Report - www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/

Report Overview

Visited public
2023-12-04 22:23:33
Tags
Submit Tags
URL
www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Finishing URL
www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
archaicin.com	unknown	2023-11-28	2023-11-28 15:15:37	2023-12-01 17:33:09	4.8 kB	6.6 kB	173.233.137.52
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-12-03 18:40:41	2.3 kB	97 kB	172.64.108.10
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2023-12-04 11:41:21	498 B	1.9 kB	45.133.44.4
attendancereporterwren.com	unknown	unknown	No data	No data	502 B	467 B	192.243.61.225
www.1337xx.to	375725	unknown	2020-02-24 09:05:17	2023-11-12 03:14:11	18 kB	1.2 MB	188.114.96.1
macaronibackachebeautify.com	unknown	unknown	No data	No data	914 B	40 kB	192.243.61.225
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-12-04 10:42:27	1.5 kB	846 B	192.243.59.20
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-12-04 08:10:55	920 B	30 kB	45.133.44.10
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-04 06:26:24	1.1 kB	33 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-04 06:42:16	430 B	7.5 kB	142.250.74.106
p7.hiclipart.com	133004	2019-04-19	2019-05-24 15:19:56	2023-11-19 08:07:39	459 B	11 kB	172.67.168.190
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-12-04 18:39:56	439 B	420 B	18.157.140.81
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-04 11:30:31	700 B	1.9 kB	54.230.218.11
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-12-04 19:07:45	423 B	847 B	172.67.219.12
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-12-04 19:07:45	818 B	96 kB	172.64.173.31
www.pngfind.com	68751	2019-02-25	2019-04-25 18:40:37	2023-11-14 22:41:32	481 B	38 kB	74.91.26.30

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-04 22:23:20	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-04 22:23:20	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	macaronibackachebeautify.com	Sinkholed
2023-12-04	medium	macaronibackachebeautify.com	Sinkholed
2023-12-04	medium	attendancereporterwren.com	Sinkholed
2023-12-04	medium	unseenreport.com	Sinkholed
2023-12-04	medium	unseenreport.com	Sinkholed
2023-12-04	medium	archaicin.com	Sinkholed
2023-12-04	medium	archaicin.com	Sinkholed
2023-12-04	medium	archaicin.com	Sinkholed
2023-12-04	medium	archaicin.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (19)

	URL	From	Size	First Seen	Last Seen
	macaronibackachebeautify.com/bd/6c/33/bd6c3375a35d155e03aef20bbbe563ea.js	ScriptElement	59 kB	2023-12-04	2023-12-04
Pretty URL macaronibackachebeautify.com/bd/6c/33/bd6c3375a35d155e03aef20bbbe563ea.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 23:23 Last Seen2023-12-04 23:23 Times Seen1 Hash ea0c35b2864e2e8d02d62811d79b1075 d552e394643c3249312f4441dd25e39cbfc70141 234839a758fdfe4bbd1fa5b93f320dbd8af54c4dab15eb63e9e18b519a349a32 Loading...

	www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/	ScriptElement	162 B	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-06-28 13:22 Times Seen173 Hash 6b26e0d7c60ad2d5e9b365cc38781505 61683cc8cc94abc3c575f67ed24f73aa04149554 d3f53af7a31fc88722569c2f5c00621dc0f5dcee2e46ac98d28ab0f5f55904dc Loading...

	www.1337xx.to/static/js/jquery-1.11.0.min.js	ScriptElement	96 kB	2023-03-07	2025-06-30
Pretty URL www.1337xx.to/static/js/jquery-1.11.0.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-30 14:07 Times Seen946 Hash eaec1712551cd2792f4607f39fab12e7 2439711705752fac5dd1a6a8d6b1be63ffcbc76d 746e54e89161118a67bd59103c4ab55e3060735cc85c1d047c2cf04d4b12043d Loading...

	www.1337xx.to/static/js/auto-searchv2.js	ScriptElement	716 B	2023-03-07	2025-06-29
Pretty URL www.1337xx.to/static/js/auto-searchv2.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-29 08:43 Times Seen256 Hash a4b57f03005db04060dfef0775e3d90b c4744701caefc235077f3843e1223117749cd0d9 453701e481d63aa42e7a0a6b2300d65a3c592073ae8f1f0158f6ef46400d4770 Loading...

	www.1337xx.to/static/js/scrollbar.js	ScriptElement	40 kB	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/static/js/scrollbar.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-28 13:22 Times Seen212 Hash a9dbd5c265a5fbb9c24df23438b5492d f05001780b0223d840b7ec19221ac21bd659fa58 027643f8d1ed4fad0eb9f35c0a4909e60385a799f45091cf9ba6a3aa8877197b Loading...

	unknown	ScriptElement	1.3 kB	2023-10-20	2024-12-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 23:39 Last Seen2024-12-14 16:44 Times Seen14 Hash ea0e8225cd4d6bcae56596227ca25ec2 9e5eb9f30ff511500086954591a404138aaf90e9 efb3c7d75674facb65db0bf55ab3aeefc0e833a1ead8185e66196eeb66c45d27 Loading...

	www.1337xx.to/static/js/equalheight.js	ScriptElement	307 B	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/static/js/equalheight.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-28 13:22 Times Seen212 Hash c5400113e82af2006936f4da906de973 4fcb2efc6c62d22351539de5120b971195727cb9 dfcfd312395fac51053cb661b4bece35f269d95ebbdfcd9f63a878eccef60396 Loading...

	www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/	ScriptElement	1.9 kB	2024-08-20	2024-08-20
Pretty URL www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:46 Last Seen2024-08-20 16:46 Times Seen1 Hash 5bd8ea239744080041376e2f4e32aae5 cc5719d264aa1cf1fdfc3c792502e7fec6df96a6 e1639a85734f2315e18aa892a09f705fb356da7f72d1e17ecdd1f1615da2bec4 Loading...

	macaronibackachebeautify.com/75/eb/7b/75eb7bf55a6322e200a2e7f9c09f7eab.js	ScriptElement	43 kB	2023-12-04	2023-12-04
Pretty URL macaronibackachebeautify.com/75/eb/7b/75eb7bf55a6322e200a2e7f9c09f7eab.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 23:23 Last Seen2023-12-04 23:23 Times Seen1 Hash 7e26207d8910a5d5117cbef4c5c480a4 97391d6ada904398cde6a25edadb2a8f57ff6246 b1d507fd0cf87d2199da7914114cf6767acaa6a5d048e56cac29e86465f635cc Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-06-30
Pretty URL banquetunarmedgrater.com/advertisers.js IP 172.67.219.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-30 22:40 Times Seen5219163 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/	ScriptElement	428 B	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:27 Last Seen2025-06-28 13:22 Times Seen62 Hash 656b67527c95d13ef36ec5abe70d1279 2711b65273da5acc4f014640c9db74e5b65ad42e 3c1144a637dfe2abd3dc1c5c8627ea444a7b05d6355a22145402e5297bef7ede Loading...

	www.1337xx.to/static/js/main.js?v=1	ScriptElement	1.6 kB	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/static/js/main.js?v=1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-06-28 13:22 Times Seen73 Hash 5c87297596179b890841cf19f434c4ba a956aeeb2e1cd686c21f4adac5688730e06638af 19c273d0582b3b6392302ece922088dfad5be1e094fb8510f1ed62320a3d2b26 Loading...

	www.1337xx.to/static/js/tab.js	ScriptElement	1.8 kB	2023-03-07	2025-06-29
Pretty URL www.1337xx.to/static/js/tab.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-29 09:00 Times Seen230 Hash bdccba90d093432de58bc0d3fc151a95 d6db9210b8d67d8486babaf2fa88fb1a3ef2c781 b44a83c3140140106709bd4a0a8e6500086f01b87b4480fcc0f3cdf196a268bb Loading...

	www.1337xx.to/static/js/lazyload.min.js	ScriptElement	3.4 kB	2023-03-07	2025-06-30
Pretty URL www.1337xx.to/static/js/lazyload.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04 Last Seen2025-06-30 07:35 Times Seen1438 Hash 5c01d7aff077b4ed0804b71c2e3ab4a1 56b4c94cff0d5fdfca579eac85da28a767607644 80351098c2478918bb80008d7836499305bf6f4d4b2abf742b8823255bbb0d8e Loading...

	www.1337xx.to/static/js/modal.js	ScriptElement	10 kB	2023-03-07	2025-06-28
Pretty URL www.1337xx.to/static/js/modal.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-06-28 13:22 Times Seen88 Hash 8289720aa01982ad7b48c62b7f96dd93 7c5370aa27127c0cafb643b671dd2c9a906a8b8e a2589ffb2fd098b789870f1b48c8d83614c29df22739921ee3347d741b57dd4a Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-06-30
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js IP 172.64.108.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-30 21:09 Times Seen8166 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	www.1337xx.to/static/js/jquery-ui.js	ScriptElement	307 kB	2023-03-07	2025-06-29
Pretty URL www.1337xx.to/static/js/jquery-ui.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-29 08:43 Times Seen255 Hash 7ddac2a3d1e7091bd51f23f0250a7fea 5537fb7969f7a8349e0292ce9710df8daae5ad3c ebdadbb78c8a4e8433168bcdb49b87d0cb4809bbca7aaf29fbe36a9c77be5e35 Loading...

	www.1337xx.to/static/js/pagination.js	ScriptElement	3.0 kB	2023-03-07	2025-06-29
Pretty URL www.1337xx.to/static/js/pagination.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-06-29 09:00 Times Seen71 Hash 9f98cf860838ec75816a8300bb88d4ba 9a3cec7d3773f0971dffd9cfc2f578010bdc9432 be1a851a36499a153ca9578b4f76bab92d737253b444c62276d7e57b82998d39 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 172.64.173.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

HTTP Transactions (63)

URL IP Response Size

GET p7.hiclipart.com/preview/956/634/483/5bbc4ea6502bd.jpg

172.67.168.190

200 OK

9.9 kB

URL GET HTTP/2
p7.hiclipart.com/preview/956/634/483/5bbc4ea6502bd.jpg
IP
172.67.168.190:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjecthiclipart.com
Fingerprint89:E2:19:76:BB:BE:1B:94:63:99:87:B1:60:CC:23:A9:A9:94:F0:15
ValiditySun, 03 Dec 2023 13:45:21 GMT - Sat, 02 Mar 2024 13:45:20 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 395x127, components 3\012- data
Size
9.9 kB (9871 bytes)
Hash
d75ef67f72ec2a1d48a9531699f62afc
b6ae122419b39b21b94fc8775345ca5f4949d55c
82711c27682310be4dc56a5ba752325742ce41605e771c2936dac83e8b2f3952

HTTP Headers

GET /preview/956/634/483/5bbc4ea6502bd.jpg HTTP/1.1
Host: p7.hiclipart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpeg
content-length: 9871
last-modified: Tue, 05 Mar 2019 05:57:09 GMT
etag: "5c7e0fb5-268f"
expires: Sat, 23 Nov 2024 08:52:09 GMT
cache-control: max-age=31104000
cf-cache-status: HIT
age: 480666
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mCGOea6hZEr7N05R9HtOoSi5KlG7P829igK08XFdXo0dwjXfJmIR%2F1UffYlmUrkQPWmMXTDPB6tSB4ZotoGt1nPZhhM0FSUswXk5vmzwHtdGJ9WZ9%2BsTavPjkW578GFAUI65"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773e6f8d7b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.1337xx.to/static/js/main.js?v=1

188.114.96.1

200 OK

3.1 kB

URL GET HTTP/3
www.1337xx.to/static/js/main.js?v=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text
Size
3.1 kB (3081 bytes)
Hash
5c87297596179b890841cf19f434c4ba
a956aeeb2e1cd686c21f4adac5688730e06638af
19c273d0582b3b6392302ece922088dfad5be1e094fb8510f1ed62320a3d2b26

HTTP Headers

GET /static/js/main.js?v=1 HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:30 GMT
vary: Accept-Encoding
etag: W/"62b2a842-63e"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YNJxVxp5XB8Lw%2BeD0u3MpLYJnKyTKjkER1htY79tiiBXnAgSGdPLIMJX3Jf8QUfozciOycLf%2F8yfnwJ55a4NUMkEulpIrqkdAj6jcKLhckdNUwpXMaCUQ7pe9thwaOli"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace95685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/webfonts/opensans-regular.woff

188.114.96.1

200 OK

23 kB

URL GET HTTP/3
www.1337xx.to/css/webfonts/opensans-regular.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 22660, version 1.0\012- data
Size
23 kB (22660 bytes)
Hash
79515ad0788973c533405f7012dfeccd
5092881fad2caffdc6bf71bdab1ea547b73d3564
22e7a1b10c110072f5a0bfd16e2197a76b279ec879bcce8978fada1dc9ee5d40

HTTP Headers

GET /css/webfonts/opensans-regular.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 22660
last-modified: Wed, 22 Jun 2022 05:25:44 GMT
etag: "62b2a7d8-5884"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZylrm7kH0PiphplYG3TEcvoV%2FOOIakw0RTSR3TngAaHLTIHS9QChbb21vaee5VfDTnw32hhtUJJdrNuo2qvQLnwRAo8rjjCb%2BGXQLGLwpnHiMPLld3Rk9l0XsH8vXru"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7dd955685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/equalheight.js

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.1337xx.to/static/js/equalheight.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (307), with no line terminators
Size
25 kB (25413 bytes)
Hash
c5400113e82af2006936f4da906de973
4fcb2efc6c62d22351539de5120b971195727cb9
dfcfd312395fac51053cb661b4bece35f269d95ebbdfcd9f63a878eccef60396

HTTP Headers

GET /static/js/equalheight.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:22 GMT
etag: W/"62b2a83a-133"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7oUO2%2BhisBVunK%2Bbry6KmK7ECuSg4bBgRzYOGJ60ypLF5H5dsfOzNjhBYVBRDZtLIDpcac%2FuuUqBVPUsK%2Bq2JUcgBCapddsL9IcxmixRz6gyaErWrz6XG8fEn4lK67wo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acea5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/lazyload.min.js

188.114.96.1

200 OK

2.5 kB

URL GET HTTP/3
www.1337xx.to/static/js/lazyload.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (3309)
Size
2.5 kB (2494 bytes)
Hash
5c01d7aff077b4ed0804b71c2e3ab4a1
56b4c94cff0d5fdfca579eac85da28a767607644
80351098c2478918bb80008d7836499305bf6f4d4b2abf742b8823255bbb0d8e

HTTP Headers

GET /static/js/lazyload.min.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:28 GMT
vary: Accept-Encoding
etag: W/"62b2a840-d35"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CH%2BlP7Cu7HJHgN5zoPygcFRuazwjsgHhHbBE7IgCGohumrmRotjERT%2FLyge3Rij0QwLYX%2F3DNFqxfgM%2FRFzKSZSumvqJlwkrLsA8U3nYg6rVHYbAXjUhRHgKXWUXRkqf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6bcef5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/nav-bg.png

188.114.96.1

200 OK

616 B

URL GET HTTP/3
www.1337xx.to/css/images/nav-bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
PNG image data, 224 x 38, 8-bit/color RGBA, non-interlaced\012- data
Size
616 B (616 bytes)
Hash
ad83550eff315bb6a02e2cfd2cfde3ad
055c467e7c93ee76a9653e8b898f6823197dae8e
3794019a41c0284bee7a232dc11d922b847c614bc439cdac17de2c0175199752

HTTP Headers

GET /css/images/nav-bg.png HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/png; charset=utf-8
content-length: 616
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9jH3V2lSrLIffBDnwIMjPoeaKhg%2FanqLhrjDymaNm5MXBnuF2NWXn5e2eyK%2FTxE0xURD%2BLwenhcqTVDzvV76ktBA1dKDkJ%2FV6VZ5VMyeJyVaIYE7ixwAxd4RCB4g1X%2BX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7fda35685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/tab.js

188.114.96.1

200 OK

1.8 kB

URL GET HTTP/3
www.1337xx.to/static/js/tab.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (1820), with no line terminators
Size
1.8 kB (1768 bytes)
Hash
bdccba90d093432de58bc0d3fc151a95
d6db9210b8d67d8486babaf2fa88fb1a3ef2c781
b44a83c3140140106709bd4a0a8e6500086f01b87b4480fcc0f3cdf196a268bb

HTTP Headers

GET /static/js/tab.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:34 GMT
vary: Accept-Encoding
etag: W/"62b2a846-71c"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z2IQg%2F8LHChvi%2B%2BOaqykKJSQytSamUmN1ZhRWod8DTk5avEWrZ0Omt2CPN1HmDvHHsCDQ23p%2FRcuGPBpJOJEIAAOVcwW4ruqnriI7ui73dX3j4fcznnaa3xxpgcNgi4h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6bcee5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/black-gradient-bg.jpg

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.1337xx.to/css/images/black-gradient-bg.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 10x163, components 3\012- data
Size
1.2 kB (1180 bytes)
Hash
cb17ba9d17b5dc975e48c45b4e257d65
1708d0bf5fd0bf4c5f4ca9f3ec54b9e56c2e8b1f
320b0fb44f87a3c51be6bbf2ea264f231667131016616d32918d31b31bb45a6f

HTTP Headers

GET /css/images/black-gradient-bg.jpg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpg; charset=utf-8
content-length: 1180
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BqzB40M3td%2BpHu0XeAOfo1x%2FUxuzLjTy3p6u0PQRHeIXNk9%2FTsd3Qw8hM67Fd9r%2Ft4AGXmTvUGxltCTm7iI6wE%2Bu2ot8Ipcc1bcsDIRgWGAftORbNmjwWla4vUGJdj%2Fg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e80dad5685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/notfication-bg.png

188.114.96.1

200 OK

121 B

URL GET HTTP/3
www.1337xx.to/css/images/notfication-bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
PNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced\012- data
Size
121 B (121 bytes)
Hash
831c43c31346a124b70b6475490313f7
6bf7b325c7e207f9da08188af23723195ee5d3a3
19af91163505935886535f7b68b1528f99eb97d003fc03972e140da02c11d242

HTTP Headers

GET /css/images/notfication-bg.png HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/static/css/torrent.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/png; charset=utf-8
content-length: 121
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLZWL3i4Wblo4WnIrRmAUH3QIKWg8LfuEY2WB2ZYJ1ShdoUuCNMf0kWuQ3u%2FiF%2BAVz%2FNLMz0Qp0bDC4%2Bo104%2BCzpELhSWvvymtfm3aAHLKMS5lP1VtTWa6%2BfJGEVKC9x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e81dbe5685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/tabs-nav-bg.jpg

188.114.96.1

200 OK

946 B

URL GET HTTP/3
www.1337xx.to/css/images/tabs-nav-bg.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
PNG image data, 10 x 46, 8-bit/color RGB, non-interlaced\012- data
Size
946 B (946 bytes)
Hash
74484aff30458cf3eef0104c2b48d070
7cf67e90bafd3519f360d4640c2ee0e029b500f8
879de89af5f1ff7a9174f0fc861a5d1bbd509584ea760b9c5c3168c97a10feb8

HTTP Headers

GET /css/images/tabs-nav-bg.jpg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpg; charset=utf-8
content-length: 946
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CXFBk85QBMjERpITmLbTPjeFxEIqm%2B764XVmjVJtl90G%2BPRwg6I0lpx%2BWO5Y328gb1hPNNKVZelKPgDhb6PrT7i3i%2FC0vzTYMZ2WPcssqsZxM6EMVRqnYN3APY3POSaR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e81dc15685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/scrollbar.js

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
www.1337xx.to/static/js/scrollbar.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (2564)
Size
13 kB (13325 bytes)
Hash
a9dbd5c265a5fbb9c24df23438b5492d
f05001780b0223d840b7ec19221ac21bd659fa58
027643f8d1ed4fad0eb9f35c0a4909e60385a799f45091cf9ba6a3aa8877197b

HTTP Headers

GET /static/js/scrollbar.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:34 GMT
vary: Accept-Encoding
etag: W/"62b2a846-9d1d"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WkzXX5jExzwGEidwAnITiTyCNQdujixus4iTL7ow5wGEGE92E160VPIRiOyMGGovpknbIeMZbVLuiwYi776x2wK3n5oXr9Bo8r6qP%2BXqmv4aHdzRoa485P7Yib4vbpHU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6bceb5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/jquery-ui.css?v=1.3

188.114.96.1

200 OK

35 kB

URL GET HTTP/3
www.1337xx.to/static/css/jquery-ui.css?v=1.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (27411), with CRLF line terminators
Size
35 kB (34764 bytes)
Hash
316041ab3b238141b76d82ae38c16f1a
e7b8969e26035b7331d9e3bbad44413dc6772c3f
2703365754030d176a91731daf96d79d7125e0c939a7b6cc704181ab2f7166c4

HTTP Headers

GET /static/css/jquery-ui.css?v=1.3 HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 05:26:31 GMT
vary: Accept-Encoding
etag: W/"62b2a807-71ce"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BdAce4R3g25RYAVN4v1EBvxSeWpTi6FKWPSI6jbn4ttjOvpW2E54TxBowWLsMB0pwlXTuDZG7HpDAY0SS%2BaWJq4bnlKOysM2PdO0Q0uo4ns8rJBf2z4slli5M%2B2zexb3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e69cd45685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/webfonts/oswald-bold.woff

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
www.1337xx.to/css/webfonts/oswald-bold.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 22548, version 1.0\012- data
Size
22 kB (22548 bytes)
Hash
5737d9a70b478e869c68cd1dc1b67cbc
f8095e94a0765bf23b164e9c06cf5112b3d50f3c
a9ef49b82729c7b1961f04aa67ea4a305cf7d0e8391981a8164997001c5918e9

HTTP Headers

GET /css/webfonts/oswald-bold.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 22548
last-modified: Wed, 22 Jun 2022 05:25:45 GMT
etag: "62b2a7d9-5814"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=diw%2BTVMxFjZ2M5WVLNkx4Zs3zH9dD%2FUlWVMPe7xfDQMdcyH7w5MKOXYqv7m9TFfQXQLP%2FsYT6uOBOhGL026XrPsQshTG9GcqGQSonX5JgjQOUZMGg%2Bgl3dbtp7FEpn%2BV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e83dd75685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/icons.css?v=1.3

188.114.96.1

200 OK

24 kB

URL GET HTTP/3
www.1337xx.to/static/css/icons.css?v=1.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (8333), with no line terminators
Size
24 kB (24135 bytes)
Hash
e5dfde038ee62180aa9c3171ed04444f
f1e21c3ce8f53a14d2eb904904b05becdb48fb32
c0b463beece90a7f3f2d59a331ac29fd9211be9c75be789d414b6d3dd4a0b89e

HTTP Headers

GET /static/css/icons.css?v=1.3 HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 05:26:31 GMT
vary: Accept-Encoding
etag: W/"62b2a807-208d"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OmH%2BH2GCXu0Q8kEFi169CQbnswgF3RxUyib%2BjjA2kp%2BnnK8e2wuQpAo7LrsY%2F9wt7WlbjhLPC4JBRRWa0%2F33Gfa6ODEHSEDH0KpRLXmwNxS2%2FKBHxAupDAJ03jzoDSO9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acd65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/webfonts/oswald-light.woff

188.114.96.1

200 OK

23 kB

URL GET HTTP/3
www.1337xx.to/css/webfonts/oswald-light.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 22568, version 1.0\012- data
Size
23 kB (22568 bytes)
Hash
a4d5b8f448ec86ddb2e57a2912a3fcd6
579df89a925a4e5e46d63fe5ad84492a810ed3be
dc1e478c0ada70ebba3817df17ad49d0b288351d777cf6582dba4a5390be73e3

HTTP Headers

GET /css/webfonts/oswald-light.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 22568
last-modified: Wed, 22 Jun 2022 05:25:46 GMT
etag: "62b2a7da-5828"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kDM530WlGgC2JIRevfPuGqxtN7onKibcZjsIwLNBl4yVIoy%2B4Bcn%2BZlo07f467aiNam2kxfAN8ydMymwZ9f6wVa0r4VpUg9UspUFGzwI2uEAKzy4KPWtlYEFngg3FzrE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e84df25685-OSL
alt-svc: h3=":443"; ma=86400

GET macaronibackachebeautify.com/75/eb/7b/75eb7bf55a6322e200a2e7f9c09f7eab.js

192.243.61.225

200 OK

16 kB

URL GET HTTP/1.1
macaronibackachebeautify.com/75/eb/7b/75eb7bf55a6322e200a2e7f9c09f7eab.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectmacaronibackachebeautify.com
FingerprintEB:09:09:39:B9:A7:CC:28:04:0D:38:4A:68:EF:E5:F6:5D:48:49:64
ValidityWed, 29 Nov 2023 12:40:32 GMT - Tue, 27 Feb 2024 12:40:31 GMT

File type
ASCII text, with very long lines (42796), with no line terminators
Size
16 kB (15453 bytes)
Hash
7e26207d8910a5d5117cbef4c5c480a4
97391d6ada904398cde6a25edadb2a8f57ff6246
b1d507fd0cf87d2199da7914114cf6767acaa6a5d048e56cac29e86465f635cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /75/eb/7b/75eb7bf55a6322e200a2e7f9c09f7eab.js HTTP/1.1
Host: macaronibackachebeautify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 782d579c3ae33d702e31409825ff5d3d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET macaronibackachebeautify.com/bd/6c/33/bd6c3375a35d155e03aef20bbbe563ea.js

192.243.61.225

200 OK

23 kB

URL GET HTTP/1.1
macaronibackachebeautify.com/bd/6c/33/bd6c3375a35d155e03aef20bbbe563ea.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectmacaronibackachebeautify.com
FingerprintEB:09:09:39:B9:A7:CC:28:04:0D:38:4A:68:EF:E5:F6:5D:48:49:64
ValidityWed, 29 Nov 2023 12:40:32 GMT - Tue, 27 Feb 2024 12:40:31 GMT

File type
ASCII text, with very long lines (59252)
Size
23 kB (23167 bytes)
Hash
ea0c35b2864e2e8d02d62811d79b1075
d552e394643c3249312f4441dd25e39cbfc70141
234839a758fdfe4bbd1fa5b93f320dbd8af54c4dab15eb63e9e18b519a349a32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bd/6c/33/bd6c3375a35d155e03aef20bbbe563ea.js HTTP/1.1
Host: macaronibackachebeautify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_AN-1159_layer=0; expires=Sat, 09 Dec 2023 02:23:15 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6cbb73f3a1c2c73451ff579ebb671fb2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET www.pngfind.com/pngs/m/271-2714461_want-to-know-what-les-stroud-has-been.png

74.91.26.30

38 kB

URL GET
www.pngfind.com/pngs/m/271-2714461_want-to-know-what-les-stroud-has-been.png
IP
74.91.26.30:0
ASN
#33387 NOCIX

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectwww.pngfind.com
Fingerprint17:27:2A:37:07:C4:58:A5:8E:7E:3D:CF:06:CD:F7:7D:B0:10:DB:73
ValidityTue, 14 Nov 2023 19:45:29 GMT - Mon, 12 Feb 2024 19:45:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 840x252, components 3\012- data
Size
38 kB (38111 bytes)
Hash
79e4299e0868143d718de3019e3ed612
de334445ec3a7a173d05fd3c57b0444d973b6bfd
572a97e7d91b1c88f000e39afc7402ffdeeefd64662dc84e8e00f3ba0f5e0d5a

HTTP Headers

GET /pngs/m/271-2714461_want-to-know-what-les-stroud-has-been.png HTTP/1.1
Host: www.pngfind.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.14.0
Date: Mon, 04 Dec 2023 22:23:15 GMT
Content-Type: image/png
Last-Modified: Fri, 03 May 2019 18:32:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ccc894d-ec7d"
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
24a776b1f2e9d3fff472472cff5e9b16
38a6b9ce7b18c9204f5ace875325ca74c863d1a9
108f3caa2c7db8c122fcea5f02f4f0f1e058d4da8e913dc2b4e8ace4e5a50e81

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 04 Dec 2023 22:23:15 GMT
Last-Modified: Mon, 04 Dec 2023 22:03:08 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -UsbE17_UHlNZdMMRvxXV9dQcYzbgbccmdejaaptA71W0KAD6543LA==
Age: 1207

GET www.1337xx.to/static/js/modal.js

188.114.96.1

200 OK

133 kB

URL GET HTTP/3
www.1337xx.to/static/js/modal.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with CRLF line terminators
Size
133 kB (132874 bytes)
Hash
8289720aa01982ad7b48c62b7f96dd93
7c5370aa27127c0cafb643b671dd2c9a906a8b8e
a2589ffb2fd098b789870f1b48c8d83614c29df22739921ee3347d741b57dd4a

HTTP Headers

GET /static/js/modal.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:30 GMT
vary: Accept-Encoding
etag: W/"62b2a842-2857"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DZjAJQUAACfOZFZsI66rPUbIHZyKxJtjDLDdHRUr6I5FTvMVvKwp%2FsKarkdDJsVYNPJ5q8vIAXz37OLZbG1oE%2FLwD4bCyoK9HPUhYnEA61BMTbh0wkAxCwjlEpgQOwFd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6bcf35685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
24a776b1f2e9d3fff472472cff5e9b16
38a6b9ce7b18c9204f5ace875325ca74c863d1a9
108f3caa2c7db8c122fcea5f02f4f0f1e058d4da8e913dc2b4e8ace4e5a50e81

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 04 Dec 2023 22:23:15 GMT
Last-Modified: Mon, 04 Dec 2023 22:06:55 GMT
Server: ECAcc (ska/F78B)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: scQG8n92teTVoUt5BWxoETkVLt82nQmOyGz2wysLgTev_MYeoeQLDg==
Age: 980

GET proftrafficcounter.com/stats

18.157.140.81

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.157.140.81:443
ASN
#16509 AMAZON-02

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
19846db7078c6d98c73ea824790e80ea
32f33411b16ba0eca44fb4a0c399ec036094b2e1
44cdbac662cb302c13f3bab1b48d8976ef2b1e56338e3babda3bb1ca15fc3604

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.1337xx.to
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=19667c50-a87a-4d62-8138-d9e56ee19794:1:1; expires=Thu, 01 Dec 2033 22:23:15 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET banquetunarmedgrater.com/advertisers.js

172.67.219.12

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
172.67.219.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:16 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: e05a5862ba64ebe82a3348d106951ddc
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 04 Dec 2023 22:23:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=24QirONdyV6mKrPOXDjfcP%2F6SQznYNRdI9KUW8RQHmnR1IRJ3bocS2WZMjvhuo2VP%2F10aSiS0N1zi6Fc%2FbjicJ2DVujRFAgpW6kc0Cztrld%2FS%2BReKvtTeRdzIt55LL%2BJpyRreL2iYoQ5%2BZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773ec994056ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET attendancereporterwren.com/pixel/purst?dl=0&th=0&sc=0&rs=1124&rd=1124&fd=668&bv=23.12.v.2&tmpl=70

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
attendancereporterwren.com/pixel/purst?dl=0&th=0&sc=0&rs=1124&rd=1124&fd=668&bv=23.12.v.2&tmpl=70
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectattendancereporterwren.com
FingerprintA4:58:98:0A:55:A0:D5:5D:B4:EF:D7:45:A7:BD:6A:ED:91:B9:BF:26
ValidityMon, 27 Nov 2023 07:46:57 GMT - Sun, 25 Feb 2024 07:46:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1124&rd=1124&fd=668&bv=23.12.v.2&tmpl=70 HTTP/1.1
Host: attendancereporterwren.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET unseenreport.com/pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=75eb7bf55a6322e200a2e7f9c09f7eab&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=75eb7bf55a6322e200a2e7f9c09f7eab&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=75eb7bf55a6322e200a2e7f9c09f7eab&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 22:23:16 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 378637e1646d2acdf2491d6de050695c
Strict-Transport-Security: max-age=0; includeSubdomains

GET unseenreport.com/pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=bd6c3375a35d155e03aef20bbbe563ea&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=bd6c3375a35d155e03aef20bbbe563ea&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=19667c50-a87a-4d62-8138-d9e56ee19794&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=bd6c3375a35d155e03aef20bbbe563ea&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 22:23:16 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd4ab698a22e83c4a55a2672a6441bd7
Strict-Transport-Security: max-age=0; includeSubdomains

GET archaicin.com/sbar.json?key=75eb7bf55a6322e200a2e7f9c09f7eab&uuid=19667c50-a87a-4d62-8138-d9e56ee19794%3A1%3A1

173.233.137.52

200 OK

3.4 kB

URL GET HTTP/1.1
archaicin.com/sbar.json?key=75eb7bf55a6322e200a2e7f9c09f7eab&uuid=19667c50-a87a-4d62-8138-d9e56ee19794%3A1%3A1
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectarchaicin.com
FingerprintCB:13:5A:BD:C5:13:07:1E:02:F1:E3:B3:05:D7:5C:2F:4A:25:2E:67
ValidityTue, 28 Nov 2023 10:53:01 GMT - Mon, 26 Feb 2024 10:53:00 GMT

File type
JSON data\012- , ASCII text, with very long lines (6080), with no line terminators
Size
3.4 kB (3445 bytes)
Hash
6bb1c976f1ad14462a91dc062bf8b311
2ae1a806ca43639b1e78c294355d61a25eb65509
331351a6c0d0ef2f51c1c0d4a2dba7a5493be8892ed6b4234dc1238cc513e1e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=75eb7bf55a6322e200a2e7f9c09f7eab&uuid=19667c50-a87a-4d62-8138-d9e56ee19794%3A1%3A1 HTTP/1.1
Host: archaicin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:17 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1337xx.to
Access-Control-Allow-Origin: https://www.1337xx.to
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16578592; expires=Tue, 05 Dec 2023 22:23:16 GMT; secure; SameSite=None
uid_id2=19667c50-a87a-4d62-8138-d9e56ee19794:1:1; expires=Mon, 11 Dec 2023 22:23:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 05 Dec 2023 22:23:17 GMT; secure; SameSite=None
uncs=1; expires=Tue, 05 Dec 2023 22:23:17 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 05 Dec 2023 22:23:17 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 05 Dec 2023 22:23:17 GMT; secure; SameSite=None
slec75eb7bf55a6322e200a2e7f9c09f7eab=[4766299]; expires=Mon, 04 Dec 2023 22:23:22 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6b4dd5e4d7490832707ea01a16fa09ff
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET archaicin.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzp%2FTj9%2FBkEsOQh88RHBnu3ump6cNEozJxsV1d02y7MFTdVf1bLk1XU1V9%2FTseFkMSI4TEPTY%2B2Y3SzQE41EQZNaLLAgZD7IHF8R7LkLwICIzOzD6Qff3ve%2FV4b1X9elecUpcFPRk%2FX3VF1LSRb%2Fm2Fc3RcpUaezVe7br1Jxr9qZIm41rdm%2Fy0903XcevOa%2Fbt3m8rRY9x3Uc13HtJaF5onqLUxYiexK6tdCpNbya6zfQ0%2F%2FFprBgqAXWPSWXINj44taPzyDiEdLO1ze52c5V9satTiFprjS67HAj3U5VmaIzHxNtIUkPZ6ehzJiQL85BpYczB1Dd%2FYkDRGJMrF9cROnhTCai7sGZ0kiCp4jY%2F1B2R%2BByBEFHiNV9CPacADHD6hrSzqNVpUu6c8bSCTsmF17%2BAVGOyYVfLyPtPL0hRc%2B%2Bq2SRC5Ua9JIKojeCaI%2BQFUfI%2BxZEeYQ4%2FwSC%2FUQWX64g7eyvGakg2MlrbthsBrHvLNBWQBcarOkttNx6a4GF3G9y7oZB2JhGJMQIIhlB8gGosVBMPmGhSCwUmYUOO7GpHyaOEyRRUq%2B3GnEc1%2Btx7LeazGf1RitxUMQTDwPk2QCxHCDWu8j0LrbFw%2Bf%2BJejie5itCoZZMDlBl1UoOUFpCEpKUAqCMicou9UBk8Yz1SMmTRG5s%2B7Ner0aqry9Rw9U3uYpAdWDveyUvDLN768%2FbWzzEzvweRREie%2FTZt3zuOc41ONBEsZOmAScRjCigjDnpm77YkyuvHULmRiTi5%2F%2FjYgewcgjxOISaPEqaDkMPAd0a9hoOeinj916Pej1arkCUxWy%2FALyHWtPnpIrUxHvfvsheHx8%2FbP%2Bb7efXv4Ysa6Q6QofiR8I2vLB8I4qyf4dVRrybC3LRUf06eSC7%2BY05%2Be%2FfI%2FvlEqz5Ztm8PjteEJMxif3uMlXaMpE2jbkqxuCMa6XlI45%2BW7ZbPJovTBbNwqdFtnK%2BjtLy51Mc2OESkegYkzIi28QizH5%2FwszfbxXN36H0CPookKnOCazglBHiLNdmGy%2BM4pAyzmOMgtlUQ21F82XUhBIPsc0qmD%2BhaP5vGceoK0t0Pw%2B0k6Frq7QlRWoHMAU54d5po%2Bv%2F1yfFiJpDSOprf1IavnwLFwjTmzuJ07CHY9HSRglAXVYmDTCiIYuDyKfusjNmKcfbPwDAAD%2F%2FwEAAP%2F%2FJg6slZQEAAA%3D

173.233.137.52

200 OK

7 B

URL GET HTTP/1.1
archaicin.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzp%2FTj9%2FBkEsOQh88RHBnu3ump6cNEozJxsV1d02y7MFTdVf1bLk1XU1V9%2FTseFkMSI4TEPTY%2B2Y3SzQE41EQZNaLLAgZD7IHF8R7LkLwICIzOzD6Qff3ve%2FV4b1X9elecUpcFPRk%2FX3VF1LSRb%2Fm2Fc3RcpUaezVe7br1Jxr9qZIm41rdm%2Fy0903XcevOa%2Fbt3m8rRY9x3Uc13HtJaF5onqLUxYiexK6tdCpNbya6zfQ0%2F%2FFprBgqAXWPSWXINj44taPzyDiEdLO1ze52c5V9satTiFprjS67HAj3U5VmaIzHxNtIUkPZ6ehzJiQL85BpYczB1Dd%2FYkDRGJMrF9cROnhTCai7sGZ0kiCp4jY%2F1B2R%2BByBEFHiNV9CPacADHD6hrSzqNVpUu6c8bSCTsmF17%2BAVGOyYVfLyPtPL0hRc%2B%2Bq2SRC5Ua9JIKojeCaI%2BQFUfI%2BxZEeYQ4%2FwSC%2FUQWX64g7eyvGakg2MlrbthsBrHvLNBWQBcarOkttNx6a4GF3G9y7oZB2JhGJMQIIhlB8gGosVBMPmGhSCwUmYUOO7GpHyaOEyRRUq%2B3GnEc1%2Btx7LeazGf1RitxUMQTDwPk2QCxHCDWu8j0LrbFw%2Bf%2BJejie5itCoZZMDlBl1UoOUFpCEpKUAqCMicou9UBk8Yz1SMmTRG5s%2B7Ner0aqry9Rw9U3uYpAdWDveyUvDLN768%2FbWzzEzvweRREie%2FTZt3zuOc41ONBEsZOmAScRjCigjDnpm77YkyuvHULmRiTi5%2F%2FjYgewcgjxOISaPEqaDkMPAd0a9hoOeinj916Pej1arkCUxWy%2FALyHWtPnpIrUxHvfvsheHx8%2FbP%2Bb7efXv4Ysa6Q6QofiR8I2vLB8I4qyf4dVRrybC3LRUf06eSC7%2BY05%2Be%2FfI%2FvlEqz5Ztm8PjteEJMxif3uMlXaMpE2jbkqxuCMa6XlI45%2BW7ZbPJovTBbNwqdFtnK%2BjtLy51Mc2OESkegYkzIi28QizH5%2FwszfbxXN36H0CPookKnOCazglBHiLNdmGy%2BM4pAyzmOMgtlUQ21F82XUhBIPsc0qmD%2BhaP5vGceoK0t0Pw%2B0k6Frq7QlRWoHMAU54d5po%2Bv%2F1yfFiJpDSOprf1IavnwLFwjTmzuJ07CHY9HSRglAXVYmDTCiIYuDyKfusjNmKcfbPwDAAD%2F%2FwEAAP%2F%2FJg6slZQEAAA%3D
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectarchaicin.com
FingerprintCB:13:5A:BD:C5:13:07:1E:02:F1:E3:B3:05:D7:5C:2F:4A:25:2E:67
ValidityTue, 28 Nov 2023 10:53:01 GMT - Mon, 26 Feb 2024 10:53:00 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzp%2FTj9%2FBkEsOQh88RHBnu3ump6cNEozJxsV1d02y7MFTdVf1bLk1XU1V9%2FTseFkMSI4TEPTY%2B2Y3SzQE41EQZNaLLAgZD7IHF8R7LkLwICIzOzD6Qff3ve%2FV4b1X9elecUpcFPRk%2FX3VF1LSRb%2Fm2Fc3RcpUaezVe7br1Jxr9qZIm41rdm%2Fy0903XcevOa%2Fbt3m8rRY9x3Uc13HtJaF5onqLUxYiexK6tdCpNbya6zfQ0%2F%2FFprBgqAXWPSWXINj44taPzyDiEdLO1ze52c5V9satTiFprjS67HAj3U5VmaIzHxNtIUkPZ6ehzJiQL85BpYczB1Dd%2FYkDRGJMrF9cROnhTCai7sGZ0kiCp4jY%2F1B2R%2BByBEFHiNV9CPacADHD6hrSzqNVpUu6c8bSCTsmF17%2BAVGOyYVfLyPtPL0hRc%2B%2Bq2SRC5Ua9JIKojeCaI%2BQFUfI%2BxZEeYQ4%2FwSC%2FUQWX64g7eyvGakg2MlrbthsBrHvLNBWQBcarOkttNx6a4GF3G9y7oZB2JhGJMQIIhlB8gGosVBMPmGhSCwUmYUOO7GpHyaOEyRRUq%2B3GnEc1%2Btx7LeazGf1RitxUMQTDwPk2QCxHCDWu8j0LrbFw%2Bf%2BJejie5itCoZZMDlBl1UoOUFpCEpKUAqCMicou9UBk8Yz1SMmTRG5s%2B7Ner0aqry9Rw9U3uYpAdWDveyUvDLN768%2FbWzzEzvweRREie%2FTZt3zuOc41ONBEsZOmAScRjCigjDnpm77YkyuvHULmRiTi5%2F%2FjYgewcgjxOISaPEqaDkMPAd0a9hoOeinj916Pej1arkCUxWy%2FALyHWtPnpIrUxHvfvsheHx8%2FbP%2Bb7efXv4Ysa6Q6QofiR8I2vLB8I4qyf4dVRrybC3LRUf06eSC7%2BY05%2Be%2FfI%2FvlEqz5Ztm8PjteEJMxif3uMlXaMpE2jbkqxuCMa6XlI45%2BW7ZbPJovTBbNwqdFtnK%2BjtLy51Mc2OESkegYkzIi28QizH5%2FwszfbxXN36H0CPookKnOCazglBHiLNdmGy%2BM4pAyzmOMgtlUQ21F82XUhBIPsc0qmD%2BhaP5vGceoK0t0Pw%2B0k6Frq7QlRWoHMAU54d5po%2Bv%2F1yfFiJpDSOprf1IavnwLFwjTmzuJ07CHY9HSRglAXVYmDTCiIYuDyKfusjNmKcfbPwDAAD%2F%2FwEAAP%2F%2FJg6slZQEAAA%3D HTTP/1.1
Host: archaicin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Cookie: u_pl=16578592; uid_id2=19667c50-a87a-4d62-8138-d9e56ee19794:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 705ede4cf0efea3c5f744955651d2ab3
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css

172.64.108.10

200 OK

1.5 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
1.5 kB (1520 bytes)
Hash
aae84ccade4cab86c1afdf4c4532762a
b08de856858a730e980fb2a0ca2f0e1442c03d46
6e45c9c8dba52c75144c153e63a04d055f15e5f39897ab3f2413154c9cf2e91f

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:59:09 GMT
etag: W/"6213707d-1048"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1406014
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKmK1zw9UC5hZqIp13Kqo3Rw3EjmtR4QPYgZbGNdPb0YkYLxLtbSRqapNrcW9x7b7XM%2BbKosj%2Ft%2FepSLtAk7SSRh83gakJr2rqepCB6oDuR92ByhvwyLkld9TyzmA8g4jOsqinj2jil7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773f5899f77b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css

172.64.108.10

200 OK

5.4 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
5.4 kB (5438 bytes)
Hash
e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:06:42 GMT
etag: W/"62136432-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 51711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lmlBnFkUn9A7tR0H7tfU4HCF4NOBpdS8XWRfboGmGvqs%2FeRq513KOVe0z94ZbNg0HSiaMwj%2B3TXfEbxewdiBn5RR1p3%2BJP3EX%2BiblSyvCnK9EVDAuUJDXFxN1tqYBjMUE%2B8Dfu7UM%2FJr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773f5899977b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png

45.133.44.10

200 OK

20 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20001 bytes)
Hash
ea31001ce8fa95eb2ac1617515105332
d505ca04808c25cfa33a555c96886f421ddbbde7
0267f5cd21fe5609405724c20d6f021b8932a696ada766b8e86e42c670000ab3

HTTP Headers

GET /si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: image/png
content-length: 20001
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:52:40 GMT
etag: "655b72b8-4e21"
expires: Wed, 06 Dec 2023 22:23:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET friendshipmale.com/sfp.js

172.64.173.31

200 OK

36 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.173.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
36 kB (36138 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 5d7f52ffaf4839910878bec2af04bc7c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 04 Dec 2023 22:23:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qfvKtwJj%2BhoHDMkQjqkwWQmO2L5XXVK3wkkyx6Klse66WQVO2M%2FrGOv0dZDyIBzKoahcO1rOG987wPpC15B4mXSLzXKW0RC9ZHVTstPzkfS7NCN1xVWYoUsQ8BjDOV8uuQRBcqs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773ebcc9c414c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET friendshipmale.com/sfp.js

172.64.173.31

200 OK

58 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.173.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
58 kB (58206 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: abe77e19bac9ad91a98b4a5e155beb62
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 04 Dec 2023 22:23:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4Yk%2FwYkYIVtSUm52uZNKQD3nrFeCVazx3%2B71JosoD5lX42py4%2FUtX0icZZaRGswepdY6Xg4KZs3Xu8Rt%2FoCeAhSJfYqS2gjcquy89KZV%2FmU6bAafmdplt3cF1ePiRgkrw5CeKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773ebcc94414c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 436161
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 408343
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET archaicin.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzsfpz%2F9gyCUHoQ8eIriz%2FTE9PWOQYMyHwZjEfJCDp%2Bqq6tlya7qaqu7p2fGyGJAcJyDosffNbpZoCMajIMisF1kQMh5kDy6I91yE4EFEZnZg9Afdv9%2F7vTq896o%2B3SoPiY%2BSHtx8Xw%2BlUnQ1anju2Xsy47qy7vU7ru81vHPuPZm1mufcwexn%2Bm%2F6XtTwXnevCLauVwPP9zzf893L0ohUD1bnLGT%2BpOM3Ol6jGTT8qImB%2BS%2B2pQNLHfD%2BITkFyacn1358BskmyHpfXxR2vdD5G5d6paKFNujz3bvZeqarDL3lmBoHaba7OA1tp4R8cQw62104gO5vzxwgkVPi%2FOIjyXYXMpH0d46UJgoiQ8L%2Fh6o%2FgVATSDoB0%2Fch%2BXMCMI7rN5D1Hl3XpqIbRyydsVNy4uUfkNWUnPj1NLLe0wtKDtzbWpWF1JnFIK0hBxPI7gR5uYdi6EBWe2DFJ5D8J7L68hqy3vYNqzQkP3jN77RaMYu8FdqO6UqTt4KVth%2B2V3hHRC0h%2FE7cac4jknICmU6gxAjUOihnn3RQpg7K3EGPH7g06qSeF6dJGobtJmMsDBmL2i0e8bDZTj2UbOZhhCIfgakRmNlEbjaxLh8%2Bj07BlN%2FDrtWw3IEtCPq8RiUIKktQUYJKElQFQdWvd7iyga0fcWXLxF%2F0YNHDeqyL7hbd0UVXZATUjLbyQ%2FLKPL%2B%2F%2FnSxLg7cOBJJnKRRRFthEIjA82gg4rTDvE4aC5rAyhrSHpu7HcopOfPWJeRySk5%2B%2FjcSuger9sDkKdDyVdBqHAce6Nq42fYwzB77YRgPBo1Cg%2BsaeXECxYazpQ7JmbmId7%2F9EILtn%2F9s%2BNuVp6c%2FBjM1clPjI%2FkDQVc9GN%2FSFdm%2BpStLnt3IC9mTQzq74NsFLcTxL98TG5U2%2FOpFO3r8NpsRs%2FHJHWGLazTjMuta8tUFybkwl7Vhgnx31d4Tyc3Srl0oTVbm126%2Bc%2FlqLzfCWqmzCaicEvLiGzA5Jf9%2FYeeP9%2Bzd3yHNBKas0Sv3yaIg9R5YvgmbL3dWExi1xEnuoCrrsQmS5VJJAiWWmCY17L9wspy37AN0jQNa3EfWq9E3NfqqBlUj2PL4uMjN%2Fvmfw3khUc44UcbZTpRRD4%2FCtfLAjfymaCftmHGeCMb9OAjboecFnDfjjvA7KOxUZB%2Fc%2FQcAAP%2F%2FAQAA%2F%2F8yBiJzlAQAAA%3D%3D

