2
appzeyland.com/zone?&pub=0&zone_id=4574858&is_mobile=false&domain=appzeyland.com&var=4949117&ymid=%7BSOURCE_ID%7D&var_3=&dsig=&action=prerequest
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /zone?&pub=0&zone_id=4574858&is_mobile=false&domain=appzeyland.com&var=4949117&ymid=%7BSOURCE_ID%7D&var_3=&dsig=&action=prerequest HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appzeyland.com
Connection: keep-alive
Referer: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
Cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:17:04 GMT
content-length: 0
x-trace-id: 845d6acefd6186610cef8da1d2301a52
access-control-allow-origin: https://appzeyland.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=60
x-content-type-options: nosniff
X-Firefox-Spdy: h2

appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}

139.45.197.153

200 OK

0 B

URL HTTP/2
appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID} HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8; expires=Thu, 20-Oct-2022 04:16:55 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

appzeyland.com/pfe/current/micro.tag.min.js?uhd=1&z=4574858&ymid={SOURCE_ID}&var=4949117&sw=/sw-check-permissions/4574858

139.45.197.153

200 OK

0 B

URL HTTP/2
appzeyland.com/pfe/current/micro.tag.min.js?uhd=1&z=4574858&ymid={SOURCE_ID}&var=4949117&sw=/sw-check-permissions/4574858
IP
139.45.197.153:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pfe/current/micro.tag.min.js?uhd=1&z=4574858&ymid={SOURCE_ID}&var=4949117&sw=/sw-check-permissions/4574858 HTTP/1.1
Host: appzeyland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/?l=PN9HiBbskYNM3Ry&b=12480492&z=4949117&s={CLICK_ID}&campid={campaignid}&var={SOURCE_ID}&ymid={CLICK_ID}
Cookie: reverse=siCgCaSXW4F3FdXCWC_07zq_DnpImwgbsQLjfcnDdU8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:50:09 GMT
vary: Accept-Encoding
etag: W/"634e84e1-126ff"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

littlecdn.com/apps/templates/_assets/scripts/vanillaqr.min.js

104.22.24.116

200 OK

0 B

URL HTTP/2
littlecdn.com/apps/templates/_assets/scripts/vanillaqr.min.js
IP
104.22.24.116:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /apps/templates/_assets/scripts/vanillaqr.min.js HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 12:30:33 GMT
vary: Accept-Encoding
etag: W/"634fede9-2d08"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 5444
server: cloudflare
cf-ray: 75ce98faea67b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2

littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/js/main.js

104.22.24.116

200 OK

0 B

URL HTTP/2
littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/js/main.js
IP
104.22.24.116:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /apps/templates/constructor/constructor-app-lab-v1/build/js/main.js HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 12:30:33 GMT
vary: Accept-Encoding
etag: W/"634fede9-16ae"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 4011
server: cloudflare
cf-ray: 75ce98faea6bb50f-OSL
content-encoding: br
X-Firefox-Spdy: h2

littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/css/main.css?v4321212

104.22.24.116

200 OK

0 B

URL HTTP/2
littlecdn.com/apps/templates/constructor/constructor-app-lab-v1/build/css/main.css?v4321212
IP
104.22.24.116:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /apps/templates/constructor/constructor-app-lab-v1/build/css/main.css?v4321212 HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appzeyland.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 20 Oct 2022 03:16:56 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 12:30:33 GMT
vary: Accept-Encoding
etag: W/"634fede9-2c38"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 845
server: cloudflare
cf-ray: 75ce98faea6ab50f-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations