200 OK 1.7 kB URL User Request GET HTTP/1.1 IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type HTML document, Unicode text, UTF-8 text
Hash ffdb48ad5e36632826e4259b07988274
31f1be136ab12ee7d1acbb559efcb727136ce9f7
cc22122bb9bd0d0da509f5641617f2c111be74f1190561209a5df93f8a2701e6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"66161757-1788"
Server: nginx
Date: Thu, 02 May 2024 06:05:29 GMT
Content-Type: text/html
Last-Modified: Wed, 10 Apr 2024 04:36:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/css/Swiper.css
200 OK 4.5 kB URL GET HTTP/1.1 39999rg.in/css/Swiper.css
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type ASCII text, with very long lines (13412), with CR line terminators
Hash e0e19842a8a58777639a1789ec59a93a
dfac837d4e000bf5664cadd8f91dc58f4d796ea5
c5384c86bac6125246858a3dd42d1db56344da40db5793759eb4d15f816b4101
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/Swiper.css HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9ea03-3564"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 07:42:59 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/css/style.min.css
200 OK 2.4 kB URL GET HTTP/1.1 39999rg.in/css/style.min.css
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type ASCII text, with very long lines (7701), with no line terminators
Hash cb6d2f05dcccb08253e6b5d54c97b142
e2272af8c954c30cb7407b6e866d2462d32500b1
d5edd7964755a9b56a1827acb1fb22f817b3c2915fbfd83941105b656df172f2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/style.min.css HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9ec84-1e15"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 07:53:40 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/js/MobEpp-1.1.1.js
200 OK 8.2 kB URL GET HTTP/1.1 39999rg.in/js/MobEpp-1.1.1.js
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Hash f01dc4f7b5545c644a23e994b90f79a8
677fbec5177090d91c8bf52fb867563a0a90bb07
ac95fc0c65ee824399cd0ff56706a45d5b240baeda65a1c151db91bfdc79d695
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/MobEpp-1.1.1.js HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9e9ed-6278"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: application/javascript
Last-Modified: Mon, 13 Feb 2023 07:42:37 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
web.cdn.openinstall.io/openinstall.js
200 OK 17 kB URL GET HTTP/2 web.cdn.openinstall.io/openinstall.js
IP
Certificate IssuerDigiCert Inc
Subject*.cdn.openinstall.io
FingerprintA8:1F:A2:F5:B6:BC:85:4E:71:E5:0F:92:A3:49:83:5C:39:5A:FE:E4
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 10 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (47257), with no line terminators
Hash 3e27b22e91b4c1f72a3ddb9073eacca6
0838aa98ac6df1e3a009fa83b5a0f82ca1b59e37
f7028becf6fbf4219ab85e5765c7be34bdc81bd8fc1874ed563a9b8ed03d97c6
GET /openinstall.js HTTP/1.1
Host: web.cdn.openinstall.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 26 Apr 2024 10:14:55 GMT
content-encoding: gzip
etag: "3e27b22e91b4c1f72a3ddb9073eacca6"
content-type: application/javascript
date: Thu, 02 May 2024 02:03:23 GMT
server: tencent-cos
x-cos-hash-crc64ecma: 16352518748770619748
x-cos-request-id: NjYzMmY0NmJfOTM0ZjQ0MGJfMjY0MTBfMTcyNTFkNQ==
content-length: 16985
accept-ranges: bytes
x-nws-log-uuid: 14595488691895550037
x-cache-lookup: Cache Hit
cache-control: max-age=7200
X-Firefox-Spdy: h2
39999rg.in/css/animate.min.css
200 OK 6.7 kB URL GET HTTP/1.1 39999rg.in/css/animate.min.css
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type ASCII text, with very long lines (460)
Hash 9d99b1c597a52a1a68d063308f1de662
90dc56142980365936e75aa7c32faf92930694cc
764287c1363d6895c6e4dbabaa80ddba43f68dfe8557e6fe9b6c7767b4db1eec
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/animate.min.css HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9ea06-12a90"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 07:43:02 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/js/rem.js
200 OK 840 B IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type ASCII text, with CRLF line terminators
Hash e74e945fcc19cbd1d5276e5d4548d525
8236e3f3fc64916f9f7f65e8aa2680c9302f0858
33442081f56c808935dba715de506e29ebf99eea4d997a64818edb9081369fa5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/rem.js HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e9f4-348"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: application/javascript
Last-Modified: Mon, 13 Feb 2023 07:42:44 GMT
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 840
39999rg.in/js/jquery-2.2.4.min.js
200 OK 34 kB URL GET HTTP/1.1 39999rg.in/js/jquery-2.2.4.min.js
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type JavaScript source, ASCII text, with very long lines (32065), with CRLF line terminators
Hash adb784ef9dc257b32965a5da7ee82a8b
7a41c488d820ea08231d1d393e5f4daed4d25041
8e09aa31f396ea41d698f437dc5fc7125e931d400eb2873f5b68ef78c1e6f3a6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/jquery-2.2.4.min.js HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9e9f0-14e4c"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: application/javascript