173.233.137.52

200 OK

7 B

URL GET HTTP/1.1
archaicin.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzsfpz%2F9gyCUHoQ8eIriz%2FTE9PWOQYMyHwZjEfJCDp%2Bqq6tlya7qaqu7p2fGyGJAcJyDosffNbpZoCMajIMisF1kQMh5kDy6I91yE4EFEZnZg9Afdv9%2F7vTq896o%2B3SoPiY%2BSHtx8Xw%2BlUnQ1anju2Xsy47qy7vU7ru81vHPuPZm1mufcwexn%2Bm%2F6XtTwXnevCLauVwPP9zzf893L0ohUD1bnLGT%2BpOM3Ol6jGTT8qImB%2BS%2B2pQNLHfD%2BITkFyacn1358BskmyHpfXxR2vdD5G5d6paKFNujz3bvZeqarDL3lmBoHaba7OA1tp4R8cQw62104gO5vzxwgkVPi%2FOIjyXYXMpH0d46UJgoiQ8L%2Fh6o%2FgVATSDoB0%2Fch%2BXMCMI7rN5D1Hl3XpqIbRyydsVNy4uUfkNWUnPj1NLLe0wtKDtzbWpWF1JnFIK0hBxPI7gR5uYdi6EBWe2DFJ5D8J7L68hqy3vYNqzQkP3jN77RaMYu8FdqO6UqTt4KVth%2B2V3hHRC0h%2FE7cac4jknICmU6gxAjUOihnn3RQpg7K3EGPH7g06qSeF6dJGobtJmMsDBmL2i0e8bDZTj2UbOZhhCIfgakRmNlEbjaxLh8%2Bj07BlN%2FDrtWw3IEtCPq8RiUIKktQUYJKElQFQdWvd7iyga0fcWXLxF%2F0YNHDeqyL7hbd0UVXZATUjLbyQ%2FLKPL%2B%2F%2FnSxLg7cOBJJnKRRRFthEIjA82gg4rTDvE4aC5rAyhrSHpu7HcopOfPWJeRySk5%2B%2FjcSuger9sDkKdDyVdBqHAce6Nq42fYwzB77YRgPBo1Cg%2BsaeXECxYazpQ7JmbmId7%2F9EILtn%2F9s%2BNuVp6c%2FBjM1clPjI%2FkDQVc9GN%2FSFdm%2BpStLnt3IC9mTQzq74NsFLcTxL98TG5U2%2FOpFO3r8NpsRs%2FHJHWGLazTjMuta8tUFybkwl7Vhgnx31d4Tyc3Srl0oTVbm126%2Bc%2FlqLzfCWqmzCaicEvLiGzA5Jf9%2FYeeP9%2Bzd3yHNBKas0Sv3yaIg9R5YvgmbL3dWExi1xEnuoCrrsQmS5VJJAiWWmCY17L9wspy37AN0jQNa3EfWq9E3NfqqBlUj2PL4uMjN%2Fvmfw3khUc44UcbZTpRRD4%2FCtfLAjfymaCftmHGeCMb9OAjboecFnDfjjvA7KOxUZB%2Fc%2FQcAAP%2F%2FAQAA%2F%2F8yBiJzlAQAAA%3D%3D
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectarchaicin.com
FingerprintCB:13:5A:BD:C5:13:07:1E:02:F1:E3:B3:05:D7:5C:2F:4A:25:2E:67
ValidityTue, 28 Nov 2023 10:53:01 GMT - Mon, 26 Feb 2024 10:53:00 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzsfpz%2F9gyCUHoQ8eIriz%2FTE9PWOQYMyHwZjEfJCDp%2Bqq6tlya7qaqu7p2fGyGJAcJyDosffNbpZoCMajIMisF1kQMh5kDy6I91yE4EFEZnZg9Afdv9%2F7vTq896o%2B3SoPiY%2BSHtx8Xw%2BlUnQ1anju2Xsy47qy7vU7ru81vHPuPZm1mufcwexn%2Bm%2F6XtTwXnevCLauVwPP9zzf893L0ohUD1bnLGT%2BpOM3Ol6jGTT8qImB%2BS%2B2pQNLHfD%2BITkFyacn1358BskmyHpfXxR2vdD5G5d6paKFNujz3bvZeqarDL3lmBoHaba7OA1tp4R8cQw62104gO5vzxwgkVPi%2FOIjyXYXMpH0d46UJgoiQ8L%2Fh6o%2FgVATSDoB0%2Fch%2BXMCMI7rN5D1Hl3XpqIbRyydsVNy4uUfkNWUnPj1NLLe0wtKDtzbWpWF1JnFIK0hBxPI7gR5uYdi6EBWe2DFJ5D8J7L68hqy3vYNqzQkP3jN77RaMYu8FdqO6UqTt4KVth%2B2V3hHRC0h%2FE7cac4jknICmU6gxAjUOihnn3RQpg7K3EGPH7g06qSeF6dJGobtJmMsDBmL2i0e8bDZTj2UbOZhhCIfgakRmNlEbjaxLh8%2Bj07BlN%2FDrtWw3IEtCPq8RiUIKktQUYJKElQFQdWvd7iyga0fcWXLxF%2F0YNHDeqyL7hbd0UVXZATUjLbyQ%2FLKPL%2B%2F%2FnSxLg7cOBJJnKRRRFthEIjA82gg4rTDvE4aC5rAyhrSHpu7HcopOfPWJeRySk5%2B%2FjcSuger9sDkKdDyVdBqHAce6Nq42fYwzB77YRgPBo1Cg%2BsaeXECxYazpQ7JmbmId7%2F9EILtn%2F9s%2BNuVp6c%2FBjM1clPjI%2FkDQVc9GN%2FSFdm%2BpStLnt3IC9mTQzq74NsFLcTxL98TG5U2%2FOpFO3r8NpsRs%2FHJHWGLazTjMuta8tUFybkwl7Vhgnx31d4Tyc3Srl0oTVbm126%2Bc%2FlqLzfCWqmzCaicEvLiGzA5Jf9%2FYeeP9%2Bzd3yHNBKas0Sv3yaIg9R5YvgmbL3dWExi1xEnuoCrrsQmS5VJJAiWWmCY17L9wspy37AN0jQNa3EfWq9E3NfqqBlUj2PL4uMjN%2Fvmfw3khUc44UcbZTpRRD4%2FCtfLAjfymaCftmHGeCMb9OAjboecFnDfjjvA7KOxUZB%2Fc%2FQcAAP%2F%2FAQAA%2F%2F8yBiJzlAQAAA%3D%3D HTTP/1.1
Host: archaicin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Cookie: u_pl=16578592; uid_id2=19667c50-a87a-4d62-8138-d9e56ee19794:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f39537c14cc85ed5abf262ae755e0238
Strict-Transport-Security: max-age=0; includeSubdomains

GET archaicin.com/pixel/sbs?c=1

173.233.137.36

200 OK

0 B

URL GET HTTP/1.1
archaicin.com/pixel/sbs?c=1
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectarchaicin.com
FingerprintCB:13:5A:BD:C5:13:07:1E:02:F1:E3:B3:05:D7:5C:2F:4A:25:2E:67
ValidityTue, 28 Nov 2023 10:53:01 GMT - Mon, 26 Feb 2024 10:53:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: archaicin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Cookie: u_pl=16578592; uid_id2=19667c50-a87a-4d62-8138-d9e56ee19794:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 04 Dec 2023 22:23:18 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET www.1337xx.to/static/js/auto-searchv2.js

188.114.96.1

200 OK

716 B

URL GET HTTP/3
www.1337xx.to/static/js/auto-searchv2.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (734), with no line terminators
Size
716 B (716 bytes)
Hash
7e0853a6cfd91001c9d0396a9fbb5b5c
6b1ae072c7d1172c1ac67e0b256b488fb1b6e214
dc5e6c646bbeaaecec35c9e6c4239ab84332f4aac8e74a62118c15c2b34eeadb

HTTP Headers

GET /static/js/auto-searchv2.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:20 GMT
etag: W/"62b2a838-2cc"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2NgN0eSNNjGDZYl69v0xub5p5RLK2NrMD%2BY7%2F2XcNMLkvI2dcMiTOiBHeK1hcwLKetsfdHfCd8EAyBEPW0wpzONcLHPyxhTDZnWvVQ54On9QIqYKBYFR89GD1vM8S7Ih"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace85685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/main-bg.png

188.114.96.1

200 OK

130 kB

URL GET HTTP/3
www.1337xx.to/css/images/main-bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
PNG image data, 935 x 788, 8-bit/color RGBA, non-interlaced\012- data
Size
130 kB (129988 bytes)
Hash
8fc059a7e1758ad0c0e17be4b0575b93
df3d910563829c3b2e6fb0767038f75af4d4fcbd
6be2d61547095ffeb30a1fd03fd7d6aba9009edc719144812c5610bd2e27fb97

HTTP Headers

GET /css/images/main-bg.png HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/png; charset=utf-8
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e7Ofyn86zF6OIItacrdlRW4IshYb%2BImSKjmRERUnvpzgF7qgF7sW92iHnw488gFokhQayHQoB9F31RPXlW1WO7w6YrkD%2FlyuLHjsruvth92Tz6iBEuvCYhAPRqgy%2B5Aj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7dd8b5685-OSL
alt-svc: h3=":443"; ma=86400

GET cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js

172.64.108.10

200 OK

84 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (32025)
Size
84 kB (84380 bytes)
Hash
4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 584782
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fdet%2BsGMwe2G3JFJZWa%2BvHKHx6fEt1ouUKDWgJ3S0dYABWBVo%2BNO88GRI6%2Bbkca%2BRKZNHfMqzsTT2Yll60X6%2BSw61T5sT5fZMSdzORBRpU9cudO7Q0KYZgr83wMrhmxaEWFLpivbzr5z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773f62a4277b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.1337xx.to/images/logo.svg

