| learningcontainscaterpillar.com/ir314vqt4j?adb=y&adb=y&dev=r&gac=48&key=da741a49e5b4bcaa15fa1cc6fa329c7b&kw=[%22hentairead%22,%22-%22,%22free%22,%22hentai%22,%22manga%22,%22doujinshi%22,%22and%22,%22comics%22,%22online%22,%22reader%22]&psid=hentairead.com,hentairead.com&refer=https://hentairead.com/&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-3&v=24.4.2204 | 172.240.108.68 | | 1.6 kB |
URL learningcontainscaterpillar.com/ir314vqt4j?adb=y&adb=y&dev=r&gac=48&key=da741a49e5b4bcaa15fa1cc6fa329c7b&kw=[%22hentairead%22,%22-%22,%22free%22,%22hentai%22,%22manga%22,%22doujinshi%22,%22and%22,%22comics%22,%22online%22,%22reader%22]&psid=hentairead.com,hentairead.com&refer=https://hentairead.com/&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-3&v=24.4.2204 IP172.240.108.68:0
File typeHTML document, ASCII text, with very long lines (850) Hash056b14a200f284204ca0f175308ca25c b311f5fa24d40c0a9f559575f80c22fc1dcef71b 3247e4c3dd6fba15f76d801813f8ca4a5c89d2bb6ee6437a8ac67cdaf33944b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ir314vqt4j?adb=y&adb=y&dev=r&gac=48&key=da741a49e5b4bcaa15fa1cc6fa329c7b&kw=[%22hentairead%22,%22-%22,%22free%22,%22hentai%22,%22manga%22,%22doujinshi%22,%22and%22,%22comics%22,%22online%22,%22reader%22]&psid=hentairead.com,hentairead.com&refer=https://hentairead.com/&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-3&v=24.4.2204 HTTP/1.1
Host: learningcontainscaterpillar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 21:57:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=16969935; expires=Fri, 19 Apr 2024 21:57:46 GMT
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjk2OTkzNSwiayI6ImRhNzQxYTQ5ZTViNGJjYWExNWZhMWNjNmZhMzI5YzdiIiwic2lkIjoiaGVudGFpcmVhZC5jb20saGVudGFpcmVhZC5jb20iLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE3NzYyOTAsInBpZCI6NDI3MzY5LCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjE2LCJhaWQiOjI4LCJwdCI6NCwicGsiOiJpcjMxNHZxdDRqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOnRydWV9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vaGVudGFpcmVhZC5jb20vIiwiYXIiOltdfX0.1773Q7uWtX4WX76QvNCEcmqImJwRlusIU-joqXXh4IA; expires=Thu, 18 Apr 2024 21:58:46 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2ea1aacb3240f60e88198233f6eda7c1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| learningcontainscaterpillar.com/api/users?token=L2lyMzE0dnF0NGo_YWRiPXkmZGV2PXImZ2FjPTQ4JmtleT1kYTc0MWE0OWU1YjRiY2FhMTVmYTFjYzZmYTMyOWM3YiZrdz0lNUIlMjJoZW50YWlyZWFkJTIyJTJDJTIyLSUyMiUyQyUyMmZyZWUlMjIlMkMlMjJoZW50YWklMjIlMkMlMjJtYW5nYSUyMiUyQyUyMmRvdWppbnNoaSUyMiUyQyUyMmFuZCUyMiUyQyUyMmNvbWljcyUyMiUyQyUyMm9ubGluZSUyMiUyQyUyMnJlYWRlciUyMiU1RCZwc2lkPWhlbnRhaXJlYWQuY29tJTJDaGVudGFpcmVhZC5jb20mcHN0PTE3MTM0Nzc1MjYmcmVmZXI9aHR0cHMlM0ElMkYlMkZoZW50YWlyZWFkLmNvbSUyRiZyZXM9MTQuMzEmcm10Yz10JnNjckhlaWdodD0xMDgwJnNjcldpZHRoPTE5MjAmc2hpcD0mc2h1PTRjYjM1MmM5ODhlZDQ4ZDE3YWNlODZhZmMzNTMxNGIwNzdkMGM0ZDIzMDdiMjY3OTRlZGQyZTI5MWQwNzcxNTZkZmI0ODExYmNjMWRjNTIxMzIxYjA0Y2U0OWEwYmIxMGM5YTZhNmU3YzMzMGY5NzgzMTJkNDUyYzY2MjVmNWRmMWVlNDYwZDYzNGY0ZDM3Mjk4YzU3YjliODU5MmNlYzM2Njc1ZWRjNzM2ZjBmNjZiYWFhNDQ5Y2VmMzc5NzFhNiZzdWIzPWludm9rZV9sYXllciZ0ej0tMyZ2PTI0LjQuMjIwNA&uuid=&pii=&in=false | 172.240.108.84 | 302 Found | 0 B |
URL User Request GET HTTP/1.1learningcontainscaterpillar.com/api/users?token=L2lyMzE0dnF0NGo_YWRiPXkmZGV2PXImZ2FjPTQ4JmtleT1kYTc0MWE0OWU1YjRiY2FhMTVmYTFjYzZmYTMyOWM3YiZrdz0lNUIlMjJoZW50YWlyZWFkJTIyJTJDJTIyLSUyMiUyQyUyMmZyZWUlMjIlMkMlMjJoZW50YWklMjIlMkMlMjJtYW5nYSUyMiUyQyUyMmRvdWppbnNoaSUyMiUyQyUyMmFuZCUyMiUyQyUyMmNvbWljcyUyMiUyQyUyMm9ubGluZSUyMiUyQyUyMnJlYWRlciUyMiU1RCZwc2lkPWhlbnRhaXJlYWQuY29tJTJDaGVudGFpcmVhZC5jb20mcHN0PTE3MTM0Nzc1MjYmcmVmZXI9aHR0cHMlM0ElMkYlMkZoZW50YWlyZWFkLmNvbSUyRiZyZXM9MTQuMzEmcm10Yz10JnNjckhlaWdodD0xMDgwJnNjcldpZHRoPTE5MjAmc2hpcD0mc2h1PTRjYjM1MmM5ODhlZDQ4ZDE3YWNlODZhZmMzNTMxNGIwNzdkMGM0ZDIzMDdiMjY3OTRlZGQyZTI5MWQwNzcxNTZkZmI0ODExYmNjMWRjNTIxMzIxYjA0Y2U0OWEwYmIxMGM5YTZhNmU3YzMzMGY5NzgzMTJkNDUyYzY2MjVmNWRmMWVlNDYwZDYzNGY0ZDM3Mjk4YzU3YjliODU5MmNlYzM2Njc1ZWRjNzM2ZjBmNjZiYWFhNDQ5Y2VmMzc5NzFhNiZzdWIzPWludm9rZV9sYXllciZ0ej0tMyZ2PTI0LjQuMjIwNA&uuid=&pii=&in=false IP172.240.108.84:443
CertificateIssuerLet's Encrypt Subjectlearningcontainscaterpillar.com Fingerprint03:C5:D9:58:F1:5D:9A:58:DD:8E:17:CC:C8:F0:09:47:B8:25:4B:A3 ValidityTue, 16 Apr 2024 10:24:48 GMT - Mon, 15 Jul 2024 10:24:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L2lyMzE0dnF0NGo_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&uuid=&pii=&in=false HTTP/1.1
Host: learningcontainscaterpillar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learningcontainscaterpillar.com/api/users?token=L2lyMzE0dnF0NGo_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0xNjk2OTkzNQ
Cookie: u_pl=16969935; ain=eyJhbGciOiJIUzI1NiJ9.