Last-Modified: Mon, 13 Feb 2023 07:42:40 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/js/swiper-4.2.0.min.js
200 OK 36 kB URL GET HTTP/1.1 39999rg.in/js/swiper-4.2.0.min.js
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type JavaScript source, ASCII text, with very long lines (65262), with CRLF line terminators
Hash 07d2dfa95329b636a9c1675ab6f27beb
69e919c593c82f07c19f4e37c6a06a48abef814b
9c1556dd8cf7adf50c362fd6c73844fb8cad45117eaf727c224c2007831735ba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/swiper-4.2.0.min.js HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: W/"63e9e9f7-1d2dd"
Server: nginx
Date: Thu, 02 May 2024 06:05:30 GMT
Content-Type: application/javascript
Last-Modified: Mon, 13 Feb 2023 07:42:47 GMT
Vary: Accept-Encoding
Expires: Thu, 02 May 2024 18:05:30 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Cache: MISS from megai-cdn120-104
Transfer-Encoding: chunked
39999rg.in/images/kf.png.webp
200 OK 6.3 kB URL GET HTTP/1.1 39999rg.in/images/kf.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 24b3675f16c2bd3de9bff6c9200d15fc
1d7f71614082d8984438cbbb2e6a641e7adb58c9
b24dbe403d423a2bb5a2c185d98e280793321fb1e2b43e89516dd5bfbaedde83
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/kf.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-18c4"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 6340
39999rg.in/images/274585_750x56.png.webp
200 OK 4.0 kB URL GET HTTP/1.1 39999rg.in/images/274585_750x56.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash e0b7f8b2d10a711b096d5695e4c74b0e
5bfadcddde58f3f58389233da387a214b57e8b65
ffde835fe5a7da5282f12107ed4101edc0383178c3595044eaf6b0af22cbebff
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/274585_750x56.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-fbc"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 4028
39999rg.in/images/6825c1_308x26.png.webp
200 OK 5.9 kB URL GET HTTP/1.1 39999rg.in/images/6825c1_308x26.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 2497f8e925fefa93fd7936a9e8de9c5f
4b847050e7afa53599044eff035107e603c004d6
a90b3fe9bb2af770f241e8d4a214b4056dc494213e5178e987669200ce5ce107
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/6825c1_308x26.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-1736"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 5942
39999rg.in/images/c775ff_750x143.jpg.webp
200 OK 12 kB URL GET HTTP/1.1 39999rg.in/images/c775ff_750x143.jpg.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x143, Scaling: [none]x[none], YUV color, decoders should clamp
Hash cc9d16e7807e544939eb372486a2e1f1
5f48b0b11006def50cc0a4651a68d48008807391
dc9b11be4be86508ca1b3f746f1f016716e745de85c4954dd12956d24069f182
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/c775ff_750x143.jpg.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-2f12"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 12050
39999rg.in/images/btns.png.webp
200 OK 4.5 kB URL GET HTTP/1.1 39999rg.in/images/btns.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 06fc6c871164ddc0ef542fa97edd679b
b32e26186acb90ba07f08cddd1ef28181545cd01
f142f19bbce73c63e4a835c21d71565fe715bdc43154ab2f681312c312773dcb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/btns.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-11c4"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 4548
39999rg.in/images/btnh1.png.webp
200 OK 4.6 kB URL GET HTTP/1.1 39999rg.in/images/btnh1.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash bc0941c8464ffe84dc9d1068d642252d
a1cec9a07c60da9ac09c5735059cca0c1a5f06bc
08290380338460dd34ce0c621b5be3025725a13fd843c545d75a301af2765551
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/btnh1.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-11fe"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 4606
39999rg.in/images/btnpc.png.webp
200 OK 4.5 kB URL GET HTTP/1.1 39999rg.in/images/btnpc.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash e8ea5b2f6df0b98deb9d8537f4b8e0f9
59efec7fcc2a6944e7f3d8a1c65a54f3583b26a5
d22b8ff8fda8786ce3bb5e7b7a3e66b52db3e3194880b171bc19037524d03dc8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/btnpc.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-1192"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 4498
39999rg.in/images/0a8739_692x180.png.webp
200 OK 39 kB URL GET HTTP/1.1 39999rg.in/images/0a8739_692x180.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 7c090f7a915aa8e010f642648bf82d6a
d471e68402aa1c503fb351be183a0b41a6b97b11
fae478f566ba543f28d489146c759238a73e09340ac394a7973daac14f41edb0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/0a8739_692x180.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-978e"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 38798
39999rg.in/images/84264c_750x2771.jpg.webp
200 OK 24 kB URL GET HTTP/1.1 39999rg.in/images/84264c_750x2771.jpg.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x2771, Scaling: [none]x[none], YUV color, decoders should clamp
Hash a02e75f69237108bca531e5b8b251738
1a42ffaf27c43dddc0099fb4111dcf8df08dd4c6
e897025070914fb7c278899a1a1ca35d0a41dc3a9150925a19b5c635020e2f63