188.114.96.1

200 OK

4.0 kB

URL GET HTTP/3
www.1337xx.to/images/logo.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4197), with no line terminators
Size
4.0 kB (3988 bytes)
Hash
7ad8a17064571d19b20ad2aa318d97c9
e4e416920d107269697cf9bb12677997aefd58f2
d15f260bd32ff788ba0770c8b8e9d4288491379d30200fddbf2e036c13eb1477

HTTP Headers

GET /images/logo.svg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Jun 2022 05:23:45 GMT
etag: W/"62b2a761-f94"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EoldRd%2FOFu2Fxnvr71%2BUMff7BNTeasxD7a0cEGcXBzZaK%2BpeqQU7WdfylTXEdBJ43OE1cm9kLAUdEyvLx%2FAztxlzBR2%2F3%2FVsB4SsA8macHyuW8%2B4vQEAaSGVz7OjOuHy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace35685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js

172.64.108.10

200 OK

958 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (1009), with no line terminators
Size
958 B (958 bytes)
Hash
04835fd7dd7f8cfbad901bee8cff2170
38e9ed1e93f8f0beba9447a99afe3995e63b6f3e
be63bbd38c66ca9a9ee1c8abfed042fd5fc090c40b91ad561e922744ece47c41

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-3be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 393578
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z4GUt%2FaiEzZJCnCUq0W%2FR%2F8UNsIaACf0L6Sud%2BMoK2kG74RV2O1CUpFkwKOh7FN5hKQF9DaxsrnDafkOibLxTN0uf65PQ1Fmbz698x2oD4n4ms1nAg%2F2UJu9LCbUGTjd%2BcHhFIZ0kWol"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773f6eb3577b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.1337xx.to/favicon.ico

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.1337xx.to/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
769362362d52b0cfc3271ecb6dec43fb
9df2439bce4e08d28c14c37cd2f74fc678465b23
7d524db2f0ca2d20b89f7f197110cb9a5bbaea45b19939dc6e30dc366d20eb61

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=19667c50-a87a-4d62-8138-d9e56ee19794%3A1%3A1; pp_main_bd6c3375a35d155e03aef20bbbe563ea=1; sb_page_75eb7bf55a6322e200a2e7f9c09f7eab=1; sb_onpage_75eb7bf55a6322e200a2e7f9c09f7eab=1; sb_main_75eb7bf55a6322e200a2e7f9c09f7eab=1; sb_count_75eb7bf55a6322e200a2e7f9c09f7eab=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:16 GMT
content-type: image/x-icon
last-modified: Wed, 22 Jun 2022 05:22:57 GMT
etag: W/"62b2a731-47e"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=olHf4h7sMTL61GBUJag1HqwyZNZ6332S%2BG5yeC0EEcLJVgCjdkxScuOGb4zyrrsp%2FklqsXJS2giEXPX7f2btKxRD8IN76L4aSkqKkkQHcYpMExl3UGwplWyV8nGpRO4k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773ee4a6a5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html

45.133.44.4

200 OK

1.5 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (1639), with no line terminators
Size
1.5 kB (1538 bytes)
Hash
97b357c624104a8e915d01424dfe16ce
6bd7fcedfb7986b149601b1bc840f525b67a8f06
8d010e7163298acf3671bb429a2e0b1d69033a5adc314fa4bddebf74b9775e6e

HTTP Headers

GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1337xx.to
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Mon, 04 Dec 2023 23:23:17 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

GET www.1337xx.to/css/images/sep.png

188.114.96.1

200 OK

979 B

URL GET HTTP/3
www.1337xx.to/css/images/sep.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
PNG image data, 4 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
979 B (979 bytes)
Hash
f5ad1e8afade5211d93125e993a936ba
cfda5224a37a1c391afc574ac33e7e9bde1e98ed
fde5dfff31f2e819031fe7cf8a2729fe1c81ab96576167b5f4cebb3ca4c160d5

HTTP Headers

GET /css/images/sep.png HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/png; charset=utf-8
content-length: 979
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cMvOGaj8ThZbS1xNDG012%2BZ4BKzY1w7S5R1m6fNAWoU9eaNHEcfmO67WnPebcLGhoTnRq9PGv2V6vyqY81YnOrcwlmcgToMq80y4M2%2Fo084C%2BQAbaPv%2FpKGMbKU%2FVj87"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7fda55685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/jquery-ui.js

188.114.96.1

200 OK

307 kB

URL GET HTTP/3
www.1337xx.to/static/js/jquery-ui.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (4492)
Size
307 kB (307192 bytes)
Hash
7ddac2a3d1e7091bd51f23f0250a7fea
5537fb7969f7a8349e0292ce9710df8daae5ad3c
ebdadbb78c8a4e8433168bcdb49b87d0cb4809bbca7aaf29fbe36a9c77be5e35

HTTP Headers

GET /static/js/jquery-ui.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:28 GMT
vary: Accept-Encoding
etag: W/"62b2a840-4aff8"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=erThIFkrcfECXMIGriUOjvBduaZVsVUcdhXOZ3G%2Bt2hQ4MTKitr%2FpkUwQRHoOTCXETlOeqA0ntSls5x%2Bb7lnEf9wg3WTQhppOJNS8EM0uIZGLnaoUAxQYd45BX5plYSB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace75685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/images/detail-bg.jpg

188.114.96.1

200 OK

1.3 kB

URL GET HTTP/3
www.1337xx.to/static/css/images/detail-bg.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 4x4, components 3\012- data
Size
1.3 kB (1339 bytes)
Hash
22f4af1c6d3dfb8e7defd15cd4727660
2c00eaafee91994085bae813fcbe2275e71c0b39
7009cc20bd7c267c5950a4cf3d75c16e4f342f3c7d1ecb6082b199da1a71df80

HTTP Headers

GET /static/css/images/detail-bg.jpg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/static/css/torrent.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpg; charset=utf-8
content-length: 1339
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UQqAsP4u2PxQNEwKai%2Fgr465uXkMYE4wTEAy2HxIvlYHYnYrZDQgLmwsXMpnMGAKCRH9Qq%2FFb2maamEtiB1obXbC2XzWaySeaWEXx27mBKhx%2FC5X8kN3Q9BWF2fChtR8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e81dbd5685-OSL
alt-svc: h3=":443"; ma=86400

GET cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png

172.64.108.10

200 OK

591 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: image/png
content-length: 591
last-modified: Mon, 21 Feb 2022 10:06:44 GMT
etag: "62136434-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 329203
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gDKKRqB8Xb7CNJrazy7i%2BJEIDi%2FyzuyxW6pH1P%2BUsKWN60ZowpspchRSnnAnSW8LcEcDwiVkmw40rwRtpfec9bAJ53tVdVIg0qOI4ZwlpGGFUh5cPQNOD80ZzQVe6YQbfrxzMmmHm%2Fhp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830773f61a3e77b7-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.1337xx.to/static/js/jquery-1.11.0.min.js

188.114.96.1

200 OK

96 kB

URL GET HTTP/3
www.1337xx.to/static/js/jquery-1.11.0.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (32341), with CRLF line terminators
Size
96 kB (96385 bytes)
Hash
eaec1712551cd2792f4607f39fab12e7
2439711705752fac5dd1a6a8d6b1be63ffcbc76d
746e54e89161118a67bd59103c4ab55e3060735cc85c1d047c2cf04d4b12043d

HTTP Headers

GET /static/js/jquery-1.11.0.min.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:25 GMT
vary: Accept-Encoding
etag: W/"62b2a83d-17881"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C0E25EPRVoAMycXvEuM86AtrICKR9U6jh5AlyFQipA%2Bv4YwB8XJKYx0IeUPhgvmYm43HKBu47C8Nyc%2BnKnSfJAQSLGAkHopi1lkFUM%2Buk%2FmsL6AqPx27fX5F5xwZbtv9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace45685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/webfonts/opensans-bold.woff

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
www.1337xx.to/css/webfonts/opensans-bold.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 22432, version 1.0\012- data
Size
22 kB (22432 bytes)
Hash
2e90d5152ce92858b62ba053c7b9d2cb
8cf65f42a2a8c349ccd6ab63b6cbd17c96fd665c
a0357cb694b5284870c77c0dbcaf33f238004800419288afde313317b0dbd0b7

HTTP Headers

GET /css/webfonts/opensans-bold.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 22432
last-modified: Wed, 22 Jun 2022 05:25:42 GMT
etag: "62b2a7d6-57a0"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nfQBJEAfPyEouHLbz4cIvAtHhOaGsywwHMmhkPrPYIoU%2Buh4JwG%2F0uYkS6CbL8J24TGMiFtsy3qdE9s4ovyewE3Uy%2BG7ZQNI40QSRCFyP7ViSFvvcAu5M%2BGdiJto8y86"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e83dd95685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/scrollbar.css

188.114.96.1

200 OK

43 kB

URL GET HTTP/3
www.1337xx.to/static/css/scrollbar.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (43122), with no line terminators
Size
43 kB (43122 bytes)
Hash
623cff5077cfc4bd395df29169b62883
e64507b0cb896794fdf04d14008639bc8edae0c6
b983b9a17054f789d9873cd4b4ba2dedc7c040234e81b29edef8d0a455f13063

HTTP Headers

GET /static/css/scrollbar.css HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 05:26:34 GMT
vary: Accept-Encoding
etag: W/"62b2a80a-a872"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pOVEcAc9DpildcN7wE%2Fjeou5myRF%2FQjW%2ByfG1jyHgYoipi9DEaOcX3fjFWKiAHzW4QgY9udyJyxALjzXdOHdAuU0TH30YYC3P9e8uGoJnGWS%2FobrwlB3WVER8rgMoE7c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acdb5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/webfonts/oswald-regular.woff

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.1337xx.to/css/webfonts/oswald-regular.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 25248, version 1.0\012- data
Size
25 kB (25248 bytes)
Hash
77f9ec053e5256b45207e37effb5a1b1
b881bffa5a7dd80494d621ec6f72c3f5545448f3
c5bccac5053a0089da4fb1a1693579ed4893a75b8fdc1c4f43a9151a2a9fb754

HTTP Headers

GET /css/webfonts/oswald-regular.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 25248
last-modified: Wed, 22 Jun 2022 05:25:48 GMT
etag: "62b2a7dc-62a0"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M4aP7QFPQ1xgrk6ZK8ZyzfDrbAax0jB0ciDjWLAUKo47NAg70jXCkfIB5cdcn%2BovsooLM1MwoO9MHADHAW%2BVLLtTV2wKPEDGmSHufZsQ6NnS4tOeEKU3mMEay%2BiHQWSG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7dd985685-OSL
alt-svc: h3=":443"; ma=86400

GET cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png

45.133.44.10

200 OK

9.0 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9016 bytes)
Hash
a56f06ca83ee06488a213b352e00bd90
aec437b74eb6f1143683872fb2d664286da4a664
7144c526762a9d91bdde1939194c2835f2cb1afe0ebac298bbdf1e9239b539ec

HTTP Headers

GET /si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:17 GMT
content-type: image/png
content-length: 9016
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:51:52 GMT
etag: "655b7288-2338"
expires: Wed, 06 Dec 2023 22:23:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.1337xx.to/css/images/body-bg.jpg

188.114.96.1

200 OK

2.5 kB

URL GET HTTP/3
www.1337xx.to/css/images/body-bg.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
2.5 kB (2454 bytes)
Hash
57176455b267a90c419d442f311cab4a
8ce7305a8e73bf2cea887b1b011c349e41b426d3
44411fdbd6a244c923866126c233c854cae07718591506d315a86e34e159f20b

HTTP Headers

GET /css/images/body-bg.jpg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpg; charset=utf-8
content-length: 2454
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jbGlwOWI%2BTBmXYxGaEPyG0E%2BHO%2Fx4u5RFOqTQHJ3xOIgfC4Aa9aLk5SeqDmsxoxrLsiP7O7PQVwmS2yEuM6wiy0UTSJ%2BAmHNPGGGWu9PFiu7OIloPqmJlpAn6WrHsj9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7dd895685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/fancySelect.css?v=1.3

188.114.96.1

200 OK

4.3 kB

URL GET HTTP/3
www.1337xx.to/static/css/fancySelect.css?v=1.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (4632), with no line terminators
Size
4.3 kB (4250 bytes)
Hash
53c1791dc3336e0a63ef55543784dfd9
99402c02f48ff465f35ec9cf44115f00f6832f4f
517e93e8e1c37a3a770c086f53b333d037af5098a8e0c08ebb5978e45827d067

HTTP Headers

GET /static/css/fancySelect.css?v=1.3 HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ccE2z2W%2FjuStEvvCWuiKE3VVUj3jKLYZUfx2FLvjWblOP7dpt9wzly3YTXi6pwlYvRFdDfhBOLp2Pu4Z5aB2aTSbfOURSeCbP3TgqBnSIHAYllbR6nuH3MmhbRQ4m0F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acd85685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/images/nav-hover.jpg

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.1337xx.to/css/images/nav-hover.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 20x20, components 3\012- data
Size
1.2 kB (1208 bytes)
Hash
248a62fead4580264aee0ab8fdbf5d1b
46be6ecdbf1f20fbc3d007d70b69383857a8a2b7
48c3b716c25fb706acee3f768b06eec4722ca83174ae484b031b8447d126f8de

HTTP Headers

GET /css/images/nav-hover.jpg HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: image/jpg; charset=utf-8
content-length: 1208
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7SarsgZTpD9TwcgE2J8bXa2O%2FjkpZ6nE1k%2BQkrJfgdJ0pn53uZ6G5PdqCY1xWBz00103KPWpAcbWqGiT1kCNmyn3HxBXwfcI0yaH%2FqmO7JmZQ9I5sutcErnOG0UehyM0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e7fda75685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2

188.114.96.1

200 OK

128 kB

URL GET HTTP/3
www.1337xx.to/css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
128 kB (127773 bytes)
Hash
87e7470ed575fe2c31903e92fc0051a9
e46f7be29ccedf3cfe9803ad266c3a434e456b94
c5a77784312d1bddfc0c82e54d49291a16d73a45e2e8589ec27dba3d8201a85e

HTTP Headers

GET /css/style9.952e1c4f6e649c835aa0b27f7e583caf.css?v=2 HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=STLpWTYDyicg0tVCqESO%2FqWqAvDtWWCkB%2BEwvbKtuXvtXTspIhey%2BWhpduFj5nCkKqpmYqKWQu4lWRVWcLcGWJcSNIb9b2N6pkYkLv0ukbF0Yv38bumsnch%2BVSnfxIo3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acd95685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/js/pagination.js

188.114.96.1

200 OK

3.0 kB

URL GET HTTP/3
www.1337xx.to/static/js/pagination.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (3079), with no line terminators
Size
3.0 kB (3020 bytes)
Hash
944d2b6146c4fb28fe31a23a35e64f06
c42d9b8961e312a6b129439b6c451de2d5210659
378d0a91ccab057c7b92d0ae0a9cc5764be1d55b376e85f357c1845636db0f38

HTTP Headers

GET /static/js/pagination.js HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 05:27:31 GMT
vary: Accept-Encoding
etag: W/"62b2a843-bcc"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O6mMe%2Fz7Un9sqOMqyzlBgzuKwBM5jR1XyxT1snIfMfSVkLaWcEFwaRUFeYxT%2FyjoDTN2uPmVm2tlWJJSXc6jdKc0jhihenyeWKnIMC74txFkxKNPNw8QrFu3JSGExj%2FF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6bcf15685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

6.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (7013), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Dec 2023 22:23:17 GMT
date: Mon, 04 Dec 2023 22:23:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/

188.114.96.1

200 OK

22 kB

URL User Request GET HTTP/2
www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type

Size
22 kB (22541 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/ HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:23:14 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.36
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YIcLHA2B6ZF%2FCy3rwPYkRnYBMWONvnUonDpfnwLcjqUNPLY%2FaE3gUAByip6UcWJgYBYo7UFq7Gxs2K90y3KuE7pOPL4C7qN3toaZu2%2BGMav%2BK46caRsxmFu66Q5AAFSu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e3bb375688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.1337xx.to/static/css/modal.css

188.114.96.1

200 OK

4.2 kB

URL GET HTTP/3
www.1337xx.to/static/css/modal.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (4614), with no line terminators
Size
4.2 kB (4158 bytes)
Hash
40915d0f2491d6b2209d7dc681566a7d
56917d83d1a767ed2124256e369220ec63161653
af70640187e0a061c8dbcc448833492f42e400326d8e7788158710e3cf8f70ab

HTTP Headers

GET /static/css/modal.css HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 05:26:32 GMT
vary: Accept-Encoding
etag: W/"62b2a808-103e"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=toGhb%2FGB6Q6fvC8Jtnka7uSH%2FseHYsSp7joiLDRx0w%2FLivyecNRKgVi2TH3yA4KzsoPEZM8Hd6FFFbUDhzAWkpG0%2B85uYsBt3wdTG6lBFgWXlXm62otw4CYNUxjeRrvh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6acdf5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/fonts/Flaticon.woff

188.114.96.1

200 OK

27 kB

URL GET HTTP/3
www.1337xx.to/static/fonts/Flaticon.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
Web Open Font Format, TrueType, length 27404, version 0.0\012- data
Size
27 kB (27404 bytes)
Hash
1dbab8d47aa2e11c55216ab3286d6f69
c7a7f3ddf37063ac02273eb4fe7ebc98e9cf97bf
ef35a8d776774a5fba83f188738af52b85e278c4bf7c5695700161febdc36b05

HTTP Headers

GET /static/fonts/Flaticon.woff HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/static/css/icons.css?v=1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: application/font-woff
content-length: 27404
last-modified: Wed, 22 Jun 2022 05:26:45 GMT
etag: "62b2a815-6b0c"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hvIGKceIn029t%2F16mwMLJrtK3JHCcYUExk8tAWZgsa8KaLtwejvGM1NlY2u7w6B4D98frgTvGxuHZo99UsNbH7XSbedrznDrarBSpb7yCkR8Dqmxt15KFEvyHqtN8XTa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e82dc75685-OSL
alt-svc: h3=":443"; ma=86400

GET www.1337xx.to/static/css/torrent.css

188.114.96.1

200 OK

2.5 kB

URL GET HTTP/3
www.1337xx.to/static/css/torrent.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Certificate
IssuerGoogle Trust Services LLC
Subject1337xx.to
Fingerprint4F:9E:B8:6F:68:17:FF:77:F9:A1:6D:C3:6D:FE:84:40:78:43:30:C3
ValidityMon, 13 Nov 2023 02:45:03 GMT - Sun, 11 Feb 2024 02:45:02 GMT

File type
ASCII text, with very long lines (2665), with no line terminators
Size
2.5 kB (2476 bytes)
Hash
57123b93bf2966605efa018f2ea675cd
f71a3f02ae6c6b2a756b5e3aa5da350e7549595f
73df6f77191d3da5e00460867c13489e701075ebd93b8927c5dc4e680ca3e03d

HTTP Headers

GET /static/css/torrent.css HTTP/1.1
Host: www.1337xx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1337xx.to/torrent/5308579/Wise-Care-365-Pro-6-3-2-610-incl-Activator-CrackingPatching/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:23:15 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 05:26:38 GMT
vary: Accept-Encoding
etag: W/"62b2a80e-9ac"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=udJQSBW%2Fj1wGT7gVk%2BWLkrL6spDHBqfi7ja47MmROGSu8on4aSVWqtyw%2BiAhF%2Fe%2BJV9u7jTI8qVjhVRiCq%2BZXaIOCTnsRJUN3bt464pN6d6bymA8HVzrGtiEUXpV1gkh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830773e6ace15685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash