Report - loot-link.com/s?fBJb

Report Overview

Visited public
2023-12-25 15:09:19
Tags
Submit Tags
URL
loot-link.com/s?fBJb
Finishing URL
loot-link.com/s?fBJb
IP / ASN
104.21.25.219
#13335 CLOUDFLARENET
Title
Vanilla RTX v1.20.5

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
d1wzdj81h1hubn.cloudfront.net	unknown	2008-04-25	2023-01-18 21:11:48	2023-12-21 23:45:50	906 B	536 kB	143.204.238.42
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-12-24 05:09:18	3.1 kB	2.0 MB	104.16.122.175
loot-link.com	unknown	2023-09-14	2023-09-18 15:51:16	2023-12-24 15:47:19	1.3 kB	1.4 MB	172.67.134.201
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-25 11:41:13	944 B	8.9 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-25 11:40:01	1.6 kB	51 kB	142.250.147.94
d2ovgc4ipdt6us.cloudfront.net	unknown	2008-04-25	2023-12-22 19:05:40	2023-12-25 14:49:23	467 B	914 B	143.204.42.88
onasider.top	550880	2021-06-08	2021-06-12 07:30:56	2023-12-19 15:28:10	513 B	894 B	104.21.23.212
pagead2.googlesyndication.com	101	2003-01-21	2021-02-20 16:52:05	2023-12-24 23:36:16	465 B	52 kB	142.250.74.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-25 15:04:23	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	loot-link.com/3.js	ScriptElement	1.4 MB	2023-12-25	2024-08-20
Pretty URL loot-link.com/3.js IP 172.67.134.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-25 16:09 Last Seen2024-08-20 15:01 Times Seen3 Hash 21a9259e40f738d736870baaf4555c18 070176c3fd049caf97c02ec676f2cd26fd9ad021 5a424ef7820723f2141c6802736b90fc5bf44a586e7e64084b8cc85dcde19b56 Loading...

	unknown	Function	79 B	2023-04-11	2025-07-16
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-07-16 07:47 Times Seen118603 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	unknown	Function	37 B	2023-04-11	2025-07-16
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-07-16 08:02 Times Seen301484 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	loot-link.com/s?fBJb	ScriptElement	16 kB	2024-08-20	2024-08-20
Pretty URL loot-link.com/s?fBJb IP 172.67.134.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 15:01 Last Seen2024-08-20 15:01 Times Seen1 Hash 9f24948dfdd791016276d1953e15261b 1eb8fb4349a841e4a4cc243c2a0ac862106c137c 4f6cf180bbc3d768a4f50dc496a486d3531a131b4b51913768ad7a9a16a8a043 Loading...

	unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js	ScriptElement	367 kB	2023-06-09	2025-07-10
Pretty URL unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js IP 104.16.122.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 16:31 Last Seen2025-07-10 06:22 Times Seen311 Hash 3ef0bb736f98fe9e7788c543716024a1 e00160250de2e4f943d688d358aa8ea13457288a 55d2f8de4f55304e80b710304c00dfc431f692bf1c71f1595f78c75451044de5 Loading...

	loot-link.com/s?fBJb	ScriptElement	1.6 kB	2023-12-02	2024-10-04
Pretty URL loot-link.com/s?fBJb IP 172.67.134.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 02:50 Last Seen2024-10-04 11:11 Times Seen68 Hash 08fa1194f9c5b3ce130efb59a66b8a3e ab69a923f3bba026b4c9292845456ccee152305d 4e944c5fa6b16c1c68e64fd0e04bf0e899dbf77772af63c1388131fed266f2b6 Loading...

