GET ww38.zummerprime.com/munin/a/ls?t=67d27866&token=a1ecc3519190a285b62986ef8e8064e6be22a0b1
201 Created 0 B URL GET ww38.zummerprime.com/munin/a/ls?t=67d27866&token=a1ecc3519190a285b62986ef8e8064e6be22a0b1
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerLet's Encrypt
Subjectww38.zummerprime.com
Fingerprint25:F4:B4:A2:FB:F1:45:12:EE:0C:BD:F7:8C:92:B8:28:D3:6C:9D:9E
ValidityFri, 27 Dec 2024 07:36:29 GMT - Thu, 27 Mar 2025 07:36:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /munin/a/ls?t=67d27866&token=a1ecc3519190a285b62986ef8e8064e6be22a0b1 HTTP/1.1
Host: ww38.zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 201 Created
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
accept-ch-lifetime: 30
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin:
access-control-max-age: 86400
alt-svc: h3=":50944"; ma=2592000
charset: utf-8
content-type: text/javascript;charset=UTF-8
date: Thu, 13 Mar 2025 06:17:10 GMT
server: Caddy, nginx
status: 201 Created
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_gW20A+r7TY2DCok2fJxIyZta44VzjTmJ2THl9VIkYRZuCFoopcoQ6OFO+Sz6bhPHN5zAgIN7FyeHZyhbNiEuBQ==
x-log-success: 67d278668c2237b71408c482
content-length: 0
X-Firefox-Spdy: h2
GET d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
200 OK 11 kB URL GET d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type PNG image data, 1500 x 600, 8-bit colormap, non-interlaced
Hash 0cb2e5165dc9324eb462199f04e1ffa9
9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8
67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865
GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 11375
server: nginx
date: Wed, 12 Mar 2025 11:05:03 GMT
accept-ranges: bytes
last-modified: Thu, 21 Mar 2024 11:48:11 GMT
etag: "czzekhpxmtxd8rz"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UfJkrgwcr7oXfsbr6uIuL_jFeaHCIlC6ApcLHVnrfor34vCt4xY7nA==
age: 69128
X-Firefox-Spdy: h2
POST obseu.seaskydvd.com/mon
200 OK 0 B IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2266
Origin: https://ww38.zummerprime.com
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://ww38.zummerprime.com
content-type: application/json
date: Thu, 13 Mar 2025 06:17:15 GMT
content-length: 0
X-Firefox-Spdy: h2
GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
200 OK 391 B URL GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
Requested by https://syndicatedsearch.goog/afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
FingerprintF0:E7:0B:8F:93:C0:9E:F3:15:26:E3:94:7C:D8:3F:00:DE:01:8F:46
ValidityWed, 26 Feb 2025 15:33:54 GMT - Wed, 21 May 2025 15:33:53 GMT
File type SVG Scalable Vector Graphics image
Hash 249bb4c6a37dfa60d6ecf838cada5020
4e56099d13b015804f79d1182f66982bc6e4662b
a2cebc2af2fd29cbee1ed7860ef5b12088b85259918d8bf2f2aaa99b915fa3f4
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 06:13:28 GMT
expires: Fri, 14 Mar 2025 05:13:28 GMT
cache-control: public, max-age=82800
age: 225
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
200 OK 1.8 kB URL User Request GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
IP
ASN #133618 Trellian Pty. Limited
Certificate IssuerLet's Encrypt
Subjectstijnjanssens.com
Fingerprint42:FC:EC:16:41:B6:85:75:F6:94:BA:9F:BB:BA:D1:7F:69:2F:1D:08
ValiditySun, 09 Mar 2025 07:11:31 GMT - Sat, 07 Jun 2025 07:11:30 GMT
File type HTML document, ASCII text, with very long lines (1839), with no line terminators
Hash 814f8b4b9c5678e52d39cc5b4fd42766
1577e5d6c0a0a84232ddf474b52de9656ad6bef9
26f46a24c735d920cd20a14a37bbfdfc07e4b90f26c91fec923f42a425cb1a15
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/ HTTP/1.1
Host: zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 13 Mar 2025 06:17:06 GMT
server: Apache
set-cookie: __tad=1741846626.7055779; expires=Sun, 11-Mar-2035 06:17:06 GMT; Max-Age=315360000
vary: Accept-Encoding
content-encoding: gzip
content-length: 622
content-type: text/html; charset=UTF-8
connection: close
GET zummerprime.com/favicon.ico
0 B URL GET zummerprime.com/favicon.ico
IP
Requested by https://zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7
302 Found 16 kB URL User Request GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7
IP
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7 HTTP/1.1
Host: zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: __tad=1741846626.7055779
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
date: Thu, 13 Mar 2025 06:17:08 GMT
server: Apache
location: https://zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7
content-length: 0
content-type: text/html; charset=UTF-8
connection: close
GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
200 OK 200 B URL GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
Requested by https://syndicatedsearch.goog/afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
FingerprintF0:E7:0B:8F:93:C0:9E:F3:15:26:E3:94:7C:D8:3F:00:DE:01:8F:46
ValidityWed, 26 Feb 2025 15:33:54 GMT - Wed, 21 May 2025 15:33:53 GMT
File type SVG Scalable Vector Graphics image
Hash 592bbd56abac313ab322bc38f7027496
ecc40e55421cbfc9cc24e256c999a497b84d997f
fe3a1073d51df0f353dfa771acde9ea020e215a74edf7b24775e50282b6d6eda
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Mar 2025 21:04:24 GMT
expires: Thu, 13 Mar 2025 20:04:24 GMT
cache-control: public, max-age=82800
age: 33168
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET euob.seaskydvd.com/sxp/i/224f85302aa2b6ec30aac9a85da2cbf9.js
200 OK 110 kB URL GET euob.seaskydvd.com/sxp/i/224f85302aa2b6ec30aac9a85da2cbf9.js
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerAmazon
Subject*.seaskydvd.com
Fingerprint5D:E2:D2:FB:0A:F9:91:11:96:63:07:24:64:47:1E:C8:64:72:1A:12
ValidityTue, 18 Jun 2024 00:00:00 GMT - Fri, 18 Jul 2025 23:59:59 GMT
Size 110 kB (109609 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sxp/i/224f85302aa2b6ec30aac9a85da2cbf9.js HTTP/1.1
Host: euob.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 40006
content-encoding: gzip
server: Caddy
date: Thu, 13 Mar 2025 04:25:15 GMT
cache-control: max-age=43200
expires: Thu, 13 Mar 2025 16:24:48 GMT
etag: "1ac29-K2vKTT/fSsVMZT/lyLBmrZkxYUA"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YysG2Jhbrx-zmjb2ClMZINtF_J9LkTM8gjHsoBkN9o2mNvHSUjPVKA==
age: 6742
X-Firefox-Spdy: h2
GET obseu.seaskydvd.com/ct?id=80705&url=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713&sf=0&tpi=&ch=AdsDeli%20-%20domain%20-%20landingpage&uvid=a1ecc3519190a285b62986ef8e8064e6be22a0b1&tsf=0&tsfmi=&tsfu=&cb=1741846631609&hl=2&op=0&ag=2881387774&rand=24028275050909201092626177029182055561121165107102287261900290579201506105852240295012&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=&cri=GeF1icgCtK&pto=3244&ver=63&gac=-&mei=&ap=&fe=1&duid=1.1741846631.W6tR89mjjineFukj&suid=1.1741846631.R7pq0QktgwCYt7mY&tuid=1.1741846631.KzyntSqZqEjerJjc&fbc=->m=-&it=9%2C2285%2C374&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D
200 OK 4.5 kB URL GET obseu.seaskydvd.com/ct?id=80705&url=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713&sf=0&tpi=&ch=AdsDeli%20-%20domain%20-%20landingpage&uvid=a1ecc3519190a285b62986ef8e8064e6be22a0b1&tsf=0&tsfmi=&tsfu=&cb=1741846631609&hl=2&op=0&ag=2881387774&rand=24028275050909201092626177029182055561121165107102287261900290579201506105852240295012&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=&cri=GeF1icgCtK&pto=3244&ver=63&gac=-&mei=&ap=&fe=1&duid=1.1741846631.W6tR89mjjineFukj&suid=1.1741846631.R7pq0QktgwCYt7mY&tuid=1.1741846631.KzyntSqZqEjerJjc&fbc=->m=-&it=9%2C2285%2C374&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (4549), with no line terminators
Hash 6eb6ecbe0dff47bffa2fb6c2ddbf23a9
d7653ddef120588f638d07b2e988500a1b4e191c
48498f9c69fef197b7f174aaa654d1a4d33e443a0907a8b201f96544233dca4c
GET /ct?id=80705&url=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713&sf=0&tpi=&ch=AdsDeli%20-%20domain%20-%20landingpage&uvid=a1ecc3519190a285b62986ef8e8064e6be22a0b1&tsf=0&tsfmi=&tsfu=&cb=1741846631609&hl=2&op=0&ag=2881387774&rand=24028275050909201092626177029182055561121165107102287261900290579201506105852240295012&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=&cri=GeF1icgCtK&pto=3244&ver=63&gac=-&mei=&ap=&fe=1&duid=1.1741846631.W6tR89mjjineFukj&suid=1.1741846631.R7pq0QktgwCYt7mY&tuid=1.1741846631.KzyntSqZqEjerJjc&fbc=->m=-&it=9%2C2285%2C374&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 13 Mar 2025 06:17:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139; Max-Age=29030400; Path=/; Expires=Thu, 12 Feb 2026 06:17:12 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: https://ww38.zummerprime.com
content-length: 1501
X-Firefox-Spdy: h2
GET syndicatedsearch.goog/adsense/domains/caf.js
200 OK 145 kB URL GET syndicatedsearch.goog/adsense/domains/caf.js
IP
Requested by https://syndicatedsearch.goog/afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32
ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT
File type JavaScript source, ASCII text, with very long lines (1967)
Size 145 kB (144916 bytes)
Hash 3e60fa7a6dfa9209f4b5961cab95f04b
2f87d4e2ccc21d4bbf1fe9096487a6c3c866bf50
560f2a8ca2c3ff561ceff6047f0b6e33259532814a58ba783d7e076052050526
GET /adsense/domains/caf.js HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 13 Mar 2025 06:17:12 GMT
expires: Thu, 13 Mar 2025 06:17:12 GMT
cache-control: private, max-age=3600
etag: "5394997369461454288"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
200 OK 16 kB URL User Request GET ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
IP
Certificate IssuerLet's Encrypt
Subjectww38.zummerprime.com
Fingerprint25:F4:B4:A2:FB:F1:45:12:EE:0C:BD:F7:8C:92:B8:28:D3:6C:9D:9E
ValidityFri, 27 Dec 2024 07:36:29 GMT - Thu, 27 Mar 2025 07:36:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713 HTTP/1.1
Host: ww38.zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
accept-ch-lifetime: 30
alt-svc: h3=":50944"; ma=2592000
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Thu, 13 Mar 2025 06:17:10 GMT
server: Caddy, nginx
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_jI1JXt2uggq/q1WdjhqP/dx5P4MRItvCTw9BQLoiiX/s/mrnJyTPePBx/GGkI7F/1KM9YnOReZ8dcRpkTs+MXQ==
x-buckets: bucket011,bucket088,bucket077
x-domain: zummerprime.com
x-language: norwegian
x-pcrew-blocked-reason:
x-pcrew-ip-organization: Obos Nett
x-subdomain: ww38
x-template: tpl_CleanPeppermintBlack_twoclick
X-Firefox-Spdy: h2
GET obseu.seaskydvd.com/tracker/tc_imp.gif?e=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&cri=GeF1icgCtK&ts=531&cb=1741846632140
200 OK 43 B URL GET obseu.seaskydvd.com/tracker/tc_imp.gif?e=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&cri=GeF1icgCtK&ts=531&cb=1741846632140
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=GeF1icgCtK&ts=531&cb=1741846632140 HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 13 Mar 2025 06:17:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
GET syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=djbcishidti&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bv&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1
204 No Content 0 B URL GET syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=djbcishidti&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bv&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32
ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=djbcishidti&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bv&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-9WhnmZzXvBYZ4w9ZeX0g4w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 13 Mar 2025 06:17:14 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ww38.zummerprime.com/munin/a/tr/browserjs?domain=zummerprime.com&toggle=browserjs&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D
200 OK 0 B URL GET ww38.zummerprime.com/munin/a/tr/browserjs?domain=zummerprime.com&toggle=browserjs&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerLet's Encrypt
Subjectww38.zummerprime.com
Fingerprint25:F4:B4:A2:FB:F1:45:12:EE:0C:BD:F7:8C:92:B8:28:D3:6C:9D:9E
ValidityFri, 27 Dec 2024 07:36:29 GMT - Thu, 27 Mar 2025 07:36:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /munin/a/tr/browserjs?domain=zummerprime.com&toggle=browserjs&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D HTTP/1.1
Host: ww38.zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
accept-ch-lifetime: 30
access-control-allow-origin: *
alt-svc: h3=":50944"; ma=2592000
content-type: text/html; charset=UTF-8
date: Thu, 13 Mar 2025 06:17:10 GMT
server: Caddy, nginx
x-custom-track: browserjs
content-length: 0
X-Firefox-Spdy: h2
GET ww38.zummerprime.com/favicon.ico
200 OK 0 B URL GET ww38.zummerprime.com/favicon.ico
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerLet's Encrypt
Subjectww38.zummerprime.com
Fingerprint25:F4:B4:A2:FB:F1:45:12:EE:0C:BD:F7:8C:92:B8:28:D3:6C:9D:9E
ValidityFri, 27 Dec 2024 07:36:29 GMT - Thu, 27 Mar 2025 07:36:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: ww38.zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
alt-svc: h3=":50944"; ma=2592000
content-type: image/x-icon
date: Thu, 13 Mar 2025 06:17:11 GMT
etag: "670f7248-0"
last-modified: Wed, 16 Oct 2024 07:59:04 GMT
server: Caddy, nginx
content-length: 0
X-Firefox-Spdy: h2
GET ww38.zummerprime.com/munin/a/tr/answercheck/yes?domain=zummerprime.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D
200 OK 0 B URL GET ww38.zummerprime.com/munin/a/tr/answercheck/yes?domain=zummerprime.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerLet's Encrypt
Subjectww38.zummerprime.com
Fingerprint25:F4:B4:A2:FB:F1:45:12:EE:0C:BD:F7:8C:92:B8:28:D3:6C:9D:9E
ValidityFri, 27 Dec 2024 07:36:29 GMT - Thu, 27 Mar 2025 07:36:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /munin/a/tr/answercheck/yes?domain=zummerprime.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTg0NjYzMC41NDMzOjdjOWI3YzY3MTBjYjE0ZDIyNDdmNjBjNGFkYzliNTY2MDkxM2QzMDM4ZDBkNmY5ZjEwYWU2ZjVhMjEzNmFjOWU6NjdkMjc4NjY4NGE3NQ%3D%3D HTTP/1.1
Host: ww38.zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Cookie: _cq_duid=1.1741846631.W6tR89mjjineFukj; _cq_suid=1.1741846631.R7pq0QktgwCYt7mY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
accept-ch-lifetime: 30
access-control-allow-origin: *
alt-svc: h3=":50944"; ma=2592000
content-type: text/html; charset=UTF-8
date: Thu, 13 Mar 2025 06:17:12 GMT
server: Caddy, nginx
x-custom-track: answercheck
content-length: 0
X-Firefox-Spdy: h2
GET syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=28u2gei9gdec&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bs&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1
204 No Content 0 B URL GET syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=28u2gei9gdec&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bs&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32
ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=28u2gei9gdec&cd_fexp=72717107&aqid=Z3jSZ5HmONaviM0P1NqB0QQ&psid=5837883959&pbt=bs&adbx=375&adby=170&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C580%7C218%7C113&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-xTIJaXuMDnXl7Cs6X4A-pQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 13 Mar 2025 06:17:14 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7
302 Found 16 kB URL User Request GET zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7
IP
ASN #133618 Trellian Pty. Limited
Certificate IssuerLet's Encrypt
Subjectstijnjanssens.com
Fingerprint42:FC:EC:16:41:B6:85:75:F6:94:BA:9F:BB:BA:D1:7F:69:2F:1D:08
ValiditySun, 09 Mar 2025 07:11:31 GMT - Sat, 07 Jun 2025 07:11:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-7 HTTP/1.1
Host: zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __tad=1741846626.7055779
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
date: Thu, 13 Mar 2025 06:17:09 GMT
server: Apache
location: http://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
content-length: 2
content-type: text/html; charset=UTF-8
connection: close
GET syndicatedsearch.goog/afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713
200 OK 15 kB URL GET syndicatedsearch.goog/afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32
ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/ads?adtest=off&psid=5837883959&pcsa=false&channel=000001%2Cbucket011%2Cbucket088%2Cbucket077&client=dp-teaminternet09_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fww38.zummerprime.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA3N3x8fHx8fDY3ZDI3ODY2ODRhNTV8fHwxNzQxODQ2NjMwLjU2MjZ8YWYxY2U1NWQwOWZlNjQwYjY2MTFkOTFkN2MxODlhYTMwMzcxZjI0Nnx8fHx8MXx8MHwwfHx8fDF8fHx8fDB8MHx8fHx8fHx8fHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fGExZWNjMzUxOTE5MGEyODViNjI5ODZlZjhlODA2NGU2YmUyMmEwYjF8MHxkcC10ZWFtaW50ZXJuZXQwOV8zcGh8MHwwfHx8fHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2617353989497713&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301548%2C17301266%2C72717107&format=r3%7Cs&nocache=3901741846631554&num=0&output=afd_ads&domain_name=ww38.zummerprime.com&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741846631555&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=795&frm=0&uio=--&cont=tc&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fww38.zummerprime.com%2F0%2F0%2F0%2F6bb1e02ff91d1f59fc3be47670c6a90e%2F146-%2F%3Ffp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26fp%3D-5%2F%26subid1%3D20250313-1717-0938-aee4-02cb742de713 HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Thu, 13 Mar 2025 06:17:11 GMT
expires: Thu, 13 Mar 2025 06:17:11 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-XB9S-05BJSPB1cwEMsTdpw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 3169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST obseu.seaskydvd.com/mon
200 OK 0 B IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 3066
Origin: https://ww38.zummerprime.com
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://ww38.zummerprime.com
content-type: application/json
date: Thu, 13 Mar 2025 06:17:13 GMT
content-length: 0
X-Firefox-Spdy: h2
POST obseu.seaskydvd.com/mon
200 OK 0 B IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2269
Origin: https://ww38.zummerprime.com
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://ww38.zummerprime.com
content-type: application/json
date: Thu, 13 Mar 2025 06:17:22 GMT
content-length: 0
X-Firefox-Spdy: h2
GET zummerprime.com/js/fingerprint/iife.min.js
200 OK 34 kB URL GET zummerprime.com/js/fingerprint/iife.min.js
IP
ASN #133618 Trellian Pty. Limited
Requested by https://zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
Certificate IssuerLet's Encrypt
Subjectstijnjanssens.com
Fingerprint42:FC:EC:16:41:B6:85:75:F6:94:BA:9F:BB:BA:D1:7F:69:2F:1D:08
ValiditySun, 09 Mar 2025 07:11:31 GMT - Sat, 07 Jun 2025 07:11:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/fingerprint/iife.min.js HTTP/1.1
Host: zummerprime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 13 Mar 2025 06:17:07 GMT
server: Apache
last-modified: Tue, 22 Oct 2024 03:25:40 GMT
etag: "85c0-6250852d63500-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14345
content-type: application/javascript
connection: close
GET www.google.com/adsense/domains/caf.js?abp=1&adsdeli=true
200 OK 144 kB URL GET www.google.com/adsense/domains/caf.js?abp=1&adsdeli=true
IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2
ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT
File type JavaScript source, ASCII text, with very long lines (1831)
Size 144 kB (144182 bytes)
Hash be09291333b54d2456ecc94177eeb3c6
a845689b08d5f6a65d3024fa2c7e3704d0f3e1ae
b72403cbf06c63bef7b1de1f7dc31dc5c49412cf84b5a6315dfdaefcde70224f
GET /adsense/domains/caf.js?abp=1&adsdeli=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 13 Mar 2025 06:17:11 GMT
expires: Thu, 13 Mar 2025 06:17:11 GMT
cache-control: private, max-age=3600
etag: "13817446028103071628"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST obseu.seaskydvd.com/mon
200 OK 0 B IP
Requested by https://ww38.zummerprime.com/0/0/0/6bb1e02ff91d1f59fc3be47670c6a90e/146-/?fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&fp=-5/&subid1=20250313-1717-0938-aee4-02cb742de713
Certificate IssuerZeroSSL
Subject*.seaskydvd.com
Fingerprint2A:2C:65:3D:CC:44:8A:95:10:32:8C:0D:66:BD:AD:F5:A6:3F:8F:97
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.seaskydvd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2266
Origin: https://ww38.zummerprime.com
DNT: 1
Connection: keep-alive
Referer: https://ww38.zummerprime.com/
Cookie: cg_uuid=bdf65002877ad090a7fdc0e51df55139
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://ww38.zummerprime.com
content-type: application/json
date: Thu, 13 Mar 2025 06:17:17 GMT
content-length: 0
X-Firefox-Spdy: h2
103.224.182.242
34.251.101.162
0.0.0.0