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.1773Q7uWtX4WX76QvNCEcmqImJwRlusIU-joqXXh4IA; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 21:57:47 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://track.trackingtraffo.com/pop/imp?auth=jvpu18&c=WOrZTUhl-w6fhyb3xmp4yJJ98L6vqXJI4atTb5KFUPbZ7syWgQHJ-YmInzzzHTgwFmIhgVbpCR6Ch0plnhDlI8njJptYyArUgSBJLwpByqBeGVus_NgG0yzg61DV9OvSDX3F22LlL8Vjf4uqcQtWWppZYt9VrZPlK_pwMHG_I_-x3gvmDPMzHiXwkB2otygg8xqBj15uZKJCyoFH6j-O-elWCyrP-bjUWclNWNQRMldv7PGKrndENSE86ecHeneEYKSGQ53IZyiAVnf8dt05ROd7ud8dnpZw1nZ6cGtUic5-eS6kFsqnpVDuBXPxdemRFnMfrI-wSFEODC6JsLbwlF2-6D_w7vWisl_8vp5lm9n-ivziOguc1CrSXIymD9jjj08sJPcvdBSUAddXmr3VJ4IK-pH-TCHRUPyP9sbxdi8n1A3bhD2ya-aZo64iYJRszJdHE28m5D08g60CXdfNpqmszGqvuXhqQWSgW6fPExgDXPQK_1YmMss_CdfxiOdwy6O7hNXq-RWUIS0ER_uQFwAFNSGZEmaPqEcN9377DvM6CO7hnpj9WxcLMAchdmylYcka7-XaJT5dABOD6DYUKBp6NffYjWuzeRxno-SKy5x4M8wdVuCtMPlxbBvXQ5H8GTKMwIfdmwD1dgIp7zYuoxItEsFv87PKDxavBVvBbajreO5Z
Set-Cookie: pdhtkv=true; expires=Fri, 19 Apr 2024 21:57:47 GMT
uncs=1; expires=Fri, 19 Apr 2024 21:57:47 GMT
pdhtkv28=true; expires=Fri, 19 Apr 2024 21:57:47 GMT
uncs28=1; expires=Fri, 19 Apr 2024 21:57:47 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1863812900c7db56387540111e77c99b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| track.trackingtraffo.com/pop/imp?auth=jvpu18&c=WOrZTUhl-w6fhyb3xmp4yJJ98L6vqXJI4atTb5KFUPbZ7syWgQHJ-YmInzzzHTgwFmIhgVbpCR6Ch0plnhDlI8njJptYyArUgSBJLwpByqBeGVus_NgG0yzg61DV9OvSDX3F22LlL8Vjf4uqcQtWWppZYt9VrZPlK_pwMHG_I_-x3gvmDPMzHiXwkB2otygg8xqBj15uZKJCyoFH6j-O-elWCyrP-bjUWclNWNQRMldv7PGKrndENSE86ecHeneEYKSGQ53IZyiAVnf8dt05ROd7ud8dnpZw1nZ6cGtUic5-eS6kFsqnpVDuBXPxdemRFnMfrI-wSFEODC6JsLbwlF2-6D_w7vWisl_8vp5lm9n-ivziOguc1CrSXIymD9jjj08sJPcvdBSUAddXmr3VJ4IK-pH-TCHRUPyP9sbxdi8n1A3bhD2ya-aZo64iYJRszJdHE28m5D08g60CXdfNpqmszGqvuXhqQWSgW6fPExgDXPQK_1YmMss_CdfxiOdwy6O7hNXq-RWUIS0ER_uQFwAFNSGZEmaPqEcN9377DvM6CO7hnpj9WxcLMAchdmylYcka7-XaJT5dABOD6DYUKBp6NffYjWuzeRxno-SKy5x4M8wdVuCtMPlxbBvXQ5H8GTKMwIfdmwD1dgIp7zYuoxItEsFv87PKDxavBVvBbajreO5Z | 88.214.205.55 | 302 Found | 0 B |
URL User Request GET HTTP/1.1track.trackingtraffo.com/pop/imp?auth=jvpu18&c=WOrZTUhl-w6fhyb3xmp4yJJ98L6vqXJI4atTb5KFUPbZ7syWgQHJ-YmInzzzHTgwFmIhgVbpCR6Ch0plnhDlI8njJptYyArUgSBJLwpByqBeGVus_NgG0yzg61DV9OvSDX3F22LlL8Vjf4uqcQtWWppZYt9VrZPlK_pwMHG_I_-x3gvmDPMzHiXwkB2otygg8xqBj15uZKJCyoFH6j-O-elWCyrP-bjUWclNWNQRMldv7PGKrndENSE86ecHeneEYKSGQ53IZyiAVnf8dt05ROd7ud8dnpZw1nZ6cGtUic5-eS6kFsqnpVDuBXPxdemRFnMfrI-wSFEODC6JsLbwlF2-6D_w7vWisl_8vp5lm9n-ivziOguc1CrSXIymD9jjj08sJPcvdBSUAddXmr3VJ4IK-pH-TCHRUPyP9sbxdi8n1A3bhD2ya-aZo64iYJRszJdHE28m5D08g60CXdfNpqmszGqvuXhqQWSgW6fPExgDXPQK_1YmMss_CdfxiOdwy6O7hNXq-RWUIS0ER_uQFwAFNSGZEmaPqEcN9377DvM6CO7hnpj9WxcLMAchdmylYcka7-XaJT5dABOD6DYUKBp6NffYjWuzeRxno-SKy5x4M8wdVuCtMPlxbBvXQ5H8GTKMwIfdmwD1dgIp7zYuoxItEsFv87PKDxavBVvBbajreO5Z IP88.214.205.55:443
CertificateIssuerSectigo Limited Subjecttrackingtraffo.com Fingerprint66:CE:68:F3:6C:8A:98:F0:D8:02:5B:C4:5E:2E:C7:B0:C7:73:5B:A8 ValidityThu, 23 Nov 2023 00:00:00 GMT - Fri, 22 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pop/imp?auth=jvpu18&c=WOrZTUhl-w6fhyb3xmp4yJJ98L6vqXJI4atTb5KFUPbZ7syWgQHJ-YmInzzzHTgwFmIhgVbpCR6Ch0plnhDlI8njJptYyArUgSBJLwpByqBeGVus_NgG0yzg61DV9OvSDX3F22LlL8Vjf4uqcQtWWppZYt9VrZPlK_pwMHG_I_-x3gvmDPMzHiXwkB2otygg8xqBj15uZKJCyoFH6j-O-elWCyrP-bjUWclNWNQRMldv7PGKrndENSE86ecHeneEYKSGQ53IZyiAVnf8dt05ROd7ud8dnpZw1nZ6cGtUic5-eS6kFsqnpVDuBXPxdemRFnMfrI-wSFEODC6JsLbwlF2-6D_w7vWisl_8vp5lm9n-ivziOguc1CrSXIymD9jjj08sJPcvdBSUAddXmr3VJ4IK-pH-TCHRUPyP9sbxdi8n1A3bhD2ya-aZo64iYJRszJdHE28m5D08g60CXdfNpqmszGqvuXhqQWSgW6fPExgDXPQK_1YmMss_CdfxiOdwy6O7hNXq-RWUIS0ER_uQFwAFNSGZEmaPqEcN9377DvM6CO7hnpj9WxcLMAchdmylYcka7-XaJT5dABOD6DYUKBp6NffYjWuzeRxno-SKy5x4M8wdVuCtMPlxbBvXQ5H8GTKMwIfdmwD1dgIp7zYuoxItEsFv87PKDxavBVvBbajreO5Z HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://learningcontainscaterpillar.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 18 Apr 2024 21:57:47 GMT
Content-Length: 0
Connection: keep-alive
Location: https://plinksplanet.com/click.php?key=rwgcwazv5v4fpndqwm1b&clickid=a2f9e337-b156-45a7-a90f-fb935b1b3bc9&cost=0.0053&PUB_ID=260&SUB_ID=16969935&KEYWORD=Adult&SUBSCRIBER_AGE=0&SUBSCRIBER_DATE=2024-04-18&BID_PUB=0.0053&CR_ID=36479
|
|
| plinksplanet.com/click.php?key=rwgcwazv5v4fpndqwm1b&clickid=a2f9e337-b156-45a7-a90f-fb935b1b3bc9&cost=0.0053&PUB_ID=260&SUB_ID=16969935&KEYWORD=Adult&SUBSCRIBER_AGE=0&SUBSCRIBER_DATE=2024-04-18&BID_PUB=0.0053&CR_ID=36479 | 23.88.80.32 | 302 Found | 0 B |
URL User Request GET HTTP/1.1plinksplanet.com/click.php?key=rwgcwazv5v4fpndqwm1b&clickid=a2f9e337-b156-45a7-a90f-fb935b1b3bc9&cost=0.0053&PUB_ID=260&SUB_ID=16969935&KEYWORD=Adult&SUBSCRIBER_AGE=0&SUBSCRIBER_DATE=2024-04-18&BID_PUB=0.0053&CR_ID=36479 IP23.88.80.32:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectplinksplanet.com Fingerprint8F:DC:E5:EE:9A:5C:35:FE:35:A3:81:ED:70:D0:B9:A6:F5:55:86:93 ValidityThu, 04 Apr 2024 10:17:31 GMT - Wed, 03 Jul 2024 10:17:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click.php?key=rwgcwazv5v4fpndqwm1b&clickid=a2f9e337-b156-45a7-a90f-fb935b1b3bc9&cost=0.0053&PUB_ID=260&SUB_ID=16969935&KEYWORD=Adult&SUBSCRIBER_AGE=0&SUBSCRIBER_DATE=2024-04-18&BID_PUB=0.0053&CR_ID=36479 HTTP/1.1
Host: plinksplanet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://learningcontainscaterpillar.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.24.0
Date: Thu, 18 Apr 2024 21:57:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=qe1zqq9r0; expires=Fri, 19-Apr-2024 21:57:48 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=qe1zqq9r0-qe1zqq9r0-sl5m-0-2td56o-52a6dz-52a68n-6f26d3; expires=Fri, 19-Apr-2024 21:57:48 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://promo.20bet.partners/redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4
Strict-Transport-Security: max-age=31536000
|
|
| promo.20bet.partners/redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4 | 13.107.246.53 | 403 Forbidden | 409 B |
URL User Request GET HTTP/2promo.20bet.partners/redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4 IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerSectigo Limited Subject20bet.partners Fingerprint7D:08:B3:80:9A:D9:AF:7C:D7:7C:B8:CE:FE:1A:EF:F5:BD:8C:56:FF ValidityTue, 26 Sep 2023 00:00:00 GMT - Wed, 25 Sep 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hasheca75b14528ab615d0e0255ecb7bde4c 5ea19bbc75337b7cc5fb7988a4581ae525971a5a 746f05a7460793b766b3dbe5cfee8fc6f2b1d11a55eaddc3e4224e08711bb0b2
GET /redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://learningcontainscaterpillar.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 18 Apr 2024 21:57:48 GMT
content-type: text/html
content-length: 409
x-azure-ref: 20240418T215748Z-17f9dd4c48b5st7ze9vsq76th000000000gg000000005807
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| promo.20bet.partners/favicon.ico | 13.107.213.53 | 403 Forbidden | 409 B |
URL GET HTTP/2promo.20bet.partners/favicon.ico IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://promo.20bet.partners/redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4 CertificateIssuerSectigo Limited Subject20bet.partners Fingerprint7D:08:B3:80:9A:D9:AF:7C:D7:7C:B8:CE:FE:1A:EF:F5:BD:8C:56:FF ValidityTue, 26 Sep 2023 00:00:00 GMT - Wed, 25 Sep 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash7164d75ec1a4d323eddc74bf988a7b6a d9dc9b30ec65f9aefc7f2f654cfba05f9cf7a305 bf30e7dfe2f98ef0156b7ef9b662d15ae2a85b70859efc872703fe22af0c5686
GET /favicon.ico HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.20bet.partners/redirect.aspx?pid=174570&bid=1971&lpid=278&utm_source=retarget&utm_medium=Ubidex&utm_campaign=Ubidex-20bet-EU-Reg-pop-AllPromoSport&utm_term=Ubidex-20bet-EU-Reg-pop-AllPromoSport&subid=51340qe1zqq9r09b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 18 Apr 2024 21:57:48 GMT
content-type: text/html
content-length: 409
x-azure-ref: 20240418T215748Z-17f9dd4c48b2smg4vb48rxw4zn000000026000000000avx7
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|