HTTP Transactions (20)

	URL	IP	Response	Size
	GET fonts.gstatic.com/s/play/v19/6aez4K2oVqwIvtU2Hw.woff2	142.250.147.94	200 OK	18 kB
URL GET HTTP/2 fonts.gstatic.com/s/play/v19/6aez4K2oVqwIvtU2Hw.woff2 IP 142.250.147.94:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 18088, version 1.0 Size 18 kB (18088 bytes) Hash f4aa2d622725f1af4e132e2bbaeb47ae 20594962b8a024c0cec8d3b3fe8614bea75d5388 d0964aee1973c5818130723f3bf5b8e0b51bf775a5074949c91d815d91f2924f HTTP Headers GET /s/play/v19/6aez4K2oVqwIvtU2Hw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://loot-link.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 18088 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 23 Dec 2023 03:08:39 GMT expires: Sun, 22 Dec 2024 03:08:39 GMT cache-control: public, max-age=31536000 age: 216014 last-modified: Thu, 24 Aug 2023 20:26:25 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2	142.250.147.94	200 OK	18 kB
URL GET HTTP/2 fonts.gstatic.com/s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2 IP 142.250.147.94:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 18100, version 1.0 Size 18 kB (18100 bytes) Hash 2af0645d8798834a774f014332120c5d c1f9a794c35d75cd3196ec52e457467d33b2405b 42d25e75823f99564c199e3dc486ff8562ce77625ea50ee07385df687296f69f HTTP Headers GET /s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://loot-link.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 18100 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 22 Dec 2023 23:32:00 GMT expires: Sat, 21 Dec 2024 23:32:00 GMT cache-control: public, max-age=31536000 age: 229013 last-modified: Thu, 24 Aug 2023 19:54:08 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET d2ovgc4ipdt6us.cloudfront.net/?tid=1010626&params_only=1	143.204.42.88	200 OK	397 B
URL GET HTTP/2 d2ovgc4ipdt6us.cloudfront.net/?tid=1010626&params_only=1 IP 143.204.42.88:443 ASN #16509 AMAZON-02 Requested by https://loot-link.com/s?fBJb Certificate IssuerAmazon Subject.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT File type ASCII text, with very long lines (629), with no line terminators Size 397 B (397 bytes) Hash a1e3ed03c014a0e370d037e67fd46cd7 0930ddbe4cb079910dd35f10cb6131e6eaf03df1 a71caface97d5d279268ca12c59f049217bd402da2be678dfe2d742018dc8852 HTTP Headers `GET /?tid=1010626&params_only=1 HTTP/1.1 Host: d2ovgc4ipdt6us.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://loot-link.com/ Origin: https://loot-link.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-length: 397 date: Mon, 25 Dec 2023 15:08:54 GMT access-control-allow-credentials: true access-control-allow-origin: https://loot-link.com cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform content-encoding: gzip pragma: no-cache x-cache: Miss from cloudfront via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: fiJv55EF3LUChVP905iwSq1miJDvfHeccpzCLPavFYHEGdSczgWUGw== X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/pressstart2p/v15/e3t4euO8T-267oIAQAu6jDQyK3nVivM.woff2	142.250.147.94	200 OK	12 kB
URL GET HTTP/2 fonts.gstatic.com/s/pressstart2p/v15/e3t4euO8T-267oIAQAu6jDQyK3nVivM.woff2 IP 142.250.147.94:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 12480, version 1.0 Size 12 kB (12480 bytes) Hash a2e30588d7302dcec7df37c7ef1e858b 92844846456a5df99e70f9a48d25b7b704425f7f 5bd44fee71c38c481d5b546bf29a65b6a6e69dd4ab89acd8de2d49baeebb8317 HTTP Headers GET /s/pressstart2p/v15/e3t4euO8T-267oIAQAu6jDQyK3nVivM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://loot-link.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12480 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 23 Dec 2023 09:10:56 GMT expires: Sun, 22 Dec 2024 09:10:56 GMT cache-control: public, max-age=31536000 age: 194279 last-modified: Tue, 02 May 2023 15:30:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	OPTIONS onasider.top/tc	104.21.23.212	204 No Content	0 B
URL OPTIONS HTTP/2 onasider.top/tc IP 104.21.23.212:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerLet's Encrypt Subjectonasider.top Fingerprint21:A0:15:F1:A0:73:46:0C:0B:97:57:DF:E0:82:56:6D:56:AF:00:D8 ValiditySun, 12 Nov 2023 07:30:42 GMT - Sat, 10 Feb 2024 07:30:41 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /tc HTTP/1.1 Host: onasider.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://loot-link.com/ Origin: https://loot-link.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 204 No Content date: Mon, 25 Dec 2023 15:08:55 GMT set-cookie: ci=2091862345894857; Max-Age=86400; Secure; SameSite=None access-control-allow-origin: https://loot-link.com access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-methods: POST, GET, OPTIONS, HEAD access-control-allow-credentials: true cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1uayG2gdbJWIbDKP5l58v5vs2EyJvn9OfizB38hvOxVbXA7%2B1Y%2FsuGMcSZ2UVdqGBQJLVbN1p75rxG9w9oPC0c7PJRvD7hOm4awRvWxp8rU2mIr2zEFBNaomE7rL6Ag%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 83b2008c1bbd4c8e-HEL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	142.250.74.2	200 OK	51 kB
URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.2:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subject.g.doubleclick.net Fingerprint69:F5:F0:31:0E:FD:67:62:BD:FA:40:0F:5B:17:0F:D2:EE:31:3D:79 ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (3964) Size 51 kB (51249 bytes) Hash 78be52eb9e713682037aa7eeeb793f9b f291c4ecc3c178386c81a2bb6c5e30624bbdfb5d d31f1b77fdfc37690658183fb40e1e32d56b7a75346e7a86d9b2e8b76cd0ccb9 HTTP Headers `GET /pagead/js/adsbygoogle.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://loot-link.com/ Origin: https://loot-link.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin vary: Accept-Encoding date: Mon, 25 Dec 2023 15:08:55 GMT expires: Mon, 25 Dec 2023 15:08:55 GMT cache-control: private, max-age=3600, stale-while-revalidate=3600 content-type: text/javascript; charset=UTF-8 etag: 8210322489088698967 access-control-allow-origin: * x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 51249 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET d1wzdj81h1hubn.cloudfront.net/icons/eye.png	143.204.238.42	200 OK	2.3 kB
URL GET HTTP/2 d1wzdj81h1hubn.cloudfront.net/icons/eye.png IP 143.204.238.42:443 ASN #16509 AMAZON-02 Requested by https://loot-link.com/s?fBJb Certificate IssuerAmazon Subject.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Size 2.3 kB (2303 bytes) Hash 97e0270a42f9a0bd5c833193a53c5fb4 faff2b6669687d197cb89cc17db82dec9cd886d3 b953ec39fabb061c05a22bb904d6695b3b6e058f5b72bc98788a70061114c2a0 HTTP Headers `GET /icons/eye.png HTTP/1.1 Host: d1wzdj81h1hubn.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png content-length: 2303 last-modified: Tue, 07 Feb 2023 09:32:38 GMT x-amz-server-side-encryption: AES256 accept-ranges: bytes server: AmazonS3 date: Mon, 25 Dec 2023 08:46:10 GMT etag: "97e0270a42f9a0bd5c833193a53c5fb4" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 515bf1bf612fe881047c4f033b8f25e4.cloudfront.net (CloudFront) x-amz-cf-pop: CPH50-C1 x-amz-cf-id: PQaWRuL8pYwUfDcOouQpCXXeLzzlV9B6LvCy1pfrAZVU0sw796UA6A== age: 23212 X-Firefox-Spdy: h2`

	GET unpkg.com/@lottiefiles/lottie-player@2.0.2/dist/lottie-player.js	104.16.122.175	200 OK	628 kB
URL GET HTTP/2 unpkg.com/@lottiefiles/lottie-player@2.0.2/dist/lottie-player.js IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (27447) Size 628 kB (628281 bytes) Hash 3ef0bb736f98fe9e7788c543716024a1 e00160250de2e4f943d688d358aa8ea13457288a 55d2f8de4f55304e80b710304c00dfc431f692bf1c71f1595f78c75451044de5 HTTP Headers `GET /@lottiefiles/lottie-player@2.0.2/dist/lottie-player.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://loot-link.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Mon, 25 Dec 2023 15:08:55 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"59a07-4AFgJQ3i5PlD1ojTWKqOoTRXKIo" via: 1.1 fly.io fly-request-id: 01HFTV228DYRVY8N8YYE0F1P90-ams cf-cache-status: HIT age: 2882832 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b200900f35abc9-CPH content-encoding: br X-Firefox-Spdy: h2

	GET unpkg.com/nes.css/css/nes-core.min.css	104.16.122.175	302 Found	53 kB
URL GET HTTP/2 unpkg.com/nes.css/css/nes-core.min.css IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 53 kB (52579 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /nes.css/css/nes-core.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /nes.css@2.3.0/css/nes-core.min.css vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01HJGRB4WER17JM1SF4N9WB4Y7-ams cf-cache-status: EXPIRED strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008beefaabc9-CPH X-Firefox-Spdy: h2

	GET unpkg.com/nes.css@2.3.0/css/nes.min.css	104.16.122.175	200 OK	288 kB
URL GET HTTP/2 unpkg.com/nes.css@2.3.0/css/nes.min.css IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (65005) Size 288 kB (288523 bytes) Hash 145b89185ff73c8045b6ccef1df76f31 db59ff065f12822e6912e4ae5e309657de9f21a0 c0b52769a408118ac6ca92d8940e77dba8ab92e97809c43658484f81ea83b756 HTTP Headers `GET /nes.css@2.3.0/css/nes.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://loot-link.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/css; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"4670b-21n/Bl8Sgi5pEuSuXjCWV96fIaA" via: 1.1 fly.io fly-request-id: 01HFTT07VDYSQMBWW922T72XHE-ams cf-cache-status: HIT age: 2883942 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008ca867abc9-CPH content-encoding: br X-Firefox-Spdy: h2

	GET unpkg.com/nes.css@latest/css/nes.min.css	104.16.122.175	302 Found	288 kB
URL GET HTTP/2 unpkg.com/nes.css@latest/css/nes.min.css IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 288 kB (288523 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /nes.css@latest/css/nes.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /nes.css@2.3.0/css/nes.min.css vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01HJGRB4X0C175T9NMAW7QAKQB-ams cf-cache-status: EXPIRED strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008bff1cabc9-CPH X-Firefox-Spdy: h2

	GET loot-link.com/3.js	172.67.134.201	200 OK	1.4 MB
URL GET HTTP/3 loot-link.com/3.js IP 172.67.134.201:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subjectloot-link.com FingerprintE2:85:58:B7:B7:7A:E6:A4:DF:D0:04:4D:BB:C0:1B:B0:9C:11:90:88 ValidityThu, 16 Nov 2023 13:02:11 GMT - Wed, 14 Feb 2024 13:02:10 GMT File type Size 1.4 MB (1367575 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /3.js HTTP/1.1 Host: loot-link.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/s?fBJb Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Mon, 25 Dec 2023 15:08:54 GMT content-type: application/javascript last-modified: Mon, 25 Dec 2023 07:00:00 GMT etag: W/"65892870-14de17" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lcEktLEI%2FKD938GvGnRUopBoYW14UB0AUHVhPYhsDgXKSwBZPmknLiEvdV3q2tMCewsEYPVmo79fdAr6qwNzCrGSpwGOENgVWep9iLz%2B5%2FaxaZHNd7dFFrd1YjJ492Ow"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 83b200830b345ef8-ARN content-encoding: br alt-svc: h3=":443"; ma=86400

	GET fonts.googleapis.com/css2?family=Play:wght@700&family=Press+Start+2P&display=swap	142.250.74.106	200 OK	3.7 kB
URL GET HTTP/3 fonts.googleapis.com/css2?family=Play:wght@700&family=Press+Start+2P&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (3833), with no line terminators Size 3.7 kB (3734 bytes) Hash 1faeff7ed1707177f61e7c86153e7295 0083d932a502b0742cfc46bf225b833e2c44069e 01e898486f6a4826c1f392de2ae59fb8bfb924502822b3297ec295fbf7e4f3f0 HTTP Headers `GET /css2?family=Play:wght@700&family=Press+Start+2P&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 25 Dec 2023 15:08:54 GMT date: Mon, 25 Dec 2023 15:08:54 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET unpkg.com/nes.css@2.3.0/css/nes.min.css	104.16.122.175	200 OK	288 kB
URL GET HTTP/2 unpkg.com/nes.css@2.3.0/css/nes.min.css IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (65005) Size 288 kB (288523 bytes) Hash 145b89185ff73c8045b6ccef1df76f31 db59ff065f12822e6912e4ae5e309657de9f21a0 c0b52769a408118ac6ca92d8940e77dba8ab92e97809c43658484f81ea83b756 HTTP Headers `GET /nes.css@2.3.0/css/nes.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/css; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"4670b-21n/Bl8Sgi5pEuSuXjCWV96fIaA" via: 1.1 fly.io fly-request-id: 01HFTT07VDYSQMBWW922T72XHE-ams cf-cache-status: HIT age: 2883942 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008bdeb5abc9-CPH content-encoding: br X-Firefox-Spdy: h2

	GET unpkg.com/nes.css@2.3.0/css/nes-core.min.css	104.16.122.175	200 OK	53 kB
URL GET HTTP/2 unpkg.com/nes.css@2.3.0/css/nes-core.min.css IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (52048) Size 53 kB (52579 bytes) Hash 290620e40107721a8994cfd3b6a8818f 052d75547a824163bed6fcf2989e032ae61f9a92 4e296c179198b2edaeecba06ff5a0ef8a73c996939edff3dbea072190b3626b5 HTTP Headers `GET /nes.css@2.3.0/css/nes-core.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://loot-link.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/css; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"cd63-BS11VHqCQWO+1vzymJ4DKuYfmpI" via: 1.1 fly.io fly-request-id: 01HG00VGD3AD0VY9EK36BZC91Z-ams cf-cache-status: HIT age: 2708985 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008c781babc9-CPH content-encoding: br X-Firefox-Spdy: h2

	GET d1wzdj81h1hubn.cloudfront.net/7aab998abfa5002a.jpeg	143.204.238.42	200 OK	533 kB
URL GET HTTP/2 d1wzdj81h1hubn.cloudfront.net/7aab998abfa5002a.jpeg IP 143.204.238.42:443 ASN #16509 AMAZON-02 Requested by https://loot-link.com/s?fBJb Certificate IssuerAmazon Subject.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.5], baseline, precision 8, 1024x1024, components 3 Size 533 kB (533021 bytes) Hash 1e7538da506972cd278acf879705ba4a af942ed8f159127358f30a7f717b138d868b210a f46460b8fa59f0b7db10f7c322b5cb69de669e6b6e8fb49a37cbf8264064800d HTTP Headers `GET /7aab998abfa5002a.jpeg HTTP/1.1 Host: d1wzdj81h1hubn.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 533021 date: Mon, 25 Dec 2023 12:02:42 GMT last-modified: Sat, 09 Dec 2023 10:41:11 GMT etag: "1e7538da506972cd278acf879705ba4a" x-amz-server-side-encryption: AES256 x-amz-meta-timestamp: 2023-12-09T04:03:46.709255 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 515bf1bf612fe881047c4f033b8f25e4.cloudfront.net (CloudFront) x-amz-cf-pop: CPH50-C1 x-amz-cf-id: hPLAogvvBxkflVo2yiZnZv8s4U5WRLOGGGgMJ5SvFIceU0-Yr01YWA== age: 11174 X-Firefox-Spdy: h2