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/84264c_750x2771.jpg.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/css/style.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-5cb4"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 23732
39999rg.in/images/15f15b_24x60.png.webp
200 OK 438 B URL GET HTTP/1.1 39999rg.in/images/15f15b_24x60.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash daf72e4f2c6451da5d4933439a797628
e691eb76e86f896b13a72ede0e6f4f1ffc051950
abaeee6a2ba149956783f117ff2259cb8f4795125701bb826ed9ffc9d48dc7cc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/15f15b_24x60.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/css/style.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-1b6"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 438
39999rg.in/images/38e598_24x60.png.webp
200 OK 438 B URL GET HTTP/1.1 39999rg.in/images/38e598_24x60.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash dd15471fa646828ee1ee39309f966b91
f52e0567acb62f4b067f8fdf5b6328acccaa6780
79154fc29de46502b5de020c0c18d1e8f4a0621daa42f3e11433a4a3eea9eb9c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/38e598_24x60.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/css/style.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-1b6"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 438
39999rg.in/images/5df4b3_238x66.png.webp
200 OK 4.2 kB URL GET HTTP/1.1 39999rg.in/images/5df4b3_238x66.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 75d0b3c93879b35437b32c9d61bdfae3
bdfaa25684022dbe45324e9dbc5819d1a180c38d
64eec1c7e0afad565891faba0c1e9fdc7c3e31b377174ecbf6e9d0a874868533
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/5df4b3_238x66.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/css/style.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e954-1098"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:04 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 4248
39999rg.in/images/da6192_193x59.png.webp
200 OK 8.9 kB URL GET HTTP/1.1 39999rg.in/images/da6192_193x59.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash e22ea2640db265a34d4bb71cf94c6280
bb87bd960a71b3264877fcb5cb0f33bf7da59bf6
05c0c41ab4a0d0d461da98801663b6c19c7fddea929d4559868f817d9949eebe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/da6192_193x59.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-22b6"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 8886
39999rg.in/images/fa8e62_148x36.png.webp
200 OK 1.7 kB URL GET HTTP/1.1 39999rg.in/images/fa8e62_148x36.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 2e4d43af63c161c003d9fc480c8bb9dd
535bd82d06ffacbfab75bb448d16611380ef6aa0
28cdb947fe7da4d80165de0b1b8100737ae51e9c98982fb2ff072840c76476a9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/fa8e62_148x36.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-678"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 1656
39999rg.in/images/d0a37b_750x629.png.webp
200 OK 87 kB URL GET HTTP/1.1 39999rg.in/images/d0a37b_750x629.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash eee68b0feb2eea7e22f9349a1e5eb2bc
fbbf35d413c04f44a030e05ed5d550204f7ce4d1
c2fe4948cd3b9fc8c1ac13b9d7562432bed6d5202d13c1ce88d2200645ce3243
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/d0a37b_750x629.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-154c8"
Server: nginx
Date: Thu, 02 May 2024 06:05:31 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 87240
39999rg.in/images/d655b6_750x720.png.webp
200 OK 72 kB URL GET HTTP/1.1 39999rg.in/images/d655b6_750x720.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 08fc9a305893f1407e32a717c356d433
2e9cd0415dd2c26187978f980fd9f401f9c87d99
fbe9b7a85d2a240f1c340ff6aac8c86e3bd1b2caf6a3ae58a225126f702d6369
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/d655b6_750x720.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-11aa8"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 72360
39999rg.in/favicon.ico
404 Not Found 146 B IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 02 May 2024 06:05:33 GMT
Content-Type: text/html
X-Cache: MISS from megai-cdn120-104
Content-Length: 146
39999rg.in/images/dd91dd_750x720.png.webp
200 OK 74 kB URL GET HTTP/1.1 39999rg.in/images/dd91dd_750x720.png.webp
IP
ASN #7538 10F No 33 Sec 2 Zhongshan Rd Zhonghe Dist
Certificate IssuerLet's Encrypt
Subject39999rg.in
Fingerprint0F:C0:FF:4D:B1:C5:EA:CB:9A:E3:38:6C:B5:94:49:FB:32:3B:E4:EF
ValidityFri, 19 Apr 2024 22:53:27 GMT - Thu, 18 Jul 2024 22:53:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 37f14cf739481dda88d4583b87f6892c
bda81fce536befce82a56b6bdcc4d77d00c42422
c3e4e18b2780234ec5ff885588faf0fc98065ebf81883853f72cfdc05716d176
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/dd91dd_750x720.png.webp HTTP/1.1
Host: 39999rg.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://39999rg.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "63e9e955-12088"
Server: nginx
Date: Thu, 02 May 2024 06:05:32 GMT
Content-Type: image/webp
Last-Modified: Mon, 13 Feb 2023 07:40:05 GMT
Accept-Ranges: bytes
X-Cache: MISS from megai-cdn120-104
Content-Length: 73864
103.188.120.114
43.152.140.54