	GET fonts.googleapis.com/css2?family=Play:wght@400;700&display=swap	142.250.74.106	200 OK	4.0 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Play:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (4066), with no line terminators Size 4.0 kB (3958 bytes) Hash e80e2f57aef0ec34d42d3723744b6a97 80fb08ddb8d14fb6816514b6455df96f481aea25 6d7b9e449dd28af61200b922d6773ede3948160eafba036dc86572daa2659a22 HTTP Headers `GET /css2?family=Play:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 25 Dec 2023 15:08:53 GMT date: Mon, 25 Dec 2023 15:08:53 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET loot-link.com/s?fBJb	172.67.134.201	200 OK	21 kB
URL User Request GET HTTP/2 loot-link.com/s?fBJb IP 172.67.134.201:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectloot-link.com FingerprintE2:85:58:B7:B7:7A:E6:A4:DF:D0:04:4D:BB:C0:1B:B0:9C:11:90:88 ValidityThu, 16 Nov 2023 13:02:11 GMT - Wed, 14 Feb 2024 13:02:10 GMT File type HTML document, ASCII text, with very long lines (3884) Size 21 kB (20932 bytes) Hash b7c64689defb00f12693fa0fa9d9585f e17a63e201181e33d258a038efca7776994610b3 1159241a36190775fa2edad3f5bcb0d9e047a5d1304d3e66b71d152e3da76b8b HTTP Headers `GET /s?fBJb HTTP/1.1 Host: loot-link.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 15:08:53 GMT content-type: text/html access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-methods: POST, GET, OPTIONS, HEAD access-control-allow-credentials: true cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TZeqbxdRsAf2MwMzDBQUPUs91QcCg0hdjkKc8iGi7F%2FLk4HAT4tYM9jdrB0f87WV9L9YjsF4%2BHGUKv%2F5kmXBSOX9P3JCwQ6MSK0qJMYalQnXU%2BEza4VqNLWD7wsMOYd5"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 83b2007f2cf60a30-ARN content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET loot-link.com/favicon.ico	172.67.134.201	404 Not Found	561 B
URL GET HTTP/3 loot-link.com/favicon.ico IP 172.67.134.201:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerGoogle Trust Services LLC Subjectloot-link.com FingerprintE2:85:58:B7:B7:7A:E6:A4:DF:D0:04:4D:BB:C0:1B:B0:9C:11:90:88 ValidityThu, 16 Nov 2023 13:02:11 GMT - Wed, 14 Feb 2024 13:02:10 GMT File type HTML document, ASCII text, with very long lines (587), with no line terminators Size 561 B (561 bytes) Hash ef8067f570d910ccebdf42ffc755bf66 da4084be4933ddc66d1727f38bc514ae15de91fc 1b386e7e1b13d52f377ab22266d9973bc86452bd70e58db468d7369b46a8ed46 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: loot-link.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/s?fBJb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 404 Not Found date: Mon, 25 Dec 2023 15:08:54 GMT content-type: text/html cache-control: max-age=14400 cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=axj5mNd9p89SfPfOCVtnUSVd4xEG67skgpZoNYKjor85Ph8dYuiEgqfGeMx8O5ANmi1jGQBwBLvQg6sMs6T%2FhGgg8BVicTbJ2KnBMGSBqWL6JteUgGE6gbTiz6qnd0j6"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 83b20088eb3a5ef8-ARN content-encoding: br alt-svc: h3=":443"; ma=86400

	GET unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js	104.16.122.175	302 Found	367 kB
URL GET HTTP/2 unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://loot-link.com/s?fBJb Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 367 kB (367111 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /@lottiefiles/lottie-player@latest/dist/lottie-player.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://loot-link.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Mon, 25 Dec 2023 15:08:55 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /@lottiefiles/lottie-player@2.0.2/dist/lottie-player.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01HJGQZF20TSBG05E6WNSV284P-ams cf-cache-status: HIT age: 383 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83b2008fceb6abc9-CPH X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN